$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cdcf9FRVgMdeqHntN57UDFFvtMo.roa File: cdcf9FRVgMdeqHntN57UDFFvtMo.roa (raw, json) Hash identifier: BNe/ikvpoVY+aP0sUTkclzmL5DUy6ahXXWmnKoZ4rjU= Subject key identifier: 71:D7:1F:F4:54:55:80:C7:5E:A8:79:ED:37:9E:D4:0C:51:6F:B4:CA Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3280 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cdcf9FRVgMdeqHntN57UDFFvtMo.roa Signing time: Mon 26 Aug 2024 05:31:43 +0000 ROA not before: Mon 26 Aug 2024 05:31:43 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 180.177.8.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12928 (0x3280) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:31:43 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=71D71FF4545580C75EA879ED379ED40C516FB4CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:5b:b5:4a:60:12:36:49:1d:2a:dd:1b:ef:8c: 09:29:dd:9a:66:55:22:a0:2a:11:e3:b3:38:b0:83: 07:ac:17:bd:03:f0:28:b5:ad:c4:25:32:9a:bc:24: 54:33:30:68:77:3c:12:f8:b0:0a:66:d8:46:ef:16: 7c:6a:26:40:89:4e:42:65:70:32:c9:0c:e6:3d:02: 4c:8d:5b:88:44:85:d8:1f:1f:c0:44:38:ee:a6:b8: 77:e8:28:23:4c:03:6e:22:77:36:7d:39:76:d3:4e: 3e:16:e9:33:e6:d0:2c:86:b7:51:ab:16:22:49:99: cf:8e:21:37:4f:d6:4c:da:55:2d:5d:36:b7:9e:0e: 65:56:af:22:df:8d:04:7d:e8:51:5a:05:13:5f:cd: d3:82:a6:17:64:82:d3:b0:b8:d7:b5:21:ce:ee:4a: ff:9e:38:88:67:dc:1c:3f:bb:d0:45:62:6d:3b:7d: 08:a1:a0:21:8f:0d:c9:fc:7a:29:07:69:6d:58:26: 35:a8:1f:db:f6:03:c0:1e:15:17:3a:e1:f0:dc:74: 1a:fc:e2:f9:e8:3c:8f:6c:23:ae:67:8e:f4:e0:9c: 24:98:07:43:b6:86:e4:89:3b:81:11:43:ae:ee:26: 06:56:51:66:e4:f6:45:50:e7:54:de:b7:2c:57:28: e1:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:D7:1F:F4:54:55:80:C7:5E:A8:79:ED:37:9E:D4:0C:51:6F:B4:CA X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cdcf9FRVgMdeqHntN57UDFFvtMo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.177.8.0/21 Signature Algorithm: sha256WithRSAEncryption 4f:19:f4:7e:c7:e2:e6:de:8e:56:03:ca:dc:50:18:b5:e5:50: 1e:ea:4a:ff:fe:e0:d1:56:5e:84:b2:74:61:1f:33:0c:dc:78: f6:b3:7b:df:48:6c:5f:71:6c:68:43:60:f7:df:a7:92:be:8a: ab:bb:3f:b4:35:9e:0a:27:2d:a2:c1:2a:fd:76:b8:27:19:c2: e2:90:98:7e:ea:8c:69:ab:c9:85:f4:5e:d7:05:30:a1:56:03: e9:67:6d:bf:88:61:80:31:ed:b6:12:7d:d8:6b:f4:0f:1f:a7: f7:b2:34:0a:dd:0a:3a:0c:18:ed:9d:e3:73:16:75:3e:c3:53: c6:dc:b7:76:0f:08:e0:a6:26:76:36:5c:f8:bb:3d:54:e5:2d: 9d:d3:52:11:00:49:4b:cf:3f:3c:3f:2b:05:29:66:e7:69:5e: 64:05:9a:e1:1b:93:ab:f8:40:2d:87:ea:63:68:57:1b:68:63: 22:22:0e:87:92:67:f3:01:03:b2:77:b2:14:5c:1c:11:af:49: 32:e1:6b:f3:2a:45:1e:f2:66:b3:01:93:77:6e:a0:ca:45:4f: 57:86:c6:84:e4:08:22:3d:59:9f:ec:f3:ed:ae:f8:b3:be:e1: 07:0b:19:bc:33:b7:17:af:45:7a:f0:3a:d5:89:04:e3:54:b8: 58:da:94:44 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMoAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMxNDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDcxRDcxRkY0NTQ1NTgw Qzc1RUE4NzlFRDM3OUVENDBDNTE2RkI0Q0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCW7VKYBI2SR0q3RvvjAkp3ZpmVSKgKhHjsziwgwesF70D8Ci1 rcQlMpq8JFQzMGh3PBL4sApm2EbvFnxqJkCJTkJlcDLJDOY9AkyNW4hEhdgfH8BE OO6muHfoKCNMA24idzZ9OXbTTj4W6TPm0CyGt1GrFiJJmc+OITdP1kzaVS1dNree DmVWryLfjQR96FFaBRNfzdOCphdkgtOwuNe1Ic7uSv+eOIhn3Bw/u9BFYm07fQih oCGPDcn8eikHaW1YJjWoH9v2A8AeFRc64fDcdBr84vnoPI9sI65njvTgnCSYB0O2 huSJO4ERQ67uJgZWUWbk9kVQ51TetyxXKOHxAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUcdcf9FRVgMdeqHntN57UDFFvtMowHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2NkY2Y5RlJWZ01kZXFIbnRO NTdVREZGdnRNby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0 sQgwDQYJKoZIhvcNAQELBQADggEBAE8Z9H7H4ubejlYDytxQGLXlUB7qSv/+4NFW XoSydGEfMwzcePaze99IbF9xbGhDYPffp5K+iqu7P7Q1ngonLaLBKv12uCcZwuKQ mH7qjGmryYX0XtcFMKFWA+lnbb+IYYAx7bYSfdhr9A8fp/eyNArdCjoMGO2d43MW dT7DU8bct3YPCOCmJnY2XPi7PVTlLZ3TUhEASUvPPzw/KwUpZudpXmQFmuEbk6v4 QC2H6mNoVxtoYyIiDoeSZ/MBA7J3shRcHBGvSTLha/MqRR7yZrMBk3duoMpFT1eG xoTkCCI9WZ/s8+2u+LO+4QcLGbwztxevRXrwOtWJBONUuFjalEQ= -----END CERTIFICATE-----Generated at Sat Sep 21 00:29:53 2024 by rpki-client on console-fra.rpki-client.org