$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/yEmm6EorCX_-37oVSRYcm8c1edM.roa File: yEmm6EorCX_-37oVSRYcm8c1edM.roa (raw, json) Hash identifier: jmcmN+wR9YxWsY+SzFQ+4v3SnzVfdKnqRQAe6sCLdyY= Subject key identifier: C8:49:A6:E8:4A:2B:09:7F:FE:DF:BA:15:49:16:1C:9B:C7:35:79:D3 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 325C Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/yEmm6EorCX_-37oVSRYcm8c1edM.roa Signing time: Mon 26 Aug 2024 05:31:35 +0000 ROA not before: Mon 26 Aug 2024 05:31:35 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 123.194.232.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12892 (0x325c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:31:35 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C849A6E84A2B097FFEDFBA1549161C9BC73579D3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:6c:f2:44:19:f4:60:ac:5c:4e:d3:0f:d0:a2: b8:34:6c:d3:88:25:19:bc:f3:f9:44:49:31:1b:13: 3a:1b:7f:7e:b6:fc:a6:bb:41:cc:3f:43:15:a1:f1: 29:d3:a0:a0:aa:8b:38:82:d0:03:9c:74:48:1e:da: c8:b0:07:93:cd:57:8c:8d:e6:dc:19:55:e4:99:4e: 8c:38:65:a1:a6:3e:cc:1e:ee:50:82:9c:6f:47:10: 65:7c:b7:c3:3d:1a:11:b0:88:28:2d:0f:69:4a:ce: e8:f1:de:67:e5:86:78:a6:6d:da:ec:22:b8:94:f2: 36:5b:44:d7:71:bf:db:9a:33:6a:2a:ae:99:57:67: a2:a8:f2:12:0d:b9:b6:dc:33:c9:65:0c:0f:03:06: 07:79:18:ac:c3:8f:8c:c4:7f:50:b4:5d:c6:f2:00: 14:08:67:3f:cd:b7:b7:44:a2:d1:7a:f1:cb:97:57: 5a:85:48:90:86:96:96:1b:ba:ba:ae:f0:7c:1c:e2: 8b:06:d1:12:9a:b2:7b:09:7c:57:32:28:c5:c5:be: 0d:24:31:10:fa:71:a1:d2:f1:34:ac:0c:63:4c:e7: 30:9b:ff:e0:1b:83:78:3c:4a:fd:07:a2:d0:5a:7f: 3a:af:1e:85:83:1c:b0:51:c3:5a:55:43:6b:d2:51: 67:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:49:A6:E8:4A:2B:09:7F:FE:DF:BA:15:49:16:1C:9B:C7:35:79:D3 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/yEmm6EorCX_-37oVSRYcm8c1edM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.232.0/22 Signature Algorithm: sha256WithRSAEncryption 83:15:b1:57:87:8c:cf:8d:1c:a1:17:84:ae:35:30:27:20:86: 5f:6e:9f:09:bf:11:7c:27:69:b0:98:2f:14:cd:8b:ef:27:d4: 48:c1:ff:26:71:aa:70:5e:e4:e7:60:aa:b3:58:da:20:13:4b: 14:2e:48:3a:20:3f:23:42:e4:a6:98:40:3d:3d:05:81:e5:86: 6a:7f:21:96:c2:69:cc:4d:70:78:ce:97:17:8d:77:0a:dd:79: 57:35:bc:fd:f2:3f:d4:03:25:17:96:58:8a:f1:19:fa:c5:bf: 6b:2e:86:1f:da:a7:10:01:cd:dc:ba:33:69:e0:df:87:88:82: 9b:32:3a:50:8e:75:cf:f4:ab:35:a2:f4:06:93:16:45:c8:92: 69:63:7f:03:0b:4c:63:fb:30:25:96:d3:8f:a1:19:a1:ce:ca: 82:b2:15:0b:65:22:60:3d:5f:c6:bd:51:8c:8f:94:9e:3b:05: 4e:2d:a4:d3:75:5f:59:f2:7f:d0:60:f4:14:58:99:09:56:50: aa:22:d4:3b:dd:bd:c2:ca:fe:bf:0f:49:b0:7d:be:f0:c9:e6: 23:fa:36:1e:66:8d:81:c8:2c:ce:c5:6a:2a:01:bb:3a:df:88: 7d:8d:8a:08:14:67:7a:10:36:98:ac:42:2e:b2:bd:f9:8e:51: 96:cf:97:6f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMlwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMxMzVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM4NDlBNkU4NEEyQjA5 N0ZGRURGQkExNTQ5MTYxQzlCQzczNTc5RDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXbPJEGfRgrFxO0w/Qorg0bNOIJRm88/lESTEbEzobf362/Ka7 Qcw/QxWh8SnToKCqiziC0AOcdEge2siwB5PNV4yN5twZVeSZTow4ZaGmPswe7lCC nG9HEGV8t8M9GhGwiCgtD2lKzujx3mflhnimbdrsIriU8jZbRNdxv9uaM2oqrplX Z6Ko8hINubbcM8llDA8DBgd5GKzDj4zEf1C0XcbyABQIZz/Nt7dEotF68cuXV1qF SJCGlpYburqu8Hwc4osG0RKasnsJfFcyKMXFvg0kMRD6caHS8TSsDGNM5zCb/+Ab g3g8Sv0HotBafzqvHoWDHLBRw1pVQ2vSUWelAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUyEmm6EorCX/+37oVSRYcm8c1edMwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3lFbW02RW9yQ1hfLTM3b1ZT UlljbThjMWVkTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wugwDQYJKoZIhvcNAQELBQADggEBAIMVsVeHjM+NHKEXhK41MCcghl9unwm/EXwn abCYLxTNi+8n1EjB/yZxqnBe5OdgqrNY2iATSxQuSDogPyNC5KaYQD09BYHlhmp/ IZbCacxNcHjOlxeNdwrdeVc1vP3yP9QDJReWWIrxGfrFv2suhh/apxABzdy6M2ng 34eIgpsyOlCOdc/0qzWi9AaTFkXIkmljfwMLTGP7MCWW04+hGaHOyoKyFQtlImA9 X8a9UYyPlJ47BU4tpNN1X1nyf9Bg9BRYmQlWUKoi1DvdvcLK/r8PSbB9vvDJ5iP6 Nh5mjYHILM7FaioBuzrfiH2NiggUZ3oQNpisQi6yvfmOUZbPl28= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:40 2024 by rpki-client on console-ams.rpki-client.org