$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/rnaJKb26SKd8MZFF_jtqve6a-20.roa File: rnaJKb26SKd8MZFF_jtqve6a-20.roa (raw, json) Hash identifier: ktZOzux3CNgK7ub4wOfC9gWhhxGYRMSoGhWiva43f7I= Subject key identifier: AE:76:89:29:BD:BA:48:A7:7C:31:91:45:FE:3B:6A:BD:EE:9A:FB:6D Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 32EB Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/rnaJKb26SKd8MZFF_jtqve6a-20.roa Signing time: Mon 26 Aug 2024 05:32:08 +0000 ROA not before: Mon 26 Aug 2024 05:32:08 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.194.68.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13035 (0x32eb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:32:08 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=AE768929BDBA48A77C319145FE3B6ABDEE9AFB6D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:28:fa:34:e3:75:b1:5a:9a:9b:7a:8d:56:6b: eb:48:59:0a:49:53:42:93:5d:21:c8:89:3c:8c:92: 74:8a:a9:de:db:df:0f:38:05:1c:82:60:50:dc:0f: ee:b1:c1:2b:df:07:10:c0:c5:1d:f5:f7:11:75:d7: 40:85:4d:03:7e:d9:fc:68:9e:91:db:e8:d0:42:e7: 14:28:38:6c:cb:cb:56:08:aa:cf:d3:f4:e7:b5:5f: cf:4e:56:f8:89:94:3f:1c:07:bf:95:b9:38:78:85: 10:88:c3:33:a7:8b:b3:35:85:d1:85:71:30:98:c2: ab:14:1c:91:e1:53:03:3d:c1:08:b8:ea:d1:3d:5f: ab:71:56:8c:80:0d:f3:4e:6f:2b:9b:04:2b:91:f6: 1b:7b:30:98:22:2b:2a:3f:f5:1c:c2:52:55:22:70: af:d2:6e:50:8e:24:a6:c7:92:f4:26:dd:46:2c:e9: 4b:b1:9f:a2:14:37:c7:0c:61:02:7c:80:d8:59:5d: d2:61:4e:96:fe:2f:b5:f7:35:48:c7:7d:6d:d2:8b: 36:40:47:0f:53:c6:65:26:4f:cb:b6:69:9c:fa:0b: 41:b5:e2:90:db:86:a1:52:6b:c4:27:04:3a:13:c0: 57:4e:d9:5e:ea:d5:23:fb:ed:33:0c:f5:cf:5b:b3: fc:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:76:89:29:BD:BA:48:A7:7C:31:91:45:FE:3B:6A:BD:EE:9A:FB:6D X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/rnaJKb26SKd8MZFF_jtqve6a-20.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.68.0/22 Signature Algorithm: sha256WithRSAEncryption 68:d4:34:bb:23:e7:16:91:cf:b6:e2:f6:57:d8:d4:ab:14:22: d5:b8:c4:6c:67:ce:34:3a:3f:04:9e:d3:7f:b0:34:48:06:c4: 87:63:ab:eb:d3:08:6e:ed:43:ee:9b:d0:04:22:7d:a7:e8:df: 0e:2c:f7:61:cf:68:70:08:55:b1:5a:4c:c8:a4:ce:e2:1f:c4: f1:67:95:89:ca:a6:12:da:92:5e:f4:34:63:19:a6:de:65:f8: 2d:03:dd:ac:73:9c:91:b0:bb:cc:2f:36:b4:65:55:ba:d7:65: d0:22:c9:f9:87:b8:a2:2d:a4:31:2d:ea:7e:85:86:66:f2:d0: 77:2c:4e:ed:e7:63:08:bc:a4:df:f5:0d:e8:6c:f7:71:23:62: 6a:84:d6:b2:1a:ca:59:30:f5:93:8f:a0:4c:63:23:8a:58:20: 11:80:f3:24:38:32:87:c1:26:10:1a:d6:44:34:67:de:f7:4c: 37:02:bf:d7:4d:0c:9e:da:e8:82:11:b0:55:b2:4a:c8:ef:31: 04:a7:09:5c:0a:61:29:3e:d9:a7:e4:bd:7f:0c:30:5a:33:7c: d5:73:0f:35:2d:36:be:7a:de:b8:e3:f6:2f:a0:30:b1:53:22: 1d:03:1b:35:f9:56:7b:c4:d9:d8:c9:9d:74:ae:c0:3a:36:3c: ff:ca:f0:ed -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMuswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMyMDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEFFNzY4OTI5QkRCQTQ4 QTc3QzMxOTE0NUZFM0I2QUJERUU5QUZCNkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDgKPo043WxWpqbeo1Wa+tIWQpJU0KTXSHIiTyMknSKqd7b3w84 BRyCYFDcD+6xwSvfBxDAxR319xF110CFTQN+2fxonpHb6NBC5xQoOGzLy1YIqs/T 9Oe1X89OVviJlD8cB7+VuTh4hRCIwzOni7M1hdGFcTCYwqsUHJHhUwM9wQi46tE9 X6txVoyADfNObyubBCuR9ht7MJgiKyo/9RzCUlUicK/SblCOJKbHkvQm3UYs6Uux n6IUN8cMYQJ8gNhZXdJhTpb+L7X3NUjHfW3SizZARw9TxmUmT8u2aZz6C0G14pDb hqFSa8QnBDoTwFdO2V7q1SP77TMM9c9bs/xHAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUrnaJKb26SKd8MZFF/jtqve6a+20wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3JuYUpLYjI2U0tkOE1aRkZf anRxdmU2YS0yMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wkQwDQYJKoZIhvcNAQELBQADggEBAGjUNLsj5xaRz7bi9lfY1KsUItW4xGxnzjQ6 PwSe03+wNEgGxIdjq+vTCG7tQ+6b0AQifafo3w4s92HPaHAIVbFaTMikzuIfxPFn lYnKphLakl70NGMZpt5l+C0D3axznJGwu8wvNrRlVbrXZdAiyfmHuKItpDEt6n6F hmby0HcsTu3nYwi8pN/1Dehs93EjYmqE1rIaylkw9ZOPoExjI4pYIBGA8yQ4MofB JhAa1kQ0Z973TDcCv9dNDJ7a6IIRsFWySsjvMQSnCVwKYSk+2afkvX8MMFozfNVz DzUtNr563rjj9i+gMLFTIh0DGzX5VnvE2djJnXSuwDo2PP/K8O0= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:58 2024 by rpki-client on console-fra.rpki-client.org