$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/q9CWoQGS6UiYfdVAPEE8rbI9Jyg.roa File: q9CWoQGS6UiYfdVAPEE8rbI9Jyg.roa (raw, json) Hash identifier: BovMoXPMstNeC8OTQqYWNEZYnNGLegiLdNIqpRHSdDk= Subject key identifier: AB:D0:96:A1:01:92:E9:48:98:7D:D5:40:3C:41:3C:AD:B2:3D:27:28 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 105F Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/q9CWoQGS6UiYfdVAPEE8rbI9Jyg.roa Signing time: Mon 26 Aug 2024 05:16:21 +0000 ROA not before: Mon 26 Aug 2024 05:16:21 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24154 IP address blocks: 2404:0:5000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4191 (0x105f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:16:21 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=ABD096A10192E948987DD5403C413CADB23D2728 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:e3:8c:1e:70:fa:d9:6a:35:11:96:d3:69:ee: a7:02:5e:c1:ec:28:5e:13:e3:d2:05:7b:f2:fc:6f: 2b:04:a3:56:4c:7b:36:9c:14:92:b2:f5:00:19:cb: 72:7a:53:3a:1c:3d:6d:27:1f:9c:f8:00:9d:74:23: 92:36:b1:79:c8:ba:57:e3:6f:91:03:8d:2d:bb:0c: 73:77:2c:51:b4:a4:1f:83:29:bb:5f:d4:2c:98:51: 4d:e3:3b:7d:ca:a0:63:1d:35:24:14:74:27:c3:58: 70:08:24:79:f1:f8:af:a1:3a:7d:fa:a5:e4:9d:f5: a4:ae:73:a9:f8:30:a9:ac:fa:8b:a2:5b:fe:3f:d9: 4a:9c:8b:3f:bc:9c:56:7b:bf:ab:59:f5:0a:a9:92: 1a:05:13:e7:f4:fa:28:03:d7:bc:b6:86:dd:99:19: fb:03:1c:4e:e5:5b:4e:35:b1:b5:1e:98:7c:28:00: 42:3a:f7:13:d2:bc:54:ad:83:5a:47:b6:65:9c:e1: 74:bd:d5:2e:b3:37:1a:69:67:49:b2:50:2a:63:58: 57:0e:db:1d:85:a4:dd:ac:d5:2a:71:35:9a:e7:c8: 2e:09:25:aa:d6:05:0a:fe:a6:42:ee:c8:67:09:51: cf:b1:49:15:93:c3:b0:c8:68:52:b6:ba:3c:3e:db: 6f:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:D0:96:A1:01:92:E9:48:98:7D:D5:40:3C:41:3C:AD:B2:3D:27:28 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/q9CWoQGS6UiYfdVAPEE8rbI9Jyg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2404:0:5000::/36 Signature Algorithm: sha256WithRSAEncryption 7e:33:cf:71:b5:88:fe:a3:a3:65:dc:e0:55:da:f2:97:e3:82: 5f:c5:91:df:4f:c1:6d:36:08:cb:2c:61:77:98:34:74:c7:04: 94:0c:1d:b8:fb:00:76:ab:cd:18:d1:3b:d1:c8:d7:5e:d1:b6: 1d:3a:69:d2:f6:06:f1:01:ff:24:95:c3:1a:bf:18:3b:ef:5b: b6:c5:c2:f9:25:86:3c:43:76:dc:87:8d:c2:a1:77:bf:12:9e: 22:49:2a:d2:b5:0e:e2:a0:9e:6f:56:db:db:76:71:d9:f2:fa: 23:55:8c:f6:55:31:62:5b:76:b3:2c:5e:34:08:95:e2:2d:0f: ed:98:91:71:cc:39:c3:21:ea:85:e7:44:37:5c:ce:e2:27:66: 82:19:63:66:df:92:e1:1f:40:bf:9b:5a:37:53:74:8e:63:83: 9c:e9:e8:3e:f9:fe:79:94:22:fd:37:6b:b1:86:33:1c:ab:d8: c7:31:9c:1f:1d:e2:d1:75:92:f3:ae:bf:84:1a:c1:b2:19:68: e9:72:97:5a:41:1b:18:62:d0:b4:99:6e:11:5a:48:92:8c:74: a6:a0:d4:c7:ed:87:32:5a:28:f7:9a:34:3f:c4:db:9c:de:6a: c9:4a:98:b6:a6:16:2f:ab:04:35:3c:ec:85:4f:2a:6f:6b:b4: b9:05:1b:0f -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICEF8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE2MjFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEFCRDA5NkExMDE5MkU5 NDg5ODdERDU0MDNDNDEzQ0FEQjIzRDI3MjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDd44wecPrZajURltNp7qcCXsHsKF4T49IFe/L8bysEo1ZMezac FJKy9QAZy3J6UzocPW0nH5z4AJ10I5I2sXnIulfjb5EDjS27DHN3LFG0pB+DKbtf 1CyYUU3jO33KoGMdNSQUdCfDWHAIJHnx+K+hOn36peSd9aSuc6n4MKms+ouiW/4/ 2Uqciz+8nFZ7v6tZ9QqpkhoFE+f0+igD17y2ht2ZGfsDHE7lW041sbUemHwoAEI6 9xPSvFStg1pHtmWc4XS91S6zNxppZ0myUCpjWFcO2x2FpN2s1SpxNZrnyC4JJarW BQr+pkLuyGcJUc+xSRWTw7DIaFK2ujw+2293AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUq9CWoQGS6UiYfdVAPEE8rbI9JygwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL3E5Q1dvUUdTNlVpWWZkVkFQRUU4cmJJ OUp5Zy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQkBAAAUDAN BgkqhkiG9w0BAQsFAAOCAQEAfjPPcbWI/qOjZdzgVdryl+OCX8WR30/BbTYIyyxh d5g0dMcElAwduPsAdqvNGNE70cjXXtG2HTpp0vYG8QH/JJXDGr8YO+9btsXC+SWG PEN23IeNwqF3vxKeIkkq0rUO4qCeb1bb23Zx2fL6I1WM9lUxYlt2syxeNAiV4i0P 7ZiRccw5wyHqhedEN1zO4idmghljZt+S4R9Av5taN1N0jmODnOnoPvn+eZQi/Tdr sYYzHKvYxzGcHx3i0XWS866/hBrBshlo6XKXWkEbGGLQtJluEVpIkox0pqDUx+2H Mloo95o0P8TbnN5qyUqYtqYWL6sENTzshU8qb2u0uQUbDw== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:31 2024 by rpki-client on console-ams.rpki-client.org