$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ydJdrKniO-8Kks9gG799iJhYrbo.roa File: ydJdrKniO-8Kks9gG799iJhYrbo.roa (raw, json) Hash identifier: ufigPwA6qcmvKg4B4ubvMYjJZttclePIxSZNq0KycpM= Subject key identifier: C9:D2:5D:AC:A9:E2:3B:EF:0A:92:CF:60:1B:BF:7D:88:98:58:AD:BA Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 32A5 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ydJdrKniO-8Kks9gG799iJhYrbo.roa Signing time: Mon 26 Aug 2024 05:31:51 +0000 ROA not before: Mon 26 Aug 2024 05:31:51 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 123.193.248.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12965 (0x32a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:31:51 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C9D25DACA9E23BEF0A92CF601BBF7D889858ADBA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:6c:17:ef:b4:9c:b1:b9:1b:11:68:ab:ac:b8: c3:d0:85:35:ca:3d:0c:fc:e2:20:bd:73:4f:75:18: 55:c1:0e:e4:ee:bb:9e:fe:65:60:7e:1b:11:46:07: 46:6c:71:71:0e:5a:21:1f:b7:46:00:87:99:bd:c4: c9:c6:be:7a:d2:8a:1f:0b:12:12:f1:1c:f0:62:9e: b0:3d:6d:0a:40:1e:73:d5:53:f7:58:52:7e:1e:3b: a8:f9:e7:31:7f:a2:b7:9f:87:06:5c:5c:01:c2:ad: 3b:e0:2b:a6:85:ce:08:1a:38:70:7b:ba:ee:f5:7b: 4e:16:60:9a:64:91:ca:05:60:85:7d:a5:4a:1e:72: 82:36:ad:4c:33:63:ec:8f:39:dd:0e:98:09:66:1d: 1e:0f:11:7c:d2:19:d2:ff:cb:21:93:31:47:d9:ae: 45:19:c5:1e:42:07:92:ac:3c:c2:5f:77:6d:77:61: ab:b9:0c:e7:af:5f:b3:e8:a4:45:e8:88:b1:39:dc: 31:28:71:ec:49:e6:1d:7d:bf:43:9a:bb:0f:f0:15: a6:60:68:29:c4:5d:17:5f:61:2f:55:0a:41:47:3f: c4:d0:2e:96:45:3c:e5:0a:b3:03:70:b4:19:aa:58: 6d:bd:59:5b:91:0b:de:80:a2:84:9b:9f:92:5c:0d: 8c:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:D2:5D:AC:A9:E2:3B:EF:0A:92:CF:60:1B:BF:7D:88:98:58:AD:BA X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/ydJdrKniO-8Kks9gG799iJhYrbo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.193.248.0/22 Signature Algorithm: sha256WithRSAEncryption 06:82:4c:56:f4:66:e9:7f:17:92:f9:69:9a:e3:79:f6:70:9f: ec:b8:9f:22:21:f4:df:bf:38:db:5f:5f:c0:15:ba:c9:9b:c1: f6:de:1b:28:05:bd:0b:d5:68:82:dd:6d:b7:84:d6:ca:d3:e7: 54:ba:2e:9d:40:01:31:6d:42:1a:12:7d:f3:12:2e:46:a7:35: 1d:a1:51:59:dd:f7:0f:e6:a1:66:c6:a1:48:cd:26:da:a0:fd: ee:fe:75:5b:02:fc:93:0e:b5:1a:65:97:f0:bb:29:52:6f:7d: 3b:10:1d:0d:68:37:aa:fd:45:bd:41:2b:b3:9f:2f:8b:f5:58: b9:84:98:79:7f:bf:c3:a5:a5:9b:67:df:81:9f:5b:20:19:3e: aa:b0:ed:43:15:e4:4e:56:62:56:4a:0f:8b:98:7e:fa:e1:bd: c4:f8:bc:a7:a0:b9:1d:b0:80:3c:2f:0c:9e:1e:cd:71:17:fc: 33:92:a0:ed:ec:e8:a8:cc:eb:3c:99:65:5d:eb:3c:2d:78:6b: 78:c8:95:38:59:ac:5c:45:78:02:06:c3:fc:84:ee:2d:5d:2f: 88:4a:0c:4d:36:15:0b:da:96:b3:59:6f:98:3d:57:bc:0c:e4: 1a:a2:e3:9d:7c:25:95:4e:c2:4e:d2:db:2c:38:af:b6:93:86: 81:b8:93:9e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMqUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMxNTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM5RDI1REFDQTlFMjNC RUYwQTkyQ0Y2MDFCQkY3RDg4OTg1OEFEQkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+bBfvtJyxuRsRaKusuMPQhTXKPQz84iC9c091GFXBDuTuu57+ ZWB+GxFGB0ZscXEOWiEft0YAh5m9xMnGvnrSih8LEhLxHPBinrA9bQpAHnPVU/dY Un4eO6j55zF/orefhwZcXAHCrTvgK6aFzggaOHB7uu71e04WYJpkkcoFYIV9pUoe coI2rUwzY+yPOd0OmAlmHR4PEXzSGdL/yyGTMUfZrkUZxR5CB5KsPMJfd213Yau5 DOevX7PopEXoiLE53DEocexJ5h19v0Oauw/wFaZgaCnEXRdfYS9VCkFHP8TQLpZF POUKswNwtBmqWG29WVuRC96AooSbn5JcDYyTAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUydJdrKniO+8Kks9gG799iJhYrbowHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3lkSmRyS25pTy04S2tzOWdH Nzk5aUpoWXJiby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ7 wfgwDQYJKoZIhvcNAQELBQADggEBAAaCTFb0Zul/F5L5aZrjefZwn+y4nyIh9N+/ ONtfX8AVusmbwfbeGygFvQvVaILdbbeE1srT51S6Lp1AATFtQhoSffMSLkanNR2h UVnd9w/moWbGoUjNJtqg/e7+dVsC/JMOtRpll/C7KVJvfTsQHQ1oN6r9Rb1BK7Of L4v1WLmEmHl/v8OlpZtn34GfWyAZPqqw7UMV5E5WYlZKD4uYfvrhvcT4vKeguR2w gDwvDJ4ezXEX/DOSoO3s6KjM6zyZZV3rPC14a3jIlThZrFxFeAIGw/yE7i1dL4hK DE02FQvalrNZb5g9V7wM5Bqi4518JZVOwk7S2yw4r7aThoG4k54= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:54 2024 by rpki-client on console-ams.rpki-client.org