$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/r4JZXoFIN6zXC5seUit_rp1aLAo.roa File: r4JZXoFIN6zXC5seUit_rp1aLAo.roa (raw, json) Hash identifier: /X/DJgHcve+g1456wslJ+WcseDhbgWscZfZIpTAJV1w= Subject key identifier: AF:82:59:5E:81:48:37:AC:D7:0B:9B:1E:52:2B:7F:AE:9D:5A:2C:0A Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 30A1 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/r4JZXoFIN6zXC5seUit_rp1aLAo.roa Signing time: Mon 26 Aug 2024 05:29:39 +0000 ROA not before: Mon 26 Aug 2024 05:29:39 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 106.1.112.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12449 (0x30a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:29:39 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=AF82595E814837ACD70B9B1E522B7FAE9D5A2C0A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:de:4e:23:2f:e0:ff:a3:0c:a2:dc:2f:46:90: 27:fa:7a:73:6e:07:e2:87:11:00:98:11:0f:2a:83: 0f:b0:ad:2c:c9:6a:64:9b:52:0e:ee:a8:23:5f:59: 02:2f:c7:87:09:24:9b:cc:c5:a2:c3:58:0a:b5:16: 56:af:43:49:f7:0d:8c:3e:a5:c2:97:da:05:32:d8: 31:01:fe:25:75:1f:93:99:08:aa:c1:57:17:d4:df: 06:3b:a1:c3:9c:d5:ed:0f:91:37:39:25:62:e3:8e: cb:58:de:c8:d9:5c:14:9b:ba:ce:b4:ca:ff:fc:07: eb:90:c1:e4:88:6d:b5:01:c7:c4:04:b5:0b:05:ce: f3:f7:0f:e7:1e:23:11:99:6f:6f:d5:b0:6c:40:b9: f3:d7:c4:74:e4:cc:2d:3e:34:35:78:b7:9c:10:31: 9e:33:d0:3b:bd:e0:61:92:f1:3e:e7:04:56:9a:8c: 9f:02:9e:df:69:96:9f:9c:ec:a9:67:40:3e:1a:0f: 8a:c3:46:2b:7b:52:a8:67:6c:00:a1:f1:24:e4:58: 0b:ab:d6:5e:65:bc:41:51:2c:10:6d:47:b0:a5:59: 67:37:c9:1e:9c:b1:4e:06:13:2b:65:b4:75:ac:0b: 1b:0c:23:88:a7:ec:79:bb:60:31:27:de:c1:36:45: 37:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:82:59:5E:81:48:37:AC:D7:0B:9B:1E:52:2B:7F:AE:9D:5A:2C:0A X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/r4JZXoFIN6zXC5seUit_rp1aLAo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 106.1.112.0/22 Signature Algorithm: sha256WithRSAEncryption 8a:71:d3:0d:7a:a4:d9:f3:5d:5f:c7:d1:0c:96:11:fe:21:06: c6:84:6e:a1:8a:38:64:e8:15:74:b2:d4:d0:3e:d2:3c:53:4a: 7e:88:bf:a6:53:1b:80:f2:af:c3:61:07:ac:e3:56:aa:94:2b: 2e:e7:7e:72:55:2b:18:0e:08:4d:53:d5:cf:bc:e7:99:c4:ce: 08:8b:cd:e1:ea:c2:fb:4d:18:27:7f:38:3d:36:62:6f:e3:43: 73:88:e7:f7:27:89:fe:9b:a7:33:35:2a:b5:70:ae:8e:1f:af: 15:44:16:fb:5c:70:8f:d4:be:b5:2a:34:a9:b4:e7:21:86:40: 58:c7:eb:6e:df:e0:c5:a2:dc:bc:d5:5d:48:cb:2d:92:75:1c: 67:fc:3b:23:2e:d1:66:84:4e:eb:cb:53:e4:a7:3b:55:5c:09: 9b:aa:9e:7c:ca:7b:4c:f5:09:ad:16:2a:14:a5:16:c8:33:f7: d2:9e:4b:8c:41:f1:8f:94:3f:03:ea:a8:0f:cc:1f:f3:70:1b: 25:e4:f7:0c:8d:49:1c:bb:c4:c0:ce:5e:7c:46:ed:51:f7:d4: c4:3a:b8:f8:56:ae:22:a7:38:98:6a:f7:ae:44:ca:9a:cb:92: 8c:41:c4:d3:f4:f1:76:ba:de:f3:76:96:c8:92:e7:87:15:7c: 46:92:f5:91 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMKEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTI5MzlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEFGODI1OTVFODE0ODM3 QUNENzBCOUIxRTUyMkI3RkFFOUQ1QTJDMEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCu3k4jL+D/owyi3C9GkCf6enNuB+KHEQCYEQ8qgw+wrSzJamSb Ug7uqCNfWQIvx4cJJJvMxaLDWAq1FlavQ0n3DYw+pcKX2gUy2DEB/iV1H5OZCKrB VxfU3wY7ocOc1e0PkTc5JWLjjstY3sjZXBSbus60yv/8B+uQweSIbbUBx8QEtQsF zvP3D+ceIxGZb2/VsGxAufPXxHTkzC0+NDV4t5wQMZ4z0Du94GGS8T7nBFaajJ8C nt9plp+c7KlnQD4aD4rDRit7UqhnbACh8STkWAur1l5lvEFRLBBtR7ClWWc3yR6c sU4GEytltHWsCxsMI4in7Hm7YDEn3sE2RTcPAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUr4JZXoFIN6zXC5seUit/rp1aLAowHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3I0SlpYb0ZJTjZ6WEM1c2VV aXRfcnAxYUxBby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJq AXAwDQYJKoZIhvcNAQELBQADggEBAIpx0w16pNnzXV/H0QyWEf4hBsaEbqGKOGTo FXSy1NA+0jxTSn6Iv6ZTG4Dyr8NhB6zjVqqUKy7nfnJVKxgOCE1T1c+855nEzgiL zeHqwvtNGCd/OD02Ym/jQ3OI5/cnif6bpzM1KrVwro4frxVEFvtccI/UvrUqNKm0 5yGGQFjH627f4MWi3LzVXUjLLZJ1HGf8OyMu0WaETuvLU+SnO1VcCZuqnnzKe0z1 Ca0WKhSlFsgz99KeS4xB8Y+UPwPqqA/MH/NwGyXk9wyNSRy7xMDOXnxG7VH31MQ6 uPhWriKnOJhq965EyprLkoxBxNP08Xa63vN2lsiS54cVfEaS9ZE= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:52 2024 by rpki-client on console-fra.rpki-client.org