$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/o9Erk7o22ohPSr2MV7c36QUKha8.roa File: o9Erk7o22ohPSr2MV7c36QUKha8.roa (raw, json) Hash identifier: qWj8BgRc5SRwEUQWk1/HmQEbmzopVac6/NyL9T4vgZo= Subject key identifier: A3:D1:2B:93:BA:36:DA:88:4F:4A:BD:8C:57:B7:37:E9:05:0A:85:AF Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3246 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/o9Erk7o22ohPSr2MV7c36QUKha8.roa Signing time: Mon 26 Aug 2024 05:31:30 +0000 ROA not before: Mon 26 Aug 2024 05:31:30 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 118.233.254.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12870 (0x3246) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:31:30 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A3D12B93BA36DA884F4ABD8C57B737E9050A85AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:df:7a:98:09:e1:c3:0c:58:c7:93:ad:d7:b1: 8e:86:ea:97:ec:c9:7a:5d:6d:59:4e:bc:1f:6a:af: e2:2b:ac:fa:ef:49:6c:29:e3:d8:99:96:8e:00:cf: 81:62:5e:50:1e:42:6f:1c:60:dd:3a:cf:f8:ec:71: 77:16:75:d5:4a:1a:0f:ae:28:be:9a:de:9d:aa:84: 69:ab:88:36:01:84:88:f9:62:7a:67:96:d8:8a:b3: 07:0e:f4:b5:c8:47:52:0e:d2:d8:ed:9e:be:a0:77: 45:79:5a:98:50:d5:87:87:69:35:a4:1c:f1:d3:de: da:4b:fe:72:88:8c:49:91:b7:6f:9f:03:a6:27:ea: 79:f9:0a:c9:2c:7d:3c:97:56:65:ac:a3:36:6d:c4: 13:90:30:b1:a2:18:57:95:38:4d:14:20:41:2b:ef: ce:d8:19:4e:fa:30:f4:6b:f7:1d:a9:9e:81:90:d3: fb:1e:86:8d:e6:7c:ee:f1:d5:88:ad:98:ed:b6:90: 88:c2:ee:03:dc:b9:a5:3a:a9:a6:41:9f:6c:79:40: ba:1d:91:05:99:c6:e2:9d:e5:e4:5f:6a:59:2d:51: 40:7b:20:9e:10:74:0f:46:9c:39:f0:e5:38:01:54: c9:76:1e:b9:dc:8d:2a:e8:82:a4:f2:dc:ae:1f:4b: 79:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:D1:2B:93:BA:36:DA:88:4F:4A:BD:8C:57:B7:37:E9:05:0A:85:AF X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/o9Erk7o22ohPSr2MV7c36QUKha8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.254.0/23 Signature Algorithm: sha256WithRSAEncryption 02:a7:32:8c:d0:e9:2d:51:66:54:e0:db:c2:92:d1:5e:dc:5d: c7:e1:d8:e1:e2:38:b3:a4:76:b1:1b:a7:29:05:97:36:20:2a: 5f:27:9b:76:f4:11:79:34:4a:59:55:2a:23:8b:a1:df:31:d9: 1b:8a:16:05:cf:6d:17:24:08:44:be:d6:39:ae:a8:cf:9f:57: f8:97:77:4e:65:d3:7f:08:39:a4:07:ab:ef:78:54:ad:fa:3b: f2:c0:48:7b:70:c5:7c:09:de:92:a4:ff:86:be:ae:81:77:84: d4:8d:20:4f:e8:af:30:f0:cd:05:c4:a9:bb:f2:7f:af:27:39: 56:cf:29:bd:d9:39:9a:08:bd:ba:28:88:8f:21:b0:d6:b7:dd: 26:47:a2:f5:29:fa:9c:b2:88:d6:db:13:3e:76:90:a5:1d:27: 5c:7f:20:36:71:61:90:37:10:e7:89:61:88:86:61:92:15:34: b4:05:28:5f:fa:2b:a5:97:aa:94:2b:6f:45:5f:b6:f0:25:f9: af:97:5b:ef:5e:df:a3:7e:b4:a4:d6:8f:8f:66:e3:5b:60:0d: 6f:b3:f5:6b:89:a0:5d:4e:b9:20:d8:d5:3d:1c:89:8f:13:a6: 0b:94:ac:29:03:91:2c:32:29:af:ff:f1:bf:52:9c:04:69:25: f4:37:e0:07 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMkYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMxMzBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEEzRDEyQjkzQkEzNkRB ODg0RjRBQkQ4QzU3QjczN0U5MDUwQTg1QUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDB33qYCeHDDFjHk63XsY6G6pfsyXpdbVlOvB9qr+IrrPrvSWwp 49iZlo4Az4FiXlAeQm8cYN06z/jscXcWddVKGg+uKL6a3p2qhGmriDYBhIj5Ynpn ltiKswcO9LXIR1IO0tjtnr6gd0V5WphQ1YeHaTWkHPHT3tpL/nKIjEmRt2+fA6Yn 6nn5CsksfTyXVmWsozZtxBOQMLGiGFeVOE0UIEEr787YGU76MPRr9x2pnoGQ0/se ho3mfO7x1YitmO22kIjC7gPcuaU6qaZBn2x5QLodkQWZxuKd5eRfalktUUB7IJ4Q dA9GnDnw5TgBVMl2HrncjSrogqTy3K4fS3mNAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUo9Erk7o22ohPSr2MV7c36QUKha8wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL285RXJrN28yMm9oUFNyMk1W N2MzNlFVS2hhOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAF2 6f4wDQYJKoZIhvcNAQELBQADggEBAAKnMozQ6S1RZlTg28KS0V7cXcfh2OHiOLOk drEbpykFlzYgKl8nm3b0EXk0SllVKiOLod8x2RuKFgXPbRckCES+1jmuqM+fV/iX d05l038IOaQHq+94VK36O/LASHtwxXwJ3pKk/4a+roF3hNSNIE/orzDwzQXEqbvy f68nOVbPKb3ZOZoIvbooiI8hsNa33SZHovUp+pyyiNbbEz52kKUdJ1x/IDZxYZA3 EOeJYYiGYZIVNLQFKF/6K6WXqpQrb0VftvAl+a+XW+9e36N+tKTWj49m41tgDW+z 9WuJoF1OuSDY1T0ciY8TpguUrCkDkSwyKa//8b9SnARpJfQ34Ac= -----END CERTIFICATE-----Generated at Sat Sep 21 00:29:54 2024 by rpki-client on console-fra.rpki-client.org