$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/o7U9ruY_qdLVUv4OMHKJ3fNKeXU.roa File: o7U9ruY_qdLVUv4OMHKJ3fNKeXU.roa (raw, json) Hash identifier: 9xdt3VFsmfGpHJ/cqWSf8Y3EA89gPop0Erma2hCQztw= Subject key identifier: A3:B5:3D:AE:E6:3F:A9:D2:D5:52:FE:0E:30:72:89:DD:F3:4A:79:75 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 30A8 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/o7U9ruY_qdLVUv4OMHKJ3fNKeXU.roa Signing time: Mon 26 Aug 2024 05:29:41 +0000 ROA not before: Mon 26 Aug 2024 05:29:41 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.192.0.0/17 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12456 (0x30a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:29:41 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A3B53DAEE63FA9D2D552FE0E307289DDF34A7975 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:30:67:c7:56:c1:92:0e:7b:0d:6f:ea:58:2e: c6:27:9e:e1:50:d7:98:dc:d7:8d:33:fa:3f:e0:83: 73:76:63:eb:92:ce:7c:4d:4d:61:a7:8e:5b:30:d0: 04:7b:1b:6d:65:b3:d0:67:82:12:4e:a0:88:2f:57: 9b:f7:83:2c:e6:e2:9e:80:0f:70:3b:4c:8d:9d:68: 58:dd:c5:6a:88:6f:d0:d6:52:41:f1:d4:10:91:6b: f0:ee:1a:2c:c5:7e:a7:38:ec:11:3b:70:59:9e:78: 4b:4d:3b:a4:1b:14:cf:aa:89:67:0d:10:6c:75:b1: 4c:0d:e8:64:34:e7:3f:90:61:1c:9a:a7:9b:a3:b0: bd:a8:f8:f4:83:dd:fa:75:75:36:20:a2:c4:f4:88: f1:24:55:df:78:ce:cc:32:08:57:43:6c:9b:3b:c8: ed:28:a9:a3:8b:1b:d1:56:de:9c:7b:b2:0c:4c:c1: 96:b8:47:b7:9f:cc:3f:5c:cd:80:d6:ef:01:8d:51: 8b:56:01:cf:09:6b:b4:0a:49:e1:35:77:35:aa:77: 9c:d9:24:84:96:0f:6e:bf:34:fc:f0:b6:30:f3:0f: cf:6b:56:4a:aa:8c:06:a1:48:c7:66:76:72:25:28: 00:3c:45:ab:0f:f9:4c:97:e5:e5:8c:a1:bb:05:51: 12:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:B5:3D:AE:E6:3F:A9:D2:D5:52:FE:0E:30:72:89:DD:F3:4A:79:75 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/o7U9ruY_qdLVUv4OMHKJ3fNKeXU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.192.0.0/17 Signature Algorithm: sha256WithRSAEncryption 42:0a:3f:46:a1:dd:5f:54:3f:fc:ff:6f:ff:62:77:c6:e2:63: 8f:ed:6a:88:f8:2b:06:ff:06:f6:1e:c6:ab:66:d0:dc:d0:2e: bc:27:29:fc:42:2f:79:13:24:fb:39:b0:65:76:1c:8e:bd:f8: dd:38:7b:d5:56:f3:53:d8:0b:a1:28:a6:04:ee:73:fa:08:04: 0d:31:d5:d2:22:1e:b5:bc:fc:27:f9:44:55:12:6c:db:91:4b: 31:05:51:54:e9:e3:e0:42:52:84:01:71:84:5b:eb:50:b5:24: 08:a5:06:a9:29:ec:b2:38:4f:8d:cd:ad:28:a3:09:88:c9:09: 4b:93:07:94:34:41:9a:2b:9e:2a:8a:10:18:10:fb:c7:1c:92: e1:54:38:a9:88:9e:ef:3c:f3:a8:8f:6d:4e:20:30:ea:8d:70: 0c:54:5d:1d:65:9a:b2:60:1f:08:b6:a9:cf:08:db:10:44:9d: cb:d9:f9:7f:df:06:c3:82:b5:3c:c0:e5:64:bb:07:4a:2e:c9: 18:da:10:90:9d:ff:8c:98:9f:dd:01:99:c5:5c:36:11:bf:b2: 21:b9:e9:32:e3:98:23:3b:45:55:c7:c8:d0:70:e8:6f:42:72: c2:42:24:e1:ab:2f:50:fc:50:47:a3:55:91:71:b1:0b:7e:42: f5:a0:b3:7d -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMKgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTI5NDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEEzQjUzREFFRTYzRkE5 RDJENTUyRkUwRTMwNzI4OURERjM0QTc5NzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDeMGfHVsGSDnsNb+pYLsYnnuFQ15jc140z+j/gg3N2Y+uSznxN TWGnjlsw0AR7G21ls9BnghJOoIgvV5v3gyzm4p6AD3A7TI2daFjdxWqIb9DWUkHx 1BCRa/DuGizFfqc47BE7cFmeeEtNO6QbFM+qiWcNEGx1sUwN6GQ05z+QYRyap5uj sL2o+PSD3fp1dTYgosT0iPEkVd94zswyCFdDbJs7yO0oqaOLG9FW3px7sgxMwZa4 R7efzD9czYDW7wGNUYtWAc8Ja7QKSeE1dzWqd5zZJISWD26/NPzwtjDzD89rVkqq jAahSMdmdnIlKAA8RasP+UyX5eWMobsFURKZAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUo7U9ruY/qdLVUv4OMHKJ3fNKeXUwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL283VTlydVlfcWRMVlV2NE9N SEtKM2ZOS2VYVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAd7 wAAwDQYJKoZIhvcNAQELBQADggEBAEIKP0ah3V9UP/z/b/9id8biY4/taoj4Kwb/ BvYexqtm0NzQLrwnKfxCL3kTJPs5sGV2HI69+N04e9VW81PYC6EopgTuc/oIBA0x 1dIiHrW8/Cf5RFUSbNuRSzEFUVTp4+BCUoQBcYRb61C1JAilBqkp7LI4T43NrSij CYjJCUuTB5Q0QZorniqKEBgQ+8cckuFUOKmInu8886iPbU4gMOqNcAxUXR1lmrJg Hwi2qc8I2xBEncvZ+X/fBsOCtTzA5WS7B0ouyRjaEJCd/4yYn90BmcVcNhG/siG5 6TLjmCM7RVXHyNBw6G9CcsJCJOGrL1D8UEejVZFxsQt+QvWgs30= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:53 2024 by rpki-client on console-ams.rpki-client.org