$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/pOr18HShzLtYZrCabRCMjQlLgZ0.roa File: pOr18HShzLtYZrCabRCMjQlLgZ0.roa (raw, json) Hash identifier: 7GOkEZ1IDv3XMTlgDhrWPnGB3I7MPErOsB2efW3ubmE= Subject key identifier: A4:EA:F5:F0:74:A1:CC:BB:58:66:B0:9A:6D:10:8C:8D:09:4B:81:9D Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3066 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/pOr18HShzLtYZrCabRCMjQlLgZ0.roa Signing time: Mon 26 Aug 2024 05:29:25 +0000 ROA not before: Mon 26 Aug 2024 05:29:25 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.194.240.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12390 (0x3066) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:29:25 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A4EAF5F074A1CCBB5866B09A6D108C8D094B819D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:a8:19:82:5c:25:45:a9:1a:b0:51:eb:34:77: b7:24:0a:9b:1b:94:8f:b4:3e:8b:4e:32:86:8c:6e: 34:8f:55:92:98:12:bb:76:8a:87:a8:db:29:7c:ce: f9:46:53:f6:64:a9:57:0e:1a:1d:53:25:c4:eb:8c: 62:ea:e5:29:50:73:8e:18:bf:9a:5c:69:41:36:a0: 70:f1:8c:da:4f:6d:36:0c:99:dd:11:a0:47:92:75: 0c:73:c6:32:a1:41:3a:df:20:d9:68:9d:24:3e:ef: 34:2a:32:a8:1d:67:50:7e:e9:aa:98:93:9d:cb:bd: ad:f8:2f:08:cd:86:97:7c:f6:32:d0:0c:95:32:5b: 1e:4a:64:db:74:10:9c:c6:7e:c4:7f:15:0b:ce:c0: 41:9b:0b:8e:17:e0:37:c7:5c:cd:63:28:9d:dd:5d: e9:e3:31:6a:32:84:b6:b8:2a:c0:be:f3:f6:7a:68: 8c:33:ca:19:fb:48:6b:2d:1c:5f:d8:ab:2c:8e:63: db:71:72:c9:ae:1d:33:1c:0c:97:f2:c0:be:8e:4b: f1:15:46:8c:4f:d9:5a:00:5d:4e:aa:ec:a2:01:58: 0a:3a:60:ec:83:b6:ac:ac:34:38:86:80:15:15:32: cc:d3:41:8c:62:89:e7:10:c7:1b:cf:73:ff:74:e6: 04:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:EA:F5:F0:74:A1:CC:BB:58:66:B0:9A:6D:10:8C:8D:09:4B:81:9D X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/pOr18HShzLtYZrCabRCMjQlLgZ0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.240.0/21 Signature Algorithm: sha256WithRSAEncryption 4e:d5:d3:79:ee:e8:3b:c9:70:53:7c:e2:d3:70:2d:6a:c8:f9: f8:c8:da:b7:1a:64:36:a6:68:3b:36:e8:8e:df:d9:60:bc:c4: dd:ef:cb:7a:20:44:a1:2a:f1:db:58:21:c4:d3:ac:c4:ce:0f: 37:bf:40:65:b3:e5:48:81:a4:be:59:5e:35:22:f1:52:c9:4a: 16:2e:16:7d:2a:17:70:e2:9d:c6:48:37:8e:08:47:53:99:64: cd:70:62:4d:66:46:b3:7c:ea:89:3e:18:a4:af:8f:36:2d:9d: 51:da:03:c0:4d:04:b5:43:9e:aa:90:15:ab:1d:66:32:fb:06: aa:91:f8:33:73:5f:12:df:b0:d2:bf:08:57:9f:5e:90:88:ce: cb:e4:c8:84:91:c3:6e:74:ce:7e:f6:f5:a4:d1:ef:7e:cc:ad: ca:53:3b:44:cf:45:0f:aa:63:99:32:fc:57:59:5c:43:07:d9: 28:b1:67:15:88:ed:58:5c:6d:f0:1e:27:c7:ca:c4:65:83:32: ea:8f:fd:3d:ea:54:93:e0:e0:fa:fb:c9:86:11:d3:95:89:47: 63:8b:22:e5:63:38:0a:8e:dd:e6:aa:61:97:c6:8a:d3:a9:61: bd:e6:14:f8:2b:78:0c:96:c4:08:fe:bc:7b:2a:be:a2:9b:24: bf:9e:bb:a8 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMGYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTI5MjVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE0RUFGNUYwNzRBMUND QkI1ODY2QjA5QTZEMTA4QzhEMDk0QjgxOUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRqBmCXCVFqRqwUes0d7ckCpsblI+0PotOMoaMbjSPVZKYErt2 ioeo2yl8zvlGU/ZkqVcOGh1TJcTrjGLq5SlQc44Yv5pcaUE2oHDxjNpPbTYMmd0R oEeSdQxzxjKhQTrfINlonSQ+7zQqMqgdZ1B+6aqYk53Lva34LwjNhpd89jLQDJUy Wx5KZNt0EJzGfsR/FQvOwEGbC44X4DfHXM1jKJ3dXenjMWoyhLa4KsC+8/Z6aIwz yhn7SGstHF/YqyyOY9txcsmuHTMcDJfywL6OS/EVRoxP2VoAXU6q7KIBWAo6YOyD tqysNDiGgBUVMszTQYxiiecQxxvPc/905gR1AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUpOr18HShzLtYZrCabRCMjQlLgZ0wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3BPcjE4SFNoekx0WVpyQ2Fi UkNNalFsTGdaMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7 wvAwDQYJKoZIhvcNAQELBQADggEBAE7V03nu6DvJcFN84tNwLWrI+fjI2rcaZDam aDs26I7f2WC8xN3vy3ogRKEq8dtYIcTTrMTODze/QGWz5UiBpL5ZXjUi8VLJShYu Fn0qF3DincZIN44IR1OZZM1wYk1mRrN86ok+GKSvjzYtnVHaA8BNBLVDnqqQFasd ZjL7BqqR+DNzXxLfsNK/CFefXpCIzsvkyISRw250zn729aTR737MrcpTO0TPRQ+q Y5ky/FdZXEMH2SixZxWI7VhcbfAeJ8fKxGWDMuqP/T3qVJPg4Pr7yYYR05WJR2OL IuVjOAqO3eaqYZfGitOpYb3mFPgreAyWxAj+vHsqvqKbJL+eu6g= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:54 2024 by rpki-client on console-ams.rpki-client.org