$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/jFTw6GQLG33uB0zS9_-c1j12PNI.roa File: jFTw6GQLG33uB0zS9_-c1j12PNI.roa (raw, json) Hash identifier: AVLQgO40x7GrI+Nh5nl1HpKGaa6zV34MWEDHbzEdXI8= Subject key identifier: 8C:54:F0:E8:64:0B:1B:7D:EE:07:4C:D2:F7:FF:9C:D6:3D:76:3C:D2 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 32FC Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/jFTw6GQLG33uB0zS9_-c1j12PNI.roa Signing time: Mon 26 Aug 2024 05:32:12 +0000 ROA not before: Mon 26 Aug 2024 05:32:12 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 106.1.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13052 (0x32fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:32:12 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8C54F0E8640B1B7DEE074CD2F7FF9CD63D763CD2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:45:c3:11:d8:ce:81:da:34:69:48:6b:dd:fe: 8d:2b:95:ed:ad:3e:13:16:ce:aa:94:b0:2a:14:d1: 73:10:b1:d9:03:1b:b7:74:a0:fa:58:b1:95:34:26: 04:15:03:ba:b0:24:ba:86:ee:9c:9c:78:aa:ec:79: 5d:03:4b:a8:36:6e:e4:51:5b:94:61:ee:78:5d:61: 9a:da:ca:54:02:cb:4d:f6:7f:2f:bc:11:2d:f3:28: ad:bf:38:15:a1:08:b7:4e:27:58:2d:a8:8c:e4:fe: 8e:4e:f4:bf:0e:b3:52:32:d5:18:61:bd:ad:21:17: 97:33:79:33:ee:5a:09:f4:89:9d:74:17:8b:d1:81: 13:0f:61:6a:55:2d:6d:4e:f1:7c:40:2c:1d:c6:01: 8d:b2:2a:bd:48:b8:f6:5c:e2:93:c5:3a:63:fd:c5: c0:ca:cd:2e:36:25:87:8d:b6:6a:17:45:3f:aa:4d: 15:d6:95:86:d8:6d:04:8a:68:7d:32:14:50:df:18: da:ac:1c:8a:72:10:be:26:99:ad:3b:d3:45:1c:64: b3:ce:dc:21:38:3c:a3:ab:20:43:31:ba:10:a8:83: 0c:2b:d1:70:4e:bf:c3:fd:80:03:e5:78:a9:ac:a6: ec:ef:9b:0b:4b:26:43:07:66:15:40:21:ea:7b:aa: b4:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:54:F0:E8:64:0B:1B:7D:EE:07:4C:D2:F7:FF:9C:D6:3D:76:3C:D2 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/jFTw6GQLG33uB0zS9_-c1j12PNI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.222.0/24 Signature Algorithm: sha256WithRSAEncryption 2d:3d:d6:70:e6:90:6c:45:23:2e:ee:86:5a:d8:da:3c:0b:20: 36:76:60:52:50:35:98:9d:19:c2:1d:82:8b:3a:19:39:54:6c: 84:4d:f3:6a:b9:23:fe:cf:ce:70:41:8d:c0:87:55:52:8d:15: 19:56:4b:a5:a6:bd:ec:28:04:d3:71:bf:50:c5:c0:f2:9b:2a: 90:98:3a:de:df:ad:79:18:67:6a:53:18:c9:a9:38:d5:5b:a7: dd:68:2c:ce:ad:e8:c5:87:e1:0c:8f:61:ba:65:fa:2e:d6:44: 83:3a:dc:8f:b8:00:24:97:1e:0b:24:b0:69:83:73:a8:fc:8d: 16:e3:80:1d:1c:7e:3c:77:0e:9e:e9:18:a1:3a:2c:e9:20:65: 50:63:a2:61:26:2b:c2:0c:7d:0f:b5:32:d7:74:be:5c:fe:d5: 85:f7:2f:15:59:ee:82:b9:b6:e5:77:36:70:88:b1:9b:32:bc: 47:f9:1d:2e:66:37:f7:f1:1c:9e:a6:66:62:23:bc:3f:22:9b: b2:db:d0:51:6e:4f:c7:4c:2c:a8:02:ba:a6:8f:3e:b8:20:af: 51:ca:f1:79:a0:7b:7e:a9:4e:d4:fe:ed:c1:82:11:11:6e:36: 87:b9:57:dc:9b:d4:aa:08:2b:75:9a:61:c2:43:fc:dd:08:ae: 87:e5:21:87 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMvwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMyMTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhDNTRGMEU4NjQwQjFC N0RFRTA3NENEMkY3RkY5Q0Q2M0Q3NjNDRDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2RcMR2M6B2jRpSGvd/o0rle2tPhMWzqqUsCoU0XMQsdkDG7d0 oPpYsZU0JgQVA7qwJLqG7pyceKrseV0DS6g2buRRW5Rh7nhdYZraylQCy032fy+8 ES3zKK2/OBWhCLdOJ1gtqIzk/o5O9L8Os1Iy1Rhhva0hF5czeTPuWgn0iZ10F4vR gRMPYWpVLW1O8XxALB3GAY2yKr1IuPZc4pPFOmP9xcDKzS42JYeNtmoXRT+qTRXW lYbYbQSKaH0yFFDfGNqsHIpyEL4mma0700UcZLPO3CE4PKOrIEMxuhCogwwr0XBO v8P9gAPleKmspuzvmwtLJkMHZhVAIep7qrR9AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUjFTw6GQLG33uB0zS9/+c1j12PNIwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2pGVHc2R1FMRzMzdUIwelM5 Xy1jMWoxMlBOSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABq Ad4wDQYJKoZIhvcNAQELBQADggEBAC091nDmkGxFIy7uhlrY2jwLIDZ2YFJQNZid GcIdgos6GTlUbIRN82q5I/7PznBBjcCHVVKNFRlWS6WmvewoBNNxv1DFwPKbKpCY Ot7frXkYZ2pTGMmpONVbp91oLM6t6MWH4QyPYbpl+i7WRIM63I+4ACSXHgsksGmD c6j8jRbjgB0cfjx3Dp7pGKE6LOkgZVBjomEmK8IMfQ+1Mtd0vlz+1YX3LxVZ7oK5 tuV3NnCIsZsyvEf5HS5mN/fxHJ6mZmIjvD8im7Lb0FFuT8dMLKgCuqaPPrggr1HK 8Xmge36pTtT+7cGCERFuNoe5V9yb1KoIK3WaYcJD/N0IroflIYc= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:53 2024 by rpki-client on console-ams.rpki-client.org