$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ooRnVZjI5zPjNlQeX_SoGrVq92E.roa File: ooRnVZjI5zPjNlQeX_SoGrVq92E.roa (raw, json) Hash identifier: FNeCvbStZoEVABfKWy0podO3xqH3xJjPb+UipR9pkBo= Subject key identifier: A2:84:67:55:98:C8:E7:33:E3:36:54:1E:5F:F4:A8:1A:B5:6A:F7:61 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 31ED Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ooRnVZjI5zPjNlQeX_SoGrVq92E.roa Signing time: Mon 26 Aug 2024 05:31:05 +0000 ROA not before: Mon 26 Aug 2024 05:31:05 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.194.8.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12781 (0x31ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:31:05 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A284675598C8E733E336541E5FF4A81AB56AF761 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:0f:c9:ed:58:4c:ef:95:3d:17:f3:18:86:38: 7e:76:1b:87:6a:31:fa:4d:34:35:8d:ec:4f:e6:30: d6:67:9c:80:d0:6d:07:1c:dd:b3:1f:70:83:c2:b6: 50:68:16:d3:bc:0b:4e:4f:14:09:e7:ec:ee:d7:5b: 3d:86:7c:5d:0e:3f:5f:a8:58:1b:51:cd:c2:26:5b: fc:15:6e:bf:66:8d:22:4c:9e:09:15:04:67:e3:39: c4:74:df:b7:b1:04:4c:2b:ee:54:17:e6:fa:d0:46: 97:73:f3:5b:04:5d:44:47:c2:28:ba:9f:c3:be:c5: 55:35:e9:71:bb:ff:6e:7a:14:78:fa:74:6a:93:f4: 19:8e:03:f7:6d:d1:34:70:c1:bc:82:f6:26:25:5d: 21:34:49:04:e7:87:27:3f:f1:a5:6a:cb:0c:19:93: e4:ca:bd:ea:47:0e:d1:42:0f:e2:18:a5:7d:1e:a2: f6:4d:5b:e7:f7:34:49:f8:7f:71:ae:fd:48:0d:64: c6:81:a9:5a:51:b4:d2:46:cc:e7:ba:39:9f:3b:92: 07:34:4f:1a:51:fd:b5:a9:e8:f2:63:dd:a5:42:ca: ba:89:71:50:34:1f:d2:8f:1b:4c:50:79:39:b5:23: 40:ba:58:2c:c9:da:07:1b:86:49:8a:37:06:5f:7e: 24:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:84:67:55:98:C8:E7:33:E3:36:54:1E:5F:F4:A8:1A:B5:6A:F7:61 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ooRnVZjI5zPjNlQeX_SoGrVq92E.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.8.0/22 Signature Algorithm: sha256WithRSAEncryption b8:43:0a:60:ef:d3:d3:3a:f8:36:c1:0b:08:7d:ce:fa:06:80: ab:0d:cc:7c:39:85:4e:2c:70:80:68:b4:c7:be:0e:39:20:14: 32:74:8f:22:56:50:05:db:bc:d9:73:ca:b7:c2:b6:05:3d:12: 5f:84:ef:05:7a:79:73:82:95:c0:a0:40:8a:17:f9:cf:90:00: ab:d7:d4:21:63:aa:a1:8b:6e:d4:ed:91:ba:4b:f8:1b:54:40: ed:f0:8a:44:f7:07:79:f3:ae:77:48:79:71:f1:bc:22:9c:69: 7e:10:9f:5d:82:d1:5c:d0:09:2a:1f:e8:16:80:4b:94:03:87: 7c:8e:ee:cd:00:2f:40:5b:6e:5c:29:2e:32:2f:a3:d2:37:53: 31:28:29:c2:69:ec:d8:72:5d:a0:9b:60:85:c4:de:d6:f2:4b: cf:fe:e8:59:07:b2:61:03:c4:c5:75:28:54:3e:6a:ac:d5:49: 14:13:28:04:b0:db:eb:8e:b3:2d:40:91:30:e8:a7:18:dd:26: b6:a0:2b:51:92:7b:3e:ff:23:2a:11:a6:cb:63:db:0c:68:21: 14:b2:3e:b3:7d:d7:00:8c:23:ba:cb:9d:bb:62:29:b3:24:20: 14:85:02:19:fb:fb:68:a3:19:7f:67:d6:fd:59:92:d0:e5:1e: a4:1f:3c:d8 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMe0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMxMDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEEyODQ2NzU1OThDOEU3 MzNFMzM2NTQxRTVGRjRBODFBQjU2QUY3NjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCTD8ntWEzvlT0X8xiGOH52G4dqMfpNNDWN7E/mMNZnnIDQbQcc 3bMfcIPCtlBoFtO8C05PFAnn7O7XWz2GfF0OP1+oWBtRzcImW/wVbr9mjSJMngkV BGfjOcR037exBEwr7lQX5vrQRpdz81sEXURHwii6n8O+xVU16XG7/256FHj6dGqT 9BmOA/dt0TRwwbyC9iYlXSE0SQTnhyc/8aVqywwZk+TKvepHDtFCD+IYpX0eovZN W+f3NEn4f3Gu/UgNZMaBqVpRtNJGzOe6OZ87kgc0TxpR/bWp6PJj3aVCyrqJcVA0 H9KPG0xQeTm1I0C6WCzJ2gcbhkmKNwZffiQDAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUooRnVZjI5zPjNlQeX/SoGrVq92EwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL29vUm5WWmpJNXpQak5sUWVY X1NvR3JWcTkyRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wggwDQYJKoZIhvcNAQELBQADggEBALhDCmDv09M6+DbBCwh9zvoGgKsNzHw5hU4s cIBotMe+DjkgFDJ0jyJWUAXbvNlzyrfCtgU9El+E7wV6eXOClcCgQIoX+c+QAKvX 1CFjqqGLbtTtkbpL+BtUQO3wikT3B3nzrndIeXHxvCKcaX4Qn12C0VzQCSof6BaA S5QDh3yO7s0AL0BbblwpLjIvo9I3UzEoKcJp7NhyXaCbYIXE3tbyS8/+6FkHsmED xMV1KFQ+aqzVSRQTKASw2+uOsy1AkTDopxjdJragK1GSez7/IyoRpstj2wxoIRSy PrN91wCMI7rLnbtiKbMkIBSFAhn7+2ijGX9n1v1ZktDlHqQfPNg= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:53 2024 by rpki-client on console-ams.rpki-client.org