$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWINS/qCgAAqek1Csi59n1sMmPCdEaBuY.roa File: qCgAAqek1Csi59n1sMmPCdEaBuY.roa (raw, json) Hash identifier: bdLFGtWQlXzwpMXHVKUibF2qigriejg3tVznpz2COho= Subject key identifier: A8:28:00:02:A7:A4:D4:2B:22:E7:D9:F5:B0:C9:8F:09:D1:1A:06:E6 Certificate issuer: /CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791 Certificate serial: 0C55 Authority key identifier: 61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/qCgAAqek1Csi59n1sMmPCdEaBuY.roa Signing time: Mon 26 Aug 2024 05:12:38 +0000 ROA not before: Mon 26 Aug 2024 05:12:38 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 138915 IP address blocks: 43.224.20.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3157 (0xc55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791 Validity Not Before: Aug 26 05:12:38 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A8280002A7A4D42B22E7D9F5B0C98F09D11A06E6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:6c:69:1a:a2:74:ce:00:ac:80:4f:ef:78:02: 92:02:6b:d1:92:33:4c:56:5c:a4:79:3b:99:f7:89: 75:24:4a:9f:58:ae:4f:27:e0:e9:ae:f5:57:38:a2: 11:87:34:42:ba:99:b8:72:0d:0f:e7:95:77:59:d2: 0a:5a:52:af:0e:8e:52:ad:84:6a:31:5b:55:fa:10: b3:ec:36:20:73:e6:e1:56:f4:d3:82:a8:f3:52:24: 32:bb:9d:45:4f:50:de:6f:8d:33:26:82:18:a8:89: 33:82:7d:d7:33:28:a4:4f:2c:ee:e8:c9:82:5b:37: 17:ba:5f:5e:6c:4b:13:10:85:57:f7:b1:cc:30:d1: eb:db:2f:9c:e9:9e:1f:80:20:8a:64:4a:65:dd:87: 65:a5:97:dd:8f:38:3c:a2:49:4c:c1:ba:4a:e2:ca: ed:64:b5:c2:0c:21:16:77:16:a0:3e:4f:80:b5:74: bc:12:18:80:ab:25:5e:d6:aa:89:d9:a0:73:68:6b: 75:dc:c5:4d:df:a6:11:48:5a:8f:b5:2e:af:b3:a1: ba:e7:b8:88:ee:ba:36:e3:b7:d1:66:f7:5d:1f:59: 27:69:8a:fa:ad:5d:3d:13:92:80:76:7d:fd:75:5c: 2b:1b:df:ec:e0:39:7f:57:62:d1:6e:86:94:e6:a5: ca:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:28:00:02:A7:A4:D4:2B:22:E7:D9:F5:B0:C9:8F:09:D1:1A:06:E6 X509v3 Authority Key Identifier: keyid:61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/qCgAAqek1Csi59n1sMmPCdEaBuY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 43.224.20.0/24 Signature Algorithm: sha256WithRSAEncryption 50:13:90:27:ef:1f:d6:64:7e:b9:db:40:cf:03:ad:a2:b5:8b: 81:2e:30:a7:80:58:dd:f5:1a:19:82:1c:e2:af:1d:46:22:22: e5:6e:19:c9:e7:3f:4d:96:0d:f3:06:63:5a:6c:7b:b5:87:15: 54:5b:a3:fa:e5:38:8b:92:de:9d:53:aa:c1:a7:09:a6:97:23: bd:04:e3:72:be:e4:e3:ef:ae:47:48:b7:68:b3:73:c1:c0:6f: 3b:58:11:4b:48:e9:62:08:01:b8:fb:be:76:16:f8:75:4c:37: bc:75:66:57:c5:ec:42:c6:77:35:de:bb:e3:30:b0:74:6f:2c: 16:5d:71:23:36:14:ca:f1:c4:f7:c3:9b:41:cf:fb:f2:8f:6d: ea:42:2e:62:3e:58:8d:82:57:9a:79:93:81:bb:ff:50:ad:13: af:d4:c5:e7:4b:74:67:88:82:2d:44:d8:cc:67:3b:c5:9f:39: bd:cd:9c:c4:f7:9d:71:41:97:6d:a9:c7:7d:e8:38:45:77:99: ef:b2:5a:1a:21:78:b5:27:60:4f:f5:95:9b:d8:b3:4d:7e:d2: a6:99:ed:01:15:76:40:07:a8:b3:81:1f:f6:84:3e:2b:55:6f: c9:f4:bc:5c:a1:d3:72:10:41:60:82:ea:98:0e:bb:92:af:1f: 2b:43:f2:1a -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDFUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjE1 RjlCRDk4Q0M3MEU4ODM2RDAxQTk0ODFDMTlDNUMyRDQ1RDc5MTAeFw0yNDA4MjYw NTEyMzhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE4MjgwMDAyQTdBNEQ0 MkIyMkU3RDlGNUIwQzk4RjA5RDExQTA2RTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8bGkaonTOAKyAT+94ApICa9GSM0xWXKR5O5n3iXUkSp9Yrk8n 4Omu9Vc4ohGHNEK6mbhyDQ/nlXdZ0gpaUq8OjlKthGoxW1X6ELPsNiBz5uFW9NOC qPNSJDK7nUVPUN5vjTMmghioiTOCfdczKKRPLO7oyYJbNxe6X15sSxMQhVf3scww 0evbL5zpnh+AIIpkSmXdh2Wll92PODyiSUzBukriyu1ktcIMIRZ3FqA+T4C1dLwS GICrJV7WqonZoHNoa3XcxU3fphFIWo+1Lq+zobrnuIjuujbjt9Fm910fWSdpivqt XT0TkoB2ff11XCsb3+zgOX9XYtFuhpTmpcp5AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUqCgAAqek1Csi59n1sMmPCdEaBuYwHwYDVR0jBBgwFoAUYV+b2YzHDog20BqU gcGcXC1F15EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFdJTlMv WVYtYjJZekhEb2cyMEJxVWdjR2NYQzFGMTVFLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9ZVi1iMll6SERvZzIwQnFVZ2NHY1hDMUYxNUUuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9EV0lOUy9xQ2dBQXFlazFDc2k1OW4xc01t UENkRWFCdVkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAK+AU MA0GCSqGSIb3DQEBCwUAA4IBAQBQE5An7x/WZH6520DPA62itYuBLjCngFjd9RoZ ghzirx1GIiLlbhnJ5z9Nlg3zBmNabHu1hxVUW6P65TiLkt6dU6rBpwmmlyO9BONy vuTj765HSLdos3PBwG87WBFLSOliCAG4+752Fvh1TDe8dWZXxexCxnc13rvjMLB0 bywWXXEjNhTK8cT3w5tBz/vyj23qQi5iPliNgleaeZOBu/9QrROv1MXnS3RniIIt RNjMZzvFnzm9zZzE951xQZdtqcd96DhFd5nvsloaIXi1J2BP9ZWb2LNNftKmme0B FXZAB6izgR/2hD4rVW/J9LxcodNyEEFgguqYDruSrx8rQ/Ia -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:30 2024 by rpki-client on console-ams.rpki-client.org