$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ssUT6LQqDz3bcaqZ9BV-yZOULH0.roa File: ssUT6LQqDz3bcaqZ9BV-yZOULH0.roa (raw, json) Hash identifier: p0GBsSI3LPlFBOyiR1kjdaWJPNUUuJy813sqZKuodCo= Subject key identifier: B2:C5:13:E8:B4:2A:0F:3D:DB:71:AA:99:F4:15:7E:C9:93:94:2C:7D Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3194 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ssUT6LQqDz3bcaqZ9BV-yZOULH0.roa Signing time: Mon 26 Aug 2024 05:30:36 +0000 ROA not before: Mon 26 Aug 2024 05:30:36 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 2407:4d00:ff05::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12692 (0x3194) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:30:36 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B2C513E8B42A0F3DDB71AA99F4157EC993942C7D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:7c:b2:14:b1:88:fc:78:5e:f3:fb:f3:48:34: cc:21:61:82:76:7e:4b:bf:fd:dd:5c:c6:dc:f1:3a: 50:1b:dc:26:ff:77:60:eb:40:91:9f:48:07:fe:f1: 79:23:14:d4:6c:7a:e2:83:92:40:7e:52:59:9e:32: ca:f6:f3:23:b8:ad:ec:1a:00:db:67:b7:3c:d1:83: ac:f3:3b:70:29:00:7e:2a:2f:db:d0:e7:d3:65:73: 3c:be:1f:19:b0:23:c3:99:07:0d:c0:41:c3:35:a7: 68:6d:60:78:2c:4e:3d:56:e9:a9:ae:71:0a:0e:62: 31:30:a9:fd:22:42:05:7c:af:a4:1d:ba:c9:26:da: 60:4d:b8:a8:6b:0e:ea:ab:70:2e:86:b5:d6:94:c2: 66:e4:55:87:23:e6:d6:1d:d1:f1:6f:79:34:08:af: 72:70:fc:af:ab:09:6f:dd:08:0f:e7:13:b6:c7:cb: de:84:7a:bc:10:8c:63:04:cd:6e:f7:e2:b5:f8:d3: ab:25:63:02:8c:e2:99:91:71:24:6c:1a:59:9c:7b: 3e:1f:c9:4a:8f:54:f2:1a:c0:d5:22:28:21:07:1b: 9e:eb:be:db:38:22:8a:02:0e:fe:65:1f:c7:47:97: 74:f3:e0:a8:08:cd:70:b5:c5:d6:76:dc:71:8c:76: 99:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:C5:13:E8:B4:2A:0F:3D:DB:71:AA:99:F4:15:7E:C9:93:94:2C:7D X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ssUT6LQqDz3bcaqZ9BV-yZOULH0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2407:4d00:ff05::/48 Signature Algorithm: sha256WithRSAEncryption 89:a4:65:b2:4b:ae:b2:f5:27:8a:6b:ec:61:79:b7:a6:de:c4: 07:34:54:53:97:b3:2c:42:30:d9:a3:cc:d0:c3:d4:c4:57:54: 05:ed:7f:3c:7f:87:7e:0e:57:1d:3e:3e:b5:e2:a9:eb:d7:b4: f2:b0:b5:fd:70:f7:5a:ee:61:1b:a2:3a:c1:63:ce:b8:05:9e: 24:dc:75:b0:f2:84:c2:cc:e5:4d:c8:cf:b5:9c:5d:88:85:07: 54:f5:a3:b0:f1:5a:d8:00:eb:bb:57:66:14:0d:33:bc:c9:79: 6e:4d:f3:99:80:65:79:8b:d4:61:6f:96:b8:71:77:cd:06:97: 5a:cb:9c:45:1a:b4:32:98:9c:10:f4:59:4e:63:c9:63:22:9f: 6f:52:4e:21:29:0c:93:de:7b:8d:1a:a2:ab:9a:01:34:bc:38: 9c:df:95:a8:5c:90:ba:57:6b:d0:30:14:c0:ec:b2:08:99:4b: aa:4d:3f:0d:2e:0b:0d:a3:bc:65:b7:77:c5:38:8d:e9:e5:3a: f8:e3:60:a2:a8:08:44:f8:76:26:d2:c8:f8:3b:29:82:b7:42: 78:52:d2:85:51:65:05:da:d2:ba:87:35:42:c6:63:75:a4:c8: 5e:f6:d0:4c:f4:36:3f:12:ac:51:46:a7:93:79:f5:6d:89:29: 97:af:55:ee -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICMZQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMwMzZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEIyQzUxM0U4QjQyQTBG M0REQjcxQUE5OUY0MTU3RUM5OTM5NDJDN0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEfLIUsYj8eF7z+/NINMwhYYJ2fku//d1cxtzxOlAb3Cb/d2Dr QJGfSAf+8XkjFNRseuKDkkB+UlmeMsr28yO4rewaANtntzzRg6zzO3ApAH4qL9vQ 59Nlczy+HxmwI8OZBw3AQcM1p2htYHgsTj1W6amucQoOYjEwqf0iQgV8r6Qduskm 2mBNuKhrDuqrcC6GtdaUwmbkVYcj5tYd0fFveTQIr3Jw/K+rCW/dCA/nE7bHy96E erwQjGMEzW734rX406slYwKM4pmRcSRsGlmcez4fyUqPVPIawNUiKCEHG57rvts4 IooCDv5lH8dHl3Tz4KgIzXC1xdZ23HGMdpmhAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUssUT6LQqDz3bcaqZ9BV+yZOULH0wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3NzVVQ2TFFxRHozYmNhcVo5 QlYteVpPVUxIMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk B00A/wUwDQYJKoZIhvcNAQELBQADggEBAImkZbJLrrL1J4pr7GF5t6bexAc0VFOX syxCMNmjzNDD1MRXVAXtfzx/h34OVx0+PrXiqevXtPKwtf1w91ruYRuiOsFjzrgF niTcdbDyhMLM5U3Iz7WcXYiFB1T1o7DxWtgA67tXZhQNM7zJeW5N85mAZXmL1GFv lrhxd80Gl1rLnEUatDKYnBD0WU5jyWMin29STiEpDJPee40aoquaATS8OJzflahc kLpXa9AwFMDssgiZS6pNPw0uCw2jvGW3d8U4jenlOvjjYKKoCET4dibSyPg7KYK3 QnhS0oVRZQXa0rqHNULGY3WkyF720Ez0Nj8SrFFGp5N59W2JKZevVe4= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:52 2024 by rpki-client on console-fra.rpki-client.org