$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iPSnRGB5c3tijGjSi2wi6YSp1JA.roa File: iPSnRGB5c3tijGjSi2wi6YSp1JA.roa (raw, json) Hash identifier: lxqrbFAE8NHca5dNKq0KE5fZRVujombqXcA7kBNVIMc= Subject key identifier: 88:F4:A7:44:60:79:73:7B:62:8C:68:D2:8B:6C:22:E9:84:A9:D4:90 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 31A9 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iPSnRGB5c3tijGjSi2wi6YSp1JA.roa Signing time: Mon 26 Aug 2024 05:30:48 +0000 ROA not before: Mon 26 Aug 2024 05:30:48 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.195.36.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12713 (0x31a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:30:48 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=88F4A7446079737B628C68D28B6C22E984A9D490 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:b9:1f:6b:f7:c2:4e:27:d9:9f:22:23:0c:ae: b6:e7:f4:88:28:ae:48:ba:a0:a9:33:e0:10:73:42: 2f:be:ec:66:b4:43:d3:51:18:dd:e7:af:b8:bf:ba: 25:b5:f5:2a:6b:c0:e4:35:be:8f:8f:6a:68:3f:6c: 6d:0b:f7:e0:cc:ae:e8:43:af:cf:f4:36:41:05:3e: 6f:d6:ac:63:29:9d:9d:5b:fe:69:76:e5:1b:b9:5c: 56:fc:d7:de:aa:08:a1:d2:d4:3f:a3:da:87:54:d6: f2:a2:af:26:7b:91:22:04:ef:6c:d0:f8:2c:a9:32: 8f:26:4a:a6:85:09:8b:29:b6:f2:79:e9:91:cd:31: 0d:2d:b0:a0:b6:da:9e:76:18:93:23:74:97:c7:18: a5:05:25:90:fd:bb:03:dc:90:2e:df:b3:32:de:88: 37:1f:00:ff:4b:6e:ad:8a:9b:26:06:9f:5e:33:7e: bf:89:7e:62:34:af:da:da:be:10:9a:36:cd:be:99: 82:d4:28:52:e1:16:20:69:d1:fe:20:25:e8:6a:50: fc:39:12:e2:5d:00:95:5f:ac:cb:18:aa:19:03:3c: 29:5e:4f:4b:e7:81:0a:b0:aa:ac:71:bb:8f:08:fb: 30:b2:b7:27:d0:25:d5:bf:5d:0f:aa:bb:fc:09:90: 59:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:F4:A7:44:60:79:73:7B:62:8C:68:D2:8B:6C:22:E9:84:A9:D4:90 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iPSnRGB5c3tijGjSi2wi6YSp1JA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.36.0/22 Signature Algorithm: sha256WithRSAEncryption ae:2f:11:7a:6e:8f:c2:11:36:5f:eb:ed:1a:50:cc:89:c2:75: 09:6e:80:d1:47:f9:f8:ca:98:ca:4c:8c:e7:51:7d:40:db:3d: 63:5e:bb:8b:2c:97:33:ff:05:16:69:f0:10:74:bf:c9:39:bb: 32:5e:00:9a:61:00:13:94:07:7c:47:a3:e3:27:eb:cb:ea:32: 18:a6:1c:3c:27:ef:7b:7b:48:85:f4:f5:63:c8:f8:0a:ae:db: ed:3e:70:f2:fd:85:2e:69:de:5e:37:90:31:7b:c8:c6:bf:2b: 93:7f:b9:6e:d7:9e:af:d4:a9:64:0d:43:40:1a:f4:69:08:82: fc:e6:69:4b:2b:aa:4b:19:1f:0d:43:66:d2:6f:89:4c:62:f9: d3:81:21:d3:88:dd:bf:ed:b1:ff:32:41:75:0b:0c:03:3b:f0: f8:0d:3f:70:45:13:fc:01:ad:7a:3a:ba:bf:7a:45:11:1e:32: a3:ea:a5:f6:20:29:d0:15:76:13:69:78:8f:74:2f:7e:90:dc: 5c:a1:de:fc:43:af:ad:0f:20:97:9d:d5:c1:6d:02:44:bc:06: af:93:ca:35:2a:7a:1c:52:9b:ec:27:07:88:09:b9:25:ec:35: 78:90:2f:fd:4a:cd:6a:c8:6e:48:70:bc:e5:d6:48:6b:3b:5d: 73:71:6e:22 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMakwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMwNDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg4RjRBNzQ0NjA3OTcz N0I2MjhDNjhEMjhCNkMyMkU5ODRBOUQ0OTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCUuR9r98JOJ9mfIiMMrrbn9Igorki6oKkz4BBzQi++7Ga0Q9NR GN3nr7i/uiW19SprwOQ1vo+Pamg/bG0L9+DMruhDr8/0NkEFPm/WrGMpnZ1b/ml2 5Ru5XFb8196qCKHS1D+j2odU1vKiryZ7kSIE72zQ+CypMo8mSqaFCYsptvJ56ZHN MQ0tsKC22p52GJMjdJfHGKUFJZD9uwPckC7fszLeiDcfAP9Lbq2KmyYGn14zfr+J fmI0r9ravhCaNs2+mYLUKFLhFiBp0f4gJehqUPw5EuJdAJVfrMsYqhkDPCleT0vn gQqwqqxxu48I+zCytyfQJdW/XQ+qu/wJkFlvAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUiPSnRGB5c3tijGjSi2wi6YSp1JAwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2lQU25SR0I1YzN0aWpHalNp MndpNllTcDFKQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wyQwDQYJKoZIhvcNAQELBQADggEBAK4vEXpuj8IRNl/r7RpQzInCdQlugNFH+fjK mMpMjOdRfUDbPWNeu4sslzP/BRZp8BB0v8k5uzJeAJphABOUB3xHo+Mn68vqMhim HDwn73t7SIX09WPI+Aqu2+0+cPL9hS5p3l43kDF7yMa/K5N/uW7Xnq/UqWQNQ0Aa 9GkIgvzmaUsrqksZHw1DZtJviUxi+dOBIdOI3b/tsf8yQXULDAM78PgNP3BFE/wB rXo6ur96RREeMqPqpfYgKdAVdhNpeI90L36Q3Fyh3vxDr60PIJed1cFtAkS8Bq+T yjUqehxSm+wnB4gJuSXsNXiQL/1KzWrIbkhwvOXWSGs7XXNxbiI= -----END CERTIFICATE-----Generated at Sat Sep 21 03:11:40 2024 by rpki-client on console-fra.rpki-client.org