$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/tpXafXsyF_uh4LWfvOsRCEbOU0o.roa File: tpXafXsyF_uh4LWfvOsRCEbOU0o.roa (raw, json) Hash identifier: +wkcBgl7CYg265O1b89N6En7pncOt6gWf/XQbzDm8q0= Subject key identifier: B6:95:DA:7D:7B:32:17:FB:A1:E0:B5:9F:BC:EB:11:08:46:CE:53:4A Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 32EC Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/tpXafXsyF_uh4LWfvOsRCEbOU0o.roa Signing time: Mon 26 Aug 2024 05:32:08 +0000 ROA not before: Mon 26 Aug 2024 05:32:08 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 180.176.56.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13036 (0x32ec) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:32:08 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B695DA7D7B3217FBA1E0B59FBCEB110846CE534A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:8a:e9:d5:95:ae:a6:18:2e:7d:46:69:a6:2b: 2a:3a:75:94:ae:06:96:35:27:5e:f5:45:fb:20:99: ee:9d:37:ba:60:16:7c:f7:27:92:a5:de:91:7b:1d: c2:5f:20:5e:fb:09:5f:28:dd:c7:2e:d1:23:87:6e: 89:cf:ae:1b:31:0c:9a:81:32:40:8d:60:0f:be:66: ca:3b:74:83:4c:84:05:74:0e:af:db:35:62:cb:e5: 07:2a:68:c0:e8:e6:49:27:81:2d:3f:cf:49:38:9b: 64:69:4c:1c:84:e3:78:55:1f:30:0d:20:e1:35:61: cf:12:f2:49:a5:62:f5:5f:74:75:95:af:99:e7:2f: 31:df:26:37:5d:c4:9a:9a:cb:b9:59:58:b8:47:06: 1e:2a:8c:47:a3:3d:24:b2:6e:41:ef:4a:7e:de:8b: 50:14:3a:27:7a:ef:1d:8e:81:d7:8c:73:b9:3f:cf: 9a:ac:ab:f2:e7:08:b2:97:4e:28:44:5f:16:5a:80: 47:c1:16:b1:ac:61:84:fb:e0:fc:32:d1:a9:b3:c4: 16:68:82:e0:c3:b0:af:19:6b:81:ac:83:e2:48:3b: f4:b8:ec:e3:1d:49:d3:1f:e0:3e:26:73:dd:c0:1e: 6c:ca:54:76:7a:59:8f:6d:eb:d4:45:74:49:2f:a3: 1b:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:95:DA:7D:7B:32:17:FB:A1:E0:B5:9F:BC:EB:11:08:46:CE:53:4A X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/tpXafXsyF_uh4LWfvOsRCEbOU0o.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.176.56.0/21 Signature Algorithm: sha256WithRSAEncryption b4:b3:21:6b:e7:11:78:31:95:6a:f0:16:57:25:6a:9b:f6:de: 72:42:e5:4f:a1:af:51:e6:a8:cc:92:e5:42:79:a2:a3:2e:bd: b5:2a:83:ec:e0:e3:04:f5:77:db:53:f9:c2:78:84:3e:4f:11: f0:1d:5c:58:f5:ec:76:4c:b4:41:84:62:e0:7d:38:44:f0:cf: b4:c9:cf:78:9e:9c:cd:a9:7b:a9:7c:4d:ed:c3:33:1d:ad:d9: b6:3b:0e:bc:60:f0:57:f6:55:ff:c9:5a:80:55:63:85:f5:7b: 48:7f:f5:59:66:c6:03:ed:6f:28:d1:13:f4:6b:5e:f5:9e:01: f5:a1:76:56:8c:a2:de:ef:05:3a:ae:c8:ee:c0:90:d2:18:db: 52:b3:e8:c2:97:c7:b4:7e:c1:6f:cb:d4:4f:ef:bb:74:bc:d1: 4b:4b:9b:d8:60:cc:6e:64:78:a9:ab:45:c1:7c:3e:45:4e:d2: d4:64:73:9e:76:3e:a6:fa:4e:1a:20:c7:79:3c:99:9e:96:98: 10:49:76:07:1f:a7:5b:b9:17:c4:b4:ba:14:0f:59:a5:8c:ae: 9c:8e:f1:a9:23:f2:3b:2b:9e:3d:e3:d2:10:d9:2e:e1:36:5b: fa:c9:bd:50:8a:aa:02:74:34:16:d1:bb:bf:aa:53:19:e7:ca: 05:aa:5a:2f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMuwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMyMDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI2OTVEQTdEN0IzMjE3 RkJBMUUwQjU5RkJDRUIxMTA4NDZDRTUzNEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQChiunVla6mGC59RmmmKyo6dZSuBpY1J171Rfsgme6dN7pgFnz3 J5Kl3pF7HcJfIF77CV8o3ccu0SOHbonPrhsxDJqBMkCNYA++Zso7dINMhAV0Dq/b NWLL5QcqaMDo5kkngS0/z0k4m2RpTByE43hVHzANIOE1Yc8S8kmlYvVfdHWVr5nn LzHfJjddxJqay7lZWLhHBh4qjEejPSSybkHvSn7ei1AUOid67x2OgdeMc7k/z5qs q/LnCLKXTihEXxZagEfBFrGsYYT74Pwy0amzxBZoguDDsK8Za4Gsg+JIO/S47OMd SdMf4D4mc93AHmzKVHZ6WY9t69RFdEkvoxuBAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUtpXafXsyF/uh4LWfvOsRCEbOU0owHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3RwWGFmWHN5Rl91aDRMV2Z2 T3NSQ0ViT1Uwby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0 sDgwDQYJKoZIhvcNAQELBQADggEBALSzIWvnEXgxlWrwFlclapv23nJC5U+hr1Hm qMyS5UJ5oqMuvbUqg+zg4wT1d9tT+cJ4hD5PEfAdXFj17HZMtEGEYuB9OETwz7TJ z3ienM2pe6l8Te3DMx2t2bY7Drxg8Ff2Vf/JWoBVY4X1e0h/9VlmxgPtbyjRE/Rr XvWeAfWhdlaMot7vBTquyO7AkNIY21Kz6MKXx7R+wW/L1E/vu3S80UtLm9hgzG5k eKmrRcF8PkVO0tRkc552Pqb6Thogx3k8mZ6WmBBJdgcfp1u5F8S0uhQPWaWMrpyO 8akj8jsrnj3j0hDZLuE2W/rJvVCKqgJ0NBbRu7+qUxnnygWqWi8= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:58 2024 by rpki-client on console-fra.rpki-client.org