$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/x6hYY8XHUQ6UVpfdp508Uf_pCJQ.roa File: x6hYY8XHUQ6UVpfdp508Uf_pCJQ.roa (raw, json) Hash identifier: cy1kkY+A7+3Wf4YoNzhgq/vkiYWpwyB6T3cqipITpxQ= Subject key identifier: C7:A8:58:63:C5:C7:51:0E:94:56:97:DD:A7:9D:3C:51:FF:E9:08:94 Certificate issuer: /CN=A5A6AC38EE68C364CF79188F06427E9C766D4C1A Certificate serial: 01B4 Authority key identifier: A5:A6:AC:38:EE:68:C3:64:CF:79:18:8F:06:42:7E:9C:76:6D:4C:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/paasOO5ow2TPeRiPBkJ-nHZtTBo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/x6hYY8XHUQ6UVpfdp508Uf_pCJQ.roa Signing time: Mon 26 Aug 2024 05:09:56 +0000 ROA not before: Mon 26 Aug 2024 05:09:56 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131657 IP address blocks: 2400:c9e0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/paasOO5ow2TPeRiPBkJ-nHZtTBo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/paasOO5ow2TPeRiPBkJ-nHZtTBo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/paasOO5ow2TPeRiPBkJ-nHZtTBo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 436 (0x1b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A5A6AC38EE68C364CF79188F06427E9C766D4C1A Validity Not Before: Aug 26 05:09:56 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C7A85863C5C7510E945697DDA79D3C51FFE90894 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:be:bb:6d:09:4d:84:36:86:7c:f8:25:6f:19: b1:83:ee:10:ac:2d:8c:06:46:4c:09:86:09:b4:56: 4a:14:a2:10:80:56:fc:46:4e:bd:7b:cc:55:ae:02: a6:0c:52:e1:9c:a1:57:66:d9:40:70:67:e8:6d:32: 3d:c5:53:99:18:a5:1e:61:03:c0:22:97:32:59:02: 4b:00:f9:28:35:c7:4e:ab:7c:21:c0:12:6d:7c:85: 8d:af:d0:e5:28:33:1b:ae:2b:25:27:b1:e9:2d:29: ae:32:ff:d1:66:54:46:9e:7a:0f:3d:4c:7d:29:41: 35:48:43:27:e5:92:87:97:1c:92:e9:90:3c:b7:29: 10:10:af:4d:f9:92:51:5b:f9:ee:cc:40:39:37:4e: 91:39:c3:93:74:9d:84:e6:fd:bc:2f:57:58:e2:9c: 8f:a2:ae:87:c2:c1:68:35:be:83:4c:fd:20:8f:29: e2:71:82:af:be:f2:23:a1:f3:01:fa:ec:23:37:59: c2:d1:5a:8f:bd:20:3f:ea:f1:e6:76:81:0f:ce:db: 86:f4:65:23:9c:ec:da:da:ec:a4:5c:39:b4:38:1c: 0f:96:bf:f1:aa:bc:27:9c:60:8c:c4:1a:df:7b:9c: 3a:ac:46:8e:c2:06:02:5e:d2:6f:41:0e:9f:24:03: 94:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:A8:58:63:C5:C7:51:0E:94:56:97:DD:A7:9D:3C:51:FF:E9:08:94 X509v3 Authority Key Identifier: keyid:A5:A6:AC:38:EE:68:C3:64:CF:79:18:8F:06:42:7E:9C:76:6D:4C:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/paasOO5ow2TPeRiPBkJ-nHZtTBo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/paasOO5ow2TPeRiPBkJ-nHZtTBo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/x6hYY8XHUQ6UVpfdp508Uf_pCJQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2400:c9e0::/32 Signature Algorithm: sha256WithRSAEncryption 11:41:fd:4a:2b:e5:5e:dd:16:10:e3:d1:12:5e:88:d7:dd:69: 68:3c:dc:b0:0b:a7:87:31:7f:6f:c4:81:3e:ab:69:3b:80:5e: dd:c9:30:a9:23:8a:1a:aa:4a:ba:c7:5b:8e:8e:c1:f3:ae:27: ea:51:31:e0:58:fc:27:a2:4a:d9:62:f3:81:ab:50:14:db:cc: 20:4b:47:aa:e3:99:8b:a1:0b:be:9b:7f:0b:d9:7e:a6:16:58: d1:a9:52:97:20:46:ff:e1:64:b3:2a:5d:5f:50:6a:95:f1:aa: 01:c7:b0:b3:c0:05:e6:f9:f7:b9:55:c7:ee:4d:aa:85:eb:e8: 7e:86:7a:a9:fb:9e:92:49:57:33:78:ca:9e:8c:41:c4:bd:e8: aa:17:f2:cd:9e:99:e1:0e:2a:99:56:4f:bb:35:f8:e1:4f:cb: 48:9e:59:1a:ab:a8:f0:28:47:23:93:4b:54:e6:91:a4:3c:11: bf:54:e9:5b:48:6c:34:6b:fc:52:a7:b9:e1:1f:bf:37:92:54: 8b:21:aa:8c:e5:c9:61:a6:9c:0a:b8:36:a1:47:2b:99:ee:e9: c3:0b:c8:d8:ad:d5:1b:63:64:61:67:d7:14:89:da:ea:21:28: 51:28:68:24:83:83:b2:e0:6c:7b:da:0a:0d:0b:2c:87:81:7b: c8:db:87:7c -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgICAbQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTVB NkFDMzhFRTY4QzM2NENGNzkxODhGMDY0MjdFOUM3NjZENEMxQTAeFw0yNDA4MjYw NTA5NTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM3QTg1ODYzQzVDNzUx MEU5NDU2OTdEREE3OUQzQzUxRkZFOTA4OTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDvrttCU2ENoZ8+CVvGbGD7hCsLYwGRkwJhgm0VkoUohCAVvxG Tr17zFWuAqYMUuGcoVdm2UBwZ+htMj3FU5kYpR5hA8AilzJZAksA+Sg1x06rfCHA Em18hY2v0OUoMxuuKyUnsektKa4y/9FmVEaeeg89TH0pQTVIQyflkoeXHJLpkDy3 KRAQr035klFb+e7MQDk3TpE5w5N0nYTm/bwvV1jinI+irofCwWg1voNM/SCPKeJx gq++8iOh8wH67CM3WcLRWo+9ID/q8eZ2gQ/O24b0ZSOc7Nra7KRcObQ4HA+Wv/Gq vCecYIzEGt97nDqsRo7CBgJe0m9BDp8kA5TtAgMBAAGjggH1MIIB8TAdBgNVHQ4E FgQUx6hYY8XHUQ6UVpfdp508Uf/pCJQwHwYDVR0jBBgwFoAUpaasOO5ow2TPeRiP BkJ+nHZtTBowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQlJJQ0tT SU5DL3BhYXNPTzVvdzJUUGVSaVBCa0otbkhadFRCby5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvcGFhc09PNW93MlRQZVJpUEJrSi1uSFp0VEJvLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQlJJQ0tTSU5DL3g2aFlZOFhIVVE2 VVZwZmRwNTA4VWZfcENKUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAkAMngMA0GCSqGSIb3DQEBCwUAA4IBAQARQf1KK+Ve3RYQ49ESXojX3Wlo PNywC6eHMX9vxIE+q2k7gF7dyTCpI4oaqkq6x1uOjsHzrifqUTHgWPwnokrZYvOB q1AU28wgS0eq45mLoQu+m38L2X6mFljRqVKXIEb/4WSzKl1fUGqV8aoBx7CzwAXm +fe5VcfuTaqF6+h+hnqp+56SSVczeMqejEHEveiqF/LNnpnhDiqZVk+7NfjhT8tI nlkaq6jwKEcjk0tU5pGkPBG/VOlbSGw0a/xSp7nhH783klSLIaqM5clhppwKuDah RyuZ7unDC8jYrdUbY2RhZ9cUidrqIShRKGgkg4Oy4Gx72goNCyyHgXvI24d8 -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:29 2024 by rpki-client on console-ams.rpki-client.org