$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/xX6JnAGs7L2WgUFZWwMcqWtPY2w.roa File: xX6JnAGs7L2WgUFZWwMcqWtPY2w.roa (raw, json) Hash identifier: PZ9kMtiuY9ekp9K4XApwjVgykTCAUWyj1jWfflo+k4I= Subject key identifier: C5:7E:89:9C:01:AC:EC:BD:96:81:41:59:5B:03:1C:A9:6B:4F:63:6C Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3085 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/xX6JnAGs7L2WgUFZWwMcqWtPY2w.roa Signing time: Mon 26 Aug 2024 05:29:32 +0000 ROA not before: Mon 26 Aug 2024 05:29:32 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.192.248.0/21 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 05:19:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12421 (0x3085) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:29:32 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C57E899C01ACECBD968141595B031CA96B4F636C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:4f:17:6c:35:11:12:b3:60:7e:66:5e:c0:49: ba:4f:7c:22:5b:a7:cb:4f:34:17:b9:de:b6:3b:8b: ce:d1:be:f3:f4:b0:2c:74:26:07:3d:1f:1a:9e:d7: 43:61:d8:fe:63:2f:3b:a8:3b:24:65:80:a8:42:6d: 6d:22:78:83:4a:7c:ec:e8:86:c6:b2:77:39:0d:71: d5:1d:38:cb:7e:00:f4:0f:e6:91:ed:30:67:83:72: 39:fa:ea:68:38:c0:c4:89:7a:3b:1f:ab:6c:3b:0e: 6c:95:db:a8:c7:4a:1c:d7:d7:b1:b3:cb:d5:51:20: ee:6d:ed:29:05:12:fd:95:a3:bd:56:06:f8:61:3c: 2b:d7:c0:86:d6:26:31:5d:96:c5:7a:37:ec:43:97: 97:98:d3:91:b4:40:0e:49:e5:00:13:43:b6:4e:48: ca:8a:34:66:bc:8b:42:3d:05:fc:5c:5c:c6:5e:0a: 76:09:60:98:0c:d8:6c:b6:18:ce:e7:5e:00:83:6f: cf:ad:2c:46:af:67:7c:7a:db:0e:a7:a4:3e:c0:f7: b2:1b:e5:01:71:9e:31:da:27:62:4d:45:2e:30:ee: f4:0c:e7:49:49:03:78:b7:4d:4a:f5:f4:cc:4f:15: bc:71:9e:43:bd:f2:0f:fb:5b:69:5c:0d:d2:5f:52: f7:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:7E:89:9C:01:AC:EC:BD:96:81:41:59:5B:03:1C:A9:6B:4F:63:6C X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/xX6JnAGs7L2WgUFZWwMcqWtPY2w.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.192.248.0/21 Signature Algorithm: sha256WithRSAEncryption 9e:4c:33:7b:c4:cc:15:86:28:c8:99:f4:39:88:e9:43:b1:b4: b4:ae:8e:d8:bb:ac:bd:20:19:ec:82:85:a9:3d:ef:7c:4a:f0: 05:fa:be:92:82:b6:c0:ba:94:24:fd:75:f7:1b:19:73:51:cd: 2e:e2:df:42:6d:85:6d:75:05:ef:f8:f6:e2:d6:83:f1:23:5f: 56:ed:bc:ea:b7:c9:fc:bd:50:cc:32:66:f6:0e:96:87:15:5b: fb:1a:f4:38:7f:d9:75:e4:ad:cb:c6:fb:0f:98:dc:c2:5a:9a: e7:be:f9:d9:37:ef:60:cb:4a:a2:12:60:3c:48:8d:e7:f7:7b: f7:ab:f0:c0:f6:5e:4a:ee:22:4e:f5:ac:27:21:85:7f:43:ec: b5:39:e8:19:c8:3c:4e:ff:1a:f6:f9:55:e9:e7:7b:4b:08:c9: 8a:d9:24:75:6b:b5:3d:ec:fe:18:7f:3d:73:4d:21:7d:1f:3e: 08:5b:56:81:90:09:30:4c:1d:1c:23:dc:34:d1:e5:f9:88:ac: 96:e1:b7:e4:de:c9:71:cd:17:88:82:28:63:ee:4e:d3:73:c5: e9:64:a2:51:b1:03:93:69:cc:95:5a:a2:cc:a1:a0:ba:71:a0: 90:38:53:55:8c:5e:8a:84:a9:be:31:43:10:7d:eb:47:37:3d: 34:eb:35:58 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMIUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTI5MzJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM1N0U4OTlDMDFBQ0VD QkQ5NjgxNDE1OTVCMDMxQ0E5NkI0RjYzNkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyTxdsNRESs2B+Zl7ASbpPfCJbp8tPNBe53rY7i87RvvP0sCx0 Jgc9Hxqe10Nh2P5jLzuoOyRlgKhCbW0ieINKfOzohsaydzkNcdUdOMt+APQP5pHt MGeDcjn66mg4wMSJejsfq2w7DmyV26jHShzX17Gzy9VRIO5t7SkFEv2Vo71WBvhh PCvXwIbWJjFdlsV6N+xDl5eY05G0QA5J5QATQ7ZOSMqKNGa8i0I9BfxcXMZeCnYJ YJgM2Gy2GM7nXgCDb8+tLEavZ3x62w6npD7A97Ib5QFxnjHaJ2JNRS4w7vQM50lJ A3i3TUr19MxPFbxxnkO98g/7W2lcDdJfUvdrAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUxX6JnAGs7L2WgUFZWwMcqWtPY2wwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3hYNkpuQUdzN0wyV2dVRlpX d01jcVd0UFkydy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7 wPgwDQYJKoZIhvcNAQELBQADggEBAJ5MM3vEzBWGKMiZ9DmI6UOxtLSujti7rL0g GeyChak973xK8AX6vpKCtsC6lCT9dfcbGXNRzS7i30JthW11Be/49uLWg/EjX1bt vOq3yfy9UMwyZvYOlocVW/sa9Dh/2XXkrcvG+w+Y3MJamue++dk372DLSqISYDxI jef3e/er8MD2XkruIk71rCchhX9D7LU56BnIPE7/Gvb5Venne0sIyYrZJHVrtT3s /hh/PXNNIX0fPghbVoGQCTBMHRwj3DTR5fmIrJbht+TeyXHNF4iCKGPuTtNzxelk olGxA5NpzJVaosyhoLpxoJA4U1WMXoqEqb4xQxB960c3PTTrNVg= -----END CERTIFICATE-----Generated at Sat Sep 21 03:11:41 2024 by rpki-client on console-fra.rpki-client.org