$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iU2WWDLnd9MwlkmzUXwMynN_dpg.roa File: iU2WWDLnd9MwlkmzUXwMynN_dpg.roa (raw, json) Hash identifier: FZK85vz1F0R0+sT6SXcy81/uGideu1T/O/kjGtDvuIQ= Subject key identifier: 89:4D:96:58:32:E7:77:D3:30:96:49:B3:51:7C:0C:CA:73:7F:76:98 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 323D Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iU2WWDLnd9MwlkmzUXwMynN_dpg.roa Signing time: Mon 26 Aug 2024 05:31:26 +0000 ROA not before: Mon 26 Aug 2024 05:31:26 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 2407:4d00:ff07::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12861 (0x323d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:31:26 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=894D965832E777D3309649B3517C0CCA737F7698 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:26:2b:98:b3:ad:22:df:e6:bd:2b:a3:12:9c: 0e:6f:99:9a:32:fa:25:6e:5b:1e:08:eb:1e:76:5b: 9c:fe:0f:40:41:fe:b1:e7:b5:fa:43:c2:51:d9:a1: 98:e2:ab:33:0b:3c:49:bd:cb:85:46:29:cd:1b:07: df:1c:90:ea:a1:8f:85:2e:72:23:c1:c4:7a:4f:f3: 97:90:15:94:c5:9b:59:28:75:de:05:62:ae:e9:9e: 38:7d:21:cb:d6:51:75:5a:35:a1:05:1f:86:0e:b9: 4c:79:e1:54:d6:96:56:76:20:16:69:99:fa:eb:19: af:35:be:02:ed:cd:3d:51:8c:3c:36:e7:d6:90:da: 61:03:c5:ca:2d:2b:b8:3e:b8:2e:c8:24:2b:2b:2a: 83:ea:68:fe:14:1f:68:2d:c7:82:13:c0:75:ed:ae: 4b:ae:df:f9:1b:a1:0c:5e:1b:4b:0c:aa:21:05:2d: 55:ee:4e:99:39:f1:60:c9:6a:0a:00:0e:33:53:5e: 25:cf:3a:e4:08:22:51:e7:ff:4d:fb:ff:51:cc:1b: 1f:ae:32:b1:07:57:cf:a7:8b:0a:96:ba:f5:01:db: 83:70:f2:5a:92:11:c9:16:4d:54:35:ff:32:ee:30: 72:40:6d:5e:ca:e6:19:75:03:79:a4:8f:f3:ae:b0: af:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:4D:96:58:32:E7:77:D3:30:96:49:B3:51:7C:0C:CA:73:7F:76:98 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/iU2WWDLnd9MwlkmzUXwMynN_dpg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2407:4d00:ff07::/48 Signature Algorithm: sha256WithRSAEncryption 1d:35:01:49:70:ab:95:8e:6b:99:7b:f7:fa:17:04:e6:24:b3: 5d:96:1a:59:a9:02:39:bb:66:9b:0f:10:9a:20:1f:a4:9d:a8: 56:06:d8:12:65:41:b7:1d:12:bf:11:26:84:68:81:aa:4a:12: 33:6d:4f:b7:bb:75:ad:5f:d5:68:19:d4:f0:a0:17:30:d5:ca: c9:bf:c6:4f:59:63:d8:9e:58:26:69:49:59:47:46:39:a5:5b: fe:2a:15:1b:b3:32:da:b6:9a:99:e2:f7:0a:2a:4d:44:f2:c0: 52:5a:d1:60:06:82:b8:99:51:b7:fe:12:e3:53:45:f2:b8:90: 51:4b:19:ad:58:95:ba:9e:4f:43:d6:fc:1f:73:3e:9e:c4:7d: 93:4f:a9:3c:11:24:df:df:e5:88:c9:89:ba:47:53:12:cd:d9: 5c:3b:25:d6:b1:32:3a:d1:89:c3:dc:eb:ad:e3:0d:63:07:a0: b9:c8:e3:28:7d:78:ab:50:53:19:0a:d8:b8:3e:53:5d:e1:bf: 74:c2:ce:de:38:f9:d0:de:f6:6e:91:61:77:fd:ef:dc:7b:dc: 7c:ab:43:7e:fd:67:1a:99:fc:50:f9:d8:ff:75:dd:54:1a:51: 38:24:60:71:d9:86:d4:1d:ac:0a:16:fc:6f:ce:70:f8:21:2b: e5:b8:af:c1 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICMj0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMxMjZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg5NEQ5NjU4MzJFNzc3 RDMzMDk2NDlCMzUxN0MwQ0NBNzM3Rjc2OTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDvJiuYs60i3+a9K6MSnA5vmZoy+iVuWx4I6x52W5z+D0BB/rHn tfpDwlHZoZjiqzMLPEm9y4VGKc0bB98ckOqhj4UuciPBxHpP85eQFZTFm1kodd4F Yq7pnjh9IcvWUXVaNaEFH4YOuUx54VTWllZ2IBZpmfrrGa81vgLtzT1RjDw259aQ 2mEDxcotK7g+uC7IJCsrKoPqaP4UH2gtx4ITwHXtrkuu3/kboQxeG0sMqiEFLVXu Tpk58WDJagoADjNTXiXPOuQIIlHn/037/1HMGx+uMrEHV8+niwqWuvUB24Nw8lqS EckWTVQ1/zLuMHJAbV7K5hl1A3mkj/OusK+PAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUiU2WWDLnd9MwlkmzUXwMynN/dpgwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2lVMldXRExuZDlNd2xrbXpV WHdNeW5OX2RwZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk B00A/wcwDQYJKoZIhvcNAQELBQADggEBAB01AUlwq5WOa5l79/oXBOYks12WGlmp Ajm7ZpsPEJogH6SdqFYG2BJlQbcdEr8RJoRogapKEjNtT7e7da1f1WgZ1PCgFzDV ysm/xk9ZY9ieWCZpSVlHRjmlW/4qFRuzMtq2mpni9woqTUTywFJa0WAGgriZUbf+ EuNTRfK4kFFLGa1YlbqeT0PW/B9zPp7EfZNPqTwRJN/f5YjJibpHUxLN2Vw7Jdax MjrRicPc663jDWMHoLnI4yh9eKtQUxkK2Lg+U13hv3TCzt44+dDe9m6RYXf979x7 3HyrQ379ZxqZ/FD52P913VQaUTgkYHHZhtQdrAoW/G/OcPghK+W4r8E= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:53 2024 by rpki-client on console-ams.rpki-client.org