$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/jL0uBAavZGLiEwofE95JnpA9De8.roa File: jL0uBAavZGLiEwofE95JnpA9De8.roa (raw, json) Hash identifier: zlDVvnalHas5+swdfAjJvDPEmb83f0BI6kTHtAL2MtU= Subject key identifier: 8C:BD:2E:04:06:AF:64:62:E2:13:0A:1F:13:DE:49:9E:90:3D:0D:EF Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 32F0 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/jL0uBAavZGLiEwofE95JnpA9De8.roa Signing time: Mon 26 Aug 2024 05:32:09 +0000 ROA not before: Mon 26 Aug 2024 05:32:09 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.194.48.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13040 (0x32f0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:32:09 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8CBD2E0406AF6462E2130A1F13DE499E903D0DEF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:dc:36:19:02:9a:31:60:e5:d1:58:88:2e:41: 2b:8c:8e:c1:2d:8b:ab:54:fa:70:87:da:fd:2a:54: 74:4f:06:29:ba:3a:c4:5f:f7:03:73:02:42:a1:84: 7f:2e:4b:6d:f9:38:81:cb:26:a6:3d:f4:98:55:ee: aa:c5:bf:65:c6:f4:b0:5c:68:b6:4b:9b:d5:95:1b: 9f:91:05:d4:39:47:aa:84:24:62:64:c8:30:06:75: d8:1f:35:ff:2c:cf:96:5f:5d:5b:bd:f9:ec:32:04: fd:5c:fe:c4:f8:10:1a:2d:93:6c:5b:59:5b:9e:c3: cb:e6:f7:d2:a5:74:e0:4c:d6:d3:49:dc:f7:e9:79: 73:17:c5:e6:17:86:e0:fb:89:28:7a:e4:21:d2:f7: 60:2a:ad:5d:9c:e2:10:48:ac:33:0f:1b:9f:ac:78: c8:b0:40:d7:a5:b0:ef:88:a7:18:d9:0c:82:8b:63: f8:7c:4a:55:df:5e:3b:8e:aa:50:e1:35:56:de:43: 57:54:8f:2e:80:ea:59:31:9d:fb:90:94:85:42:e8: 7c:aa:d1:f7:00:67:b5:0f:81:71:0d:c3:3d:4e:91: 17:a0:da:18:f2:06:0e:76:6f:57:89:5f:30:b7:27: 76:27:fb:e9:d7:2b:a1:81:4d:2b:b3:b0:21:0a:21: 09:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:BD:2E:04:06:AF:64:62:E2:13:0A:1F:13:DE:49:9E:90:3D:0D:EF X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/jL0uBAavZGLiEwofE95JnpA9De8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.48.0/21 Signature Algorithm: sha256WithRSAEncryption 42:45:44:b4:e4:5b:5f:38:8b:30:61:63:d1:46:b1:1d:96:63: 3f:b4:0c:27:2d:6a:14:f7:cd:4b:92:4e:4c:cf:ee:9e:5d:b0: 2b:12:bf:1f:81:b6:72:b2:e1:4f:11:62:b4:82:a8:f0:f0:e4: 11:5a:18:47:16:e8:61:14:de:3b:be:21:bb:bd:5b:95:4c:6d: 97:94:82:47:6a:80:99:dc:ed:29:ed:30:4c:d4:93:da:6d:d5: b4:1d:b4:0c:e4:60:d4:12:1f:0e:0c:72:27:54:ac:17:1f:d4: 56:79:ef:90:9f:dd:4b:36:36:1e:f0:b2:6f:19:f2:0f:c9:97: 59:5b:ca:4e:a7:7d:b6:92:15:12:a5:97:d6:72:3b:53:28:b2: 0b:32:f5:97:eb:33:a1:1e:1d:b8:18:d9:b2:25:37:47:9e:17: d6:ad:83:62:97:fb:36:16:a3:3d:2d:6b:dd:64:d1:34:56:f1: 4e:09:e2:ac:f4:cc:cc:e4:9c:51:af:bb:61:b3:90:29:f7:ac: ab:56:bb:b6:a4:b8:87:0d:b7:66:42:19:fc:83:e0:d9:28:6d: af:9f:af:e6:f5:ec:e9:3b:32:62:85:4e:97:3f:3d:82:c1:87: 2b:b9:cb:a7:d5:08:95:0e:25:2e:c3:b7:a2:5f:f1:7e:18:8d: de:fd:53:65 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMvAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMyMDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhDQkQyRTA0MDZBRjY0 NjJFMjEzMEExRjEzREU0OTlFOTAzRDBERUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC33DYZApoxYOXRWIguQSuMjsEti6tU+nCH2v0qVHRPBim6OsRf 9wNzAkKhhH8uS235OIHLJqY99JhV7qrFv2XG9LBcaLZLm9WVG5+RBdQ5R6qEJGJk yDAGddgfNf8sz5ZfXVu9+ewyBP1c/sT4EBotk2xbWVuew8vm99KldOBM1tNJ3Pfp eXMXxeYXhuD7iSh65CHS92AqrV2c4hBIrDMPG5+seMiwQNelsO+IpxjZDIKLY/h8 SlXfXjuOqlDhNVbeQ1dUjy6A6lkxnfuQlIVC6Hyq0fcAZ7UPgXENwz1OkReg2hjy Bg52b1eJXzC3J3Yn++nXK6GBTSuzsCEKIQm3AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUjL0uBAavZGLiEwofE95JnpA9De8wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2pMMHVCQWF2WkdMaUV3b2ZF OTVKbnBBOURlOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7 wjAwDQYJKoZIhvcNAQELBQADggEBAEJFRLTkW184izBhY9FGsR2WYz+0DCctahT3 zUuSTkzP7p5dsCsSvx+BtnKy4U8RYrSCqPDw5BFaGEcW6GEU3ju+Ibu9W5VMbZeU gkdqgJnc7SntMEzUk9pt1bQdtAzkYNQSHw4McidUrBcf1FZ575Cf3Us2Nh7wsm8Z 8g/Jl1lbyk6nfbaSFRKll9ZyO1Mosgsy9ZfrM6EeHbgY2bIlN0eeF9atg2KX+zYW oz0ta91k0TRW8U4J4qz0zMzknFGvu2GzkCn3rKtWu7akuIcNt2ZCGfyD4Nkoba+f r+b17Ok7MmKFTpc/PYLBhyu5y6fVCJUOJS7Dt6Jf8X4Yjd79U2U= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:58 2024 by rpki-client on console-fra.rpki-client.org