$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/vERKeF9GMaJYyBgDgXORycciQqc.roa File: vERKeF9GMaJYyBgDgXORycciQqc.roa (raw, json) Hash identifier: +l/eVofl8VU1d4GXTkwOJSIh0zkNH6WSEylUQ99S94w= Subject key identifier: BC:44:4A:78:5F:46:31:A2:58:C8:18:03:81:73:91:C9:C7:22:42:A7 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3195 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/vERKeF9GMaJYyBgDgXORycciQqc.roa Signing time: Mon 26 Aug 2024 05:30:36 +0000 ROA not before: Mon 26 Aug 2024 05:30:36 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 211.76.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12693 (0x3195) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:30:36 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=BC444A785F4631A258C81803817391C9C72242A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:f5:29:a6:ca:17:59:c7:c7:18:bf:aa:6e:28: 60:01:4d:f8:1a:54:89:c7:61:63:bc:69:8e:cc:70: d3:0f:6b:ec:f2:41:5f:b5:66:0d:fb:a2:de:48:eb: 51:93:f9:dc:e4:90:94:a7:51:f8:4c:72:7c:c0:51: 69:dc:f9:dc:2c:72:c6:53:59:7f:3d:36:1e:5b:20: b5:ec:8c:00:f3:e0:45:e4:ac:be:d2:d2:b8:ec:c5: c3:31:e0:6a:6d:7d:51:95:4e:cc:8a:9c:fe:38:4f: 10:3a:d5:a0:6e:a8:0d:42:00:06:4e:e3:ba:7f:6c: 27:c4:82:00:1c:ac:b8:3a:4b:80:1c:46:28:2a:cf: c2:df:cc:d7:50:d3:52:af:a2:d8:c1:3a:d7:d4:74: 7a:df:cd:ec:91:a1:a5:91:a2:3a:0d:42:0a:3f:c5: 0e:7c:4a:58:32:7e:74:2c:b6:7c:78:d8:9d:f8:66: 0c:71:4b:ce:c1:4c:0b:d3:e3:49:43:2d:a8:7c:c8: eb:c4:52:0e:9c:9c:ee:37:87:32:20:f5:55:14:62: a4:9d:67:b0:3f:79:a9:dc:df:b4:23:f2:17:54:0d: c0:46:a8:c7:f2:29:d2:52:c3:a0:0b:0e:69:1a:3f: f1:cc:80:7b:3f:f8:e5:6c:b3:23:7d:c1:b2:3a:c7: 49:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:44:4A:78:5F:46:31:A2:58:C8:18:03:81:73:91:C9:C7:22:42:A7 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/vERKeF9GMaJYyBgDgXORycciQqc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.115.0/24 Signature Algorithm: sha256WithRSAEncryption 04:6e:c2:ee:dc:bb:65:fc:d0:70:6e:21:fe:27:20:08:23:01: 84:5c:db:48:51:8b:73:d1:93:06:a8:d6:05:e4:b8:32:bb:5c: b7:44:1a:c3:fa:c6:6b:33:c6:1f:7e:95:d8:14:c0:df:b0:73: 1b:fe:e6:16:4a:6d:90:ff:c1:ee:fe:46:ea:ae:6a:e5:85:96: 85:40:4a:c6:ee:a3:89:7f:c8:ae:ec:0b:3c:4c:1d:cd:3e:48: 02:29:73:c0:a2:76:36:0d:b1:73:b9:94:b2:e8:a1:10:e8:bf: 5d:23:10:57:c1:f1:f4:42:1a:a2:36:dd:ce:88:aa:42:88:cc: 71:3b:fc:98:3b:70:6c:bb:c1:9b:04:6e:04:d8:39:50:5d:ef: 34:2e:bd:7e:72:84:bd:1c:e1:14:a7:fd:19:84:c5:f4:69:c1: 6e:0f:a1:3b:95:87:fd:02:89:70:3f:be:50:a8:9f:6c:95:c5: f0:2c:db:06:7e:82:58:e6:9b:0f:e6:14:21:2a:5c:ed:37:92: b0:5b:4b:df:96:59:ba:9a:22:d1:f4:fd:bc:ac:8f:59:df:37: 62:ab:8d:5c:b3:ef:00:43:23:3c:bc:88:c5:de:95:36:a2:0c: 00:43:b5:5b:6f:0d:b5:d4:b5:cc:7f:d7:ac:3b:74:68:42:67: cb:20:15:70 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMZUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMwMzZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEJDNDQ0QTc4NUY0NjMx QTI1OEM4MTgwMzgxNzM5MUM5QzcyMjQyQTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDS9SmmyhdZx8cYv6puKGABTfgaVInHYWO8aY7McNMPa+zyQV+1 Zg37ot5I61GT+dzkkJSnUfhMcnzAUWnc+dwscsZTWX89Nh5bILXsjADz4EXkrL7S 0rjsxcMx4GptfVGVTsyKnP44TxA61aBuqA1CAAZO47p/bCfEggAcrLg6S4AcRigq z8LfzNdQ01KvotjBOtfUdHrfzeyRoaWRojoNQgo/xQ58SlgyfnQstnx42J34Zgxx S87BTAvT40lDLah8yOvEUg6cnO43hzIg9VUUYqSdZ7A/eanc37Qj8hdUDcBGqMfy KdJSw6ALDmkaP/HMgHs/+OVssyN9wbI6x0lbAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUvERKeF9GMaJYyBgDgXORycciQqcwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3ZFUktlRjlHTWFKWXlCZ0Rn WE9SeWNjaVFxYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADT THMwDQYJKoZIhvcNAQELBQADggEBAARuwu7cu2X80HBuIf4nIAgjAYRc20hRi3PR kwao1gXkuDK7XLdEGsP6xmszxh9+ldgUwN+wcxv+5hZKbZD/we7+RuquauWFloVA Ssbuo4l/yK7sCzxMHc0+SAIpc8CidjYNsXO5lLLooRDov10jEFfB8fRCGqI23c6I qkKIzHE7/Jg7cGy7wZsEbgTYOVBd7zQuvX5yhL0c4RSn/RmExfRpwW4PoTuVh/0C iXA/vlCon2yVxfAs2wZ+gljmmw/mFCEqXO03krBbS9+WWbqaItH0/bysj1nfN2Kr jVyz7wBDIzy8iMXelTaiDABDtVtvDbXUtcx/16w7dGhCZ8sgFXA= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:58 2024 by rpki-client on console-fra.rpki-client.org