$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CATVISP/lqO1KvAFl9YSoWy2DgKgG1NYN_Q.roa File: lqO1KvAFl9YSoWy2DgKgG1NYN_Q.roa (raw, json) Hash identifier: RpU1jPKuSjc4OZQunEXwpBaHevtyPZFHyv3gKTBpOjk= Subject key identifier: 96:A3:B5:2A:F0:05:97:D6:12:A1:6C:B6:0E:02:A0:1B:53:58:37:F4 Certificate issuer: /CN=BD822D992B0F68B61E6E0A2E6143F2BF8915BB61 Certificate serial: 0BCB Authority key identifier: BD:82:2D:99:2B:0F:68:B6:1E:6E:0A:2E:61:43:F2:BF:89:15:BB:61 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/vYItmSsPaLYebgouYUPyv4kVu2E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CATVISP/lqO1KvAFl9YSoWy2DgKgG1NYN_Q.roa Signing time: Mon 26 Aug 2024 05:10:04 +0000 ROA not before: Mon 26 Aug 2024 05:10:04 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18046 IP address blocks: 103.233.68.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CATVISP/vYItmSsPaLYebgouYUPyv4kVu2E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CATVISP/vYItmSsPaLYebgouYUPyv4kVu2E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/vYItmSsPaLYebgouYUPyv4kVu2E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3019 (0xbcb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BD822D992B0F68B61E6E0A2E6143F2BF8915BB61 Validity Not Before: Aug 26 05:10:04 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=96A3B52AF00597D612A16CB60E02A01B535837F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:da:48:0c:6e:9c:9e:8d:f7:a8:5f:c1:3a:c2: 00:47:95:d5:61:29:6f:ea:a8:6a:3f:72:31:aa:2f: ea:ee:40:48:10:5b:71:2f:40:b7:e6:40:dc:64:88: 96:d5:f1:51:ad:ae:7f:fd:5f:51:ae:68:c4:f9:74: 0c:38:e8:53:81:a0:c0:fc:b2:41:f7:db:87:ea:b5: 8e:41:66:40:7a:24:dc:18:48:ae:f2:b7:f4:5d:dd: fc:46:52:9b:14:86:03:a5:4d:ad:a5:f4:57:39:14: 26:da:90:dc:62:9f:17:80:3b:06:0e:7e:3f:ee:46: 9c:e8:9a:f4:3a:71:59:6d:5a:4f:c5:e7:bb:47:23: d8:ea:8e:b5:63:cf:f1:a8:ec:0d:c6:8b:96:14:54: ee:4e:23:24:62:df:8a:3e:16:69:8d:a6:e4:21:28: 12:e5:4b:11:ec:9a:58:b5:32:ec:c3:23:53:b7:d5: 1c:01:f1:2d:41:8c:ff:bf:dd:fc:6f:e3:78:b1:10: 47:df:ad:06:90:b1:ed:8c:00:68:e1:ae:21:82:a5: 4d:d7:49:14:b1:4d:d0:03:9c:81:5a:b4:be:8c:d9: 12:76:e3:04:37:83:4b:6e:20:42:ff:98:8b:09:58: de:65:19:c5:da:0e:19:7e:6e:8f:7f:5c:6e:4f:b1: 5d:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:A3:B5:2A:F0:05:97:D6:12:A1:6C:B6:0E:02:A0:1B:53:58:37:F4 X509v3 Authority Key Identifier: keyid:BD:82:2D:99:2B:0F:68:B6:1E:6E:0A:2E:61:43:F2:BF:89:15:BB:61 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CATVISP/vYItmSsPaLYebgouYUPyv4kVu2E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/vYItmSsPaLYebgouYUPyv4kVu2E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CATVISP/lqO1KvAFl9YSoWy2DgKgG1NYN_Q.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.233.68.0/22 Signature Algorithm: sha256WithRSAEncryption 87:2f:f1:01:0f:99:26:ff:24:43:e2:8e:cf:6c:73:2d:95:bb: d1:1a:81:c2:3f:fe:70:58:b2:88:0b:57:b8:3d:06:06:9a:3a: e9:cf:ee:1d:ce:5d:01:fe:c3:c7:69:cd:0d:12:ec:da:03:5a: 6d:a4:59:4f:1a:86:75:c5:3a:6b:b4:eb:5c:a8:02:1a:a7:ae: 2f:cb:4d:fb:08:04:1b:1f:ed:33:39:2e:41:70:3c:da:09:35: dd:7a:ef:04:11:1b:cf:01:ef:1b:52:98:71:02:34:bf:62:d3: da:4e:b6:eb:0d:d5:1b:6d:7a:da:81:5f:bc:aa:21:d5:dd:37: 28:91:85:8c:6c:bc:31:c7:1f:fa:ec:dd:df:32:e2:c1:eb:a1: e0:21:8e:64:52:1f:0f:01:2b:18:b4:14:9a:1f:e1:87:ea:a0: 9a:c9:16:6c:11:a4:c8:fe:2c:9d:94:fa:c3:0f:cd:ad:6d:e0: f6:f9:ae:8d:53:78:ec:83:65:03:91:06:13:d5:8a:db:48:5d: 64:79:01:fc:c4:7c:5b:59:35:b1:e2:cd:eb:56:e7:f5:29:e9: 9f:46:71:ad:7b:8f:ff:2f:06:c9:9a:f3:82:f0:21:b4:8a:28: 5e:b8:72:24:f5:bf:5c:4f:57:52:b7:ce:26:76:5a:19:86:a2: 57:d4:64:f8 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICC8swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkQ4 MjJEOTkyQjBGNjhCNjFFNkUwQTJFNjE0M0YyQkY4OTE1QkI2MTAeFw0yNDA4MjYw NTEwMDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDk2QTNCNTJBRjAwNTk3 RDYxMkExNkNCNjBFMDJBMDFCNTM1ODM3RjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC42kgMbpyejfeoX8E6wgBHldVhKW/qqGo/cjGqL+ruQEgQW3Ev QLfmQNxkiJbV8VGtrn/9X1GuaMT5dAw46FOBoMD8skH324fqtY5BZkB6JNwYSK7y t/Rd3fxGUpsUhgOlTa2l9Fc5FCbakNxinxeAOwYOfj/uRpzomvQ6cVltWk/F57tH I9jqjrVjz/Go7A3Gi5YUVO5OIyRi34o+FmmNpuQhKBLlSxHsmli1MuzDI1O31RwB 8S1BjP+/3fxv43ixEEffrQaQse2MAGjhriGCpU3XSRSxTdADnIFatL6M2RJ24wQ3 g0tuIEL/mIsJWN5lGcXaDhl+bo9/XG5PsV05AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUlqO1KvAFl9YSoWy2DgKgG1NYN/QwHwYDVR0jBBgwFoAUvYItmSsPaLYebgou YUPyv4kVu2EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0FUVklT UC92WUl0bVNzUGFMWWViZ291WVVQeXY0a1Z1MkUuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL3ZZSXRtU3NQYUxZZWJnb3VZVVB5djRrVnUyRS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NBVFZJU1AvbHFPMUt2QUZsOVlTb1d5 MkRnS2dHMU5ZTl9RLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AmfpRDANBgkqhkiG9w0BAQsFAAOCAQEAhy/xAQ+ZJv8kQ+KOz2xzLZW70RqBwj/+ cFiyiAtXuD0GBpo66c/uHc5dAf7Dx2nNDRLs2gNabaRZTxqGdcU6a7TrXKgCGqeu L8tN+wgEGx/tMzkuQXA82gk13XrvBBEbzwHvG1KYcQI0v2LT2k626w3VG2162oFf vKoh1d03KJGFjGy8Mccf+uzd3zLiweuh4CGOZFIfDwErGLQUmh/hh+qgmskWbBGk yP4snZT6ww/NrW3g9vmujVN47INlA5EGE9WK20hdZHkB/MR8W1k1seLN61bn9Snp n0ZxrXuP/y8GyZrzgvAhtIooXrhyJPW/XE9XUrfOJnZaGYaiV9Rk+A== -----END CERTIFICATE-----Generated at Fri Nov 22 07:03:23 2024 by rpki-client on console-fra.rpki-client.org