$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/oId937MW9PRXTQDc44HEQ70GWx4.roa File: oId937MW9PRXTQDc44HEQ70GWx4.roa (raw, json) Hash identifier: XBR52PbnojUvihAcjFme+XoVMqQoaonx8pqNxCJMpxk= Subject key identifier: A0:87:7D:DF:B3:16:F4:F4:57:4D:00:DC:E3:81:C4:43:BD:06:5B:1E Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 289A Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/oId937MW9PRXTQDc44HEQ70GWx4.roa Signing time: Fri 01 Sep 2023 10:05:34 +0000 ROA not before: Fri 01 Sep 2023 10:05:34 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38841 IP address blocks: 180.177.20.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10394 (0x289a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Sep 1 10:05:34 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=A0877DDFB316F4F4574D00DCE381C443BD065B1E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:aa:fe:59:da:7b:de:d9:46:47:37:48:76:a4: 8d:18:45:00:1b:6d:ad:56:fe:4d:03:90:4b:3a:8d: e3:d0:27:32:95:52:97:a6:12:c7:a5:59:4a:cf:58: 30:69:cd:fa:58:fa:88:7e:e2:22:c6:8f:1e:e0:0a: e1:d8:f9:91:ed:11:4c:b2:88:1f:8d:75:87:8f:62: 2a:c7:20:46:61:39:ee:7d:90:e7:5a:79:17:1b:74: e3:d4:b4:c9:9d:dc:af:f0:57:69:e7:ca:6b:ec:1f: ca:25:ec:95:de:45:93:7f:cc:25:83:51:89:1e:84: b2:e1:62:26:7d:8a:5d:5d:44:04:7a:72:f1:ac:58: 19:77:4f:21:06:7d:ca:28:f8:de:e9:bb:49:48:de: 6b:67:f4:83:c8:bf:14:68:23:89:f8:78:74:6e:f4: 09:9a:f7:b4:31:b2:ac:c0:ae:96:92:7b:f0:68:7c: 8d:8e:0d:20:8c:03:1b:e6:d4:c2:4d:4e:72:fa:70: 15:61:11:e3:46:92:46:10:0c:23:a7:16:ee:ed:e7: 9b:e6:40:1b:2e:9b:9a:ca:bf:99:30:52:aa:e0:8b: dc:02:d3:c0:e7:9c:ab:d0:b6:67:3f:5d:55:61:83: 7b:48:f4:c8:2d:62:51:cb:a9:9c:e3:0a:ce:5f:c6: 99:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:87:7D:DF:B3:16:F4:F4:57:4D:00:DC:E3:81:C4:43:BD:06:5B:1E X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/oId937MW9PRXTQDc44HEQ70GWx4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.177.20.0/22 Signature Algorithm: sha256WithRSAEncryption 98:cf:cf:1e:27:97:35:37:4e:f8:a3:c2:0f:57:18:6f:45:85: 9b:c9:28:0a:2a:f0:df:68:1d:3b:4f:22:5d:8c:79:65:69:cc: 8d:db:93:15:83:17:60:aa:93:47:44:5f:27:77:79:dc:ea:ab: a0:06:9f:5c:02:50:cf:1e:8a:cc:67:40:10:7c:64:c8:32:36: 23:a4:7d:04:1b:54:8c:b7:22:0e:0a:76:2d:13:6c:34:5b:5b: ab:32:08:dd:1b:5a:8a:78:e0:ed:c6:00:f3:17:85:f5:05:9c: c3:3c:bb:71:8e:d5:91:5b:63:ed:7c:f2:cb:77:d3:22:aa:ae: 61:80:ab:41:55:f7:73:4b:8d:80:29:4d:cf:de:ed:a4:1f:54: 4a:21:eb:84:c0:cd:de:f8:3c:de:66:2a:6d:49:fb:4e:ea:62: ae:c2:d4:60:95:2e:ca:41:25:5d:c0:16:bb:99:6f:7d:75:6d: 64:ba:7d:e5:61:b9:44:02:22:fe:12:d0:ee:37:07:43:ac:44: e5:51:f5:85:36:da:61:9d:c5:06:05:b1:cb:bb:8d:a7:89:2e: e5:cd:9f:de:ab:aa:a6:64:fb:b2:86:37:16:3e:69:34:cc:48: 3a:ba:1c:a4:8b:ea:c1:82:ed:5f:e8:62:cc:1b:30:db:27:11: 0d:df:81:1d -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICKJowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yMzA5MDEx MDA1MzRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEEwODc3RERGQjMxNkY0 RjQ1NzREMDBEQ0UzODFDNDQzQkQwNjVCMUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7qv5Z2nve2UZHN0h2pI0YRQAbba1W/k0DkEs6jePQJzKVUpem EselWUrPWDBpzfpY+oh+4iLGjx7gCuHY+ZHtEUyyiB+NdYePYirHIEZhOe59kOda eRcbdOPUtMmd3K/wV2nnymvsH8ol7JXeRZN/zCWDUYkehLLhYiZ9il1dRAR6cvGs WBl3TyEGfcoo+N7pu0lI3mtn9IPIvxRoI4n4eHRu9Ama97QxsqzArpaSe/BofI2O DSCMAxvm1MJNTnL6cBVhEeNGkkYQDCOnFu7t55vmQBsum5rKv5kwUqrgi9wC08Dn nKvQtmc/XVVhg3tI9MgtYlHLqZzjCs5fxpn7AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUoId937MW9PRXTQDc44HEQ70GWx4wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL29JZDkzN01XOVBSWFRRRGM0 NEhFUTcwR1d4NC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK0 sRQwDQYJKoZIhvcNAQELBQADggEBAJjPzx4nlzU3Tvijwg9XGG9FhZvJKAoq8N9o HTtPIl2MeWVpzI3bkxWDF2Cqk0dEXyd3edzqq6AGn1wCUM8eisxnQBB8ZMgyNiOk fQQbVIy3Ig4Kdi0TbDRbW6syCN0bWop44O3GAPMXhfUFnMM8u3GO1ZFbY+188st3 0yKqrmGAq0FV93NLjYApTc/e7aQfVEoh64TAzd74PN5mKm1J+07qYq7C1GCVLspB JV3AFruZb311bWS6feVhuUQCIv4S0O43B0OsROVR9YU22mGdxQYFscu7jaeJLuXN n96rqqZk+7KGNxY+aTTMSDq6HKSL6sGC7V/oYswbMNsnEQ3fgR0= -----END CERTIFICATE-----Generated at Mon Jun 3 10:15:31 2024 by rpki-client on console-fra.rpki-client.org