$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/RkhRQiXgHWGCdSEpFqoe45WGMtk.roa File: RkhRQiXgHWGCdSEpFqoe45WGMtk.roa (raw, json) Hash identifier: rW2A95AWu/ZjEwN11yi7vxY8p8YaooZPUQhUgfeX2DQ= Subject key identifier: 46:48:51:42:25:E0:1D:61:82:75:21:29:16:AA:1E:E3:95:86:32:D9 Certificate issuer: /CN=A5A6AC38EE68C364CF79188F06427E9C766D4C1A Certificate serial: 01B5 Authority key identifier: A5:A6:AC:38:EE:68:C3:64:CF:79:18:8F:06:42:7E:9C:76:6D:4C:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/paasOO5ow2TPeRiPBkJ-nHZtTBo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/RkhRQiXgHWGCdSEpFqoe45WGMtk.roa Signing time: Mon 26 Aug 2024 05:09:56 +0000 ROA not before: Mon 26 Aug 2024 05:09:56 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 134823 IP address blocks: 2400:c9e0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/paasOO5ow2TPeRiPBkJ-nHZtTBo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/paasOO5ow2TPeRiPBkJ-nHZtTBo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/paasOO5ow2TPeRiPBkJ-nHZtTBo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 437 (0x1b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A5A6AC38EE68C364CF79188F06427E9C766D4C1A Validity Not Before: Aug 26 05:09:56 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4648514225E01D618275212916AA1EE3958632D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:d8:17:9f:c5:78:3a:f0:42:d6:25:6d:50:a6: 68:44:d2:61:cb:ea:9d:e6:94:4e:db:7b:42:58:9d: fd:de:62:af:0c:55:f0:e7:cc:f6:d6:e0:88:9d:64: 33:68:5a:bf:5d:de:31:e1:2b:f0:fe:6f:7c:1f:59: d1:38:f8:d1:c8:7a:6b:1a:5e:b6:bd:d7:15:32:ad: 42:71:1a:72:e5:47:c9:41:7b:a0:fe:d1:57:b3:cf: a7:5b:af:a7:b1:6f:4e:07:f8:ae:7d:53:ec:5c:aa: 61:cc:01:c4:2d:34:b0:c3:31:d8:de:0f:1b:13:df: 77:05:c6:cb:fa:6e:b1:80:d9:89:08:3a:f0:ec:0c: 3d:64:a6:63:ab:0a:f1:4f:de:7e:c5:52:36:62:73: 4e:39:5c:c5:4d:c9:a8:68:01:6a:f9:1b:9e:a9:2a: 80:06:21:79:4f:21:2d:c6:1e:b2:72:38:dd:27:d2: 36:46:cb:4d:f5:57:f3:29:d3:44:94:a9:2c:41:2f: 62:34:ef:a2:17:30:6a:bb:b8:34:9b:df:f7:36:d1: c4:c6:31:db:53:d3:0c:6e:d1:70:3d:e5:ae:5d:71: 57:79:41:ff:74:af:46:b9:1f:84:0c:68:ea:28:bb: 90:2c:33:66:75:fa:15:24:6f:22:28:f6:e2:db:fe: 6a:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:48:51:42:25:E0:1D:61:82:75:21:29:16:AA:1E:E3:95:86:32:D9 X509v3 Authority Key Identifier: keyid:A5:A6:AC:38:EE:68:C3:64:CF:79:18:8F:06:42:7E:9C:76:6D:4C:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/paasOO5ow2TPeRiPBkJ-nHZtTBo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/paasOO5ow2TPeRiPBkJ-nHZtTBo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/RkhRQiXgHWGCdSEpFqoe45WGMtk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2400:c9e0::/32 Signature Algorithm: sha256WithRSAEncryption 26:3d:80:53:c0:83:85:2a:ce:a8:3a:41:5f:16:63:7a:09:98: 84:f6:b0:75:69:bd:e3:4f:40:2c:53:20:bc:9d:7c:b9:fa:09: cb:89:8a:5a:e1:d6:f5:e2:7e:31:70:e9:0c:d6:bb:9c:5d:88: 9f:d4:fa:1f:92:f1:92:7c:e3:09:83:cb:60:28:bc:81:e4:4a: 85:2d:69:ed:6f:98:ba:fe:af:dd:3d:7c:cb:52:34:32:a4:99: 49:ed:fd:8a:ef:e5:bb:46:da:dc:1b:99:5a:be:49:cb:ab:4f: 2a:13:53:30:91:7d:4e:15:40:f3:3f:62:47:44:0f:04:22:fd: 76:22:0a:7a:de:63:75:99:e6:e5:b8:59:db:cc:78:da:84:0f: a1:14:c2:d3:61:c0:3e:04:e6:84:6f:4b:99:41:2e:73:0b:0b: c9:71:43:b0:15:db:7b:a3:a3:ef:77:9e:55:83:d0:83:37:22: 48:db:1c:0b:95:28:b7:92:ec:4f:ce:a2:94:fd:b6:91:de:80: 18:5e:4c:7e:2c:4b:92:e0:ce:23:b1:3f:24:50:83:05:d2:52: 2b:a3:96:3c:37:31:fe:71:58:0d:15:ef:66:65:d4:a3:11:7d: bf:bf:7d:74:3f:8b:93:10:93:d5:06:91:d7:ae:fa:eb:cc:9b: c5:c2:79:be -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgICAbUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTVB NkFDMzhFRTY4QzM2NENGNzkxODhGMDY0MjdFOUM3NjZENEMxQTAeFw0yNDA4MjYw NTA5NTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ2NDg1MTQyMjVFMDFE NjE4Mjc1MjEyOTE2QUExRUUzOTU4NjMyRDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDC2BefxXg68ELWJW1QpmhE0mHL6p3mlE7be0JYnf3eYq8MVfDn zPbW4IidZDNoWr9d3jHhK/D+b3wfWdE4+NHIemsaXra91xUyrUJxGnLlR8lBe6D+ 0Vezz6dbr6exb04H+K59U+xcqmHMAcQtNLDDMdjeDxsT33cFxsv6brGA2YkIOvDs DD1kpmOrCvFP3n7FUjZic045XMVNyahoAWr5G56pKoAGIXlPIS3GHrJyON0n0jZG y031V/Mp00SUqSxBL2I076IXMGq7uDSb3/c20cTGMdtT0wxu0XA95a5dcVd5Qf90 r0a5H4QMaOoou5AsM2Z1+hUkbyIo9uLb/mp9AgMBAAGjggH1MIIB8TAdBgNVHQ4E FgQURkhRQiXgHWGCdSEpFqoe45WGMtkwHwYDVR0jBBgwFoAUpaasOO5ow2TPeRiP BkJ+nHZtTBowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQlJJQ0tT SU5DL3BhYXNPTzVvdzJUUGVSaVBCa0otbkhadFRCby5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvcGFhc09PNW93MlRQZVJpUEJrSi1uSFp0VEJvLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQlJJQ0tTSU5DL1JraFJRaVhnSFdH Q2RTRXBGcW9lNDVXR010ay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAkAMngMA0GCSqGSIb3DQEBCwUAA4IBAQAmPYBTwIOFKs6oOkFfFmN6CZiE 9rB1ab3jT0AsUyC8nXy5+gnLiYpa4db14n4xcOkM1rucXYif1PofkvGSfOMJg8tg KLyB5EqFLWntb5i6/q/dPXzLUjQypJlJ7f2K7+W7RtrcG5lavknLq08qE1MwkX1O FUDzP2JHRA8EIv12Igp63mN1mebluFnbzHjahA+hFMLTYcA+BOaEb0uZQS5zCwvJ cUOwFdt7o6Pvd55Vg9CDNyJI2xwLlSi3kuxPzqKU/baR3oAYXkx+LEuS4M4jsT8k UIMF0lIro5Y8NzH+cVgNFe9mZdSjEX2/v310P4uTEJPVBpHXrvrrzJvFwnm+ -----END CERTIFICATE-----Generated at Fri Nov 22 06:41:24 2024 by rpki-client on console-ams.rpki-client.org