$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/ndk0A3ZM1XzoxXC4hE1WSqQAxLw.roa File: ndk0A3ZM1XzoxXC4hE1WSqQAxLw.roa (raw, json) Hash identifier: PoMyCUIQcAoFn/sXu+KXveOsiY8BmM99NUK3w9TcyXk= Subject key identifier: 9D:D9:34:03:76:4C:D5:7C:E8:C5:70:B8:84:4D:56:4A:A4:00:C4:BC Certificate issuer: /CN=ABED28FFCC040E36032C42615495562BCC6EF45C Certificate serial: 0672 Authority key identifier: AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/ndk0A3ZM1XzoxXC4hE1WSqQAxLw.roa Signing time: Mon 26 Aug 2024 05:18:39 +0000 ROA not before: Mon 26 Aug 2024 05:18:39 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9678 IP address blocks: 2401:95c0:1000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1650 (0x672) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ABED28FFCC040E36032C42615495562BCC6EF45C Validity Not Before: Aug 26 05:18:39 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=9DD93403764CD57CE8C570B8844D564AA400C4BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:02:55:45:1c:6c:1b:ea:7e:e4:24:90:b5:f5: fe:18:21:14:c4:df:92:cb:b7:47:53:47:11:7f:40: 19:0e:39:6d:a2:2d:35:a1:e9:d8:b5:49:fd:c7:40: f1:ca:54:e7:58:e7:6d:76:9e:fd:9c:8e:f7:48:df: 9c:07:d1:0b:e7:df:b1:60:e4:97:e9:f0:bf:9e:81: be:61:a3:9b:e0:49:58:c2:18:8f:3b:1a:47:83:ed: 34:db:ea:fc:21:d3:a7:92:b1:f5:f8:3e:67:c2:7e: 43:94:cb:d2:f2:3a:d1:72:f7:6a:ea:08:d6:d5:99: b1:5a:60:c2:31:4e:52:32:ca:bf:13:de:3b:ba:bf: 8e:5f:57:34:47:7c:d6:9f:14:4f:43:5f:91:a1:94: 1f:93:0a:33:b9:67:81:da:bd:4a:0b:dd:8f:2f:bc: a9:35:57:60:f6:de:d5:d0:9e:36:be:83:ec:bd:ef: 8f:3e:e8:9c:32:01:6a:36:d6:72:b9:b5:da:a5:a0: ce:0f:bf:71:52:3a:dd:38:1d:eb:57:76:bb:4c:4a: 97:66:dc:72:d1:bd:ba:2a:58:9a:be:b6:cf:43:29: af:0d:28:41:07:09:a3:87:f3:71:21:5e:c8:66:fd: 05:db:c3:23:35:1c:9e:2d:63:f7:57:07:d1:ec:f3: 57:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:D9:34:03:76:4C:D5:7C:E8:C5:70:B8:84:4D:56:4A:A4:00:C4:BC X509v3 Authority Key Identifier: keyid:AB:ED:28:FF:CC:04:0E:36:03:2C:42:61:54:95:56:2B:CC:6E:F4:5C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q-0o_8wEDjYDLEJhVJVWK8xu9Fw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HOSTIN/ndk0A3ZM1XzoxXC4hE1WSqQAxLw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:95c0:1000::/36 Signature Algorithm: sha256WithRSAEncryption 7f:62:f0:ea:0d:aa:ec:35:5c:87:9e:35:6b:2e:cb:5d:0b:3c: d4:c5:ef:8d:aa:02:87:f2:25:55:f8:ce:42:c6:a3:2b:ab:33: 5a:51:99:a4:b4:93:f4:af:3b:38:96:3c:95:a9:54:74:de:4b: 8d:64:03:29:4d:53:ef:87:b4:42:32:2a:b1:3b:0a:b9:93:a9: 8d:51:5a:d8:db:fa:9a:36:f6:12:dc:61:e1:37:54:b0:92:df: f7:a5:34:1e:98:68:bd:f3:18:e3:98:aa:09:b1:b3:8a:01:dd: e4:f9:26:cd:28:78:24:fd:7a:2d:69:13:28:44:4c:7c:3b:d3: e0:56:03:2f:1c:2e:d9:14:c2:d4:25:1d:74:d6:05:3c:14:6d: d5:de:5c:5d:00:93:77:40:30:3b:59:6f:ac:d8:2b:13:63:d5: b9:0f:27:1a:1d:7e:19:b1:a1:05:6b:3c:8d:a4:c6:dd:6c:76: f4:65:2c:0b:bc:11:d5:3e:c6:8d:41:bb:68:0b:0f:b2:61:84: 2a:4e:29:7c:15:c1:f4:ac:7d:ab:88:ed:7e:19:9f:6d:6c:97: ac:e5:6e:84:ba:f2:0e:96:99:5c:01:9a:74:f8:85:e2:08:6e: 65:83:11:aa:1f:ef:a5:73:17:2f:35:73:8a:78:28:30:02:81: 97:4f:17:3f -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICBnIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUJF RDI4RkZDQzA0MEUzNjAzMkM0MjYxNTQ5NTU2MkJDQzZFRjQ1QzAeFw0yNDA4MjYw NTE4MzlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDlERDkzNDAzNzY0Q0Q1 N0NFOEM1NzBCODg0NEQ1NjRBQTQwMEM0QkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCsAlVFHGwb6n7kJJC19f4YIRTE35LLt0dTRxF/QBkOOW2iLTWh 6di1Sf3HQPHKVOdY5212nv2cjvdI35wH0Qvn37Fg5Jfp8L+egb5ho5vgSVjCGI87 GkeD7TTb6vwh06eSsfX4PmfCfkOUy9LyOtFy92rqCNbVmbFaYMIxTlIyyr8T3ju6 v45fVzRHfNafFE9DX5GhlB+TCjO5Z4HavUoL3Y8vvKk1V2D23tXQnja+g+y9748+ 6JwyAWo21nK5tdqloM4Pv3FSOt04HetXdrtMSpdm3HLRvboqWJq+ts9DKa8NKEEH CaOH83EhXshm/QXbwyM1HJ4tY/dXB9Hs81fRAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUndk0A3ZM1XzoxXC4hE1WSqQAxLwwHwYDVR0jBBgwFoAUq+0o/8wEDjYDLEJh VJVWK8xu9FwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElO L3EtMG9fOHdFRGpZRExFSmhWSlZXSzh4dTlGdy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvcS0wb184d0VEallETEVKaFZKVldLOHh1OUZ3LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9TVElOL25kazBBM1pNMVh6b3hYQzRo RTFXU3FRQXhMdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgACMAgDBgQk AZXAEDANBgkqhkiG9w0BAQsFAAOCAQEAf2Lw6g2q7DVch541ay7LXQs81MXvjaoC h/IlVfjOQsajK6szWlGZpLST9K87OJY8lalUdN5LjWQDKU1T74e0QjIqsTsKuZOp jVFa2Nv6mjb2Etxh4TdUsJLf96U0HphovfMY45iqCbGzigHd5PkmzSh4JP16LWkT KERMfDvT4FYDLxwu2RTC1CUddNYFPBRt1d5cXQCTd0AwO1lvrNgrE2PVuQ8nGh1+ GbGhBWs8jaTG3Wx29GUsC7wR1T7GjUG7aAsPsmGEKk4pfBXB9Kx9q4jtfhmfbWyX rOVuhLryDpaZXAGadPiF4ghuZYMRqh/vpXMXLzVzingoMAKBl08XPw== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:51 2024 by rpki-client on console-fra.rpki-client.org