$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/sC0aM65b5hPVgq6fQRBPoOSuhkU.roa File: sC0aM65b5hPVgq6fQRBPoOSuhkU.roa (raw, json) Hash identifier: gUMpWp4moiItPHYwjf7NFuH3p9hlSojwA2YMxzsm7fU= Subject key identifier: B0:2D:1A:33:AE:5B:E6:13:D5:82:AE:9F:41:10:4F:A0:E4:AE:86:45 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3187 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/sC0aM65b5hPVgq6fQRBPoOSuhkU.roa Signing time: Mon 26 Aug 2024 05:30:32 +0000 ROA not before: Mon 26 Aug 2024 05:30:32 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 118.233.152.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12679 (0x3187) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:30:32 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B02D1A33AE5BE613D582AE9F41104FA0E4AE8645 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:32:0b:17:8c:3c:8e:1b:8c:35:cb:a8:4c:d2: 2c:19:23:51:90:c7:a4:84:b2:d9:0e:0d:99:67:1c: 8b:7f:74:30:f2:a9:22:06:d7:f0:22:31:27:98:8a: e5:7c:34:c7:91:cc:86:ac:8d:5e:76:05:b3:d8:0a: 58:40:63:7f:5a:37:3d:7e:67:ae:4b:01:f9:b5:2f: 4e:c8:d4:70:77:ce:e9:a8:44:b9:7d:68:63:15:c2: 03:0c:7f:da:06:d9:03:b8:20:f0:47:ce:6e:5d:d6: e1:fc:52:e5:ad:e4:01:26:dc:52:b2:4d:86:82:f0: e4:c7:48:67:9f:8d:5b:44:1f:41:ff:10:99:82:3b: 84:07:a1:c5:c2:53:a6:d4:a0:c1:4c:f6:cc:bf:db: 95:40:cd:2b:11:ff:02:9f:1d:f1:33:e9:5a:6e:08: 67:3c:17:f3:33:37:4c:1c:8f:6d:1f:5c:47:d5:b7: 2b:80:9d:a9:36:a3:b2:41:cc:ed:e2:1b:d5:a5:55: aa:3d:1d:80:ca:ba:30:49:6a:04:f9:38:36:0f:7b: 1a:a6:05:77:6d:f3:3b:f9:f5:7f:65:e2:c9:16:54: 69:33:18:30:8b:d6:19:e3:74:83:4e:ca:e9:98:40: 2d:99:bc:c1:d6:9b:85:42:33:9c:d5:d9:59:69:fb: d2:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:2D:1A:33:AE:5B:E6:13:D5:82:AE:9F:41:10:4F:A0:E4:AE:86:45 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/sC0aM65b5hPVgq6fQRBPoOSuhkU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.152.0/22 Signature Algorithm: sha256WithRSAEncryption a7:88:ac:a5:f6:5a:35:fd:e0:1a:38:1f:a6:57:19:46:b8:2b: 58:53:a4:cd:62:9f:28:4a:b0:e9:ac:1d:fd:58:bd:c7:30:87: 8d:31:65:92:c0:de:28:83:0f:34:eb:81:97:a9:0f:bd:59:ad: 49:07:14:db:fe:f5:21:e5:b9:7d:cf:bc:e6:c4:e1:24:a3:f1: cf:b7:1a:c2:5c:43:af:cd:1c:36:4c:bc:9e:da:02:90:2b:1c: 64:ea:4d:1f:d7:0b:4d:28:9e:18:ad:d6:f8:e5:06:5c:8d:ca: 87:02:0f:97:d4:48:97:5e:ae:b9:c7:d4:50:d5:8e:ff:c5:e2: 7f:44:ff:3e:a0:81:b1:58:6f:4b:c0:e9:72:96:67:34:43:67: 53:0e:e2:2b:2e:47:2b:3f:f7:e6:0e:b0:1d:0d:30:99:e8:ba: 8a:1e:53:24:dc:f1:c3:69:f6:a6:a4:31:3e:ed:5b:07:87:01: 4b:99:35:58:de:94:ec:74:72:d1:61:aa:12:03:89:87:21:82: ff:24:67:7d:a9:fc:5b:8b:18:20:d1:df:cb:d4:fc:a5:e5:84: 0a:67:96:c7:1b:6c:5f:a4:03:c5:61:3f:3b:4f:83:24:94:c2: c6:e2:78:e7:78:28:9b:36:92:ab:4b:87:b2:62:d9:ca:12:36: 4e:8e:ac:0f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMYcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMwMzJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEIwMkQxQTMzQUU1QkU2 MTNENTgyQUU5RjQxMTA0RkEwRTRBRTg2NDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEMgsXjDyOG4w1y6hM0iwZI1GQx6SEstkODZlnHIt/dDDyqSIG 1/AiMSeYiuV8NMeRzIasjV52BbPYClhAY39aNz1+Z65LAfm1L07I1HB3zumoRLl9 aGMVwgMMf9oG2QO4IPBHzm5d1uH8UuWt5AEm3FKyTYaC8OTHSGefjVtEH0H/EJmC O4QHocXCU6bUoMFM9sy/25VAzSsR/wKfHfEz6VpuCGc8F/MzN0wcj20fXEfVtyuA nak2o7JBzO3iG9WlVao9HYDKujBJagT5ODYPexqmBXdt8zv59X9l4skWVGkzGDCL 1hnjdINOyumYQC2ZvMHWm4VCM5zV2Vlp+9LbAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUsC0aM65b5hPVgq6fQRBPoOSuhkUwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3NDMGFNNjViNWhQVmdxNmZR UkJQb09TdWhrVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2 6ZgwDQYJKoZIhvcNAQELBQADggEBAKeIrKX2WjX94Bo4H6ZXGUa4K1hTpM1inyhK sOmsHf1Yvccwh40xZZLA3iiDDzTrgZepD71ZrUkHFNv+9SHluX3PvObE4SSj8c+3 GsJcQ6/NHDZMvJ7aApArHGTqTR/XC00onhit1vjlBlyNyocCD5fUSJderrnH1FDV jv/F4n9E/z6ggbFYb0vA6XKWZzRDZ1MO4isuRys/9+YOsB0NMJnouooeUyTc8cNp 9qakMT7tWweHAUuZNVjelOx0ctFhqhIDiYchgv8kZ32p/FuLGCDR38vU/KXlhApn lscbbF+kA8VhPztPgySUwsbieOd4KJs2kqtLh7Ji2coSNk6OrA8= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:52 2024 by rpki-client on console-fra.rpki-client.org