$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HEALTHNET/QF3KvLKnn1pJfEuta8rawY5jvpg.roa File: QF3KvLKnn1pJfEuta8rawY5jvpg.roa (raw, json) Hash identifier: 5zGGJQG1xr3Km6IDb2ziS41NaqJyyllvWsLwlFQAY68= Subject key identifier: 40:5D:CA:BC:B2:A7:9F:5A:49:7C:4B:AD:6B:CA:DA:C1:8E:63:BE:98 Certificate issuer: /CN=43FF5C92CC4950A457A7327D168FBC465B218322 Certificate serial: 0C24 Authority key identifier: 43:FF:5C:92:CC:49:50:A4:57:A7:32:7D:16:8F:BC:46:5B:21:83:22 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Q_9cksxJUKRXpzJ9Fo-8RlshgyI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HEALTHNET/QF3KvLKnn1pJfEuta8rawY5jvpg.roa Signing time: Mon 26 Aug 2024 05:17:29 +0000 ROA not before: Mon 26 Aug 2024 05:17:29 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4782 IP address blocks: 203.65.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HEALTHNET/Q_9cksxJUKRXpzJ9Fo-8RlshgyI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HEALTHNET/Q_9cksxJUKRXpzJ9Fo-8RlshgyI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Q_9cksxJUKRXpzJ9Fo-8RlshgyI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3108 (0xc24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43FF5C92CC4950A457A7327D168FBC465B218322 Validity Not Before: Aug 26 05:17:29 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=405DCABCB2A79F5A497C4BAD6BCADAC18E63BE98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:45:d6:19:d8:56:63:3a:ae:78:91:bf:25:7c: c8:67:cd:fb:80:4c:be:6d:45:4b:db:8c:a6:c8:20: 97:e1:9c:a3:5e:10:b9:11:7c:1d:3e:e2:ab:18:ae: 5b:ad:52:d5:95:dc:50:e7:9f:9e:03:a7:67:91:99: b3:0e:bb:47:71:09:a0:97:33:e1:a7:dd:80:6d:ad: b0:36:a3:58:8c:ec:b1:4f:f8:6a:35:84:ac:46:f4: c4:4a:34:37:ef:8e:41:44:ad:bc:7b:ab:c6:a9:a0: ea:f0:22:3c:7d:a6:41:14:b3:5e:71:ae:9b:bf:08: f1:82:1a:2b:58:77:51:ba:ef:87:d4:dd:34:97:45: 26:8e:dd:7f:dd:33:31:93:24:4c:5f:8a:84:14:7d: 81:b5:d8:77:b8:21:5c:cf:95:a1:b7:05:27:ea:81: 91:1d:14:50:14:2c:84:3c:86:49:86:13:97:ac:ee: b7:6f:a3:79:92:7f:60:95:e9:6e:89:6d:f5:4b:85: 79:9c:5d:3b:7f:9a:66:f1:ab:5c:f9:ca:61:5e:f5: 0b:e2:d1:ca:31:c7:85:8d:38:74:ca:e8:b6:96:c1: 9b:c5:8f:34:c1:2d:52:dd:8e:8b:b0:b1:17:f8:63: 19:72:6a:9d:7b:c1:f7:35:21:13:1c:5b:41:a3:e4: 66:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:5D:CA:BC:B2:A7:9F:5A:49:7C:4B:AD:6B:CA:DA:C1:8E:63:BE:98 X509v3 Authority Key Identifier: keyid:43:FF:5C:92:CC:49:50:A4:57:A7:32:7D:16:8F:BC:46:5B:21:83:22 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HEALTHNET/Q_9cksxJUKRXpzJ9Fo-8RlshgyI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Q_9cksxJUKRXpzJ9Fo-8RlshgyI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HEALTHNET/QF3KvLKnn1pJfEuta8rawY5jvpg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.65.0.0/17 Signature Algorithm: sha256WithRSAEncryption 70:73:4e:4e:1e:f3:70:60:0e:1a:ae:ab:90:dc:e8:5f:98:c2: 8d:c8:1e:31:11:47:d8:f3:b6:e3:7d:7e:24:ac:84:e2:f8:21: 33:56:f6:4c:86:8d:61:d5:7c:7e:e8:31:e2:f9:55:22:a7:e5: 06:ba:fc:25:74:9c:18:4f:da:3a:6b:a7:26:3a:b5:3d:38:56: ed:7e:80:96:b3:ce:78:3b:29:35:33:b4:f4:b2:47:ba:64:cd: a3:60:9b:77:8a:03:a8:5a:7d:06:f1:62:f9:96:4a:63:32:50: 34:d8:df:b0:7a:3e:6e:39:3a:5b:ce:a8:31:60:65:05:1e:c2: 37:30:08:15:48:51:6d:74:22:d9:1c:10:d4:d5:dc:b9:ca:d5: 03:0a:0d:16:96:b0:fb:ae:d4:1b:01:ac:0b:4b:5f:f5:78:c4: 02:4b:7b:46:ce:6b:4b:03:78:e9:20:27:8e:1c:70:96:10:e9: 16:ab:31:47:b6:e7:49:07:23:da:40:de:e3:f9:a0:86:b5:a0: 06:ec:f7:57:32:25:af:e7:c6:2c:76:45:14:9f:a2:b1:48:f0: 4c:31:05:63:3f:db:8f:a5:95:5f:03:8b:a7:90:93:85:e5:f9: d3:31:33:28:14:60:a6:ba:8e:48:8f:48:71:fc:81:95:1f:08: 70:cb:92:7f -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICDCQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDNG RjVDOTJDQzQ5NTBBNDU3QTczMjdEMTY4RkJDNDY1QjIxODMyMjAeFw0yNDA4MjYw NTE3MjlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQwNURDQUJDQjJBNzlG NUE0OTdDNEJBRDZCQ0FEQUMxOEU2M0JFOTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCmRdYZ2FZjOq54kb8lfMhnzfuATL5tRUvbjKbIIJfhnKNeELkR fB0+4qsYrlutUtWV3FDnn54Dp2eRmbMOu0dxCaCXM+Gn3YBtrbA2o1iM7LFP+Go1 hKxG9MRKNDfvjkFErbx7q8apoOrwIjx9pkEUs15xrpu/CPGCGitYd1G674fU3TSX RSaO3X/dMzGTJExfioQUfYG12He4IVzPlaG3BSfqgZEdFFAULIQ8hkmGE5es7rdv o3mSf2CV6W6JbfVLhXmcXTt/mmbxq1z5ymFe9Qvi0coxx4WNOHTK6LaWwZvFjzTB LVLdjouwsRf4Yxlyap17wfc1IRMcW0Gj5GZhAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUQF3KvLKnn1pJfEuta8rawY5jvpgwHwYDVR0jBBgwFoAUQ/9cksxJUKRXpzJ9 Fo+8RlshgyIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSEVBTFRI TkVUL1FfOWNrc3hKVUtSWHB6SjlGby04UmxzaGd5SS5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvUV85Y2tzeEpVS1JYcHpKOUZvLThSbHNoZ3lJLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSEVBTFRITkVUL1FGM0t2TEtubjFw SmZFdXRhOHJhd1k1anZwZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAfLQQAwDQYJKoZIhvcNAQELBQADggEBAHBzTk4e83BgDhquq5Dc6F+Ywo3I HjERR9jztuN9fiSshOL4ITNW9kyGjWHVfH7oMeL5VSKn5Qa6/CV0nBhP2jprpyY6 tT04Vu1+gJazzng7KTUztPSyR7pkzaNgm3eKA6hafQbxYvmWSmMyUDTY37B6Pm45 OlvOqDFgZQUewjcwCBVIUW10ItkcENTV3LnK1QMKDRaWsPuu1BsBrAtLX/V4xAJL e0bOa0sDeOkgJ44ccJYQ6RarMUe250kHI9pA3uP5oIa1oAbs91cyJa/nxix2RRSf orFI8EwxBWM/24+llV8Di6eQk4Xl+dMxMygUYKa6jkiPSHH8gZUfCHDLkn8= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:32 2024 by rpki-client on console-ams.rpki-client.org