$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/y_2WFGIqg8aY7SNDrwGS6uEIwmE.roa File: y_2WFGIqg8aY7SNDrwGS6uEIwmE.roa (raw, json) Hash identifier: xbfeUA56wYhKgNR2STRB1yxSqMllgRP5MedqrPCvNTk= Subject key identifier: CB:FD:96:14:62:2A:83:C6:98:ED:23:43:AF:01:92:EA:E1:08:C2:61 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3129 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/y_2WFGIqg8aY7SNDrwGS6uEIwmE.roa Signing time: Mon 26 Aug 2024 05:30:11 +0000 ROA not before: Mon 26 Aug 2024 05:30:11 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.194.120.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12585 (0x3129) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:30:11 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=CBFD9614622A83C698ED2343AF0192EAE108C261 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:65:d8:97:aa:d0:ce:51:06:6a:5c:bf:20:ae: f4:76:88:83:c6:6a:b6:b2:f0:5e:25:58:63:02:ad: b4:8d:1c:bd:05:8d:55:6f:97:e3:5e:5a:de:8f:32: f4:40:44:df:bb:b4:46:22:69:11:ff:ee:2d:58:9b: cf:a7:84:72:54:96:9d:bd:8c:9c:36:3a:07:df:a7: 4a:6e:36:67:70:7b:63:05:27:b1:9f:af:70:75:d4: aa:52:ea:c8:73:c8:f7:df:2f:e1:ca:b5:d6:f0:75: 35:fb:c8:cf:ea:7a:bf:9c:94:7f:13:cd:70:d7:af: da:f1:cc:c4:d2:b0:71:f2:26:96:6b:b5:31:ad:41: f8:da:0c:87:a6:cd:f0:db:0f:24:93:c9:34:41:c2: 17:31:38:17:66:ef:df:08:ba:25:6d:8f:25:41:bd: e1:a0:1c:af:c3:e5:90:6d:c5:c4:0b:0a:37:58:72: 5f:97:ad:e7:c0:91:9d:55:8e:5c:dc:05:ee:31:05: 33:a6:7e:c4:5a:80:f1:83:b0:0e:99:27:4a:e2:78: cf:78:1a:10:2c:7e:34:9a:99:63:a5:7b:73:1f:f2: b9:33:18:7b:a3:56:79:88:59:39:60:1d:b2:c7:5f: 24:47:95:30:fe:83:37:a0:5e:e6:27:9a:6e:d7:5f: 73:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:FD:96:14:62:2A:83:C6:98:ED:23:43:AF:01:92:EA:E1:08:C2:61 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/y_2WFGIqg8aY7SNDrwGS6uEIwmE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.194.120.0/21 Signature Algorithm: sha256WithRSAEncryption 45:9a:19:b4:7a:5e:18:b0:28:4c:5c:f8:b0:8b:98:46:9f:27: 84:3b:d8:56:f6:fe:25:94:7e:4d:92:5c:b0:a4:af:4b:20:d9: 96:8f:50:63:f3:04:ce:c2:25:1d:56:4c:35:9b:37:ee:f1:cd: fc:ea:e4:18:5f:99:06:83:4e:ae:4e:d6:83:58:85:a5:5d:4f: 4c:79:e5:aa:58:97:5c:c1:3f:43:30:a4:3d:4d:85:1c:b3:b6: cc:cd:5f:4c:c0:3e:3a:a7:bc:b4:b8:48:25:e0:9e:10:a8:20: a4:f8:69:67:20:d3:09:15:c6:57:32:a9:c9:2c:90:1f:dd:95: f9:b7:4a:6b:10:a8:5d:c1:13:3d:0a:60:96:7b:18:c5:5e:9b: ee:22:d8:59:1c:64:d9:48:ac:d0:03:73:7c:a9:37:c1:f4:6d: 2b:7b:c5:b2:ee:fa:df:c0:d3:71:ed:7d:34:4d:81:5b:33:b8: 06:ab:37:6e:75:d3:6a:f2:bd:6d:5c:cc:9f:ef:63:2a:2e:bd: 3f:72:59:77:a9:82:af:e3:4d:67:71:89:bc:7d:f0:17:27:ac: 4b:c6:fb:9d:e4:58:5d:0b:3b:b7:52:53:a4:ed:df:0b:b3:64: e8:49:6b:4c:27:c5:bc:26:a9:8a:34:02:93:db:88:15:3f:8d: 0f:26:ce:1a -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMSkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMwMTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKENCRkQ5NjE0NjIyQTgz QzY5OEVEMjM0M0FGMDE5MkVBRTEwOEMyNjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCjZdiXqtDOUQZqXL8grvR2iIPGaray8F4lWGMCrbSNHL0FjVVv l+NeWt6PMvRARN+7tEYiaRH/7i1Ym8+nhHJUlp29jJw2Ogffp0puNmdwe2MFJ7Gf r3B11KpS6shzyPffL+HKtdbwdTX7yM/qer+clH8TzXDXr9rxzMTSsHHyJpZrtTGt QfjaDIemzfDbDySTyTRBwhcxOBdm798IuiVtjyVBveGgHK/D5ZBtxcQLCjdYcl+X refAkZ1VjlzcBe4xBTOmfsRagPGDsA6ZJ0rieM94GhAsfjSamWOle3Mf8rkzGHuj VnmIWTlgHbLHXyRHlTD+gzegXuYnmm7XX3NzAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUy/2WFGIqg8aY7SNDrwGS6uEIwmEwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3lfMldGR0lxZzhhWTdTTkRy d0dTNnVFSXdtRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN7 wngwDQYJKoZIhvcNAQELBQADggEBAEWaGbR6XhiwKExc+LCLmEafJ4Q72Fb2/iWU fk2SXLCkr0sg2ZaPUGPzBM7CJR1WTDWbN+7xzfzq5BhfmQaDTq5O1oNYhaVdT0x5 5apYl1zBP0MwpD1NhRyztszNX0zAPjqnvLS4SCXgnhCoIKT4aWcg0wkVxlcyqcks kB/dlfm3SmsQqF3BEz0KYJZ7GMVem+4i2FkcZNlIrNADc3ypN8H0bSt7xbLu+t/A 03HtfTRNgVszuAarN25102ryvW1czJ/vYyouvT9yWXepgq/jTWdxibx98BcnrEvG +53kWF0LO7dSU6Tt3wuzZOhJa0wnxbwmqYo0ApPbiBU/jQ8mzho= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:24 2024 by rpki-client on console-ams.rpki-client.org