$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/j2S7Kd0xtkZFgtg96wQt9IkeuGo.roa File: j2S7Kd0xtkZFgtg96wQt9IkeuGo.roa (raw, json) Hash identifier: MN77LXSs+/ZGS86FinDwFBkcub1tLvvWeTGLhxhMIus= Subject key identifier: 8F:64:BB:29:DD:31:B6:46:45:82:D8:3D:EB:04:2D:F4:89:1E:B8:6A Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3160 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/j2S7Kd0xtkZFgtg96wQt9IkeuGo.roa Signing time: Mon 26 Aug 2024 05:30:24 +0000 ROA not before: Mon 26 Aug 2024 05:30:24 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.194.112.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12640 (0x3160) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:30:24 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8F64BB29DD31B6464582D83DEB042DF4891EB86A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:7c:73:81:c7:87:4c:8c:49:01:8e:ed:84:d5: 8c:20:c8:26:ee:68:a4:49:1f:f3:80:19:ce:14:9e: e0:87:b8:03:b7:9f:53:e9:00:e5:97:80:2f:d7:3a: ca:39:4d:0d:53:88:20:07:97:0e:aa:ef:db:25:d3: 86:40:b8:4c:97:05:45:cf:0e:ed:36:c2:b5:e7:85: bc:56:10:f6:3e:3f:8f:2f:5d:12:0f:f1:7a:c6:d4: a7:7b:ac:31:60:65:00:52:14:4b:cc:9c:29:f6:a8: 67:66:90:a7:b3:6e:7a:53:98:7d:13:6a:4e:aa:41: 03:ce:f2:bd:a2:e0:ca:30:e4:90:2a:da:10:d9:27: b7:c6:c0:cb:1b:04:f3:a3:ef:7c:ce:cc:9e:64:3e: 7c:4f:e4:e6:4b:d1:54:b4:df:14:1b:c9:bd:e7:40: 9f:51:ac:02:b1:15:b6:ab:2a:6d:dd:18:d6:af:43: a3:83:a3:cb:fe:ae:d6:2c:92:03:9b:5a:5e:a4:de: 01:7a:15:c4:68:ee:e1:26:dc:4e:17:2c:54:51:6f: 84:a7:3f:8e:e0:ae:94:83:ce:ea:10:6a:a2:a1:7f: 1d:59:30:69:fc:1c:bd:17:88:ba:a8:d5:3c:d8:ee: 23:e9:cf:96:87:83:fc:d9:21:b4:01:be:3e:6b:29: 82:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:64:BB:29:DD:31:B6:46:45:82:D8:3D:EB:04:2D:F4:89:1E:B8:6A X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/j2S7Kd0xtkZFgtg96wQt9IkeuGo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.112.0/21 Signature Algorithm: sha256WithRSAEncryption b8:bf:ca:7a:67:13:6a:58:bb:92:64:25:b3:49:c7:f7:4f:ba: 51:f2:65:55:86:80:ff:c4:8a:21:e6:dd:9c:58:8a:b8:ad:ab: 18:39:62:a0:ee:7f:b1:70:da:45:85:b8:0f:3d:2a:79:1d:41: b1:9c:47:1f:41:3a:75:6e:03:c1:97:1d:7f:ea:50:40:37:9e: 67:fa:c4:ef:21:bd:35:62:9a:e4:53:b5:79:39:62:79:49:e7: ee:34:4c:7d:1e:bc:a0:d2:88:33:f3:00:24:87:e8:76:67:99: f7:6a:a5:bd:80:bb:29:e7:90:14:c9:50:d1:36:9b:e4:65:20: af:b9:aa:28:0c:06:a5:cb:de:bb:9c:15:1b:74:4a:e7:fa:9d: 73:34:ed:a2:41:26:4e:fe:48:04:1d:49:64:18:41:da:5f:65: 99:87:36:02:11:d5:9e:35:19:8b:fb:cf:59:70:5a:8c:8f:76: 34:85:06:0d:87:5a:2d:de:3c:e3:b9:9b:04:f8:0c:a0:38:52: b8:82:c3:95:70:26:9e:4b:33:a5:c7:2b:52:ee:a5:be:77:35: b4:89:45:45:f8:4d:73:35:d3:9c:bb:dc:9f:af:7c:f5:98:27: b4:56:17:a0:a9:13:fa:6c:24:70:3e:d4:e9:a3:55:67:b4:31: 0c:d4:84:45 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMWAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMwMjRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhGNjRCQjI5REQzMUI2 NDY0NTgyRDgzREVCMDQyREY0ODkxRUI4NkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDZfHOBx4dMjEkBju2E1YwgyCbuaKRJH/OAGc4UnuCHuAO3n1Pp AOWXgC/XOso5TQ1TiCAHlw6q79sl04ZAuEyXBUXPDu02wrXnhbxWEPY+P48vXRIP 8XrG1Kd7rDFgZQBSFEvMnCn2qGdmkKezbnpTmH0Tak6qQQPO8r2i4Mow5JAq2hDZ J7fGwMsbBPOj73zOzJ5kPnxP5OZL0VS03xQbyb3nQJ9RrAKxFbarKm3dGNavQ6OD o8v+rtYskgObWl6k3gF6FcRo7uEm3E4XLFRRb4SnP47grpSDzuoQaqKhfx1ZMGn8 HL0XiLqo1TzY7iPpz5aHg/zZIbQBvj5rKYI3AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUj2S7Kd0xtkZFgtg96wQt9IkeuGowHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2oyUzdLZDB4dGtaRmd0Zzk2 d1F0OUlrZXVHby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7 wnAwDQYJKoZIhvcNAQELBQADggEBALi/ynpnE2pYu5JkJbNJx/dPulHyZVWGgP/E iiHm3ZxYiritqxg5YqDuf7Fw2kWFuA89KnkdQbGcRx9BOnVuA8GXHX/qUEA3nmf6 xO8hvTVimuRTtXk5YnlJ5+40TH0evKDSiDPzACSH6HZnmfdqpb2AuynnkBTJUNE2 m+RlIK+5qigMBqXL3rucFRt0Suf6nXM07aJBJk7+SAQdSWQYQdpfZZmHNgIR1Z41 GYv7z1lwWoyPdjSFBg2HWi3ePOO5mwT4DKA4UriCw5VwJp5LM6XHK1Lupb53NbSJ RUX4TXM105y73J+vfPWYJ7RWF6CpE/psJHA+1OmjVWe0MQzUhEU= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:58 2024 by rpki-client on console-fra.rpki-client.org