$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/g7rId02kMEiizwElJNqSzt-2XP8.roa File: g7rId02kMEiizwElJNqSzt-2XP8.roa (raw, json) Hash identifier: 7u0vzFofHAqm/GhGd9F+guxi2HVMQW87wECegdnMiGY= Subject key identifier: 83:BA:C8:77:4D:A4:30:48:A2:CF:01:25:24:DA:92:CE:DF:B6:5C:FF Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3286 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/g7rId02kMEiizwElJNqSzt-2XP8.roa Signing time: Mon 26 Aug 2024 05:31:44 +0000 ROA not before: Mon 26 Aug 2024 05:31:44 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 180.177.176.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12934 (0x3286) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:31:44 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=83BAC8774DA43048A2CF012524DA92CEDFB65CFF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:98:b0:1b:aa:93:b0:94:69:91:c5:e4:ae:92: 8d:96:f7:14:e8:40:51:ce:14:c9:bd:8e:bf:a6:5a: ce:78:33:f7:61:de:5c:d7:7b:ed:fe:ad:e6:32:77: d4:e2:fd:0b:74:0c:33:f1:d4:26:98:e9:00:43:4b: 2e:fb:70:a2:da:85:31:bc:e5:97:69:4c:8b:e7:44: 98:5c:12:ad:f5:a8:d2:cd:7f:1f:9a:8d:43:df:0d: 28:c4:16:f5:9d:7f:d9:5b:f2:5a:29:90:24:73:80: 3a:6e:35:1b:3f:14:6c:10:36:32:f8:e7:1e:ae:a8: e0:e5:f8:35:a7:ba:f0:ab:1d:22:c7:51:c1:d8:02: 46:0e:ad:f3:04:6d:b8:f4:a4:2f:c6:dc:f9:9a:77: 44:de:ee:8f:47:39:cb:a8:3c:1c:4a:92:9f:95:f7: c9:68:12:47:10:ee:f8:e1:ba:ef:cd:43:e4:81:81: 25:26:26:68:95:f4:be:d8:f3:b2:6f:9b:f4:9c:a1: b7:d7:62:05:34:74:33:58:d8:09:2a:71:87:69:eb: d6:13:ad:37:00:80:69:b4:dd:5e:b5:d9:2d:61:2c: d7:cf:ef:16:87:fe:97:71:62:0f:4c:e5:32:0a:56: 7a:84:d2:17:ae:58:3e:1c:9c:1f:80:b5:63:4a:54: 64:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:BA:C8:77:4D:A4:30:48:A2:CF:01:25:24:DA:92:CE:DF:B6:5C:FF X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/g7rId02kMEiizwElJNqSzt-2XP8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.177.176.0/21 Signature Algorithm: sha256WithRSAEncryption 44:09:36:70:ec:18:3e:9a:6d:46:62:c6:3d:fc:76:08:a9:f8: 54:96:6f:c3:da:67:8d:a4:a7:27:21:6f:9d:b6:83:3c:ad:56: 38:2f:38:fc:66:02:de:78:b6:7c:cc:a4:fd:e9:b9:8d:12:42: 90:4c:f4:12:9d:e3:21:a7:de:14:09:da:e3:0b:a5:07:4c:03: f1:55:dc:c2:06:b7:c8:33:a6:20:ac:b1:f9:c9:a4:91:30:c0: 5c:6d:5a:74:28:aa:16:5c:33:23:76:9a:36:2c:9e:dc:9e:95: e3:8f:60:43:b6:8d:cc:52:82:bb:10:87:35:5d:08:46:b5:15: 28:0d:c6:f9:f1:2a:b9:cb:34:20:b2:4f:f2:c8:99:96:ac:4b: c4:39:c3:0e:c6:c5:3b:72:6c:5a:de:9d:77:6f:91:d7:d8:52: 53:61:11:02:23:35:f5:db:81:5a:ad:3e:b9:0c:37:bd:ff:0c: 3a:4d:58:9a:0e:b6:65:fd:e4:51:98:5c:6c:56:cd:dc:fe:13: e2:60:d9:fb:a8:8d:2c:49:d8:17:ef:77:06:b5:12:a9:f0:e6: 52:70:72:6e:cc:bd:03:93:8f:01:0b:15:aa:da:5a:a2:d6:d3: fb:5a:e1:50:c5:37:c5:22:78:a2:66:a7:96:94:fd:3d:45:65: 87:74:4b:0a -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMoYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMxNDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDgzQkFDODc3NERBNDMw NDhBMkNGMDEyNTI0REE5MkNFREZCNjVDRkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3mLAbqpOwlGmRxeSuko2W9xToQFHOFMm9jr+mWs54M/dh3lzX e+3+reYyd9Ti/Qt0DDPx1CaY6QBDSy77cKLahTG85ZdpTIvnRJhcEq31qNLNfx+a jUPfDSjEFvWdf9lb8lopkCRzgDpuNRs/FGwQNjL45x6uqODl+DWnuvCrHSLHUcHY AkYOrfMEbbj0pC/G3Pmad0Te7o9HOcuoPBxKkp+V98loEkcQ7vjhuu/NQ+SBgSUm JmiV9L7Y87Jvm/ScobfXYgU0dDNY2AkqcYdp69YTrTcAgGm03V612S1hLNfP7xaH /pdxYg9M5TIKVnqE0heuWD4cnB+AtWNKVGSPAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUg7rId02kMEiizwElJNqSzt+2XP8wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2c3cklkMDJrTUVpaXp3RWxK TnFTenQtMlhQOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0 sbAwDQYJKoZIhvcNAQELBQADggEBAEQJNnDsGD6abUZixj38dgip+FSWb8PaZ42k pychb522gzytVjgvOPxmAt54tnzMpP3puY0SQpBM9BKd4yGn3hQJ2uMLpQdMA/FV 3MIGt8gzpiCssfnJpJEwwFxtWnQoqhZcMyN2mjYsntyeleOPYEO2jcxSgrsQhzVd CEa1FSgNxvnxKrnLNCCyT/LImZasS8Q5ww7GxTtybFrenXdvkdfYUlNhEQIjNfXb gVqtPrkMN73/DDpNWJoOtmX95FGYXGxWzdz+E+Jg2fuojSxJ2Bfvdwa1Eqnw5lJw cm7MvQOTjwELFaraWqLW0/ta4VDFN8UieKJmp5aU/T1FZYd0Swo= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:53 2024 by rpki-client on console-ams.rpki-client.org