$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/nC0KUdPG2HKZ8Gt8MfpNRzP1OCc.roa File: nC0KUdPG2HKZ8Gt8MfpNRzP1OCc.roa (raw, json) Hash identifier: AFBMN25prbus2Sd5n2H0Esq98QAy3O3SXWydW8ujs28= Subject key identifier: 9C:2D:0A:51:D3:C6:D8:72:99:F0:6B:7C:31:FA:4D:47:33:F5:38:27 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 32BE Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/nC0KUdPG2HKZ8Gt8MfpNRzP1OCc.roa Signing time: Mon 26 Aug 2024 05:31:58 +0000 ROA not before: Mon 26 Aug 2024 05:31:58 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 118.233.132.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12990 (0x32be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:31:58 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=9C2D0A51D3C6D87299F06B7C31FA4D4733F53827 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:81:06:fa:0e:0a:78:d8:75:74:f0:8c:68:5d: 15:7c:9c:7a:92:ab:e7:2e:5d:40:cc:94:05:5b:66: a3:2f:65:48:ac:6d:c6:51:b3:e2:cd:0f:17:12:61: 58:d5:8d:66:63:0e:60:45:4d:4f:0e:fd:d3:44:be: e3:05:4b:db:a4:a7:81:2a:0c:7c:a6:18:37:e4:f2: 8e:85:51:6a:7b:91:06:21:03:aa:cc:f4:48:48:bc: 0b:57:65:66:1e:15:a2:0a:42:92:cb:23:65:0c:49: 4a:ac:a9:65:5f:19:39:7b:d4:48:43:ce:48:14:ae: 77:e9:6d:14:b6:5a:6f:2d:05:39:36:0b:4e:63:c4: 9a:0c:9e:36:11:43:86:52:e9:20:ed:c7:7a:0f:bb: 04:df:c3:1a:80:be:28:ea:60:d2:b5:bb:65:af:8c: 55:0d:52:30:33:fb:4f:a7:82:be:da:de:1b:28:e1: ab:f1:f7:3f:ef:80:8d:d5:1b:ff:ff:09:67:e7:cb: 21:fa:fc:b1:01:2b:46:1f:b9:24:ab:8f:55:de:85: 90:59:be:9b:aa:c6:0b:bf:11:d7:2b:6f:de:ef:0e: bf:f5:7d:f4:40:e8:86:87:75:a1:61:93:92:6d:7e: 5a:4d:37:d5:fe:9a:13:d1:d2:8f:62:44:af:7a:ca: bf:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:2D:0A:51:D3:C6:D8:72:99:F0:6B:7C:31:FA:4D:47:33:F5:38:27 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/nC0KUdPG2HKZ8Gt8MfpNRzP1OCc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.132.0/22 Signature Algorithm: sha256WithRSAEncryption 3f:ad:25:fe:49:b0:ce:20:6e:ae:f2:6a:f9:33:8d:00:c5:bd: c9:55:2d:d0:30:bf:9a:c0:bc:30:90:b2:ba:b2:6d:3a:24:62: d8:18:f7:62:89:80:7e:73:51:b7:8a:87:d1:32:49:85:53:85: 54:a3:88:48:08:aa:9a:c4:79:51:dd:14:13:8b:1e:61:8f:51: 0d:58:99:c1:5d:d6:de:f5:59:35:09:2b:58:d8:0b:6e:70:ec: ed:c3:c9:26:80:ae:40:c8:d2:11:1e:29:5f:ff:29:2c:b3:d0: a7:e0:e3:be:80:67:6e:a7:f5:1c:6c:8b:36:31:fa:81:8a:8b: f7:48:a3:65:bf:46:36:8e:7c:89:1f:9a:af:4f:c7:1b:d1:b7: ec:06:33:6f:d8:d7:c6:33:db:82:48:e6:80:eb:05:06:e8:fb: 06:1e:0d:7e:41:70:96:00:a9:92:1a:f8:e0:55:f7:77:1e:0e: 29:a1:b6:f0:1d:19:16:c7:8e:c5:7a:12:55:56:9d:a1:f4:56: f8:73:9e:75:3b:6a:68:11:79:7e:93:1a:7b:ee:b8:db:6b:bc: 5b:da:8c:07:6e:47:25:cf:fc:9f:e1:f2:76:43:59:be:31:83: b9:5b:82:47:ea:ed:10:13:0a:e0:87:89:03:95:6b:70:ee:07: 2c:8e:a2:91 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMr4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMxNThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDlDMkQwQTUxRDNDNkQ4 NzI5OUYwNkI3QzMxRkE0RDQ3MzNGNTM4MjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCygQb6Dgp42HV08IxoXRV8nHqSq+cuXUDMlAVbZqMvZUisbcZR s+LNDxcSYVjVjWZjDmBFTU8O/dNEvuMFS9ukp4EqDHymGDfk8o6FUWp7kQYhA6rM 9EhIvAtXZWYeFaIKQpLLI2UMSUqsqWVfGTl71EhDzkgUrnfpbRS2Wm8tBTk2C05j xJoMnjYRQ4ZS6SDtx3oPuwTfwxqAvijqYNK1u2WvjFUNUjAz+0+ngr7a3hso4avx 9z/vgI3VG///CWfnyyH6/LEBK0YfuSSrj1XehZBZvpuqxgu/Edcrb97vDr/1ffRA 6IaHdaFhk5JtflpNN9X+mhPR0o9iRK96yr91AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUnC0KUdPG2HKZ8Gt8MfpNRzP1OCcwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL25DMEtVZFBHMkhLWjhHdDhN ZnBOUnpQMU9DYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2 6YQwDQYJKoZIhvcNAQELBQADggEBAD+tJf5JsM4gbq7yavkzjQDFvclVLdAwv5rA vDCQsrqybTokYtgY92KJgH5zUbeKh9EySYVThVSjiEgIqprEeVHdFBOLHmGPUQ1Y mcFd1t71WTUJK1jYC25w7O3DySaArkDI0hEeKV//KSyz0Kfg476AZ26n9RxsizYx +oGKi/dIo2W/RjaOfIkfmq9PxxvRt+wGM2/Y18Yz24JI5oDrBQbo+wYeDX5BcJYA qZIa+OBV93ceDimhtvAdGRbHjsV6ElVWnaH0VvhznnU7amgReX6TGnvuuNtrvFva jAduRyXP/J/h8nZDWb4xg7lbgkfq7RATCuCHiQOVa3DuByyOopE= -----END CERTIFICATE-----Generated at Sat Sep 21 00:29:54 2024 by rpki-client on console-fra.rpki-client.org