$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/AH4YnjAtXXVJinw6XeFLQYswk5Y.roa File: AH4YnjAtXXVJinw6XeFLQYswk5Y.roa (raw, json) Hash identifier: bSG9wuIU9UOMszo+bu4aB57oa+FUHYzpCn2CnWElOcY= Subject key identifier: 00:7E:18:9E:30:2D:5D:75:49:8A:7C:3A:5D:E1:4B:41:8B:30:93:96 Certificate issuer: /CN=A5A6AC38EE68C364CF79188F06427E9C766D4C1A Certificate serial: 01B7 Authority key identifier: A5:A6:AC:38:EE:68:C3:64:CF:79:18:8F:06:42:7E:9C:76:6D:4C:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/paasOO5ow2TPeRiPBkJ-nHZtTBo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/AH4YnjAtXXVJinw6XeFLQYswk5Y.roa Signing time: Mon 26 Aug 2024 05:09:57 +0000 ROA not before: Mon 26 Aug 2024 05:09:57 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131657 IP address blocks: 103.51.90.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/paasOO5ow2TPeRiPBkJ-nHZtTBo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/paasOO5ow2TPeRiPBkJ-nHZtTBo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/paasOO5ow2TPeRiPBkJ-nHZtTBo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 439 (0x1b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A5A6AC38EE68C364CF79188F06427E9C766D4C1A Validity Not Before: Aug 26 05:09:57 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=007E189E302D5D75498A7C3A5DE14B418B309396 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:b0:e6:bf:6c:a8:89:fd:21:aa:38:ff:87:4c: 14:00:1d:b4:1e:af:d1:48:15:10:c9:d9:77:aa:7d: ec:ee:7f:f4:92:77:6a:21:5a:e9:83:26:f8:3f:ed: e3:65:b1:6b:7f:75:61:ef:53:a0:a4:3d:5c:15:5a: be:a7:0e:b5:b9:20:aa:05:23:50:8e:b1:48:a6:23: 13:4a:d0:47:7d:5d:d7:56:ec:3b:91:9f:cb:1c:49: d7:69:97:5d:b5:23:95:4e:a6:8c:03:ac:2d:b4:ec: 40:be:fc:3e:b5:9a:f1:3b:4c:cf:fa:18:e1:fa:54: 58:22:a8:7c:31:c0:7c:0e:1d:d1:45:06:bf:c8:16: 11:a9:3d:f6:04:f6:b5:c5:1e:27:a1:e0:20:38:7a: b4:54:ce:df:22:3f:2e:58:23:81:65:94:c9:45:f2: 76:03:17:96:86:16:3b:7f:3c:e8:3b:6b:a6:9c:5b: 36:86:e1:82:37:c8:12:a9:1c:af:d9:66:54:cd:0e: 4a:1e:ec:27:58:7a:22:28:cc:9b:28:5e:bd:33:ab: 20:6c:87:a7:dd:1c:5a:0b:b3:a4:f0:c0:6b:4d:d4: d1:81:0a:2a:b5:04:6a:72:93:4b:87:82:a6:d3:c8: 84:77:93:02:05:89:ae:04:39:b7:5f:73:3a:34:1f: fa:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:7E:18:9E:30:2D:5D:75:49:8A:7C:3A:5D:E1:4B:41:8B:30:93:96 X509v3 Authority Key Identifier: keyid:A5:A6:AC:38:EE:68:C3:64:CF:79:18:8F:06:42:7E:9C:76:6D:4C:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/paasOO5ow2TPeRiPBkJ-nHZtTBo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/paasOO5ow2TPeRiPBkJ-nHZtTBo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/AH4YnjAtXXVJinw6XeFLQYswk5Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.51.90.0/23 Signature Algorithm: sha256WithRSAEncryption 30:5a:8d:0a:54:bf:4e:bf:7c:25:f0:47:ed:96:68:82:cd:14: ec:06:dc:42:c8:02:88:ec:f3:0d:88:a2:6e:7e:25:a5:12:d0: 3e:35:3f:c3:64:21:e1:55:83:fb:1f:08:cc:18:83:b6:04:45: b7:ca:26:39:54:96:31:d0:5b:40:f5:c7:bb:dc:0d:e8:00:e4: b9:36:c9:f2:cb:59:e0:94:e9:3e:7b:95:28:a2:80:06:a9:84: cb:a2:50:c3:c5:99:ce:1d:7c:a1:48:4c:d9:44:17:99:12:d4: e7:78:62:91:6c:05:17:73:fd:96:c7:b5:56:f2:fb:e6:67:1d: 1c:20:6e:12:56:39:c5:20:58:05:02:c2:83:a7:83:fb:6c:72: 51:b1:2b:4d:54:09:69:2a:e9:17:1e:10:04:aa:40:4f:39:6d: 39:53:64:cf:a7:5b:35:94:d3:aa:b2:e5:bb:1a:5f:a1:76:e4: 37:80:4d:d3:e5:64:09:34:f5:ef:96:a0:ea:27:99:e1:16:a9: 0a:db:87:c5:b3:58:ba:c9:6a:70:44:22:54:e7:27:17:a8:ea: 32:d8:40:c8:b0:9c:9d:11:81:b8:5f:a6:1f:0c:68:b3:c6:5c: fa:3d:7c:e5:3a:1f:67:bc:e8:6a:b2:05:bd:cc:1f:cf:41:14: 20:1c:fd:29 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICAbcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTVB NkFDMzhFRTY4QzM2NENGNzkxODhGMDY0MjdFOUM3NjZENEMxQTAeFw0yNDA4MjYw NTA5NTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDAwN0UxODlFMzAyRDVE NzU0OThBN0MzQTVERTE0QjQxOEIzMDkzOTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCisOa/bKiJ/SGqOP+HTBQAHbQer9FIFRDJ2Xeqfezuf/SSd2oh WumDJvg/7eNlsWt/dWHvU6CkPVwVWr6nDrW5IKoFI1COsUimIxNK0Ed9XddW7DuR n8scSddpl121I5VOpowDrC207EC+/D61mvE7TM/6GOH6VFgiqHwxwHwOHdFFBr/I FhGpPfYE9rXFHieh4CA4erRUzt8iPy5YI4FllMlF8nYDF5aGFjt/POg7a6acWzaG 4YI3yBKpHK/ZZlTNDkoe7CdYeiIozJsoXr0zqyBsh6fdHFoLs6TwwGtN1NGBCiq1 BGpyk0uHgqbTyIR3kwIFia4EObdfczo0H/ojAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUAH4YnjAtXXVJinw6XeFLQYswk5YwHwYDVR0jBBgwFoAUpaasOO5ow2TPeRiP BkJ+nHZtTBowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQlJJQ0tT SU5DL3BhYXNPTzVvdzJUUGVSaVBCa0otbkhadFRCby5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvcGFhc09PNW93MlRQZVJpUEJrSi1uSFp0VEJvLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQlJJQ0tTSU5DL0FINFluakF0WFhW SmludzZYZUZMUVlzd2s1WS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFnM1owDQYJKoZIhvcNAQELBQADggEBADBajQpUv06/fCXwR+2WaILNFOwG 3ELIAojs8w2Iom5+JaUS0D41P8NkIeFVg/sfCMwYg7YERbfKJjlUljHQW0D1x7vc DegA5Lk2yfLLWeCU6T57lSiigAaphMuiUMPFmc4dfKFITNlEF5kS1Od4YpFsBRdz /ZbHtVby++ZnHRwgbhJWOcUgWAUCwoOng/tsclGxK01UCWkq6RceEASqQE85bTlT ZM+nWzWU06qy5bsaX6F25DeATdPlZAk09e+WoOonmeEWqQrbh8WzWLrJanBEIlTn Jxeo6jLYQMiwnJ0Rgbhfph8MaLPGXPo9fOU6H2e86GqyBb3MH89BFCAc/Sk= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:35 2024 by rpki-client on console-fra.rpki-client.org