$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/sjEzifca4LXK3bc71Ns3KAEZz2k.roa File: sjEzifca4LXK3bc71Ns3KAEZz2k.roa (raw, json) Hash identifier: /ee64ylQ4ZGKFjhz1gIRJ3dKz/dDo0hjAzLv2AuwYnw= Subject key identifier: B2:31:33:89:F7:1A:E0:B5:CA:DD:B7:3B:D4:DB:37:28:01:19:CF:69 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 327F Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/sjEzifca4LXK3bc71Ns3KAEZz2k.roa Signing time: Mon 26 Aug 2024 05:31:43 +0000 ROA not before: Mon 26 Aug 2024 05:31:43 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 123.195.52.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12927 (0x327f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:31:43 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B2313389F71AE0B5CADDB73BD4DB37280119CF69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:1d:92:9a:28:4d:4e:3d:0c:e2:98:e9:4f:2a: 4d:bf:77:93:a6:88:78:c6:33:fe:1a:d7:e5:b3:23: 11:b9:d5:9f:9e:b4:85:be:3a:f1:bd:73:bd:99:b1: 4d:e8:de:e9:17:27:2f:a8:11:4a:d6:ab:98:7a:d9: 62:2e:9f:f0:a1:1a:4c:34:25:eb:8b:84:53:47:1d: 22:24:8b:53:36:de:3d:a9:30:3d:5c:ad:fa:50:cc: b4:ed:59:6a:b1:e9:c6:c3:30:52:36:ac:5e:e7:4d: ef:bf:2c:4a:55:45:f9:45:ba:d9:0b:f1:55:7e:de: fd:f4:c4:57:a9:12:2d:14:78:75:4e:f7:4a:40:b9: 01:14:32:6d:61:ca:d9:c6:7c:ad:a5:6e:cd:34:0d: a9:99:40:25:42:4f:b0:25:11:0e:af:8d:56:03:7f: 1c:46:e5:61:3d:c0:a6:53:73:a3:2c:02:f1:38:10: 1d:ee:23:5f:60:d7:91:c5:53:48:e2:5c:76:77:a4: 95:7a:56:a3:59:48:6c:32:58:71:ca:71:d0:58:d2: 4e:e7:4b:55:12:70:ba:7f:e0:ec:fa:0e:ff:68:f9: bc:69:77:df:c9:3e:fc:8d:3c:c0:55:49:a8:0e:49: ba:ea:d7:d4:35:4e:44:ca:5c:5f:cf:0e:56:9d:8e: 62:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:31:33:89:F7:1A:E0:B5:CA:DD:B7:3B:D4:DB:37:28:01:19:CF:69 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/sjEzifca4LXK3bc71Ns3KAEZz2k.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.195.52.0/22 Signature Algorithm: sha256WithRSAEncryption 72:87:3e:ba:aa:6a:57:70:b7:ac:98:8f:9e:3d:6b:b0:71:b6: 6e:2f:f7:0e:6a:36:ad:d2:4f:23:87:5c:ac:c7:e7:26:7d:3c: 0a:f8:8f:36:58:55:27:87:75:96:cd:74:f5:10:a1:ec:b8:76: c0:e7:88:30:fd:3c:52:e8:4b:39:d9:7c:b5:da:9c:bc:72:1a: cb:ce:0e:5f:c0:78:48:5d:6f:c2:4a:a1:7c:e3:08:85:de:f1: bb:2c:46:db:0d:0b:fa:6e:c9:f8:12:18:c9:2e:f3:31:ae:d0: 57:cc:a1:29:79:4b:46:7a:7a:34:ac:72:3c:ab:60:8f:93:3a: 07:d4:1f:a8:54:d0:a4:a6:ff:02:19:e3:16:67:e2:63:db:14: ea:01:25:65:71:23:87:6d:fa:2c:db:c8:45:ee:5a:9e:12:aa: 8c:a4:89:f0:8f:d6:1c:0b:55:85:3a:2b:27:a2:bc:45:6b:82: 10:5a:d7:13:f4:e2:18:cc:51:f2:c0:25:9e:b2:70:d7:6e:51: 24:d9:8f:2d:f3:87:15:2f:9f:c7:3b:3f:23:f4:8c:20:ef:9d: 82:c6:19:f9:09:7b:79:cb:ff:cd:81:08:f9:ec:06:63:9f:3a: 37:89:2d:4d:73:91:b0:fb:91:6c:de:2d:71:4a:42:5f:e0:36: 22:50:83:45 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMn8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMxNDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEIyMzEzMzg5RjcxQUUw QjVDQUREQjczQkQ0REIzNzI4MDExOUNGNjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyHZKaKE1OPQzimOlPKk2/d5OmiHjGM/4a1+WzIxG51Z+etIW+ OvG9c72ZsU3o3ukXJy+oEUrWq5h62WIun/ChGkw0JeuLhFNHHSIki1M23j2pMD1c rfpQzLTtWWqx6cbDMFI2rF7nTe+/LEpVRflFutkL8VV+3v30xFepEi0UeHVO90pA uQEUMm1hytnGfK2lbs00DamZQCVCT7AlEQ6vjVYDfxxG5WE9wKZTc6MsAvE4EB3u I19g15HFU0jiXHZ3pJV6VqNZSGwyWHHKcdBY0k7nS1UScLp/4Oz6Dv9o+bxpd9/J PvyNPMBVSagOSbrq19Q1TkTKXF/PDladjmLvAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUsjEzifca4LXK3bc71Ns3KAEZz2kwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3NqRXppZmNhNExYSzNiYzcx TnMzS0FFWnoyay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wzQwDQYJKoZIhvcNAQELBQADggEBAHKHPrqqaldwt6yYj549a7Bxtm4v9w5qNq3S TyOHXKzH5yZ9PAr4jzZYVSeHdZbNdPUQoey4dsDniDD9PFLoSznZfLXanLxyGsvO Dl/AeEhdb8JKoXzjCIXe8bssRtsNC/puyfgSGMku8zGu0FfMoSl5S0Z6ejSscjyr YI+TOgfUH6hU0KSm/wIZ4xZn4mPbFOoBJWVxI4dt+izbyEXuWp4SqoykifCP1hwL VYU6KyeivEVrghBa1xP04hjMUfLAJZ6ycNduUSTZjy3zhxUvn8c7PyP0jCDvnYLG GfkJe3nL/82BCPnsBmOfOjeJLU1zkbD7kWzeLXFKQl/gNiJQg0U= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:23 2024 by rpki-client on console-ams.rpki-client.org