$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lzqK6Q0e8sz8_xralBZA4cVAAGs.roa File: lzqK6Q0e8sz8_xralBZA4cVAAGs.roa (raw, json) Hash identifier: QJv3VtPjH5MZ6RSJBH6NLway7xxJT/0SJlzUk5B4AH8= Subject key identifier: 97:3A:8A:E9:0D:1E:F2:CC:FC:FF:1A:DA:94:16:40:E1:C5:40:00:6B Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 30D5 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lzqK6Q0e8sz8_xralBZA4cVAAGs.roa Signing time: Mon 26 Aug 2024 05:29:51 +0000 ROA not before: Mon 26 Aug 2024 05:29:51 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.193.208.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12501 (0x30d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:29:51 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=973A8AE90D1EF2CCFCFF1ADA941640E1C540006B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:56:2e:0e:0e:d3:b5:9c:18:f5:a2:d7:48:29: ef:ec:59:36:09:bd:8d:fd:10:ba:1c:a8:5a:12:32: 63:40:d9:ee:ff:3f:84:fb:da:0e:65:64:c1:18:26: 07:23:18:1d:4a:0d:2b:08:63:29:42:a1:58:3d:30: b1:c6:69:5f:cb:40:30:be:cf:2f:72:76:fd:be:84: b7:92:eb:0f:2b:0c:83:72:61:e5:34:72:4a:06:a8: 89:fb:28:bc:84:9f:57:8e:bb:d6:59:9a:9a:96:2f: c0:ae:2e:b9:75:68:31:64:e0:d1:8c:dc:31:24:dc: 40:47:83:19:67:06:8a:21:fc:7e:21:9f:8a:3b:ed: 6c:a7:e0:7f:f1:a0:fc:1f:62:68:16:92:90:81:f6: a1:dc:e9:37:12:ba:fb:de:79:7d:65:40:b8:19:30: b4:e3:cc:7b:a1:b2:bb:b4:c3:4a:14:97:ec:42:51: 04:24:dc:d0:ea:0d:93:3d:11:3d:3c:b8:ba:aa:aa: ad:e1:74:e5:fc:67:0a:a9:43:aa:a7:c9:e8:9f:e2: bf:5d:f4:8c:98:6b:b2:14:62:12:d0:92:f8:b2:b7: c4:1c:e1:5e:ca:ad:dd:cd:80:9d:4d:8f:10:17:75: 51:33:9a:1a:84:ec:59:c5:df:a9:6f:8e:2f:fd:c6: 4d:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:3A:8A:E9:0D:1E:F2:CC:FC:FF:1A:DA:94:16:40:E1:C5:40:00:6B X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/lzqK6Q0e8sz8_xralBZA4cVAAGs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.193.208.0/21 Signature Algorithm: sha256WithRSAEncryption 58:bf:93:3a:f9:52:4e:9f:0e:88:85:12:cb:b6:54:a3:fb:9c: d1:bf:91:06:cb:86:97:09:c5:a9:d8:c8:92:13:c0:31:b6:ca: 71:f6:bf:58:aa:09:c4:a5:39:5b:6b:49:7c:6f:21:12:20:dd: db:bb:f6:5e:ca:78:3b:cd:f3:c5:4a:26:dd:ad:85:1b:78:85: c0:24:3c:3a:86:f8:97:15:47:0a:b1:26:5a:13:6f:cf:38:b9: b4:c7:86:89:c7:d0:17:33:77:4a:9a:17:9d:7b:14:4e:41:6a: db:af:e5:13:ff:aa:98:96:e8:32:26:5a:02:97:c5:d8:f3:9b: d7:80:21:02:5d:5a:0f:c9:b6:b4:0f:08:43:71:63:61:38:bf: fd:75:d7:e6:c5:c6:f9:16:1a:64:dd:aa:73:07:0e:fc:2f:05: 64:68:36:08:5c:78:4e:b7:8d:b4:a1:30:a0:fe:65:53:be:28: e7:8c:e3:d8:23:05:b4:76:ed:6f:c6:5c:b6:06:f6:05:a3:d8: 58:59:90:1f:94:23:36:12:45:24:b7:8d:20:87:5b:be:75:e6: a5:1a:1e:0c:1d:77:dc:bb:da:c3:14:c0:60:bd:68:69:64:94: e9:9f:45:fe:70:7b:97:54:0f:4a:f0:de:b5:c0:bb:c6:7e:8f: 0a:3a:57:8a -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMNUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTI5NTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDk3M0E4QUU5MEQxRUYy Q0NGQ0ZGMUFEQTk0MTY0MEUxQzU0MDAwNkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwVi4ODtO1nBj1otdIKe/sWTYJvY39ELocqFoSMmNA2e7/P4T7 2g5lZMEYJgcjGB1KDSsIYylCoVg9MLHGaV/LQDC+zy9ydv2+hLeS6w8rDINyYeU0 ckoGqIn7KLyEn1eOu9ZZmpqWL8CuLrl1aDFk4NGM3DEk3EBHgxlnBooh/H4hn4o7 7Wyn4H/xoPwfYmgWkpCB9qHc6TcSuvveeX1lQLgZMLTjzHuhsru0w0oUl+xCUQQk 3NDqDZM9ET08uLqqqq3hdOX8ZwqpQ6qnyeif4r9d9IyYa7IUYhLQkviyt8Qc4V7K rd3NgJ1NjxAXdVEzmhqE7FnF36lvji/9xk2hAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUlzqK6Q0e8sz8/xralBZA4cVAAGswHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL2x6cUs2UTBlOHN6OF94cmFs QlpBNGNWQUFHcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7 wdAwDQYJKoZIhvcNAQELBQADggEBAFi/kzr5Uk6fDoiFEsu2VKP7nNG/kQbLhpcJ xanYyJITwDG2ynH2v1iqCcSlOVtrSXxvIRIg3du79l7KeDvN88VKJt2thRt4hcAk PDqG+JcVRwqxJloTb884ubTHhonH0Bczd0qaF517FE5Batuv5RP/qpiW6DImWgKX xdjzm9eAIQJdWg/JtrQPCENxY2E4v/111+bFxvkWGmTdqnMHDvwvBWRoNghceE63 jbShMKD+ZVO+KOeM49gjBbR27W/GXLYG9gWj2FhZkB+UIzYSRSS3jSCHW7515qUa Hgwdd9y72sMUwGC9aGlklOmfRf5we5dUD0rw3rXAu8Z+jwo6V4o= -----END CERTIFICATE-----Generated at Sat Sep 21 00:29:54 2024 by rpki-client on console-fra.rpki-client.org