$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/tWtYR4FE1Bky8e9ngMFSP66i1uE.roa File: tWtYR4FE1Bky8e9ngMFSP66i1uE.roa (raw, json) Hash identifier: fPoMZbMdPhoNakUbCwW4UyY25liFddV6T95wBRp3XAw= Subject key identifier: B5:6B:58:47:81:44:D4:19:32:F1:EF:67:80:C1:52:3F:AE:A2:D6:E1 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3204 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/tWtYR4FE1Bky8e9ngMFSP66i1uE.roa Signing time: Mon 26 Aug 2024 05:31:10 +0000 ROA not before: Mon 26 Aug 2024 05:31:10 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.192.172.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12804 (0x3204) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:31:10 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B56B58478144D41932F1EF6780C1523FAEA2D6E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:12:f9:dc:bd:8d:17:a9:50:9b:11:b9:35:06: 71:c7:b8:6b:86:dd:88:7a:88:ff:5b:0b:62:73:41: f2:f9:fc:95:2d:b5:44:a0:ca:7a:22:24:7a:d4:2b: f7:71:50:c1:ba:09:f7:50:a9:4b:e2:8e:b6:3c:f0: 18:0c:ff:3a:b6:84:b2:3f:4c:9d:ca:48:c6:10:e5: 17:b4:05:05:b0:f2:19:d3:a0:30:d9:ef:b6:66:0c: 61:06:b8:50:bc:97:10:89:57:1c:86:27:2f:48:7c: 11:97:c6:25:34:c9:d5:90:e9:42:af:aa:3c:94:45: dd:4b:5d:d8:93:ed:c3:3c:d3:53:38:17:90:e1:58: fc:3a:c8:9f:3a:89:ee:3b:c5:17:8a:f1:74:34:83: 16:97:8b:0c:0a:19:a9:4c:11:57:b3:28:93:3e:cb: 1d:64:4e:98:79:46:6d:cb:da:4a:01:c8:1e:71:41: 8b:32:ad:e3:c6:56:a3:5f:d3:be:b1:3e:e7:c6:78: 58:53:56:48:50:f2:cb:84:90:55:13:da:9f:10:d7: 86:79:76:56:ed:08:fc:d1:8d:d8:2e:b8:1b:f7:db: 31:72:69:c4:c7:74:d0:1a:ee:4a:07:5a:06:61:2a: cf:5a:1b:b8:0d:1d:a5:35:d7:31:c1:9d:c3:05:ff: 63:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:6B:58:47:81:44:D4:19:32:F1:EF:67:80:C1:52:3F:AE:A2:D6:E1 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/tWtYR4FE1Bky8e9ngMFSP66i1uE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.192.172.0/22 Signature Algorithm: sha256WithRSAEncryption 48:c7:63:de:59:c4:e2:f2:fa:54:35:f0:2d:d5:1d:77:97:8a: e0:44:c2:eb:2a:80:fb:e8:1c:2d:31:b1:33:90:56:df:70:69: c0:4b:04:d5:01:24:a1:34:d1:c1:b6:32:63:95:78:55:0e:14: 0f:a8:9f:b7:6e:eb:00:5d:ad:01:2f:8d:33:63:3c:ed:88:45: 02:4a:85:38:d9:48:e3:57:40:b3:05:e6:99:32:46:92:68:76: 91:f0:58:f6:c2:fc:ab:40:35:df:63:54:52:21:7b:15:44:25: 6d:aa:d4:57:c0:d0:21:b2:22:43:7a:b2:38:83:66:57:f8:ad: c4:5f:77:04:a9:6f:09:7f:79:73:a7:b0:70:6b:b8:a5:09:49: 9d:c4:16:84:3f:04:a0:4f:66:3c:c0:15:31:07:a4:e0:4f:90: 6a:32:ee:69:92:c6:34:fc:d5:49:e6:b8:32:70:c9:5a:3a:03: 3a:51:97:94:cc:b9:d5:f4:19:60:fb:cd:6c:07:21:18:f1:87: 8c:71:8f:ae:1b:6f:a0:cf:df:8e:2e:35:37:0e:6d:83:b1:30: 19:33:6d:f3:9c:17:30:8d:a7:28:c0:2d:1b:3a:a2:26:0e:cc: e3:02:07:1c:13:e6:70:ff:69:a5:40:38:63:b7:9d:5b:54:a4: 63:9e:d2:c0 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMgQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMxMTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI1NkI1ODQ3ODE0NEQ0 MTkzMkYxRUY2NzgwQzE1MjNGQUVBMkQ2RTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCjEvncvY0XqVCbEbk1BnHHuGuG3Yh6iP9bC2JzQfL5/JUttUSg ynoiJHrUK/dxUMG6CfdQqUvijrY88BgM/zq2hLI/TJ3KSMYQ5Re0BQWw8hnToDDZ 77ZmDGEGuFC8lxCJVxyGJy9IfBGXxiU0ydWQ6UKvqjyURd1LXdiT7cM801M4F5Dh WPw6yJ86ie47xReK8XQ0gxaXiwwKGalMEVezKJM+yx1kTph5Rm3L2koByB5xQYsy rePGVqNf076xPufGeFhTVkhQ8suEkFUT2p8Q14Z5dlbtCPzRjdguuBv32zFyacTH dNAa7koHWgZhKs9aG7gNHaU11zHBncMF/2NzAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUtWtYR4FE1Bky8e9ngMFSP66i1uEwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3RXdFlSNEZFMUJreThlOW5n TUZTUDY2aTF1RS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wKwwDQYJKoZIhvcNAQELBQADggEBAEjHY95ZxOLy+lQ18C3VHXeXiuBEwusqgPvo HC0xsTOQVt9wacBLBNUBJKE00cG2MmOVeFUOFA+on7du6wBdrQEvjTNjPO2IRQJK hTjZSONXQLMF5pkyRpJodpHwWPbC/KtANd9jVFIhexVEJW2q1FfA0CGyIkN6sjiD Zlf4rcRfdwSpbwl/eXOnsHBruKUJSZ3EFoQ/BKBPZjzAFTEHpOBPkGoy7mmSxjT8 1UnmuDJwyVo6AzpRl5TMudX0GWD7zWwHIRjxh4xxj64bb6DP344uNTcObYOxMBkz bfOcFzCNpyjALRs6oiYOzOMCBxwT5nD/aaVAOGO3nVtUpGOe0sA= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:54 2024 by rpki-client on console-ams.rpki-client.org