$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/oQ2V5Blu_FSECEJXaNS_Mn6OpUk.roa File: oQ2V5Blu_FSECEJXaNS_Mn6OpUk.roa (raw, json) Hash identifier: NHmZraiTxaOWTPD0SI6RU5yf8DCzvbDICWoNYDOWjTw= Subject key identifier: A1:0D:95:E4:19:6E:FC:54:84:08:42:57:68:D4:BF:32:7E:8E:A5:49 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2FB4 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/oQ2V5Blu_FSECEJXaNS_Mn6OpUk.roa Signing time: Mon 26 Aug 2024 05:28:46 +0000 ROA not before: Mon 26 Aug 2024 05:28:46 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.193.218.64/26 maxlen: 26 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12212 (0x2fb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:28:46 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A10D95E4196EFC548408425768D4BF327E8EA549 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:19:ad:d5:d1:9a:a6:97:55:2d:f5:4c:50:83: 33:06:e0:23:78:2c:4a:ff:43:d0:c6:a8:36:e1:6a: 1d:f2:30:69:ce:6a:62:6c:ab:b6:92:3e:01:bf:6b: 52:70:2f:fb:b3:76:15:a2:37:74:c7:11:bb:86:0d: 05:ad:05:75:71:f6:3e:83:fd:ff:f3:53:cf:4f:73: 3c:96:1d:28:59:2a:0e:5a:ce:bd:75:86:7b:6a:bc: f8:2c:88:1a:8c:96:06:d1:6f:c6:93:08:c4:59:d6: a3:6f:f0:92:3a:f2:bf:01:41:ae:a5:b6:bc:b1:ed: 97:31:6d:bd:49:17:3a:45:18:a8:c0:73:76:f5:04: d2:3b:2a:71:cd:0e:9d:8d:94:cc:b4:8e:27:89:bc: 24:ee:44:fa:5a:d2:57:a7:42:71:e6:e1:b6:40:2c: 6f:f0:55:df:95:75:20:d1:6f:1f:57:16:a4:a1:8b: 2f:ca:ea:a9:04:a8:03:40:15:38:10:2c:bd:6a:12: 4f:5c:0f:1b:37:09:d8:08:5c:30:93:aa:d7:99:5b: 3c:4f:b6:ea:8b:24:be:69:45:31:1c:1c:47:59:c3: 64:c1:ee:fa:6f:d0:2e:0f:36:ad:6c:ab:a2:4d:dc: 2c:e0:e6:cb:cf:a9:f9:ec:1b:33:0a:43:e7:c1:25: 19:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:0D:95:E4:19:6E:FC:54:84:08:42:57:68:D4:BF:32:7E:8E:A5:49 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/oQ2V5Blu_FSECEJXaNS_Mn6OpUk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.193.218.64/26 Signature Algorithm: sha256WithRSAEncryption 9b:82:95:9a:f1:8a:dc:4c:2c:95:6b:f2:74:55:64:53:18:79: 0a:12:ea:0f:ca:9b:8e:75:ba:44:70:dc:e6:b1:aa:d6:00:7f: 3b:6e:db:1d:e9:65:da:96:32:72:4c:ed:7e:c4:8e:0b:0c:5b: a2:48:7f:24:4c:80:b7:03:67:86:bf:fc:6f:78:23:0b:fe:8e: 49:d9:ea:98:df:5c:07:f0:ea:eb:8a:79:55:36:5f:fd:73:e3: d2:4f:2a:29:0c:44:66:1e:36:10:22:b8:88:8b:a0:7e:d4:ca: bb:68:50:56:b2:cf:00:42:b8:68:04:99:4d:93:fb:50:cb:0c: 2b:ba:ed:c8:6b:a1:a7:c9:20:19:b2:2e:0f:d7:57:f8:87:86: 4e:91:ad:4f:c1:d0:86:0d:1c:72:45:03:e9:e3:d7:ca:d3:f0: fb:ef:d8:13:08:e1:42:c9:2f:97:42:6d:0a:74:72:7b:6b:2e: 38:31:11:95:04:1c:6a:e9:a1:a2:a0:51:58:b6:5c:6b:0e:58: 73:b4:00:f9:90:fe:4a:6d:75:8e:d9:a8:0a:ff:05:45:01:a2: 7e:f5:c8:2f:27:63:9f:03:fd:93:8b:6a:45:80:9a:76:6d:37: 76:78:22:4b:a0:35:e8:ea:dc:19:42:33:21:d2:04:8d:18:6c: 66:8d:f3:6d -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICL7QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTI4NDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEExMEQ5NUU0MTk2RUZD NTQ4NDA4NDI1NzY4RDRCRjMyN0U4RUE1NDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwGa3V0Zqml1Ut9UxQgzMG4CN4LEr/Q9DGqDbhah3yMGnOamJs q7aSPgG/a1JwL/uzdhWiN3THEbuGDQWtBXVx9j6D/f/zU89PczyWHShZKg5azr11 hntqvPgsiBqMlgbRb8aTCMRZ1qNv8JI68r8BQa6ltryx7Zcxbb1JFzpFGKjAc3b1 BNI7KnHNDp2NlMy0jieJvCTuRPpa0lenQnHm4bZALG/wVd+VdSDRbx9XFqShiy/K 6qkEqANAFTgQLL1qEk9cDxs3CdgIXDCTqteZWzxPtuqLJL5pRTEcHEdZw2TB7vpv 0C4PNq1sq6JN3Czg5svPqfnsGzMKQ+fBJRmPAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUoQ2V5Blu/FSECEJXaNS/Mn6OpUkwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL29RMlY1Qmx1X0ZTRUNFSlhh TlNfTW42T3BVay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgABMAcDBQZ7 wdpAMA0GCSqGSIb3DQEBCwUAA4IBAQCbgpWa8YrcTCyVa/J0VWRTGHkKEuoPypuO dbpEcNzmsarWAH87btsd6WXaljJyTO1+xI4LDFuiSH8kTIC3A2eGv/xveCML/o5J 2eqY31wH8OrrinlVNl/9c+PSTyopDERmHjYQIriIi6B+1Mq7aFBWss8AQrhoBJlN k/tQywwruu3Ia6GnySAZsi4P11f4h4ZOka1PwdCGDRxyRQPp49fK0/D779gTCOFC yS+XQm0KdHJ7ay44MRGVBBxq6aGioFFYtlxrDlhztAD5kP5KbXWO2agK/wVFAaJ+ 9cgvJ2OfA/2Ti2pFgJp2bTd2eCJLoDXo6twZQjMh0gSNGGxmjfNt -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:53 2024 by rpki-client on console-ams.rpki-client.org