$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/gFoqvNB7FB8jD7xuorXgbEdpW5I.roa File: gFoqvNB7FB8jD7xuorXgbEdpW5I.roa (raw, json) Hash identifier: Sxba8dU376y4GWbDl8+TD3avjg9r+hoH22ny2RSPBoU= Subject key identifier: 80:5A:2A:BC:D0:7B:14:1F:23:0F:BC:6E:A2:B5:E0:6C:47:69:5B:92 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3169 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/gFoqvNB7FB8jD7xuorXgbEdpW5I.roa Signing time: Mon 26 Aug 2024 05:30:26 +0000 ROA not before: Mon 26 Aug 2024 05:30:26 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 2407:4d00:ff0a::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12649 (0x3169) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:30:26 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=805A2ABCD07B141F230FBC6EA2B5E06C47695B92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:db:90:48:c2:95:c6:7f:56:2f:97:e5:c9:bf: 99:2e:6b:8e:69:49:90:e9:89:0a:6b:f9:d1:8d:a0: ad:13:d0:af:50:65:74:6d:39:26:e6:10:dc:4d:3e: 7b:25:de:c8:1f:ac:f4:91:74:eb:5b:a5:e7:cb:77: 90:06:07:5c:77:9c:7d:80:1e:2f:7b:24:05:b8:52: 06:09:8c:52:96:15:61:15:8d:0c:d8:7b:8b:06:fc: 9e:5e:23:78:0a:a6:df:1d:78:ab:c6:78:7f:2a:76: 60:13:f3:b5:83:57:78:45:e9:d8:c5:2e:13:35:e4: fc:b4:98:98:bf:b2:38:1f:42:25:4c:d4:ee:b5:97: e6:f3:65:f9:5f:88:36:92:f8:49:d0:79:03:cb:bd: 7d:eb:90:d3:b0:bd:11:b6:75:a0:43:32:3d:d1:36: 10:f4:4e:c8:b3:a2:8c:f0:c3:db:d5:bb:43:a1:5b: 7f:2c:8a:eb:7c:a0:ff:3d:ad:bd:d8:ea:f5:8a:26: 8a:3b:53:5e:e1:ed:d3:58:b8:70:94:5a:1e:4e:5d: 27:c6:70:04:19:75:1b:f0:a2:a5:c1:09:d6:9b:c0: 91:5d:d3:a5:a0:d6:bf:b4:c8:d9:14:c9:e3:59:7b: ae:a3:d1:b4:d0:46:06:70:d3:3e:57:65:bf:5e:0d: 7d:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:5A:2A:BC:D0:7B:14:1F:23:0F:BC:6E:A2:B5:E0:6C:47:69:5B:92 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/gFoqvNB7FB8jD7xuorXgbEdpW5I.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2407:4d00:ff0a::/48 Signature Algorithm: sha256WithRSAEncryption b9:84:6e:f4:67:1f:6f:f8:b3:25:08:b2:13:0a:98:0d:4f:95: b3:61:36:29:bb:d0:3b:48:b2:b0:f2:5b:38:13:9a:86:d6:77: e6:50:c5:5d:76:e5:74:ce:6e:fc:9c:21:0f:21:fe:ba:d6:19: 58:73:65:4c:ce:20:95:11:de:f3:7c:e6:39:d7:c6:c9:0a:43: 75:99:4c:65:28:b8:c7:aa:f6:d9:64:33:4a:22:70:bf:f0:c0: 3c:c0:7d:9c:02:c0:9e:fa:58:5e:9e:dc:4f:f9:03:81:6c:b0: d7:e6:7a:1b:d6:cf:54:16:e0:6e:67:73:31:72:6f:ed:7a:7e: 90:ee:f7:81:e3:6b:ab:56:cc:2a:94:7b:78:6e:43:90:90:e6: f1:d6:b4:a0:10:72:1d:c0:8f:28:15:6f:0e:50:83:b1:ed:4e: 92:a6:5e:16:4e:cd:6f:b1:cb:70:2d:24:d4:13:18:86:48:5f: 76:93:2d:0a:8d:19:47:d5:c2:af:b4:ba:57:81:e0:aa:7e:40: 42:8c:53:5a:30:b0:af:d4:4b:01:f8:ea:06:d7:43:74:a0:11: 00:76:a6:70:23:fe:ad:ff:7a:ff:a2:1f:54:24:ab:3d:b2:3b: 5f:a2:d1:b4:40:d5:7c:ae:ae:0d:0e:3f:c7:74:89:1f:a7:55: 4c:6b:5f:99 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICMWkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMwMjZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDgwNUEyQUJDRDA3QjE0 MUYyMzBGQkM2RUEyQjVFMDZDNDc2OTVCOTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDN25BIwpXGf1Yvl+XJv5kua45pSZDpiQpr+dGNoK0T0K9QZXRt OSbmENxNPnsl3sgfrPSRdOtbpefLd5AGB1x3nH2AHi97JAW4UgYJjFKWFWEVjQzY e4sG/J5eI3gKpt8deKvGeH8qdmAT87WDV3hF6djFLhM15Py0mJi/sjgfQiVM1O61 l+bzZflfiDaS+EnQeQPLvX3rkNOwvRG2daBDMj3RNhD0Tsizoozww9vVu0OhW38s iut8oP89rb3Y6vWKJoo7U17h7dNYuHCUWh5OXSfGcAQZdRvwoqXBCdabwJFd06Wg 1r+0yNkUyeNZe66j0bTQRgZw0z5XZb9eDX0tAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUgFoqvNB7FB8jD7xuorXgbEdpW5IwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2dGb3F2TkI3RkI4akQ3eHVv clhnYkVkcFc1SS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk B00A/wowDQYJKoZIhvcNAQELBQADggEBALmEbvRnH2/4syUIshMKmA1PlbNhNim7 0DtIsrDyWzgTmobWd+ZQxV125XTObvycIQ8h/rrWGVhzZUzOIJUR3vN85jnXxskK Q3WZTGUouMeq9tlkM0oicL/wwDzAfZwCwJ76WF6e3E/5A4FssNfmehvWz1QW4G5n czFyb+16fpDu94Hja6tWzCqUe3huQ5CQ5vHWtKAQch3AjygVbw5Qg7HtTpKmXhZO zW+xy3AtJNQTGIZIX3aTLQqNGUfVwq+0uleB4Kp+QEKMU1owsK/USwH46gbXQ3Sg EQB2pnAj/q3/ev+iH1Qkqz2yO1+i0bRA1Xyurg0OP8d0iR+nVUxrX5k= -----END CERTIFICATE-----Generated at Sat Sep 21 00:29:54 2024 by rpki-client on console-fra.rpki-client.org