$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/zZo0UjTbX2tLUC3iWRMe-2Gfm60.roa File: zZo0UjTbX2tLUC3iWRMe-2Gfm60.roa (raw, json) Hash identifier: kr8qeshOv/b/9lite4mnprsMHII3sY2ahMhn+X6eHVU= Subject key identifier: CD:9A:34:52:34:DB:5F:6B:4B:50:2D:E2:59:13:1E:FB:61:9F:9B:AD Certificate issuer: /CN=EB675F938C85021374CAB1E1AF5099319B110B07 Certificate serial: 3176 Authority key identifier: EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/zZo0UjTbX2tLUC3iWRMe-2Gfm60.roa Signing time: Mon 26 Aug 2024 05:30:29 +0000 ROA not before: Mon 26 Aug 2024 05:30:29 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38841 IP address blocks: 118.233.8.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12662 (0x3176) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB675F938C85021374CAB1E1AF5099319B110B07 Validity Not Before: Aug 26 05:30:29 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=CD9A345234DB5F6B4B502DE259131EFB619F9BAD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:c3:48:cf:4f:ce:1b:27:06:92:e5:1c:ae:8e: 46:b7:c9:2b:ad:7b:4d:41:71:a5:47:2a:d0:b0:54: ef:1e:37:42:d2:21:c2:09:a7:74:43:f1:55:de:a1: 2e:1f:ce:03:c2:b1:2c:ba:68:86:64:38:e2:29:9d: 7a:1a:e2:7f:2b:9a:f9:92:08:cf:d6:62:eb:1b:b3: af:83:37:c1:1b:e3:45:e4:cc:1f:87:00:a9:d1:d0: 6b:6d:15:e9:d7:a1:01:a2:95:a7:6b:78:d7:7d:fb: 69:a5:6e:19:d2:52:72:1b:f3:33:e5:8e:43:c2:29: 92:e9:aa:ab:09:05:6e:b7:31:0b:c3:68:3b:e1:73: 84:cf:de:62:55:10:1b:f9:ca:d8:6f:96:3e:5a:c0: 0b:39:05:eb:f0:01:1e:ec:c9:f1:28:f3:55:13:85: 04:f7:86:99:75:3b:77:7e:e2:2e:80:af:20:5f:76: 24:2c:eb:6f:e5:93:e0:bc:89:20:89:b2:dc:7f:70: e3:dd:62:e2:68:30:b2:46:8c:cf:d8:14:aa:ef:5e: 3f:57:18:32:e7:e3:4f:e2:15:19:30:5a:c7:3a:64: 76:46:d0:e5:6e:31:b0:2e:ac:63:fc:02:e0:6d:79: f2:81:5c:59:64:7e:f9:f1:9b:c7:4e:c1:e7:1f:fa: f6:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:9A:34:52:34:DB:5F:6B:4B:50:2D:E2:59:13:1E:FB:61:9F:9B:AD X509v3 Authority Key Identifier: keyid:EB:67:5F:93:8C:85:02:13:74:CA:B1:E1:AF:50:99:31:9B:11:0B:07 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/62dfk4yFAhN0yrHhr1CZMZsRCwc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/62dfk4yFAhN0yrHhr1CZMZsRCwc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUNGHO/zZo0UjTbX2tLUC3iWRMe-2Gfm60.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.233.8.0/21 Signature Algorithm: sha256WithRSAEncryption 34:a7:bf:d0:98:16:d0:15:4c:9b:b4:86:96:4c:96:89:8d:f3: 26:03:ab:90:12:53:55:23:e6:12:53:d9:d2:ac:ca:9a:44:e3: d5:38:90:ec:28:a2:f6:0a:bd:ab:23:5e:b8:be:c5:21:8b:ad: 41:06:7f:30:5d:b6:82:b3:cf:5c:1a:13:df:06:d6:9d:d4:3e: bd:02:25:ba:a1:1a:ae:eb:9a:cf:18:cb:dc:a0:28:7a:78:0f: fc:68:d9:e7:52:0c:03:79:13:6a:1a:43:5e:38:48:a0:91:db: 9c:b5:36:57:00:12:66:74:11:b7:52:af:f1:2f:b2:08:1b:b4: 60:80:1e:fa:b9:a1:c1:d3:87:dd:4d:94:97:da:00:7c:15:7e: 83:69:a0:dd:8d:0e:0b:94:9a:dc:ad:20:aa:e8:82:86:13:0a: a0:cc:37:39:ef:4c:24:b9:52:a3:54:31:d4:df:cb:54:99:08: 32:57:0f:6f:c8:76:42:35:1e:dd:31:34:1f:c3:51:ee:59:a6: 04:d9:5e:c8:78:db:93:cc:d9:88:80:08:65:c2:8c:05:3c:75: bd:61:4c:3a:ab:2f:41:42:3f:48:b0:b6:5b:f7:9a:42:f5:72: 55:15:57:54:36:24:0b:bf:ff:e8:50:19:f9:31:e4:6c:19:8d: f7:da:33:2e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICMXYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI2 NzVGOTM4Qzg1MDIxMzc0Q0FCMUUxQUY1MDk5MzE5QjExMEIwNzAeFw0yNDA4MjYw NTMwMjlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKENEOUEzNDUyMzREQjVG NkI0QjUwMkRFMjU5MTMxRUZCNjE5RjlCQUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9w0jPT84bJwaS5Ryujka3ySute01BcaVHKtCwVO8eN0LSIcIJ p3RD8VXeoS4fzgPCsSy6aIZkOOIpnXoa4n8rmvmSCM/WYusbs6+DN8Eb40XkzB+H AKnR0GttFenXoQGiladreNd9+2mlbhnSUnIb8zPljkPCKZLpqqsJBW63MQvDaDvh c4TP3mJVEBv5ythvlj5awAs5BevwAR7syfEo81UThQT3hpl1O3d+4i6AryBfdiQs 62/lk+C8iSCJstx/cOPdYuJoMLJGjM/YFKrvXj9XGDLn40/iFRkwWsc6ZHZG0OVu MbAurGP8AuBtefKBXFlkfvnxm8dOwecf+vahAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUzZo0UjTbX2tLUC3iWRMe+2Gfm60wHwYDVR0jBBgwFoAU62dfk4yFAhN0yrHh r1CZMZsRCwcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hP LzYyZGZrNHlGQWhOMHlySGhyMUNaTVpzUkN3Yy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvNjJkZms0eUZBaE4weXJIaHIxQ1pNWnNSQ3djLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVOR0hPL3pabzBValRiWDJ0TFVDM2lX Uk1lLTJHZm02MC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN2 6QgwDQYJKoZIhvcNAQELBQADggEBADSnv9CYFtAVTJu0hpZMlomN8yYDq5ASU1Uj 5hJT2dKsyppE49U4kOwoovYKvasjXri+xSGLrUEGfzBdtoKzz1waE98G1p3UPr0C JbqhGq7rms8Yy9ygKHp4D/xo2edSDAN5E2oaQ144SKCR25y1NlcAEmZ0EbdSr/Ev sggbtGCAHvq5ocHTh91NlJfaAHwVfoNpoN2NDguUmtytIKrogoYTCqDMNznvTCS5 UqNUMdTfy1SZCDJXD2/IdkI1Ht0xNB/DUe5ZpgTZXsh425PM2YiACGXCjAU8db1h TDqrL0FCP0iwtlv3mkL1clUVV1Q2JAu//+hQGfkx5GwZjffaMy4= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:24 2024 by rpki-client on console-ams.rpki-client.org