$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/p2qVH8ESttz9njpkRKfgUxyasME.roa File: p2qVH8ESttz9njpkRKfgUxyasME.roa (raw, json) Hash identifier: /OTACIfeAWEMK4mA4z2qz913OkC5DfQ8hmKH9nR4Cjk= Subject key identifier: A7:6A:95:1F:C1:12:B6:DC:FD:9E:3A:64:44:A7:E0:53:1C:9A:B0:C1 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 325E Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/p2qVH8ESttz9njpkRKfgUxyasME.roa Signing time: Mon 26 Aug 2024 05:31:36 +0000 ROA not before: Mon 26 Aug 2024 05:31:36 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.192.144.128/26 maxlen: 26 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12894 (0x325e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:31:36 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A76A951FC112B6DCFD9E3A6444A7E0531C9AB0C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:d5:d1:17:44:23:77:7c:1b:a7:08:22:1f:43: 00:0d:23:06:13:5c:05:e5:29:1c:30:be:bf:3c:65: 6a:66:00:2d:df:03:2c:f8:08:a3:a6:82:89:f3:f1: d6:33:67:2d:dc:b6:f9:40:79:3d:6d:8e:ab:68:98: 9d:f8:cc:5f:ce:fa:0b:dc:6b:00:0a:fa:f2:07:c4: 5a:f4:41:ca:ae:11:44:3d:ae:87:c9:b4:1c:0d:84: 57:c6:eb:75:db:d6:81:b5:24:7b:bc:e9:d0:d8:92: 4a:3b:ac:11:9d:90:d9:00:4c:db:9d:3b:f6:74:a8: 27:e5:74:e3:12:fd:9a:c7:44:6c:6e:b0:29:55:b7: c4:a0:c5:8e:fc:dd:cf:91:79:b9:51:8c:18:2c:c9: 85:eb:d5:6d:85:ac:27:12:60:48:cc:8f:35:f3:02: 95:f7:c9:7c:49:ab:df:44:25:84:a5:f6:2a:81:96: 71:eb:07:a2:d9:22:40:dc:cf:da:4a:36:23:c9:b6: a9:da:c0:0c:38:80:d8:51:79:e2:9e:66:d4:33:86: c2:cb:52:ba:48:88:9d:10:13:7a:63:1e:9f:eb:19: cb:8e:70:5f:26:85:e6:ef:b5:50:62:a8:d9:4a:dd: 95:b2:af:cb:bd:cb:bc:c0:a0:f4:7c:81:8c:65:30: 17:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:6A:95:1F:C1:12:B6:DC:FD:9E:3A:64:44:A7:E0:53:1C:9A:B0:C1 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/p2qVH8ESttz9njpkRKfgUxyasME.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.192.144.128/26 Signature Algorithm: sha256WithRSAEncryption 8f:85:d9:06:2a:3e:bf:86:0a:26:51:44:57:d5:99:03:89:df: 92:b5:a3:ed:c9:b2:c7:06:95:8d:05:72:fa:e9:de:18:18:50: 5f:0c:ec:1d:31:29:ff:1e:be:fb:24:b8:67:02:3a:6c:66:1c: ad:09:f2:7b:8c:d2:b3:1a:d4:f1:f8:c3:c7:fd:2d:3c:78:fc: 8c:74:e5:7a:61:61:ea:4b:1c:f4:fd:0c:e3:02:76:81:d2:1e: d6:d9:7a:3f:0e:eb:17:06:db:a2:94:18:a2:39:90:6d:6b:81: d8:35:0b:1b:79:48:14:bd:04:48:a2:bf:53:56:1a:55:b7:89: c9:21:fe:68:c5:47:30:9b:a2:d9:0a:c2:ee:88:a7:dd:c3:43: b8:3c:6d:32:2a:fa:5a:66:f9:85:1e:30:d0:25:6e:d9:ed:eb: ab:b2:e3:5b:45:78:e3:53:4d:90:b4:35:19:93:37:91:8e:07: dc:72:c8:2f:e7:47:0a:54:ed:da:3a:0e:17:7b:7f:48:9f:85: 86:49:a1:72:5d:fc:3b:42:a7:e5:af:89:2f:14:f4:cb:bb:e9: 4a:2f:ce:fb:9b:6a:93:88:ad:11:ff:05:a5:17:b7:54:39:80: 01:8f:2e:5e:26:2e:4f:9d:20:ea:66:c9:8b:78:97:74:33:f5: 74:61:b6:c8 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICMl4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMxMzZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE3NkE5NTFGQzExMkI2 RENGRDlFM0E2NDQ0QTdFMDUzMUM5QUIwQzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDK1dEXRCN3fBunCCIfQwANIwYTXAXlKRwwvr88ZWpmAC3fAyz4 CKOmgonz8dYzZy3ctvlAeT1tjqtomJ34zF/O+gvcawAK+vIHxFr0QcquEUQ9rofJ tBwNhFfG63Xb1oG1JHu86dDYkko7rBGdkNkATNudO/Z0qCfldOMS/ZrHRGxusClV t8SgxY783c+ReblRjBgsyYXr1W2FrCcSYEjMjzXzApX3yXxJq99EJYSl9iqBlnHr B6LZIkDcz9pKNiPJtqnawAw4gNhReeKeZtQzhsLLUrpIiJ0QE3pjHp/rGcuOcF8m hebvtVBiqNlK3ZWyr8u9y7zAoPR8gYxlMBdTAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUp2qVH8ESttz9njpkRKfgUxyasMEwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3AycVZIOEVTdHR6OW5qcGtS S2ZnVXh5YXNNRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgABMAcDBQZ7 wJCAMA0GCSqGSIb3DQEBCwUAA4IBAQCPhdkGKj6/hgomUURX1ZkDid+StaPtybLH BpWNBXL66d4YGFBfDOwdMSn/Hr77JLhnAjpsZhytCfJ7jNKzGtTx+MPH/S08ePyM dOV6YWHqSxz0/QzjAnaB0h7W2Xo/DusXBtuilBiiOZBta4HYNQsbeUgUvQRIor9T VhpVt4nJIf5oxUcwm6LZCsLuiKfdw0O4PG0yKvpaZvmFHjDQJW7Z7eursuNbRXjj U02QtDUZkzeRjgfccsgv50cKVO3aOg4Xe39In4WGSaFyXfw7Qqflr4kvFPTLu+lK L877m2qTiK0R/wWlF7dUOYABjy5eJi5PnSDqZsmLeJd0M/V0YbbI -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:53 2024 by rpki-client on console-ams.rpki-client.org