$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/w1eB7fZ9oAZEafSEAXJXEd5woU4.roa File: w1eB7fZ9oAZEafSEAXJXEd5woU4.roa (raw, json) Hash identifier: OI+2hflW5GN9MPV026MGgkN25bTjSAhONBPGoJI35lY= Subject key identifier: C3:57:81:ED:F6:7D:A0:06:44:69:F4:84:01:72:57:11:DE:70:A1:4E Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 323E Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/w1eB7fZ9oAZEafSEAXJXEd5woU4.roa Signing time: Mon 26 Aug 2024 05:31:27 +0000 ROA not before: Mon 26 Aug 2024 05:31:27 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 180.177.208.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12862 (0x323e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:31:27 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C35781EDF67DA0064469F48401725711DE70A14E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:92:f4:9b:13:5e:24:12:5c:71:91:6c:b2:e4: 80:4e:3b:a8:e4:1f:ab:4a:69:05:85:52:79:e2:e6: 23:f4:57:c9:73:30:e7:f1:a8:b6:30:ac:1f:52:81: a8:67:1a:32:16:e4:6e:37:3c:28:a8:f3:2f:56:7a: 73:01:bd:5b:5a:75:46:ca:ab:75:bb:ba:04:22:c6: 84:c9:e2:b9:cb:ba:2c:a6:e7:5b:5e:f3:2a:5d:60: 6b:9f:bf:07:3a:10:b5:54:73:dd:66:49:85:4b:2d: e8:d1:f9:b6:40:58:45:59:47:6e:05:31:b4:65:8a: 35:c9:49:48:a3:46:b8:1e:af:90:34:c6:d1:d1:52: 0e:dc:79:1e:f1:33:8a:76:ce:31:b9:e7:ee:ea:95: 50:0a:34:7f:bf:2b:49:2b:86:a0:82:35:1d:db:9b: 13:be:e3:52:ee:0a:38:99:12:52:c6:a0:44:2b:bb: b0:99:71:b7:2b:7f:c8:0f:04:da:85:cc:03:18:21: 23:7e:72:2c:34:1f:1d:c1:6e:ad:43:ab:7d:f0:c7: 30:ca:55:12:f4:35:76:4c:65:85:d2:2f:e7:d6:ba: 11:a0:72:c0:38:4a:6b:2b:45:76:0c:66:98:89:ea: c8:77:62:5a:cb:ae:d0:bb:23:51:0a:49:50:37:85: 12:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:57:81:ED:F6:7D:A0:06:44:69:F4:84:01:72:57:11:DE:70:A1:4E X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/w1eB7fZ9oAZEafSEAXJXEd5woU4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.177.208.0/22 Signature Algorithm: sha256WithRSAEncryption aa:37:49:fa:83:4b:b3:87:eb:0f:90:82:fd:bf:b1:31:b6:8e: f5:af:7d:bb:00:22:18:c8:a6:52:b1:b5:44:7e:f7:f9:e0:56: 3c:3e:26:8c:58:79:bf:2b:af:1e:fd:2b:2f:dd:b0:e9:9d:3d: c8:b1:5d:4b:d6:31:27:53:79:7c:b5:50:72:cf:8c:b1:f3:7d: 28:b3:ba:81:05:34:6f:09:e8:5c:ff:a1:92:23:01:dc:09:48: 23:db:a4:0f:e3:a3:e0:b2:05:95:c1:3d:fc:01:93:f7:75:28: 73:c7:42:81:80:79:9a:d2:cf:d5:87:1a:ba:56:70:d6:4a:f7: db:bf:f3:85:8d:a3:29:14:69:7a:cb:8b:f8:02:b2:32:83:70: a2:77:cf:86:77:af:8a:98:88:56:e0:52:29:69:bc:7e:9e:45: e5:2b:ee:fb:79:5f:7c:30:bc:99:45:3b:79:c9:b3:87:d8:c3: d2:81:25:c0:36:58:6a:ad:8f:54:b9:5c:c5:35:b3:f9:e4:37: 19:6c:5c:57:13:b4:d9:a7:9c:2c:0d:9e:49:e5:ba:55:c9:d1: 05:98:44:31:59:85:be:9d:fa:14:0c:47:b3:e4:ae:5a:25:f9: 37:87:b9:99:e1:d0:9d:35:cb:0f:b5:9a:07:a3:c7:a0:c1:d3: 1f:20:92:68 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMj4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMxMjdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEMzNTc4MUVERjY3REEw MDY0NDY5RjQ4NDAxNzI1NzExREU3MEExNEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCmkvSbE14kElxxkWyy5IBOO6jkH6tKaQWFUnni5iP0V8lzMOfx qLYwrB9SgahnGjIW5G43PCio8y9WenMBvVtadUbKq3W7ugQixoTJ4rnLuiym51te 8ypdYGufvwc6ELVUc91mSYVLLejR+bZAWEVZR24FMbRlijXJSUijRrger5A0xtHR Ug7ceR7xM4p2zjG55+7qlVAKNH+/K0krhqCCNR3bmxO+41LuCjiZElLGoEQru7CZ cbcrf8gPBNqFzAMYISN+ciw0Hx3Bbq1Dq33wxzDKVRL0NXZMZYXSL+fWuhGgcsA4 SmsrRXYMZpiJ6sh3YlrLrtC7I1EKSVA3hRKlAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUw1eB7fZ9oAZEafSEAXJXEd5woU4wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3cxZUI3Zlo5b0FaRWFmU0VB WEpYRWQ1d29VNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK0 sdAwDQYJKoZIhvcNAQELBQADggEBAKo3SfqDS7OH6w+Qgv2/sTG2jvWvfbsAIhjI plKxtUR+9/ngVjw+JoxYeb8rrx79Ky/dsOmdPcixXUvWMSdTeXy1UHLPjLHzfSiz uoEFNG8J6Fz/oZIjAdwJSCPbpA/jo+CyBZXBPfwBk/d1KHPHQoGAeZrSz9WHGrpW cNZK99u/84WNoykUaXrLi/gCsjKDcKJ3z4Z3r4qYiFbgUilpvH6eReUr7vt5X3ww vJlFO3nJs4fYw9KBJcA2WGqtj1S5XMU1s/nkNxlsXFcTtNmnnCwNnknlulXJ0QWY RDFZhb6d+hQMR7Pkrlol+TeHuZnh0J01yw+1mgejx6DB0x8gkmg= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:23 2024 by rpki-client on console-ams.rpki-client.org