$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/mWYTQKzgtqzr2izwVk51gUPdAKU.roa File: mWYTQKzgtqzr2izwVk51gUPdAKU.roa (raw, json) Hash identifier: rWPsjwRGeZ6iiHl60TnrC0uBIZhV4nSsjUPwdjxzpBw= Subject key identifier: 99:66:13:40:AC:E0:B6:AC:EB:DA:2C:F0:56:4E:75:81:43:DD:00:A5 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 32D1 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/mWYTQKzgtqzr2izwVk51gUPdAKU.roa Signing time: Mon 26 Aug 2024 05:32:03 +0000 ROA not before: Mon 26 Aug 2024 05:32:03 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.192.16.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13009 (0x32d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:32:03 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=99661340ACE0B6ACEBDA2CF0564E758143DD00A5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:7c:30:75:48:f2:d9:be:5c:aa:79:65:56:50: 79:75:ae:37:8e:a4:ed:38:b6:11:f5:0e:44:d8:81: 79:65:50:44:66:0a:47:15:b3:a2:22:5f:11:33:19: 58:2f:d8:b2:63:fe:2f:91:72:9c:1c:bf:e9:ef:9b: b6:a0:56:82:fc:eb:a3:0d:92:28:96:7a:c5:fa:18: d2:d4:c6:e2:4e:9b:26:6c:75:a3:78:d6:bf:66:e4: 4e:2c:a5:56:d2:2b:8d:09:fd:11:db:96:0e:ee:3a: 07:68:c3:87:1c:8b:fa:07:6b:f5:eb:fa:74:1b:61: 9f:8c:67:87:76:2f:b2:8e:f2:66:7b:55:c0:8c:c5: a5:16:7c:92:25:2c:27:8f:00:6f:ef:4c:e2:17:49: c8:85:8a:39:de:c3:ef:7e:a3:91:a1:c6:e5:df:75: e1:7f:e2:6c:92:5e:54:c3:57:b8:ae:8f:fd:28:26: e4:fe:a5:e5:b0:17:76:ae:e6:95:fd:69:4f:6c:87: 3a:5c:9b:68:67:4a:45:8f:06:31:79:ea:43:1a:9f: b2:25:a0:f0:d1:c3:d1:35:b0:d4:43:4f:fd:69:6b: 46:17:2e:3a:a0:5d:31:c3:17:36:9f:19:cb:1d:06: b5:49:b0:d1:a9:83:18:73:e4:bf:e8:02:5b:d0:d5: d2:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:66:13:40:AC:E0:B6:AC:EB:DA:2C:F0:56:4E:75:81:43:DD:00:A5 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/mWYTQKzgtqzr2izwVk51gUPdAKU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.192.16.0/20 Signature Algorithm: sha256WithRSAEncryption 6c:1a:a8:21:ab:8e:81:9f:bf:09:78:90:6f:ac:10:b4:56:3f: 4d:f5:34:7c:c1:c8:72:58:c9:05:f0:3f:14:82:9a:0d:5c:c5: 07:37:52:92:ed:c6:1b:7f:21:d1:82:fe:f0:47:18:33:81:0e: 3e:47:de:bd:a3:7d:bd:b6:0b:42:ba:26:c7:98:b8:31:d4:8d: c3:8b:b4:d7:3d:17:a5:ac:58:3e:30:46:67:a7:4f:77:b6:28: 5f:cb:a0:58:59:a5:8d:ba:a1:5e:ba:d1:9d:00:62:2f:4e:1a: 1f:12:61:d1:72:bb:d6:62:5a:de:fe:e4:b8:27:24:97:64:dd: 90:c2:ea:ca:d6:08:7f:c1:89:b7:71:27:cc:d3:6f:5c:34:25: 0e:25:68:d3:41:a7:c9:de:57:2c:bb:40:1a:df:1c:7c:7c:96: 67:6f:41:ab:c4:e7:f7:6c:f5:c1:04:b8:23:4f:13:07:57:7a: b1:da:ca:fc:ac:e5:59:64:05:72:1c:d0:61:96:23:7f:03:e2: 3e:1e:be:b3:ac:2d:05:45:05:77:dd:73:b7:3f:9e:a8:a7:c9: 91:08:91:27:5c:56:18:4a:a0:4d:07:9d:a0:fa:d0:59:0e:c3: 29:b6:0f:ad:83:51:3b:bb:51:32:fc:02:fd:51:a8:07:aa:82: 5c:e8:30:61 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMtEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMyMDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDk5NjYxMzQwQUNFMEI2 QUNFQkRBMkNGMDU2NEU3NTgxNDNERDAwQTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEfDB1SPLZvlyqeWVWUHl1rjeOpO04thH1DkTYgXllUERmCkcV s6IiXxEzGVgv2LJj/i+Rcpwcv+nvm7agVoL866MNkiiWesX6GNLUxuJOmyZsdaN4 1r9m5E4spVbSK40J/RHblg7uOgdow4cci/oHa/Xr+nQbYZ+MZ4d2L7KO8mZ7VcCM xaUWfJIlLCePAG/vTOIXSciFijnew+9+o5GhxuXfdeF/4mySXlTDV7iuj/0oJuT+ peWwF3au5pX9aU9shzpcm2hnSkWPBjF56kMan7IloPDRw9E1sNRDT/1pa0YXLjqg XTHDFzafGcsdBrVJsNGpgxhz5L/oAlvQ1dIdAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUmWYTQKzgtqzr2izwVk51gUPdAKUwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL21XWVRRS3pndHF6cjJpendW azUxZ1VQZEFLVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAR7 wBAwDQYJKoZIhvcNAQELBQADggEBAGwaqCGrjoGfvwl4kG+sELRWP031NHzByHJY yQXwPxSCmg1cxQc3UpLtxht/IdGC/vBHGDOBDj5H3r2jfb22C0K6JseYuDHUjcOL tNc9F6WsWD4wRmenT3e2KF/LoFhZpY26oV660Z0AYi9OGh8SYdFyu9ZiWt7+5Lgn JJdk3ZDC6srWCH/BibdxJ8zTb1w0JQ4laNNBp8neVyy7QBrfHHx8lmdvQavE5/ds 9cEEuCNPEwdXerHayvys5VlkBXIc0GGWI38D4j4evrOsLQVFBXfdc7c/nqinyZEI kSdcVhhKoE0HnaD60FkOwym2D62DUTu7UTL8Av1RqAeqglzoMGE= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:39 2024 by rpki-client on console-ams.rpki-client.org