$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/of4u_TBOHw5ZeM8ILkp3UlVjKH0.roa File: of4u_TBOHw5ZeM8ILkp3UlVjKH0.roa (raw, json) Hash identifier: UHXHzyCuwYjofp/ViXtiU/yqih8ue2pCl9mM/VdLSeQ= Subject key identifier: A1:FE:2E:FD:30:4E:1F:0E:59:78:CF:08:2E:4A:77:52:55:63:28:7D Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3239 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/of4u_TBOHw5ZeM8ILkp3UlVjKH0.roa Signing time: Mon 26 Aug 2024 05:31:25 +0000 ROA not before: Mon 26 Aug 2024 05:31:25 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 180.177.40.0/21 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12857 (0x3239) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:31:25 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A1FE2EFD304E1F0E5978CF082E4A77525563287D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:49:b3:b3:7f:33:b4:0f:8b:40:be:c5:cf:37: f0:fe:cd:1b:1e:c7:03:3e:df:4c:7e:9f:83:30:a9: 35:d7:b7:13:bb:44:f7:fb:16:c1:e4:ec:15:06:c9: e0:49:01:8c:a0:33:76:ba:1a:e7:30:e8:60:4a:6f: 08:79:3f:7e:5a:99:98:e6:b5:aa:9d:48:94:6c:f7: 5c:e2:8c:62:ca:a0:ea:13:32:f4:36:4c:81:cd:dc: f3:3d:75:aa:ea:d8:7d:dd:09:45:c6:81:29:ac:e5: 54:1f:10:b0:95:cc:ae:d7:c9:62:ee:c1:ab:11:78: dd:b6:ce:3d:46:9a:88:22:d6:01:5b:39:b8:87:16: 4f:2a:a6:e8:bf:1e:e6:0e:d7:37:11:a0:c1:e9:a8: 54:70:6f:7b:a2:09:0f:61:90:c9:f9:69:cb:05:72: 80:2e:33:db:64:d9:19:72:0c:39:3b:a8:17:55:b1: 37:76:f9:49:cc:73:87:82:05:cf:8d:72:87:98:18: df:b3:e4:77:d1:ca:40:9c:77:54:bc:48:77:e5:14: e3:2d:17:32:2d:e7:8b:0a:ee:ea:cb:bc:55:c9:01: 6a:c4:79:de:19:70:d1:00:82:f9:4c:50:44:8e:15: 1e:40:1a:6b:95:7b:5c:69:b3:4a:b2:59:cd:4a:b6: ec:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:FE:2E:FD:30:4E:1F:0E:59:78:CF:08:2E:4A:77:52:55:63:28:7D X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/of4u_TBOHw5ZeM8ILkp3UlVjKH0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.177.40.0/21 Signature Algorithm: sha256WithRSAEncryption 0f:a1:c9:60:e3:c2:0a:aa:cf:7d:c1:14:7d:37:a1:ce:61:f3: a1:be:da:2f:e4:90:ab:6e:f4:7f:6c:2d:af:dc:20:76:04:26: f3:b1:65:12:20:01:12:fa:af:d5:d7:7a:47:b2:0e:c0:f0:b9: 3a:36:66:8b:ef:ca:89:41:c4:94:b2:d4:0f:c3:50:df:fe:98: 8c:ad:15:5c:8e:de:4c:1b:dd:72:97:0f:10:43:f8:fd:d2:76: 28:98:bb:2f:3b:8a:f6:8d:8d:f9:31:d9:e7:c4:c4:2a:1a:3e: 58:ec:4d:91:92:62:f5:ef:40:5a:24:45:d1:d1:fa:b7:2e:04: 49:fb:34:62:bd:84:71:6e:b1:62:39:a5:96:fe:98:9f:1c:18: af:12:8b:40:79:e5:d8:e3:a0:90:dc:01:3e:11:43:63:11:6a: a5:cc:df:3e:c8:2a:cc:4b:4e:36:c2:b6:34:78:09:56:97:0e: e5:37:2b:d6:b8:af:f8:27:44:c2:9d:dc:ba:b2:53:a3:a8:e3: 92:22:d2:37:95:33:1e:f1:74:a6:eb:2d:18:96:2a:d4:2d:f4: 1c:7a:e9:1d:d3:a1:6e:21:23:c2:88:4a:14:25:82:10:3e:55: 6e:7c:8c:5c:2e:11:f8:5c:99:a1:da:64:13:43:7c:39:49:b5: 07:6d:2e:29 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMjkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMxMjVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEExRkUyRUZEMzA0RTFG MEU1OTc4Q0YwODJFNEE3NzUyNTU2MzI4N0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCsSbOzfzO0D4tAvsXPN/D+zRsexwM+30x+n4MwqTXXtxO7RPf7 FsHk7BUGyeBJAYygM3a6Gucw6GBKbwh5P35amZjmtaqdSJRs91zijGLKoOoTMvQ2 TIHN3PM9darq2H3dCUXGgSms5VQfELCVzK7XyWLuwasReN22zj1Gmogi1gFbObiH Fk8qpui/HuYO1zcRoMHpqFRwb3uiCQ9hkMn5acsFcoAuM9tk2RlyDDk7qBdVsTd2 +UnMc4eCBc+NcoeYGN+z5HfRykCcd1S8SHflFOMtFzIt54sK7urLvFXJAWrEed4Z cNEAgvlMUESOFR5AGmuVe1xps0qyWc1KtuxfAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUof4u/TBOHw5ZeM8ILkp3UlVjKH0wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL29mNHVfVEJPSHc1WmVNOElM a3AzVWxWaktIMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0 sSgwDQYJKoZIhvcNAQELBQADggEBAA+hyWDjwgqqz33BFH03oc5h86G+2i/kkKtu 9H9sLa/cIHYEJvOxZRIgARL6r9XXekeyDsDwuTo2ZovvyolBxJSy1A/DUN/+mIyt FVyO3kwb3XKXDxBD+P3SdiiYuy87ivaNjfkx2efExCoaPljsTZGSYvXvQFokRdHR +rcuBEn7NGK9hHFusWI5pZb+mJ8cGK8Si0B55djjoJDcAT4RQ2MRaqXM3z7IKsxL TjbCtjR4CVaXDuU3K9a4r/gnRMKd3LqyU6Oo45Ii0jeVMx7xdKbrLRiWKtQt9Bx6 6R3ToW4hI8KIShQlghA+VW58jFwuEfhcmaHaZBNDfDlJtQdtLik= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:52 2024 by rpki-client on console-fra.rpki-client.org