$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/mYC8YK5BXHZm7dmmn54u_l7IaNo.roa File: mYC8YK5BXHZm7dmmn54u_l7IaNo.roa (raw, json) Hash identifier: f15dYj75PCq+s/w6rBJFtiy6gMtu4A0d/3RBpgHQIBM= Subject key identifier: 99:80:BC:60:AE:41:5C:76:66:ED:D9:A6:9F:9E:2E:FE:5E:C8:68:DA Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 31A8 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/mYC8YK5BXHZm7dmmn54u_l7IaNo.roa Signing time: Mon 26 Aug 2024 05:30:48 +0000 ROA not before: Mon 26 Aug 2024 05:30:48 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 2407:4d00:ff00::/44 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12712 (0x31a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:30:48 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=9980BC60AE415C7666EDD9A69F9E2EFE5EC868DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:c2:44:51:25:fa:a2:2d:b4:ff:f8:9e:a7:18: c9:1a:7f:21:88:62:42:53:53:9a:18:e3:1d:fc:e5: db:cf:bf:ac:89:d7:4d:d4:5f:a3:fe:86:44:27:75: be:2d:08:9e:a5:99:4e:9f:4c:24:ea:bd:34:86:01: 6d:0f:de:6b:96:80:93:e1:e8:e7:4f:e4:20:18:48: 93:7b:ed:86:78:13:ba:25:e6:48:66:ed:79:c6:86: 3f:aa:d5:d3:45:02:59:e0:c4:f4:5b:9f:d8:a7:35: bc:f0:d1:c9:9d:62:d0:67:50:b6:34:8c:eb:6c:42: 48:dd:6e:15:65:ce:22:18:ec:7a:3b:13:4b:a2:da: fc:ba:d9:12:6a:d6:0c:98:42:ff:51:74:0a:fa:da: 0f:e7:7f:73:34:1e:88:d2:47:eb:48:61:25:d1:31: 26:db:7a:9d:38:fc:5a:9c:da:af:68:a1:f6:18:50: f9:f6:c4:c3:3f:cd:f2:aa:b8:ca:21:1f:47:77:37: 78:6c:8f:76:f3:8b:76:d6:1a:2c:45:22:82:40:b5: 8b:b8:11:36:3b:16:c6:25:a4:a0:86:19:46:a4:46: b8:74:3b:aa:1d:01:5c:1e:b2:03:18:71:66:53:7f: 74:c4:94:74:08:78:e0:b4:af:35:46:18:3a:cb:ed: 99:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:80:BC:60:AE:41:5C:76:66:ED:D9:A6:9F:9E:2E:FE:5E:C8:68:DA X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/mYC8YK5BXHZm7dmmn54u_l7IaNo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2407:4d00:ff00::/44 Signature Algorithm: sha256WithRSAEncryption 18:81:c9:5e:fa:1f:de:ed:6c:f6:4c:b7:97:a3:1a:6a:f2:d8: 14:0f:43:64:a6:24:05:d2:f5:77:68:b1:2d:1f:4b:4f:77:c3: c2:76:6c:6a:6d:63:2c:bc:91:c9:80:e0:bc:6a:f8:7a:f4:60: 0b:2d:0d:9e:13:d8:7d:13:4d:71:2e:4c:0c:d7:61:76:88:a0: 52:14:09:e3:42:00:22:41:7b:7a:72:1a:fd:87:2f:06:0a:bf: ed:6e:7f:b0:c4:9a:eb:93:fd:6d:10:3f:7d:99:29:64:38:f7: 9a:b8:8d:04:1a:b1:72:a9:27:dd:13:1d:f1:68:62:17:8d:bd: 1d:95:f8:f8:8a:12:c9:14:68:20:e7:da:82:6a:de:79:c2:a4: 87:e1:0b:ec:1a:56:36:43:35:d7:49:35:73:c8:ec:1d:7b:0a: 29:63:62:4d:24:7e:c7:7a:69:c1:e5:e3:45:b2:06:5d:1a:99: 36:10:eb:6c:55:41:5e:56:d4:24:fa:da:23:b3:11:57:02:09: de:ea:33:96:a2:b9:f8:b4:08:3d:a5:ed:6a:00:3d:fb:df:2c: c7:b8:d3:3c:a7:f1:5a:f0:0b:60:c1:b4:79:80:91:fb:88:60: 4c:d0:ce:18:64:b1:9c:b2:45:cc:cd:a5:61:65:3a:72:0b:8b: 38:ad:6c:f7 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICMagwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMwNDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDk5ODBCQzYwQUU0MTVD NzY2NkVERDlBNjlGOUUyRUZFNUVDODY4REEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXwkRRJfqiLbT/+J6nGMkafyGIYkJTU5oY4x385dvPv6yJ103U X6P+hkQndb4tCJ6lmU6fTCTqvTSGAW0P3muWgJPh6OdP5CAYSJN77YZ4E7ol5khm 7XnGhj+q1dNFAlngxPRbn9inNbzw0cmdYtBnULY0jOtsQkjdbhVlziIY7Ho7E0ui 2vy62RJq1gyYQv9RdAr62g/nf3M0HojSR+tIYSXRMSbbep04/Fqc2q9oofYYUPn2 xMM/zfKquMohH0d3N3hsj3bzi3bWGixFIoJAtYu4ETY7FsYlpKCGGUakRrh0O6od AVwesgMYcWZTf3TElHQIeOC0rzVGGDrL7Zl5AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUmYC8YK5BXHZm7dmmn54u/l7IaNowHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL21ZQzhZSzVCWEhabTdkbW1u NTR1X2w3SWFOby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwQk B00A/wAwDQYJKoZIhvcNAQELBQADggEBABiByV76H97tbPZMt5ejGmry2BQPQ2Sm JAXS9XdosS0fS093w8J2bGptYyy8kcmA4Lxq+Hr0YAstDZ4T2H0TTXEuTAzXYXaI oFIUCeNCACJBe3pyGv2HLwYKv+1uf7DEmuuT/W0QP32ZKWQ495q4jQQasXKpJ90T HfFoYheNvR2V+PiKEskUaCDn2oJq3nnCpIfhC+waVjZDNddJNXPI7B17CiljYk0k fsd6acHl40WyBl0amTYQ62xVQV5W1CT62iOzEVcCCd7qM5aiufi0CD2l7WoAPfvf LMe40zyn8VrwC2DBtHmAkfuIYEzQzhhksZyyRczNpWFlOnILizitbPc= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:39 2024 by rpki-client on console-ams.rpki-client.org