$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/j6lZ6KADd70gW6PRdf38AZac1Sk.roa File: j6lZ6KADd70gW6PRdf38AZac1Sk.roa (raw, json) Hash identifier: GB3jBGAN1rDsdUOTm72XtNQbBgVHa+eRqPZWGA6mVKM= Subject key identifier: 8F:A9:59:E8:A0:03:77:BD:20:5B:A3:D1:75:FD:FC:01:96:9C:D5:29 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3192 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/j6lZ6KADd70gW6PRdf38AZac1Sk.roa Signing time: Mon 26 Aug 2024 05:30:35 +0000 ROA not before: Mon 26 Aug 2024 05:30:35 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.193.95.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12690 (0x3192) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:30:35 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8FA959E8A00377BD205BA3D175FDFC01969CD529 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:e0:eb:5b:dd:e0:80:cd:86:24:39:8a:73:63: 46:fa:cd:3d:79:26:96:b2:dc:3b:a7:e1:b2:c6:c7: 12:c3:de:54:71:21:7a:2e:12:b3:5a:7e:83:74:b5: cf:9e:93:dc:40:01:32:6a:54:b4:de:80:4c:6a:1c: 3b:81:0c:3d:43:52:e7:9d:9f:40:54:7d:be:ac:ab: 9b:af:93:c5:aa:37:f8:aa:1e:04:38:5a:a0:6c:63: b4:ce:f9:01:bf:a1:c1:b4:70:ce:5a:95:71:21:ab: 78:30:fe:8c:bd:e0:2d:4e:1a:25:f5:0c:69:27:65: 8f:ad:ea:e9:6d:4a:f9:96:c2:6f:02:52:b8:06:bf: 66:a3:04:56:1e:55:ab:e7:dc:48:11:98:be:db:95: 97:86:eb:ec:b0:3a:10:6d:ea:e1:a7:49:d1:50:be: 25:7c:08:53:e3:6e:53:c8:bc:1f:1e:24:25:ad:a5: 1b:eb:6b:cb:11:02:5d:e6:43:ec:25:76:d8:88:00: 0b:75:19:3c:3d:18:d3:a7:44:97:82:d5:18:cd:49: e3:7b:f5:15:3f:10:17:be:c9:23:33:72:11:70:e4: 99:56:73:61:ea:f1:61:28:3b:ce:f8:95:68:ce:52: 84:ae:22:15:db:d1:28:be:48:cc:97:db:76:6a:06: e6:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:A9:59:E8:A0:03:77:BD:20:5B:A3:D1:75:FD:FC:01:96:9C:D5:29 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/j6lZ6KADd70gW6PRdf38AZac1Sk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.193.95.0/24 Signature Algorithm: sha256WithRSAEncryption 38:f8:41:e8:87:17:cd:53:cb:8e:1d:44:9e:57:a3:59:26:c0: b6:9c:c8:4d:32:76:b9:cf:a0:a2:5d:88:08:76:f1:7a:30:20: 67:02:00:db:42:21:56:ba:08:01:33:f5:32:b2:87:d1:d3:4d: 96:8e:f9:6c:cd:39:a0:77:41:31:33:b3:cf:e8:00:62:38:e8: 8b:51:d1:b3:17:9f:32:13:ea:c9:b3:c5:97:75:6b:9d:c2:df: ef:8b:bc:af:dc:72:5c:4f:3e:61:1b:75:e5:c6:31:18:3d:a2: d8:05:82:e2:f9:f0:84:32:8c:ca:08:43:8e:4d:38:84:6d:63: 1c:b9:71:5a:cd:e9:00:a1:d8:d2:03:36:cb:1b:15:9d:73:53: 23:de:44:ff:bc:6c:e1:d5:5e:ab:0a:c5:b1:a8:12:8a:79:bb: 57:9d:e0:9f:e7:e2:e2:31:21:81:f9:a2:79:9d:f4:69:ec:02: 66:36:ab:b1:ae:c7:87:93:b1:b6:e0:c0:30:a6:02:a1:bc:35: 17:4f:2d:dd:23:fd:04:c3:76:14:80:92:3c:13:ae:71:28:36: 1b:00:87:08:a7:b4:af:33:dd:dc:e8:bc:26:15:51:03:da:a8: fd:58:4c:2f:77:aa:14:86:90:89:0e:11:c3:7f:f0:f5:64:ef: c7:79:e3:50 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMZIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMwMzVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhGQTk1OUU4QTAwMzc3 QkQyMDVCQTNEMTc1RkRGQzAxOTY5Q0Q1MjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC24Otb3eCAzYYkOYpzY0b6zT15Jpay3Dun4bLGxxLD3lRxIXou ErNafoN0tc+ek9xAATJqVLTegExqHDuBDD1DUuedn0BUfb6sq5uvk8WqN/iqHgQ4 WqBsY7TO+QG/ocG0cM5alXEhq3gw/oy94C1OGiX1DGknZY+t6ultSvmWwm8CUrgG v2ajBFYeVavn3EgRmL7blZeG6+ywOhBt6uGnSdFQviV8CFPjblPIvB8eJCWtpRvr a8sRAl3mQ+wldtiIAAt1GTw9GNOnRJeC1RjNSeN79RU/EBe+ySMzchFw5JlWc2Hq 8WEoO874lWjOUoSuIhXb0Si+SMyX23ZqBuZLAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUj6lZ6KADd70gW6PRdf38AZac1SkwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2o2bFo2S0FEZDcwZ1c2UFJk ZjM4QVphYzFTay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB7 wV8wDQYJKoZIhvcNAQELBQADggEBADj4QeiHF81Ty44dRJ5Xo1kmwLacyE0ydrnP oKJdiAh28XowIGcCANtCIVa6CAEz9TKyh9HTTZaO+WzNOaB3QTEzs8/oAGI46ItR 0bMXnzIT6smzxZd1a53C3++LvK/cclxPPmEbdeXGMRg9otgFguL58IQyjMoIQ45N OIRtYxy5cVrN6QCh2NIDNssbFZ1zUyPeRP+8bOHVXqsKxbGoEop5u1ed4J/n4uIx IYH5onmd9GnsAmY2q7Gux4eTsbbgwDCmAqG8NRdPLd0j/QTDdhSAkjwTrnEoNhsA hwintK8z3dzovCYVUQPaqP1YTC93qhSGkIkOEcN/8PVk78d541A= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:53 2024 by rpki-client on console-ams.rpki-client.org