$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/quPnzmWynRfN1hrzmxDEyvc7PVk.roa File: quPnzmWynRfN1hrzmxDEyvc7PVk.roa (raw, json) Hash identifier: 3Xb1ZmMnTeN0sR4bgW9cMno3HdAJxOUGioAOYHvxQnU= Subject key identifier: AA:E3:E7:CE:65:B2:9D:17:CD:D6:1A:F3:9B:10:C4:CA:F7:3B:3D:59 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 31DA Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/quPnzmWynRfN1hrzmxDEyvc7PVk.roa Signing time: Mon 26 Aug 2024 05:31:01 +0000 ROA not before: Mon 26 Aug 2024 05:31:01 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.195.44.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12762 (0x31da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:31:01 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=AAE3E7CE65B29D17CDD61AF39B10C4CAF73B3D59 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:5a:d6:aa:8d:a7:43:e8:ad:d1:4d:fd:7f:f2: 6c:27:9a:eb:61:ea:e6:ec:cc:54:21:5e:c9:b9:87: ff:2a:54:77:e7:94:e6:c3:25:18:fc:bc:65:e9:07: fa:10:35:7c:c2:cb:fe:d9:71:73:bd:9a:66:86:0c: 29:ed:30:da:a6:aa:1f:59:3b:66:9e:ef:c5:60:41: 7f:e3:59:06:f0:63:23:5a:e6:51:52:62:48:c4:98: 9c:bc:93:79:ee:35:a5:bb:f1:de:36:4c:10:9b:02: ec:6b:2b:be:d1:0f:5a:0e:23:4d:7e:1a:43:51:3e: 65:82:38:91:f4:2a:d9:4b:44:e6:75:dd:d4:e8:a3: 94:f2:ae:ee:59:e8:b9:6c:dd:d6:20:b1:32:0e:89: 24:8e:79:3b:b1:48:cb:b4:f9:d3:3a:95:6a:a9:61: 0c:b4:48:4a:fb:3e:6b:64:1d:dd:29:23:00:5e:e5: 6e:49:88:27:eb:46:64:dc:b5:51:98:b2:4d:9b:2e: a2:19:94:80:ae:3f:05:48:f6:ea:28:c8:7e:0e:9b: 80:2d:37:f1:e4:b9:aa:5e:2f:9c:1c:0c:ba:80:80: 47:7b:66:0f:54:f2:c8:2a:2b:41:d8:46:b6:a7:d0: 28:75:81:02:8f:27:3b:de:86:9b:d9:0f:7b:46:25: 68:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:E3:E7:CE:65:B2:9D:17:CD:D6:1A:F3:9B:10:C4:CA:F7:3B:3D:59 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/quPnzmWynRfN1hrzmxDEyvc7PVk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.44.0/22 Signature Algorithm: sha256WithRSAEncryption a5:e3:9d:a7:f0:ee:be:b0:ed:82:4e:e8:8c:e4:c3:65:7e:dc: 4b:12:cf:03:61:ba:62:2d:ae:b2:48:90:84:44:a6:5d:d1:b9: c1:5a:91:e7:60:13:d3:48:07:1e:47:35:c8:59:58:b5:86:8f: 46:c0:22:ea:5e:15:ed:33:a1:6b:09:a3:4a:ee:a7:73:98:62: c8:77:81:28:22:9d:94:42:83:d2:53:a4:60:48:60:1b:dc:77: bd:c0:95:8a:57:b7:a8:f1:2e:12:e3:9c:41:44:5a:0c:bf:b6: 09:cd:1e:d2:51:5f:84:62:ed:a6:38:67:85:b5:cb:65:f8:17: d1:68:5a:f5:c3:d9:8a:6e:ef:57:c6:f9:93:e5:9e:68:bb:4b: 3f:10:e3:e6:91:6e:c3:7c:8a:fe:f3:ab:30:16:db:03:8e:7f: a0:7f:95:d2:46:5c:cb:a3:6e:ed:95:0b:55:f2:1d:8b:38:a9: 2c:1c:02:9a:22:12:bf:a3:28:56:c6:81:97:36:4a:cf:59:1a: c0:e5:cf:af:d1:07:71:15:86:f5:31:0a:8b:48:18:d8:25:96: 61:00:2d:40:22:d9:ec:02:99:83:f1:8d:72:30:ec:a3:cf:99: 3b:c3:2a:32:42:4f:a3:fa:e2:25:a4:89:7b:dc:90:d6:97:4f: 2d:c1:59:67 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMdowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMxMDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEFBRTNFN0NFNjVCMjlE MTdDREQ2MUFGMzlCMTBDNENBRjczQjNENTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCfWtaqjadD6K3RTf1/8mwnmuth6ubszFQhXsm5h/8qVHfnlObD JRj8vGXpB/oQNXzCy/7ZcXO9mmaGDCntMNqmqh9ZO2ae78VgQX/jWQbwYyNa5lFS YkjEmJy8k3nuNaW78d42TBCbAuxrK77RD1oOI01+GkNRPmWCOJH0KtlLROZ13dTo o5Tyru5Z6Lls3dYgsTIOiSSOeTuxSMu0+dM6lWqpYQy0SEr7PmtkHd0pIwBe5W5J iCfrRmTctVGYsk2bLqIZlICuPwVI9uooyH4Om4AtN/HkuapeL5wcDLqAgEd7Zg9U 8sgqK0HYRran0Ch1gQKPJzvehpvZD3tGJWi7AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUquPnzmWynRfN1hrzmxDEyvc7PVkwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3F1UG56bVd5blJmTjFocnpt eERFeXZjN1BWay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wywwDQYJKoZIhvcNAQELBQADggEBAKXjnafw7r6w7YJO6Izkw2V+3EsSzwNhumIt rrJIkIREpl3RucFakedgE9NIBx5HNchZWLWGj0bAIupeFe0zoWsJo0rup3OYYsh3 gSginZRCg9JTpGBIYBvcd73AlYpXt6jxLhLjnEFEWgy/tgnNHtJRX4Ri7aY4Z4W1 y2X4F9FoWvXD2Ypu71fG+ZPlnmi7Sz8Q4+aRbsN8iv7zqzAW2wOOf6B/ldJGXMuj bu2VC1XyHYs4qSwcApoiEr+jKFbGgZc2Ss9ZGsDlz6/RB3EVhvUxCotIGNgllmEA LUAi2ewCmYPxjXIw7KPPmTvDKjJCT6P64iWkiXvckNaXTy3BWWc= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:23 2024 by rpki-client on console-ams.rpki-client.org