$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/tl_oNCFBL2pqD0y_1IgC0BQrrH4.roa File: tl_oNCFBL2pqD0y_1IgC0BQrrH4.roa (raw, json) Hash identifier: fttFtAHsPeOjBFpQts884JGd/ceFK9oEoF13me3Zq28= Subject key identifier: B6:5F:E8:34:21:41:2F:6A:6A:0F:4C:BF:D4:88:02:D0:14:2B:AC:7E Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 31AE Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/tl_oNCFBL2pqD0y_1IgC0BQrrH4.roa Signing time: Mon 26 Aug 2024 05:30:49 +0000 ROA not before: Mon 26 Aug 2024 05:30:49 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 2407:4d00:ff06::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12718 (0x31ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:30:49 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B65FE83421412F6A6A0F4CBFD48802D0142BAC7E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:0d:06:6a:cc:93:37:42:ef:d8:27:cd:d6:3f: 2a:f9:51:52:76:31:9a:60:c2:cd:33:e3:97:d5:f6: 07:ac:4b:35:63:72:9b:3b:87:d3:b8:a0:db:03:12: ff:b3:b5:61:6b:ad:58:f4:d1:ee:88:1b:3b:15:d3: fb:6e:94:0c:ed:46:4e:29:1e:77:8a:ea:5b:50:7a: a5:68:44:2a:fb:cc:2a:1e:1a:4c:1b:21:65:d0:a0: 18:7a:77:af:81:ff:82:ca:7e:10:53:86:25:16:a4: ed:6d:c7:79:5b:9c:c9:02:97:d6:00:a8:68:27:68: 8a:c6:d8:af:1e:ba:d7:80:c2:8b:72:e4:c4:1d:fa: b3:c2:ce:5e:0d:77:a4:0f:9e:13:10:14:da:91:89: b1:9b:d1:25:e5:c6:bd:bb:b2:44:36:e4:c3:de:f8: 1f:ba:ed:27:a5:ae:4b:a8:5e:38:2a:4c:ee:ac:11: 47:6f:02:31:8b:88:1b:3c:be:ac:c2:cf:04:cb:e5: 16:6f:f1:19:4d:77:11:1d:d6:ba:af:57:be:ce:57: a7:01:48:0c:ba:11:90:56:30:2e:cd:95:58:b7:3a: 08:3e:75:6f:2f:2e:e3:29:8d:3b:55:18:09:ee:13: 9f:2f:44:88:07:54:a8:ff:27:13:a4:ce:ec:22:8b: b1:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:5F:E8:34:21:41:2F:6A:6A:0F:4C:BF:D4:88:02:D0:14:2B:AC:7E X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/tl_oNCFBL2pqD0y_1IgC0BQrrH4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2407:4d00:ff06::/48 Signature Algorithm: sha256WithRSAEncryption a5:16:b7:82:71:ad:a5:34:4d:34:9b:0b:a7:e1:c6:c0:83:76: 06:44:f1:25:71:04:04:08:58:8d:b0:41:16:4c:e1:91:91:9c: 77:c0:50:79:60:ca:7a:f7:75:ec:49:c4:83:10:16:cc:4c:8a: 90:e6:87:fe:a9:18:02:c3:c0:73:ba:39:c6:fe:59:5c:b2:30: 98:03:52:9e:51:27:8a:a0:f5:dd:dd:e8:22:7c:89:99:d5:d2: 28:4c:d0:cc:eb:81:fc:2b:0e:2e:a6:69:1c:35:8c:fd:d6:ef: 0b:5c:80:77:51:ab:68:91:79:c2:b3:50:5f:ee:25:73:35:6c: b4:64:2b:56:11:34:ec:28:94:39:0f:79:60:d9:66:88:89:03: 67:53:ed:59:a3:83:8c:49:9b:87:f6:9e:46:62:f6:36:c1:4f: 22:79:5e:aa:d3:af:11:d9:43:62:90:31:c5:6d:db:ae:f4:9e: 6f:b3:59:6d:19:1f:d5:cd:30:1f:38:44:65:bb:23:f6:36:1d: 29:a2:9a:c7:2b:1d:47:14:8b:36:fe:f3:3d:ea:eb:6f:70:99: 73:5d:f4:c9:87:aa:4a:c4:96:e0:fe:4b:8c:f6:96:e7:22:e3: 29:4c:51:7d:08:f5:86:22:88:b4:db:ff:7d:e4:61:c1:eb:ab: 54:dd:d7:05 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICMa4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMwNDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI2NUZFODM0MjE0MTJG NkE2QTBGNENCRkQ0ODgwMkQwMTQyQkFDN0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNDQZqzJM3Qu/YJ83WPyr5UVJ2MZpgws0z45fV9gesSzVjcps7 h9O4oNsDEv+ztWFrrVj00e6IGzsV0/tulAztRk4pHneK6ltQeqVoRCr7zCoeGkwb IWXQoBh6d6+B/4LKfhBThiUWpO1tx3lbnMkCl9YAqGgnaIrG2K8euteAwoty5MQd +rPCzl4Nd6QPnhMQFNqRibGb0SXlxr27skQ25MPe+B+67SelrkuoXjgqTO6sEUdv AjGLiBs8vqzCzwTL5RZv8RlNdxEd1rqvV77OV6cBSAy6EZBWMC7NlVi3Ogg+dW8v LuMpjTtVGAnuE58vRIgHVKj/JxOkzuwii7EFAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUtl/oNCFBL2pqD0y/1IgC0BQrrH4wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3RsX29OQ0ZCTDJwcUQweV8x SWdDMEJRcnJINC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk B00A/wYwDQYJKoZIhvcNAQELBQADggEBAKUWt4JxraU0TTSbC6fhxsCDdgZE8SVx BAQIWI2wQRZM4ZGRnHfAUHlgynr3dexJxIMQFsxMipDmh/6pGALDwHO6Ocb+WVyy MJgDUp5RJ4qg9d3d6CJ8iZnV0ihM0MzrgfwrDi6maRw1jP3W7wtcgHdRq2iRecKz UF/uJXM1bLRkK1YRNOwolDkPeWDZZoiJA2dT7Vmjg4xJm4f2nkZi9jbBTyJ5XqrT rxHZQ2KQMcVt2670nm+zWW0ZH9XNMB84RGW7I/Y2HSmimscrHUcUizb+8z3q629w mXNd9MmHqkrEluD+S4z2luci4ylMUX0I9YYiiLTb/33kYcHrq1Td1wU= -----END CERTIFICATE-----Generated at Sat Sep 21 00:29:55 2024 by rpki-client on console-fra.rpki-client.org