$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/izUc0WJT9UgUTpdTS2Pq4Vw8OqA.roa File: izUc0WJT9UgUTpdTS2Pq4Vw8OqA.roa (raw, json) Hash identifier: QlWf8s65ySDPkVAAVXJwtlZPw73iN+/A94VJqAvhNLI= Subject key identifier: 8B:35:1C:D1:62:53:F5:48:14:4E:97:53:4B:63:EA:E1:5C:3C:3A:A0 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3106 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/izUc0WJT9UgUTpdTS2Pq4Vw8OqA.roa Signing time: Mon 26 Aug 2024 05:30:02 +0000 ROA not before: Mon 26 Aug 2024 05:30:02 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.194.92.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12550 (0x3106) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:30:02 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8B351CD16253F548144E97534B63EAE15C3C3AA0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:a1:43:68:a3:6e:5c:c3:1e:15:30:91:bf:7c: db:ae:39:09:c6:8e:40:64:44:e0:34:fb:b8:14:a9: 88:1c:73:65:ff:8c:68:66:f7:c8:e2:c8:81:e1:b7: 57:ac:70:03:24:b6:bc:af:93:18:b7:c9:9b:27:34: eb:73:2c:ba:ad:2d:c2:4b:e1:08:3d:d9:cf:47:b9: 45:68:78:b7:6e:6e:72:ee:cf:6e:89:a1:07:b7:f5: 34:d1:0b:74:a3:03:7c:78:37:41:ae:80:aa:71:e8: 1e:45:4e:03:f1:de:e4:b5:6e:c6:43:13:d0:b5:61: 42:52:d0:dc:1c:7e:13:d6:d0:0f:7d:94:37:1b:2a: 4a:67:57:c3:e7:c9:d9:fe:0a:b9:f3:93:47:61:3d: 85:26:54:ff:97:f6:96:74:3a:3d:bc:a5:2d:16:42: 4b:34:9a:17:90:0b:41:76:2b:5e:99:dc:3b:1d:3c: ae:a9:ba:e5:2f:49:6b:d2:e7:1c:d0:2c:11:e6:bf: 9e:b9:7a:fd:18:4d:96:3b:85:92:ea:22:e6:36:eb: b5:3f:21:36:13:18:db:dd:44:74:ef:b5:7a:be:9e: 10:19:74:b6:aa:0d:9d:22:05:64:6c:e6:19:26:1b: 9c:23:ee:76:fb:c2:f1:8b:6a:95:59:b4:5f:70:f4: d5:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:35:1C:D1:62:53:F5:48:14:4E:97:53:4B:63:EA:E1:5C:3C:3A:A0 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/izUc0WJT9UgUTpdTS2Pq4Vw8OqA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.92.0/22 Signature Algorithm: sha256WithRSAEncryption 9e:7f:9b:cb:b7:50:ad:55:3c:c2:38:ec:d0:de:73:ca:d9:6d: 5c:f2:4d:22:9f:5b:a9:31:5e:c9:6a:05:49:d5:62:0b:e2:27: f4:5b:20:13:f3:56:43:88:bc:09:f2:8d:04:af:27:d4:13:ba: 5a:d4:37:53:19:07:8e:50:61:6b:7a:20:d0:0d:86:fb:f4:3e: 82:0a:d3:b5:c7:a8:7b:a2:7e:43:d2:53:6e:f4:7d:76:5b:24: bb:12:07:1a:12:df:e4:1f:c8:77:f7:06:8a:5f:0d:ac:ca:db: 4c:f3:e3:d4:5b:78:44:66:53:78:bd:7b:ef:a1:51:eb:c0:f5: 1f:f7:04:18:85:bf:c7:fe:fa:2a:46:d2:77:48:c3:55:b8:ae: e0:21:d1:b5:31:7d:c1:c7:01:b7:cf:34:08:a2:c2:e3:43:95: ec:18:45:29:74:7a:c4:c4:34:68:96:7b:84:56:79:e6:51:db: 7f:01:9d:32:02:60:8d:d5:38:fc:19:a2:2a:a1:70:cb:49:20: 98:61:5e:71:21:c7:25:00:23:4a:67:4f:ff:93:af:f7:b9:23: 04:86:26:8a:b0:f1:29:14:07:d7:e5:31:0c:3c:32:8d:93:8e: 1d:bd:38:09:b7:67:8a:13:2d:89:41:35:36:ae:7c:12:be:63: a4:aa:07:99 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMQYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMwMDJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhCMzUxQ0QxNjI1M0Y1 NDgxNDRFOTc1MzRCNjNFQUUxNUMzQzNBQTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDToUNoo25cwx4VMJG/fNuuOQnGjkBkROA0+7gUqYgcc2X/jGhm 98jiyIHht1escAMktryvkxi3yZsnNOtzLLqtLcJL4Qg92c9HuUVoeLdubnLuz26J oQe39TTRC3SjA3x4N0GugKpx6B5FTgPx3uS1bsZDE9C1YUJS0NwcfhPW0A99lDcb KkpnV8Pnydn+Crnzk0dhPYUmVP+X9pZ0Oj28pS0WQks0mheQC0F2K16Z3DsdPK6p uuUvSWvS5xzQLBHmv565ev0YTZY7hZLqIuY267U/ITYTGNvdRHTvtXq+nhAZdLaq DZ0iBWRs5hkmG5wj7nb7wvGLapVZtF9w9NWDAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUizUc0WJT9UgUTpdTS2Pq4Vw8OqAwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2l6VWMwV0pUOVVnVVRwZFRT MlBxNFZ3OE9xQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wlwwDQYJKoZIhvcNAQELBQADggEBAJ5/m8u3UK1VPMI47NDec8rZbVzyTSKfW6kx XslqBUnVYgviJ/RbIBPzVkOIvAnyjQSvJ9QTulrUN1MZB45QYWt6INANhvv0PoIK 07XHqHuifkPSU270fXZbJLsSBxoS3+QfyHf3BopfDazK20zz49RbeERmU3i9e++h UevA9R/3BBiFv8f++ipG0ndIw1W4ruAh0bUxfcHHAbfPNAiiwuNDlewYRSl0esTE NGiWe4RWeeZR238BnTICYI3VOPwZoiqhcMtJIJhhXnEhxyUAI0pnT/+Tr/e5IwSG Joqw8SkUB9flMQw8Mo2Tjh29OAm3Z4oTLYlBNTaufBK+Y6SqB5k= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:53 2024 by rpki-client on console-ams.rpki-client.org