$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/jMwKLWsJ3N8yKyfdhYXGsLj2DwY.roa File: jMwKLWsJ3N8yKyfdhYXGsLj2DwY.roa (raw, json) Hash identifier: l1QGHQD9zSxOwO6woZ58GLsdEU9neTbrjusQ9kteHKE= Subject key identifier: 8C:CC:0A:2D:6B:09:DC:DF:32:2B:27:DD:85:85:C6:B0:B8:F6:0F:06 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 307D Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/jMwKLWsJ3N8yKyfdhYXGsLj2DwY.roa Signing time: Mon 26 Aug 2024 05:29:31 +0000 ROA not before: Mon 26 Aug 2024 05:29:30 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 45.64.31.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12413 (0x307d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:29:30 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8CCC0A2D6B09DCDF322B27DD8585C6B0B8F60F06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:f1:0e:73:5d:e9:fe:13:5c:a0:42:01:63:de: 84:c5:b0:36:3f:8b:d7:2b:e7:57:b2:41:4e:bd:85: a4:54:7e:bd:1b:cd:5d:8d:20:ee:46:3b:a3:54:e6: ad:cc:b7:0b:b6:4c:6c:2a:85:28:1b:3a:fc:d5:88: 0d:d6:10:5a:c5:d1:b9:48:eb:73:33:14:2f:01:90: f2:1d:12:2c:68:ad:1f:ad:27:5d:0a:e7:b3:7c:e0: 81:7e:41:ec:87:ec:7e:87:69:a7:ba:40:5e:08:a8: 47:4e:1d:c0:4a:9a:a5:9f:c0:f0:d5:2f:9e:3f:ff: a0:fb:d0:23:92:c7:22:a7:3c:6a:70:86:76:ea:14: 69:a7:cc:30:98:1b:d2:2c:76:65:0e:e5:5f:5d:31: ab:a5:f1:25:e0:c2:44:4c:a8:26:61:67:d9:c1:8f: a9:43:44:d9:f8:38:43:6d:da:90:07:69:3d:0a:46: f7:ae:48:8a:6d:21:1e:7f:6e:3a:4c:4b:16:45:22: 26:7d:87:e7:c3:fb:0c:82:fe:6b:ed:8a:08:c5:d3: 00:fe:7f:38:e7:2e:a4:7f:76:f6:2c:bf:a7:36:34: e0:79:78:1e:15:4d:f0:bf:84:a4:69:24:4a:09:78: b7:01:1b:53:b2:ff:52:fc:50:26:56:c1:c0:b5:15: 4f:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:CC:0A:2D:6B:09:DC:DF:32:2B:27:DD:85:85:C6:B0:B8:F6:0F:06 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/jMwKLWsJ3N8yKyfdhYXGsLj2DwY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 45.64.31.0/24 Signature Algorithm: sha256WithRSAEncryption 42:4b:27:4c:6f:3a:0e:22:e4:e2:aa:28:bd:21:d6:ec:75:b7: 63:f2:03:92:8f:d1:06:8f:9d:88:ef:27:f3:8a:7e:c8:31:de: 68:e0:cb:51:38:2d:da:16:0b:74:a8:a8:4c:b5:d9:af:a7:18: 7f:d9:28:fd:97:34:47:0b:c5:fb:29:79:2f:5b:26:dc:4a:ab: ca:22:70:93:29:7b:57:e2:5a:8e:e3:b8:a6:8b:68:04:19:60: e4:96:41:12:8c:61:65:c1:d0:53:64:77:c7:38:e6:1a:b2:b0: 3d:ad:e6:f9:4c:50:6a:92:04:37:3b:a2:d1:e8:2c:54:0f:0d: a6:87:21:8e:01:0b:d1:28:91:55:3d:42:de:00:d5:56:36:90: 71:e4:76:df:30:1c:26:c6:59:db:8e:54:5f:14:10:e2:2b:9f: c4:b5:b0:4a:1c:b1:93:4a:c5:95:7f:12:6b:76:86:f9:56:2b: ea:a7:62:89:63:c4:91:97:d2:2f:c7:31:8d:af:13:47:ba:56: e8:99:1d:55:02:2e:d1:0f:bf:d9:39:ff:d4:9c:20:54:c4:3a: e9:c2:af:e9:32:44:e2:0f:9b:33:b8:0b:4a:32:8f:92:99:77: 2e:14:0f:46:0e:d0:9e:5d:44:18:b0:4f:19:e5:b0:bd:ab:95: 21:48:5b:15 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMH0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTI5MzBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhDQ0MwQTJENkIwOURD REYzMjJCMjdERDg1ODVDNkIwQjhGNjBGMDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCZ8Q5zXen+E1ygQgFj3oTFsDY/i9cr51eyQU69haRUfr0bzV2N IO5GO6NU5q3Mtwu2TGwqhSgbOvzViA3WEFrF0blI63MzFC8BkPIdEixorR+tJ10K 57N84IF+QeyH7H6Haae6QF4IqEdOHcBKmqWfwPDVL54//6D70COSxyKnPGpwhnbq FGmnzDCYG9IsdmUO5V9dMaul8SXgwkRMqCZhZ9nBj6lDRNn4OENt2pAHaT0KRveu SIptIR5/bjpMSxZFIiZ9h+fD+wyC/mvtigjF0wD+fzjnLqR/dvYsv6c2NOB5eB4V TfC/hKRpJEoJeLcBG1Oy/1L8UCZWwcC1FU/hAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUjMwKLWsJ3N8yKyfdhYXGsLj2DwYwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2pNd0tMV3NKM044eUt5ZmRo WVhHc0xqMkR3WS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAt QB8wDQYJKoZIhvcNAQELBQADggEBAEJLJ0xvOg4i5OKqKL0h1ux1t2PyA5KP0QaP nYjvJ/OKfsgx3mjgy1E4LdoWC3SoqEy12a+nGH/ZKP2XNEcLxfspeS9bJtxKq8oi cJMpe1fiWo7juKaLaAQZYOSWQRKMYWXB0FNkd8c45hqysD2t5vlMUGqSBDc7otHo LFQPDaaHIY4BC9EokVU9Qt4A1VY2kHHkdt8wHCbGWduOVF8UEOIrn8S1sEocsZNK xZV/Emt2hvlWK+qnYoljxJGX0i/HMY2vE0e6VuiZHVUCLtEPv9k5/9ScIFTEOunC r+kyROIPmzO4C0oyj5KZdy4UD0YO0J5dRBiwTxnlsL2rlSFIWxU= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:53 2024 by rpki-client on console-ams.rpki-client.org