$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/q3gX1zQ2ynrEW_Pii020V5pc7UY.roa File: q3gX1zQ2ynrEW_Pii020V5pc7UY.roa (raw, json) Hash identifier: vX5Iurh3AoU2572bNwaYSoZRiIaCPt96cO476gUWqMI= Subject key identifier: AB:78:17:D7:34:36:CA:7A:C4:5B:F3:E2:8B:4D:B4:57:9A:5C:ED:46 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3223 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/q3gX1zQ2ynrEW_Pii020V5pc7UY.roa Signing time: Mon 26 Aug 2024 05:31:18 +0000 ROA not before: Mon 26 Aug 2024 05:31:18 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.195.128.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12835 (0x3223) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:31:18 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=AB7817D73436CA7AC45BF3E28B4DB4579A5CED46 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:4e:d1:e3:9d:75:02:ea:1c:6b:26:e3:a8:8c: ad:ea:3f:40:2b:c7:15:4f:db:fd:31:b3:dc:68:a8: da:33:1b:90:cc:c6:7d:4a:57:15:63:3d:c7:71:ab: 96:fd:6e:d1:c7:bd:40:91:43:c0:6b:13:67:a1:ce: b3:08:ec:fb:fb:6e:82:00:14:42:e8:19:36:d2:b0: 46:9f:cc:b1:13:01:38:7a:b3:5c:2f:25:c3:f9:de: c8:6a:d0:9e:bd:8f:6b:8b:12:e4:2e:58:14:40:b8: 34:f6:c4:d2:e7:86:4a:a4:93:c8:ff:1b:4b:67:ba: 66:86:84:5a:07:3e:6b:bd:3a:56:77:0f:fe:64:07: 39:62:e8:89:9d:3c:0c:52:e5:39:a4:98:a3:82:a4: e7:6c:4e:ef:67:1a:69:9d:42:c0:85:db:7d:00:13: b4:4d:28:c4:08:a5:63:54:ec:c6:30:42:7a:5d:e6: e5:15:99:eb:f3:60:b7:fa:9d:20:a0:ce:1d:f5:23: a0:2a:0b:42:8f:c9:7a:7b:ed:3b:94:30:56:41:47: 5e:cf:0d:66:fa:c3:aa:cd:15:66:04:17:ad:d8:88: 5f:e7:1f:da:a9:22:61:ec:05:c3:91:5a:03:3f:f9: 48:80:a3:de:07:4a:3b:63:8e:4e:98:c2:49:80:5a: 2f:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:78:17:D7:34:36:CA:7A:C4:5B:F3:E2:8B:4D:B4:57:9A:5C:ED:46 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/q3gX1zQ2ynrEW_Pii020V5pc7UY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.128.0/20 Signature Algorithm: sha256WithRSAEncryption 90:37:f8:ec:7a:af:92:52:30:7d:f4:ae:02:e0:a3:56:8a:fe: 7a:25:cf:90:7c:5f:28:72:0e:1a:79:da:a8:9b:e5:02:2c:95: 7e:92:7d:a6:2f:d1:49:17:78:72:0c:e1:82:6a:39:d5:d6:31: bb:6d:07:f4:31:9e:f7:67:3a:e3:90:3b:78:db:ab:4d:d0:73: 04:44:76:69:28:5a:e0:2d:ad:d1:1b:9b:d4:f8:59:a6:54:50: 52:b8:f9:79:d3:c5:fc:eb:6b:91:58:a3:3e:1a:4d:d1:7e:68: 83:b8:c1:e4:f7:10:f0:4b:9f:a2:09:52:c0:1b:1f:87:88:49: 2a:93:d8:f9:2d:44:13:d4:4d:0d:32:ba:17:fe:1e:ba:29:dc: 81:9e:ce:4f:db:ab:34:a8:7e:bd:57:1a:cf:f1:a0:b5:db:79: 60:af:a5:97:24:a5:92:21:4e:a3:ad:de:d9:1f:42:14:d6:39: 1d:2e:20:d8:c4:2b:76:4d:dc:1b:df:6e:eb:b9:79:a9:dc:26: 50:24:94:ab:49:5f:c2:53:18:68:b5:46:16:9e:bd:8c:7e:32: a1:dd:3c:12:1b:b4:71:d1:16:96:22:4e:a9:58:cb:ed:8a:bc: c8:74:0d:21:cb:a0:4b:9c:42:fa:b4:2a:58:7b:8f:71:69:02: 9b:6c:53:50 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMiMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMxMThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEFCNzgxN0Q3MzQzNkNB N0FDNDVCRjNFMjhCNERCNDU3OUE1Q0VENDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFTtHjnXUC6hxrJuOojK3qP0ArxxVP2/0xs9xoqNozG5DMxn1K VxVjPcdxq5b9btHHvUCRQ8BrE2ehzrMI7Pv7boIAFELoGTbSsEafzLETATh6s1wv JcP53shq0J69j2uLEuQuWBRAuDT2xNLnhkqkk8j/G0tnumaGhFoHPmu9OlZ3D/5k Bzli6ImdPAxS5TmkmKOCpOdsTu9nGmmdQsCF230AE7RNKMQIpWNU7MYwQnpd5uUV mevzYLf6nSCgzh31I6AqC0KPyXp77TuUMFZBR17PDWb6w6rNFWYEF63YiF/nH9qp ImHsBcORWgM/+UiAo94HSjtjjk6YwkmAWi97AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUq3gX1zQ2ynrEW/Pii020V5pc7UYwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3EzZ1gxelEyeW5yRVdfUGlp MDIwVjVwYzdVWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAR7 w4AwDQYJKoZIhvcNAQELBQADggEBAJA3+Ox6r5JSMH30rgLgo1aK/nolz5B8Xyhy Dhp52qib5QIslX6SfaYv0UkXeHIM4YJqOdXWMbttB/QxnvdnOuOQO3jbq03QcwRE dmkoWuAtrdEbm9T4WaZUUFK4+XnTxfzra5FYoz4aTdF+aIO4weT3EPBLn6IJUsAb H4eISSqT2PktRBPUTQ0yuhf+Hrop3IGezk/bqzSofr1XGs/xoLXbeWCvpZckpZIh TqOt3tkfQhTWOR0uINjEK3ZN3Bvfbuu5eancJlAklKtJX8JTGGi1RhaevYx+MqHd PBIbtHHRFpYiTqlYy+2KvMh0DSHLoEucQvq0Klh7j3FpAptsU1A= -----END CERTIFICATE-----Generated at Sat Sep 21 00:29:55 2024 by rpki-client on console-fra.rpki-client.org