$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/rSVM0toWkesFAaK-1mimDtwqsFo.roa File: rSVM0toWkesFAaK-1mimDtwqsFo.roa (raw, json) Hash identifier: 8HHRtO+BkBzsPAz2z9HM3+f9UhF2wHvsQHfNRzPrM5c= Subject key identifier: AD:25:4C:D2:DA:16:91:EB:05:01:A2:BE:D6:68:A6:0E:DC:2A:B0:5A Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3198 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/rSVM0toWkesFAaK-1mimDtwqsFo.roa Signing time: Mon 26 Aug 2024 05:30:44 +0000 ROA not before: Mon 26 Aug 2024 05:30:44 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 123.192.240.0/21 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12696 (0x3198) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:30:44 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=AD254CD2DA1691EB0501A2BED668A60EDC2AB05A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:af:48:88:57:ea:89:17:2e:aa:d5:9e:9b:72: 9b:4d:f5:37:ec:f2:10:84:5f:e1:ed:11:68:63:32: 41:0c:aa:60:4e:94:64:74:1e:89:bd:94:2b:34:7f: 4d:25:38:ab:89:81:50:87:47:fe:35:8c:9e:44:13: 2e:fa:42:dc:06:72:93:59:43:df:83:ee:07:84:28: 8e:cb:d2:89:0c:d8:6b:4a:36:ab:63:c9:d2:d1:03: a0:04:80:e1:03:ad:1c:f7:72:bd:37:22:04:b8:64: 35:72:15:e0:0e:35:d7:65:65:ce:d9:c0:40:f9:bd: 3a:66:2c:98:4b:1e:7e:66:74:52:94:47:a6:35:e2: 63:91:ec:8f:98:a3:da:98:74:97:80:b5:4d:90:32: 2e:dc:18:f1:f0:1b:42:2a:cc:e3:f5:21:cb:88:5f: 81:2b:51:bf:79:07:6b:0c:29:3c:9a:33:ad:c7:1d: 22:78:59:51:70:61:49:b4:81:af:7a:fe:7e:73:3d: 0e:5f:34:97:9f:b8:6e:4c:61:25:82:ee:18:c4:ca: f6:da:ab:9b:0c:ea:d0:cf:4a:25:b4:bf:17:ef:b4: 03:c8:9e:84:16:f4:bb:bc:7c:ff:e3:b8:e4:2a:a4: cb:8d:b1:d9:7f:be:06:65:cb:c5:4d:15:52:a1:3a: b8:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:25:4C:D2:DA:16:91:EB:05:01:A2:BE:D6:68:A6:0E:DC:2A:B0:5A X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/rSVM0toWkesFAaK-1mimDtwqsFo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.192.240.0/21 Signature Algorithm: sha256WithRSAEncryption 76:f5:9e:b9:9e:97:61:65:c9:2d:f3:4b:60:63:e9:55:83:df: 07:4a:ca:b6:50:8e:10:6e:b0:d1:16:d9:ef:7e:7e:d9:a9:cd: 61:42:38:70:33:9c:29:f1:da:bd:a2:52:1f:4f:d3:23:c5:07: 85:bb:1e:83:b3:4b:ad:8d:27:1e:9a:d9:ba:7d:31:1b:1d:89: 53:62:92:5a:77:9c:76:a8:70:07:20:96:76:53:ec:13:31:59: d2:7b:17:5b:b7:ac:03:7d:04:46:4b:d8:fa:40:67:d2:28:85: bf:04:bd:eb:07:5a:5d:b2:f9:a1:31:ee:12:02:68:7e:fd:c7: 09:3f:80:9e:b5:f5:d9:1a:32:09:f6:be:08:73:2d:b7:f0:92: 2b:c6:55:68:b9:b4:d4:c0:67:46:41:e2:34:d3:bc:b0:46:33: ea:9f:a4:ae:96:05:db:c4:f1:aa:10:7c:c8:ce:f0:89:35:36: e6:69:e9:9b:8c:ca:03:d1:11:39:c0:6d:b2:11:88:66:14:35: 6b:25:d2:76:f1:67:2c:f8:d0:e0:ae:12:13:c5:d3:41:8b:c1: b3:7d:c1:37:a5:ef:d6:08:6e:6b:bb:a9:df:a5:00:f8:e5:08: 84:e0:20:71:aa:ce:f4:bc:45:29:f6:bb:b0:2f:35:c7:a1:49: 90:6d:1f:eb -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMZgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMwNDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEFEMjU0Q0QyREExNjkx RUIwNTAxQTJCRUQ2NjhBNjBFREMyQUIwNUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCor0iIV+qJFy6q1Z6bcptN9Tfs8hCEX+HtEWhjMkEMqmBOlGR0 Hom9lCs0f00lOKuJgVCHR/41jJ5EEy76QtwGcpNZQ9+D7geEKI7L0okM2GtKNqtj ydLRA6AEgOEDrRz3cr03IgS4ZDVyFeAONddlZc7ZwED5vTpmLJhLHn5mdFKUR6Y1 4mOR7I+Yo9qYdJeAtU2QMi7cGPHwG0IqzOP1IcuIX4ErUb95B2sMKTyaM63HHSJ4 WVFwYUm0ga96/n5zPQ5fNJefuG5MYSWC7hjEyvbaq5sM6tDPSiW0vxfvtAPInoQW 9Lu8fP/juOQqpMuNsdl/vgZly8VNFVKhOritAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUrSVM0toWkesFAaK+1mimDtwqsFowHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3JTVk0wdG9Xa2VzRkFhSy0x bWltRHR3cXNGby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7 wPAwDQYJKoZIhvcNAQELBQADggEBAHb1nrmel2FlyS3zS2Bj6VWD3wdKyrZQjhBu sNEW2e9+ftmpzWFCOHAznCnx2r2iUh9P0yPFB4W7HoOzS62NJx6a2bp9MRsdiVNi klp3nHaocAcglnZT7BMxWdJ7F1u3rAN9BEZL2PpAZ9Iohb8EvesHWl2y+aEx7hIC aH79xwk/gJ619dkaMgn2vghzLbfwkivGVWi5tNTAZ0ZB4jTTvLBGM+qfpK6WBdvE 8aoQfMjO8Ik1NuZp6ZuMygPRETnAbbIRiGYUNWsl0nbxZyz40OCuEhPF00GLwbN9 wTel79YIbmu7qd+lAPjlCITgIHGqzvS8RSn2u7AvNcehSZBtH+s= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:52 2024 by rpki-client on console-fra.rpki-client.org