$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/nU6PoYkX0thYRMroYGKo9FPRzeA.roa File: nU6PoYkX0thYRMroYGKo9FPRzeA.roa (raw, json) Hash identifier: b8TlHHMcQjkpg5wXrkSw10WGAL8fowlrWVNGSQuymYc= Subject key identifier: 9D:4E:8F:A1:89:17:D2:D8:58:44:CA:E8:60:62:A8:F4:53:D1:CD:E0 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3071 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/nU6PoYkX0thYRMroYGKo9FPRzeA.roa Signing time: Mon 26 Aug 2024 05:29:27 +0000 ROA not before: Mon 26 Aug 2024 05:29:27 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 118.233.184.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12401 (0x3071) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:29:27 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=9D4E8FA18917D2D85844CAE86062A8F453D1CDE0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:f6:9b:9e:09:05:ba:e8:e9:e9:af:93:3f:54: df:7a:86:27:67:c1:ce:8a:99:d9:0b:60:39:ed:ba: b8:8d:96:40:82:74:ca:9b:9d:21:75:05:cb:ea:48: 11:bd:07:04:b3:73:a8:f1:31:8a:12:11:26:d1:9e: 20:ec:52:56:ba:d3:ff:4c:12:8f:94:84:60:13:d3: ae:d3:e7:e0:91:a0:02:52:2c:a1:e4:89:c0:10:7f: 8a:66:38:77:cf:f7:99:0c:7d:1f:51:1f:e8:df:f9: a8:bb:e0:35:84:9c:6c:e2:1a:e7:55:d3:20:05:1f: ae:fd:85:da:3f:75:a5:e6:b1:54:ab:b6:75:50:0d: 49:53:68:6e:8b:b7:d8:f9:45:f7:d8:eb:4a:e5:9c: 58:d5:a8:12:45:cc:89:a6:1d:05:4d:ae:ed:66:82: 22:23:46:4a:b4:40:78:b6:b2:6a:1d:92:ab:b7:0c: 81:3b:26:38:ff:ad:8f:1d:2d:d9:92:17:e9:18:c4: 8d:99:0d:b4:89:86:20:36:a5:49:6a:bc:b9:c5:d4: cc:3d:08:b7:9e:0c:71:fa:7d:67:d1:b1:7b:30:ec: 04:fb:d8:9f:28:a2:09:a4:e2:c3:c4:61:8d:02:c4: c4:1e:ac:43:a1:8c:39:62:e4:29:4a:56:67:cb:2c: 32:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:4E:8F:A1:89:17:D2:D8:58:44:CA:E8:60:62:A8:F4:53:D1:CD:E0 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/nU6PoYkX0thYRMroYGKo9FPRzeA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.184.0/22 Signature Algorithm: sha256WithRSAEncryption 08:bf:b9:b8:64:8d:47:67:45:1f:16:ac:5a:3b:de:9a:b0:63: 03:47:36:55:63:c9:45:13:c4:c4:94:56:81:22:a3:8b:cb:84: 0a:f5:25:4b:05:8c:28:65:d7:7c:7a:f2:5e:91:df:40:16:52: 63:c9:c8:71:42:82:53:34:d8:98:44:1e:a3:94:f0:d7:33:9d: 17:df:94:14:5a:7c:28:01:e4:35:95:54:16:bb:1b:78:6f:f3: 30:9e:4a:6a:bb:30:02:d0:c1:18:d0:69:86:55:0f:7e:54:b5: 26:92:37:03:9f:09:f4:ee:e5:ab:41:33:49:3b:1a:71:6c:99: 54:73:16:69:92:c4:f0:8a:64:f8:03:a3:ae:20:cf:9c:49:12: c2:39:f6:35:db:53:8e:0c:0c:d5:c1:37:54:a6:3c:33:e3:c1: a2:26:da:2c:80:2e:84:be:be:2b:af:c7:af:2c:28:ec:6d:27: ea:44:dd:94:ea:a0:98:4b:be:d5:d9:e4:cd:be:72:bd:73:f9: 47:a7:ca:52:88:9f:42:09:cf:51:8d:13:7f:f7:40:d7:22:7e: dd:27:ef:d1:84:95:d8:0b:08:d9:db:4c:e9:ef:1b:89:3a:09: 42:48:4e:ab:f9:10:5e:fa:d8:b2:8e:7d:19:ef:4b:5b:15:3f: 50:9b:b3:39 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMHEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTI5MjdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDlENEU4RkExODkxN0Qy RDg1ODQ0Q0FFODYwNjJBOEY0NTNEMUNERTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+9pueCQW66Onpr5M/VN96hidnwc6KmdkLYDnturiNlkCCdMqb nSF1BcvqSBG9BwSzc6jxMYoSESbRniDsUla60/9MEo+UhGAT067T5+CRoAJSLKHk icAQf4pmOHfP95kMfR9RH+jf+ai74DWEnGziGudV0yAFH679hdo/daXmsVSrtnVQ DUlTaG6Lt9j5RffY60rlnFjVqBJFzImmHQVNru1mgiIjRkq0QHi2smodkqu3DIE7 Jjj/rY8dLdmSF+kYxI2ZDbSJhiA2pUlqvLnF1Mw9CLeeDHH6fWfRsXsw7AT72J8o ogmk4sPEYY0CxMQerEOhjDli5ClKVmfLLDLbAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUnU6PoYkX0thYRMroYGKo9FPRzeAwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL25VNlBvWWtYMHRoWVJNcm9Z R0tvOUZQUnplQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2 6bgwDQYJKoZIhvcNAQELBQADggEBAAi/ubhkjUdnRR8WrFo73pqwYwNHNlVjyUUT xMSUVoEio4vLhAr1JUsFjChl13x68l6R30AWUmPJyHFCglM02JhEHqOU8NcznRff lBRafCgB5DWVVBa7G3hv8zCeSmq7MALQwRjQaYZVD35UtSaSNwOfCfTu5atBM0k7 GnFsmVRzFmmSxPCKZPgDo64gz5xJEsI59jXbU44MDNXBN1SmPDPjwaIm2iyALoS+ viuvx68sKOxtJ+pE3ZTqoJhLvtXZ5M2+cr1z+UenylKIn0IJz1GNE3/3QNcift0n 79GEldgLCNnbTOnvG4k6CUJITqv5EF762LKOfRnvS1sVP1Cbszk= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:53 2024 by rpki-client on console-ams.rpki-client.org