$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/kzWx346eXyUikHWILy1OSckbVYo.roa File: kzWx346eXyUikHWILy1OSckbVYo.roa (raw, json) Hash identifier: LowmgYy/jUD4C4eAokca5F7+DY9VYIFR3WO+4gQT8bs= Subject key identifier: 93:35:B1:DF:8E:9E:5F:25:22:90:75:88:2F:2D:4E:49:C9:1B:55:8A Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3132 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/kzWx346eXyUikHWILy1OSckbVYo.roa Signing time: Mon 26 Aug 2024 05:30:13 +0000 ROA not before: Mon 26 Aug 2024 05:30:13 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 180.177.223.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12594 (0x3132) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:30:13 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=9335B1DF8E9E5F25229075882F2D4E49C91B558A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:e2:ef:ac:a1:50:9f:3b:a5:e0:18:fd:28:d0: ec:bb:37:75:cf:77:f0:1f:2d:aa:64:d5:d9:d8:99: 77:b7:07:1b:49:db:cb:c1:19:35:2d:e3:ff:56:6b: a8:65:2b:b5:0d:f2:6b:50:f9:f4:c5:c2:3d:97:63: ee:91:52:54:97:83:5a:45:78:c8:89:ee:a2:f3:e0: b3:5d:06:b8:36:89:a7:36:73:d6:dc:1f:28:5a:c1: 88:76:ae:de:17:c2:da:48:be:de:98:fd:32:ff:54: 97:58:0d:e1:73:d7:04:e2:34:db:51:d2:cb:05:88: b9:c6:7c:87:45:33:5d:bd:b5:5d:69:84:92:05:39: 68:15:d3:f5:1e:1f:93:21:d3:b6:32:c0:74:fb:b2: 05:94:b1:c2:e6:36:a5:fe:5b:fb:15:b4:8a:1b:1a: 7a:e0:13:e8:77:13:1a:74:d7:d7:68:7c:6d:25:d5: 53:d7:c2:83:6a:51:6e:44:c1:82:c6:97:0d:be:83: 4d:25:ea:04:f9:6f:68:dd:6c:6b:79:e3:2c:8a:bc: 49:31:da:b6:5f:01:a4:86:89:50:8e:8b:56:eb:b4: 71:99:b9:0b:d5:bb:8c:9c:22:8e:0e:6a:85:e6:39: df:af:d0:7c:a3:99:6b:3e:f2:f4:df:b6:e0:d4:ec: 6d:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:35:B1:DF:8E:9E:5F:25:22:90:75:88:2F:2D:4E:49:C9:1B:55:8A X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/kzWx346eXyUikHWILy1OSckbVYo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.177.223.0/24 Signature Algorithm: sha256WithRSAEncryption 97:6d:6d:0f:65:54:36:1d:f1:c8:4e:46:d8:5e:4e:92:32:de: f5:18:c5:f8:a2:f7:c2:ba:cf:e9:72:55:8f:c9:23:75:23:05: ba:2c:41:4a:95:12:ee:64:e7:7a:b5:2e:b8:07:5e:53:39:45: 3a:d0:f6:92:de:b7:af:d4:69:b2:99:0f:6f:a0:2f:d7:a0:f5: 15:ca:74:73:b3:94:c6:8f:31:c3:f1:c9:36:a7:40:a5:80:29: f2:48:29:a3:db:d4:b1:c6:89:e7:7a:74:8b:86:34:51:87:4e: e2:d8:14:22:a2:03:64:1a:b4:be:5a:01:64:a2:f3:1c:31:07: be:c8:72:c3:42:b2:63:2e:24:03:fb:d1:84:ee:2b:e2:73:cf: 9b:c5:14:89:73:a8:7d:c0:93:5d:53:a0:87:7a:43:1a:e5:ee: 77:a1:50:c1:e1:3d:d7:4f:c6:cb:f8:65:6b:f4:61:3b:40:78: 55:3a:e1:84:0b:45:b4:0b:bf:2f:57:77:71:3b:89:ec:3a:6d: 86:8e:51:2f:ba:60:49:ad:2b:0d:cd:82:11:6f:16:48:ab:55: 63:1c:15:33:26:0a:fa:4f:08:58:db:ed:a6:d8:e5:dc:cb:74: 44:89:0e:19:1b:71:e3:9d:12:6b:ba:b2:88:d4:cc:89:72:d3: 29:3e:7a:da -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMTIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMwMTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDkzMzVCMURGOEU5RTVG MjUyMjkwNzU4ODJGMkQ0RTQ5QzkxQjU1OEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC84u+soVCfO6XgGP0o0Oy7N3XPd/AfLapk1dnYmXe3BxtJ28vB GTUt4/9Wa6hlK7UN8mtQ+fTFwj2XY+6RUlSXg1pFeMiJ7qLz4LNdBrg2iac2c9bc HyhawYh2rt4XwtpIvt6Y/TL/VJdYDeFz1wTiNNtR0ssFiLnGfIdFM129tV1phJIF OWgV0/UeH5Mh07YywHT7sgWUscLmNqX+W/sVtIobGnrgE+h3Exp019dofG0l1VPX woNqUW5EwYLGlw2+g00l6gT5b2jdbGt54yyKvEkx2rZfAaSGiVCOi1brtHGZuQvV u4ycIo4OaoXmOd+v0HyjmWs+8vTftuDU7G3bAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUkzWx346eXyUikHWILy1OSckbVYowHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2t6V3gzNDZlWHlVaWtIV0lM eTFPU2NrYlZZby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAC0 sd8wDQYJKoZIhvcNAQELBQADggEBAJdtbQ9lVDYd8chORtheTpIy3vUYxfii98K6 z+lyVY/JI3UjBbosQUqVEu5k53q1LrgHXlM5RTrQ9pLet6/UabKZD2+gL9eg9RXK dHOzlMaPMcPxyTanQKWAKfJIKaPb1LHGied6dIuGNFGHTuLYFCKiA2QatL5aAWSi 8xwxB77IcsNCsmMuJAP70YTuK+Jzz5vFFIlzqH3Ak11ToId6Qxrl7nehUMHhPddP xsv4ZWv0YTtAeFU64YQLRbQLvy9Xd3E7iew6bYaOUS+6YEmtKw3NghFvFkirVWMc FTMmCvpPCFjb7abY5dzLdESJDhkbceOdEmu6sojUzIly0yk+eto= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:58 2024 by rpki-client on console-fra.rpki-client.org