$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/vOkNifNKtWrQ20tkavCs9x7WMTI.roa File: vOkNifNKtWrQ20tkavCs9x7WMTI.roa (raw, json) Hash identifier: 8tEtXK28FxrmDmTd1cg4WbbydGinDx01KM1bS0hAWJI= Subject key identifier: BC:E9:0D:89:F3:4A:B5:6A:D0:DB:4B:64:6A:F0:AC:F7:1E:D6:31:32 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 32FB Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/vOkNifNKtWrQ20tkavCs9x7WMTI.roa Signing time: Mon 26 Aug 2024 05:32:12 +0000 ROA not before: Mon 26 Aug 2024 05:32:12 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 2407:4d00:ff09::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13051 (0x32fb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:32:12 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=BCE90D89F34AB56AD0DB4B646AF0ACF71ED63132 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:e5:2e:40:4f:91:a3:55:03:92:66:77:9e:21: fc:9c:b4:4a:e8:b7:f4:ef:cb:bc:49:6b:11:f0:dc: 35:a0:c4:cd:b7:0d:b3:6d:65:5d:99:09:88:7f:17: ce:37:f3:ab:35:9e:6b:bc:7d:4e:a0:ce:d7:22:80: 44:61:b1:80:d5:a3:8b:0f:0e:37:73:8b:45:b3:66: f9:e0:e3:23:e2:0d:67:49:35:95:92:d8:b5:74:ed: 10:91:7c:91:7c:b4:16:5f:d5:e2:cc:7f:cc:1e:14: 30:20:04:40:06:70:89:ea:4d:f5:02:22:d7:ac:e8: b0:f1:25:ea:72:b5:9a:7f:a1:ae:c0:2b:b3:5c:50: c8:d8:78:2e:99:98:07:65:ec:48:d1:0e:82:e3:d6: bb:e2:8d:d8:9d:ca:49:00:a7:3e:e8:88:24:2b:e3: a0:5a:74:7c:d6:1b:15:93:e4:d3:94:fe:e7:0c:89: e3:15:92:6a:89:42:a0:81:28:d8:0b:a6:41:69:75: 5a:47:7a:40:f2:4f:66:eb:2c:80:a6:a0:36:36:fa: 76:45:dc:cc:8f:60:e1:12:fd:26:67:51:6f:1f:5c: ab:98:52:ea:12:27:83:a0:7f:c0:3d:cc:e7:38:94: e7:47:d6:54:df:cc:68:d4:17:4e:6b:78:fe:86:ee: 66:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:E9:0D:89:F3:4A:B5:6A:D0:DB:4B:64:6A:F0:AC:F7:1E:D6:31:32 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/vOkNifNKtWrQ20tkavCs9x7WMTI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2407:4d00:ff09::/48 Signature Algorithm: sha256WithRSAEncryption 10:26:e7:c5:ed:08:c2:5d:91:e6:a6:34:02:eb:52:6e:4f:72: 6a:09:16:2d:ca:fc:44:49:b1:b7:62:90:9b:d0:ae:93:3a:ed: 87:fc:05:fe:73:4e:18:df:59:3a:ea:33:c6:82:d4:0c:76:87: ce:72:fc:90:03:ad:b3:8b:72:d8:90:45:c4:28:28:15:05:58: 92:7c:29:11:91:ec:77:d4:02:80:d1:36:8d:75:12:9b:4a:40: 31:b1:29:3e:c6:e0:a1:a3:e9:8a:f9:7e:05:51:6d:0c:30:3a: 82:bc:0a:b5:3c:33:0e:7d:ea:27:87:b7:4d:9c:e5:0c:eb:b4: 9b:c2:2b:39:84:3a:a3:7a:20:5e:5d:4f:5a:40:df:8f:33:a7: d2:b9:17:36:6e:ab:e9:34:87:fc:61:c5:1c:d9:12:4f:f7:78: 3e:33:00:72:e3:58:52:f3:17:0b:2f:3d:85:96:16:be:52:b2: af:84:28:4c:4b:d7:c5:d5:0e:6a:ca:ac:3b:1e:87:0e:8b:ed: e7:43:ba:4f:8a:1a:28:22:05:39:22:99:3a:d3:74:08:52:d8: 08:b9:a5:ca:c4:80:e6:d8:63:67:a7:8c:86:ab:67:56:a1:25: cd:cd:50:46:8d:c5:32:56:89:c2:79:aa:6d:c2:c6:4e:f9:6c: 41:84:cf:c4 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICMvswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMyMTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEJDRTkwRDg5RjM0QUI1 NkFEMERCNEI2NDZBRjBBQ0Y3MUVENjMxMzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDF5S5AT5GjVQOSZneeIfyctErot/Tvy7xJaxHw3DWgxM23DbNt ZV2ZCYh/F84386s1nmu8fU6gztcigERhsYDVo4sPDjdzi0WzZvng4yPiDWdJNZWS 2LV07RCRfJF8tBZf1eLMf8weFDAgBEAGcInqTfUCItes6LDxJepytZp/oa7AK7Nc UMjYeC6ZmAdl7EjRDoLj1rvijdidykkApz7oiCQr46BadHzWGxWT5NOU/ucMieMV kmqJQqCBKNgLpkFpdVpHekDyT2brLICmoDY2+nZF3MyPYOES/SZnUW8fXKuYUuoS J4Ogf8A9zOc4lOdH1lTfzGjUF05reP6G7mavAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUvOkNifNKtWrQ20tkavCs9x7WMTIwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3ZPa05pZk5LdFdyUTIwdGth dkNzOXg3V01USS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk B00A/wkwDQYJKoZIhvcNAQELBQADggEBABAm58XtCMJdkeamNALrUm5PcmoJFi3K /ERJsbdikJvQrpM67Yf8Bf5zThjfWTrqM8aC1Ax2h85y/JADrbOLctiQRcQoKBUF WJJ8KRGR7HfUAoDRNo11EptKQDGxKT7G4KGj6Yr5fgVRbQwwOoK8CrU8Mw596ieH t02c5QzrtJvCKzmEOqN6IF5dT1pA348zp9K5FzZuq+k0h/xhxRzZEk/3eD4zAHLj WFLzFwsvPYWWFr5Ssq+EKExL18XVDmrKrDsehw6L7edDuk+KGigiBTkimTrTdAhS 2Ai5pcrEgObYY2enjIarZ1ahJc3NUEaNxTJWicJ5qm3Cxk75bEGEz8Q= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:40 2024 by rpki-client on console-ams.rpki-client.org