$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/yu73tiQ0iNerWnZmAe2bXk_a3tY.roa File: yu73tiQ0iNerWnZmAe2bXk_a3tY.roa (raw, json) Hash identifier: Vyqj1HLyWOO96hILr7k4X7iG7MgOfPL8+eMwvRDB69Q= Subject key identifier: CA:EE:F7:B6:24:34:88:D7:AB:5A:76:66:01:ED:9B:5E:4F:DA:DE:D6 Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 2FC6 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/yu73tiQ0iNerWnZmAe2bXk_a3tY.roa Signing time: Mon 26 Aug 2024 05:28:51 +0000 ROA not before: Mon 26 Aug 2024 05:28:51 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 118.232.84.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12230 (0x2fc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:28:51 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=CAEEF7B6243488D7AB5A766601ED9B5E4FDADED6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:c8:d8:92:21:6d:8e:74:c4:45:5e:03:99:21: 03:b6:f6:f7:0c:e1:72:0a:35:e5:88:38:94:70:3b: f8:8e:06:e1:e2:9e:ee:b5:72:84:cd:9e:37:e8:28: 91:e4:13:7e:bd:65:37:cf:c1:0b:40:ce:20:67:02: cd:f5:f9:27:a8:94:cf:c8:02:e2:9e:e0:fb:a2:d2: a8:8b:ed:e5:7c:0a:73:95:f1:ff:df:96:f6:1a:2b: 82:f6:51:63:48:3e:3c:d9:34:8c:8d:41:e1:2d:34: 69:3b:c2:34:e0:3c:66:d3:24:fd:da:8c:5e:70:5f: 84:fd:f0:69:4b:8d:15:36:ff:a0:8f:42:a1:c6:9b: c5:ab:d2:e4:9e:ea:0f:f9:26:f8:08:89:b7:75:da: 0f:53:a7:05:af:04:48:ef:93:ff:78:75:15:91:33: a9:92:ea:81:06:ba:70:0d:96:ff:27:f0:58:4f:44: 8f:a5:3a:0c:9b:02:42:a5:86:d2:96:cc:a2:b2:0b: 58:b8:51:3f:ab:cc:8f:41:f1:1e:13:2c:35:3a:9a: 19:6c:d1:7f:30:f5:2e:be:10:be:1c:51:a7:7b:92: c3:11:60:fd:10:68:e0:f1:19:05:2b:4d:3e:50:c9: ac:07:55:e2:66:ce:85:d6:4a:eb:bf:29:e7:8d:e1: 67:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:EE:F7:B6:24:34:88:D7:AB:5A:76:66:01:ED:9B:5E:4F:DA:DE:D6 X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/yu73tiQ0iNerWnZmAe2bXk_a3tY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.232.84.0/22 Signature Algorithm: sha256WithRSAEncryption af:84:29:98:0a:b9:d7:e3:85:05:6a:47:de:83:eb:44:3b:f6: 6a:3d:2c:37:b4:35:60:97:e9:50:46:36:d0:6c:a7:40:87:3c: 90:d2:65:2c:58:6b:1f:13:be:55:12:0c:90:05:2f:8b:26:89: e5:b3:e0:c1:97:73:c6:7e:cd:3d:1b:cf:df:1b:83:12:70:7a: 97:58:ba:f0:63:96:17:71:e5:5c:53:98:83:5a:7f:00:64:c2: cb:c2:6f:48:10:fb:7c:fb:33:ae:62:4e:bb:2a:d9:7d:96:83: 80:42:6b:bf:3e:57:d6:0b:4d:5d:5f:25:c9:ba:5a:c4:00:46: fd:a5:ad:9c:38:f1:a9:f1:89:e1:8e:dd:c5:87:47:51:80:2e: 31:43:75:c0:52:47:98:01:df:f7:0a:a5:95:3e:ec:7c:6f:7b: 69:cc:c1:81:a5:bd:92:f3:ba:3a:26:a1:55:5a:db:58:6b:da: e7:59:9a:19:d3:4e:73:c4:b2:cc:a1:88:66:dd:13:08:94:bb: d9:1f:01:6e:6d:43:2c:2f:d7:6d:1b:15:bf:c6:65:c4:03:fa: 51:a7:ad:d4:3c:b3:bd:8c:49:34:f9:d7:ef:86:f8:9a:74:6e: 34:23:ae:38:ab:6a:74:9a:c4:62:f3:33:d3:e2:29:a5:e1:4f: 83:c3:fe:03 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICL8YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTI4NTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKENBRUVGN0I2MjQzNDg4 RDdBQjVBNzY2NjAxRUQ5QjVFNEZEQURFRDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDhyNiSIW2OdMRFXgOZIQO29vcM4XIKNeWIOJRwO/iOBuHinu61 coTNnjfoKJHkE369ZTfPwQtAziBnAs31+SeolM/IAuKe4Pui0qiL7eV8CnOV8f/f lvYaK4L2UWNIPjzZNIyNQeEtNGk7wjTgPGbTJP3ajF5wX4T98GlLjRU2/6CPQqHG m8Wr0uSe6g/5JvgIibd12g9TpwWvBEjvk/94dRWRM6mS6oEGunANlv8n8FhPRI+l OgybAkKlhtKWzKKyC1i4UT+rzI9B8R4TLDU6mhls0X8w9S6+EL4cUad7ksMRYP0Q aODxGQUrTT5QyawHVeJmzoXWSuu/KeeN4WfDAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUyu73tiQ0iNerWnZmAe2bXk/a3tYwHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3l1NzN0aVEwaU5lclduWm1B ZTJiWGtfYTN0WS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ2 6FQwDQYJKoZIhvcNAQELBQADggEBAK+EKZgKudfjhQVqR96D60Q79mo9LDe0NWCX 6VBGNtBsp0CHPJDSZSxYax8TvlUSDJAFL4smieWz4MGXc8Z+zT0bz98bgxJwepdY uvBjlhdx5VxTmINafwBkwsvCb0gQ+3z7M65iTrsq2X2Wg4BCa78+V9YLTV1fJcm6 WsQARv2lrZw48anxieGO3cWHR1GALjFDdcBSR5gB3/cKpZU+7Hxve2nMwYGlvZLz ujomoVVa21hr2udZmhnTTnPEssyhiGbdEwiUu9kfAW5tQywv120bFb/GZcQD+lGn rdQ8s72MSTT51++G+Jp0bjQjrjiranSaxGLzM9PiKaXhT4PD/gM= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:24 2024 by rpki-client on console-ams.rpki-client.org