$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/jVkyjfDMA2PAYZGE-JHR_TGcv8Y.roa File: jVkyjfDMA2PAYZGE-JHR_TGcv8Y.roa (raw, json) Hash identifier: Vu/nwmeRvl+UjUinS6hahPyhmmFF3yD4XiMbFP7lakU= Subject key identifier: 8D:59:32:8D:F0:CC:03:63:C0:61:91:84:F8:91:D1:FD:31:9C:BF:C6 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3161 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/jVkyjfDMA2PAYZGE-JHR_TGcv8Y.roa Signing time: Mon 26 Aug 2024 05:30:24 +0000 ROA not before: Mon 26 Aug 2024 05:30:24 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 118.232.78.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12641 (0x3161) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:30:24 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8D59328DF0CC0363C0619184F891D1FD319CBFC6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:f7:8e:b6:55:39:1d:d5:01:26:14:86:13:58: 7f:f5:89:a6:74:f5:84:8d:93:13:61:43:f6:96:c4: 56:d9:31:00:b7:3a:ab:5a:f9:0d:ce:29:88:6a:94: 39:e0:1d:93:22:14:e7:ae:ce:08:07:62:39:5f:fc: df:54:fe:0b:44:b7:57:9c:25:3c:67:47:15:f8:a9: bb:c5:04:de:c0:2d:d0:b6:24:59:9b:f1:15:1d:7b: 33:20:f2:01:31:f0:26:5d:08:74:30:df:be:e8:8b: 49:90:44:bc:e5:4a:62:d5:52:59:d9:60:58:03:a7: fd:89:a9:3f:d6:e2:12:37:00:98:be:a6:b8:5d:3a: bd:28:38:ab:1e:84:e5:21:92:d6:aa:59:5d:94:f8: 5a:7e:88:3f:47:4d:83:30:9c:37:c8:85:2a:96:d2: 8f:2a:78:1a:07:04:f0:84:33:8e:15:26:b8:5d:c3: c4:82:f2:da:5d:c5:97:b3:8d:8b:10:96:1b:88:21: 01:46:1e:1c:1b:d8:7d:98:56:fa:8f:c1:db:24:27: 32:b3:9f:ac:6b:1d:d3:4a:f8:16:05:9c:58:b0:99: 90:ee:57:d9:a2:96:2a:55:eb:f1:f8:93:d9:18:5b: d6:b4:40:14:ba:7b:3d:9f:2d:50:94:6e:7c:35:8d: 51:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:59:32:8D:F0:CC:03:63:C0:61:91:84:F8:91:D1:FD:31:9C:BF:C6 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/jVkyjfDMA2PAYZGE-JHR_TGcv8Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.232.78.0/24 Signature Algorithm: sha256WithRSAEncryption 47:7a:05:3c:1f:e5:d2:20:25:21:97:eb:34:78:f0:28:99:93: ca:4c:73:fc:82:9e:d5:30:95:f2:5e:3c:d4:f7:10:fd:aa:da: a5:bd:4c:3f:cd:3c:e3:74:1d:4f:95:55:d0:3c:90:3f:1e:5a: af:8c:cc:d9:cf:55:ac:8b:06:75:ee:fe:2d:44:ac:a0:a4:3e: de:fc:d8:57:67:9d:f1:02:1e:2e:6e:47:85:c7:a0:28:27:36: 19:98:90:22:7f:d3:06:46:43:39:43:e6:81:17:28:59:c4:39: 43:5a:c0:48:52:98:ea:f8:b2:00:78:67:2c:ea:6a:70:4e:88: 7c:6a:e4:de:1e:ac:72:19:d9:56:84:eb:df:61:98:cc:06:65: 92:ef:b6:62:a2:a5:40:6a:90:59:89:b8:a9:f8:e5:c9:4d:23: 15:52:ff:fc:29:ed:89:77:0e:83:ea:9a:c6:55:31:68:ce:fe: f5:87:0e:9f:df:7c:3b:99:b9:a4:fa:a3:d5:f5:e0:4f:96:98: 13:80:3f:29:95:2c:76:de:da:69:91:e2:f6:9b:3b:00:e6:5d: 39:57:63:56:f0:58:b4:5e:c1:1d:26:09:94:6b:f1:9f:0f:94: 53:2b:27:87:80:f5:0b:0e:42:50:39:08:89:04:01:ed:8d:be: 17:8d:c9:ac -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMWEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMwMjRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhENTkzMjhERjBDQzAz NjNDMDYxOTE4NEY4OTFEMUZEMzE5Q0JGQzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCk9462VTkd1QEmFIYTWH/1iaZ09YSNkxNhQ/aWxFbZMQC3Oqta +Q3OKYhqlDngHZMiFOeuzggHYjlf/N9U/gtEt1ecJTxnRxX4qbvFBN7ALdC2JFmb 8RUdezMg8gEx8CZdCHQw377oi0mQRLzlSmLVUlnZYFgDp/2JqT/W4hI3AJi+prhd Or0oOKsehOUhktaqWV2U+Fp+iD9HTYMwnDfIhSqW0o8qeBoHBPCEM44VJrhdw8SC 8tpdxZezjYsQlhuIIQFGHhwb2H2YVvqPwdskJzKzn6xrHdNK+BYFnFiwmZDuV9mi lipV6/H4k9kYW9a0QBS6ez2fLVCUbnw1jVG/AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUjVkyjfDMA2PAYZGE+JHR/TGcv8YwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2pWa3lqZkRNQTJQQVlaR0Ut SkhSX1RHY3Y4WS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB2 6E4wDQYJKoZIhvcNAQELBQADggEBAEd6BTwf5dIgJSGX6zR48CiZk8pMc/yCntUw lfJePNT3EP2q2qW9TD/NPON0HU+VVdA8kD8eWq+MzNnPVayLBnXu/i1ErKCkPt78 2FdnnfECHi5uR4XHoCgnNhmYkCJ/0wZGQzlD5oEXKFnEOUNawEhSmOr4sgB4Zyzq anBOiHxq5N4erHIZ2VaE699hmMwGZZLvtmKipUBqkFmJuKn45clNIxVS//wp7Yl3 DoPqmsZVMWjO/vWHDp/ffDuZuaT6o9X14E+WmBOAPymVLHbe2mmR4vabOwDmXTlX Y1bwWLRewR0mCZRr8Z8PlFMrJ4eA9QsOQlA5CIkEAe2NvheNyaw= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:58 2024 by rpki-client on console-fra.rpki-client.org