$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cxMayrdmHHfAsAnIotqspvNKooI.roa File: cxMayrdmHHfAsAnIotqspvNKooI.roa (raw, json) Hash identifier: PTSgoDHwBrnD5OvJUygf9MhUkZIkzximYF2LkGSGVxI= Subject key identifier: 73:13:1A:CA:B7:66:1C:77:C0:B0:09:C8:A2:DA:AC:A6:F3:4A:A2:82 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3211 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cxMayrdmHHfAsAnIotqspvNKooI.roa Signing time: Mon 26 Aug 2024 05:31:14 +0000 ROA not before: Mon 26 Aug 2024 05:31:14 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 180.176.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12817 (0x3211) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:31:14 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=73131ACAB7661C77C0B009C8A2DAACA6F34AA282 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:7d:dc:1e:fd:41:25:ac:3e:1d:3b:c9:9e:fc: 6d:fb:df:e1:37:91:ec:3a:d1:e3:f9:f8:a6:53:5b: 2b:40:0f:5b:70:55:d7:4b:25:1b:c6:60:e6:e2:0c: b4:da:49:98:44:71:84:93:5a:c1:40:2e:9f:c8:59: 77:2d:fd:e5:24:8d:6e:40:69:49:e8:61:ff:02:d6: 8e:16:0d:d2:f3:94:75:7c:ce:49:46:84:01:5c:19: 90:bb:ec:7f:c2:81:d4:e5:7e:4e:41:73:7d:e2:ea: 95:4d:90:0c:0b:ff:18:72:fd:ee:60:9c:80:a3:04: 4d:59:b3:d0:fd:05:6a:f2:51:7e:3c:61:68:bb:bc: 56:d8:68:45:89:a7:6b:9c:35:60:ea:3f:63:a1:06: 00:ea:06:33:dc:b8:6f:90:d5:4f:84:37:f0:98:d9: 1c:9f:ac:1c:80:05:fd:63:d1:be:10:26:c5:66:18: 15:ae:a9:84:6d:1b:6c:b7:af:42:71:09:b3:4c:cf: c0:3b:b0:53:03:fc:32:af:0f:a7:6f:38:ff:03:d9: 0a:3a:05:39:85:1d:7b:91:b6:ae:bf:9c:54:ba:af: c8:47:13:60:b5:cc:47:62:ce:6b:06:c5:1e:48:6b: 58:2e:ae:ec:f8:07:59:7e:09:de:cc:09:7a:86:a1: b6:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:13:1A:CA:B7:66:1C:77:C0:B0:09:C8:A2:DA:AC:A6:F3:4A:A2:82 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/cxMayrdmHHfAsAnIotqspvNKooI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.176.0.0/15 Signature Algorithm: sha256WithRSAEncryption 6b:77:82:d3:2b:90:3a:79:81:aa:c3:a6:29:e1:25:91:c5:e1: b6:bc:04:4d:43:5d:40:96:18:d0:19:c5:56:1a:a1:f8:79:3e: 58:f0:d2:9a:f5:8a:58:dc:b0:c0:f2:11:b9:fe:39:77:6c:a9: 35:6b:f5:ec:ce:a5:94:3f:df:7b:60:18:0d:2a:51:bd:a7:5a: d6:e5:4f:8b:b1:1a:26:d6:10:ab:08:3f:e0:45:40:d7:d0:62: 51:62:a8:cf:34:7f:53:31:cd:9c:0b:cb:d6:78:fb:fd:da:31: 46:76:55:e8:12:03:72:90:ae:d5:ad:b8:b5:87:b7:14:c0:92: cb:14:87:ec:0a:52:03:5d:78:9f:c4:16:91:96:c4:f6:55:74: 34:f5:4c:54:b6:d8:7c:a1:88:09:1a:45:4a:4a:ea:d9:9b:23: 20:1b:57:51:34:fd:30:11:cb:79:6e:e5:8c:9d:37:c1:30:67: 2f:98:23:6b:b9:5d:f4:a1:87:9b:38:21:b0:65:f1:94:aa:7c: 57:dd:60:6f:e6:da:e6:2d:fd:29:80:c3:f7:c1:bd:da:e8:c7: 01:2b:1d:a4:a6:13:18:fb:11:8c:91:d3:fe:08:4b:27:2b:fd: 36:6c:95:13:0c:70:5e:c6:af:7f:2a:8d:40:73:de:ac:83:7a: ac:f0:98:20 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICMhEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMxMTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDczMTMxQUNBQjc2NjFD NzdDMEIwMDlDOEEyREFBQ0E2RjM0QUEyODIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDpfdwe/UElrD4dO8me/G373+E3kew60eP5+KZTWytAD1twVddL JRvGYObiDLTaSZhEcYSTWsFALp/IWXct/eUkjW5AaUnoYf8C1o4WDdLzlHV8zklG hAFcGZC77H/CgdTlfk5Bc33i6pVNkAwL/xhy/e5gnICjBE1Zs9D9BWryUX48YWi7 vFbYaEWJp2ucNWDqP2OhBgDqBjPcuG+Q1U+EN/CY2RyfrByABf1j0b4QJsVmGBWu qYRtG2y3r0JxCbNMz8A7sFMD/DKvD6dvOP8D2Qo6BTmFHXuRtq6/nFS6r8hHE2C1 zEdizmsGxR5Ia1guruz4B1l+Cd7MCXqGobajAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUcxMayrdmHHfAsAnIotqspvNKooIwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2N4TWF5cmRtSEhmQXNBbklv dHFzcHZOS29vSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwG0 sDANBgkqhkiG9w0BAQsFAAOCAQEAa3eC0yuQOnmBqsOmKeElkcXhtrwETUNdQJYY 0BnFVhqh+Hk+WPDSmvWKWNywwPIRuf45d2ypNWv17M6llD/fe2AYDSpRvada1uVP i7EaJtYQqwg/4EVA19BiUWKozzR/UzHNnAvL1nj7/doxRnZV6BIDcpCu1a24tYe3 FMCSyxSH7ApSA114n8QWkZbE9lV0NPVMVLbYfKGICRpFSkrq2ZsjIBtXUTT9MBHL eW7ljJ03wTBnL5gja7ld9KGHmzghsGXxlKp8V91gb+ba5i39KYDD98G92ujHASsd pKYTGPsRjJHT/ghLJyv9NmyVEwxwXsavfyqNQHPerIN6rPCYIA== -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:50 2024 by rpki-client on console-fra.rpki-client.org