$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/onBPpmLiLFzahz2gHWhsU3sFtfs.roa File: onBPpmLiLFzahz2gHWhsU3sFtfs.roa (raw, json) Hash identifier: 1RjumDIoonAnaozLelGChzHNS/OrYuF1UaeSWdOzWqI= Subject key identifier: A2:70:4F:A6:62:E2:2C:5C:DA:87:3D:A0:1D:68:6C:53:7B:05:B5:FB Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 31DD Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/onBPpmLiLFzahz2gHWhsU3sFtfs.roa Signing time: Mon 26 Aug 2024 05:31:01 +0000 ROA not before: Mon 26 Aug 2024 05:31:01 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 180.176.222.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12765 (0x31dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:31:01 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A2704FA662E22C5CDA873DA01D686C537B05B5FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:8b:0b:34:68:ea:ab:7e:b0:5b:96:66:3e:5f: 6b:ce:7c:48:a0:6a:75:d2:eb:fd:e8:1d:22:21:06: 4f:49:91:ee:69:50:69:8c:ce:8d:35:8a:57:10:95: 22:68:05:fc:b0:dd:30:af:f5:a4:72:1b:48:16:44: 53:b5:5b:1e:e1:f7:6c:38:f4:3e:16:dd:6b:ef:6c: 5d:9a:94:2c:a4:d5:0e:4e:27:5f:6a:3a:08:4f:98: e6:60:50:26:9b:45:65:9a:0f:21:27:e9:c9:97:e0: dd:88:f9:78:b1:40:fc:ad:9e:4a:a3:cc:76:f3:ea: 30:45:2d:22:1d:5e:51:a2:38:c0:18:9a:46:1d:a5: 0c:f0:00:e4:b6:91:1b:ec:dd:e1:b2:35:9c:cf:6c: f3:82:5e:53:a9:43:68:ee:07:8f:ca:97:00:c7:78: 89:d4:b5:87:5c:64:2b:39:0b:85:7e:82:ac:8b:34: 33:d8:a5:4f:0f:6c:a5:af:04:73:8a:2f:df:aa:97: 74:e2:04:7d:dc:df:19:32:f1:f2:50:c3:4e:82:70: fd:21:9c:12:3b:8a:04:66:95:d6:84:27:43:67:02: ae:65:1d:dc:14:28:f6:cb:4e:4b:c1:a4:8b:45:d0: 38:ef:56:20:ca:53:d7:12:47:db:62:d9:db:7a:c7: f1:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:70:4F:A6:62:E2:2C:5C:DA:87:3D:A0:1D:68:6C:53:7B:05:B5:FB X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/onBPpmLiLFzahz2gHWhsU3sFtfs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.176.222.0/24 Signature Algorithm: sha256WithRSAEncryption 82:cd:cd:d7:30:6f:f8:b4:f9:6a:f4:90:9b:a7:9c:ae:74:88: 2c:c6:c8:d6:d3:48:96:87:68:04:0d:b2:20:11:d9:db:11:cb: be:59:bc:ec:bf:1b:ab:27:dd:75:c2:b7:8d:46:85:b0:04:e9: ef:61:a2:91:2f:66:d4:64:5a:97:96:c7:29:90:dc:1c:ce:24: c8:8c:97:30:83:3c:e0:62:12:50:b1:04:3b:77:c5:c1:bc:f2: 62:83:7a:12:ff:28:38:8f:55:7d:e4:95:bc:3d:61:49:ca:e4: 68:6c:4c:aa:36:99:37:c6:ef:38:77:c7:b9:f8:a9:a2:32:1f: cd:75:5b:1e:19:f0:40:46:14:06:6c:bc:74:a6:3a:21:16:d6: 05:84:f9:65:1e:97:0c:20:f0:12:5b:0a:d8:1b:69:6b:4a:37: 37:18:c0:11:ab:f4:17:51:34:07:ad:97:31:1d:b1:b5:58:39: f0:e3:31:95:31:fb:bd:08:53:07:e7:62:e1:d2:df:3e:23:38: 2a:b0:d2:81:3c:96:16:85:e1:be:ee:b4:6a:02:89:62:d8:7e: 10:22:be:e9:03:c7:29:e9:25:6c:ef:37:4b:c8:6b:4f:de:18: 8b:1e:f4:a9:64:e0:02:d0:70:3a:3e:29:29:09:35:75:45:85: e5:c2:04:13 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMd0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMxMDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEEyNzA0RkE2NjJFMjJD NUNEQTg3M0RBMDFENjg2QzUzN0IwNUI1RkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2iws0aOqrfrBblmY+X2vOfEiganXS6/3oHSIhBk9Jke5pUGmM zo01ilcQlSJoBfyw3TCv9aRyG0gWRFO1Wx7h92w49D4W3WvvbF2alCyk1Q5OJ19q OghPmOZgUCabRWWaDyEn6cmX4N2I+XixQPytnkqjzHbz6jBFLSIdXlGiOMAYmkYd pQzwAOS2kRvs3eGyNZzPbPOCXlOpQ2juB4/KlwDHeInUtYdcZCs5C4V+gqyLNDPY pU8PbKWvBHOKL9+ql3TiBH3c3xky8fJQw06CcP0hnBI7igRmldaEJ0NnAq5lHdwU KPbLTkvBpItF0DjvViDKU9cSR9ti2dt6x/GdAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUonBPpmLiLFzahz2gHWhsU3sFtfswHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL29uQlBwbUxpTEZ6YWh6MmdI V2hzVTNzRnRmcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAC0 sN4wDQYJKoZIhvcNAQELBQADggEBAILNzdcwb/i0+Wr0kJunnK50iCzGyNbTSJaH aAQNsiAR2dsRy75ZvOy/G6sn3XXCt41GhbAE6e9hopEvZtRkWpeWxymQ3BzOJMiM lzCDPOBiElCxBDt3xcG88mKDehL/KDiPVX3klbw9YUnK5GhsTKo2mTfG7zh3x7n4 qaIyH811Wx4Z8EBGFAZsvHSmOiEW1gWE+WUelwwg8BJbCtgbaWtKNzcYwBGr9BdR NAetlzEdsbVYOfDjMZUx+70IUwfnYuHS3z4jOCqw0oE8lhaF4b7utGoCiWLYfhAi vukDxynpJWzvN0vIa0/eGIse9Klk4ALQcDo+KSkJNXVFheXCBBM= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:39 2024 by rpki-client on console-ams.rpki-client.org