$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KBT/QyZrQ9nl8OA38fMWJr07mHQLm0g.roa File: QyZrQ9nl8OA38fMWJr07mHQLm0g.roa (raw, json) Hash identifier: /w/MbzfdITam09rPy5mYAcB5Q8o0gptYLrqwlP17CO0= Subject key identifier: 43:26:6B:43:D9:E5:F0:E0:37:F1:F3:16:26:BD:3B:98:74:0B:9B:48 Certificate issuer: /CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C Certificate serial: 0CAA Authority key identifier: 2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/QyZrQ9nl8OA38fMWJr07mHQLm0g.roa Signing time: Mon 26 Aug 2024 05:19:26 +0000 ROA not before: Mon 26 Aug 2024 05:19:26 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18042 IP address blocks: 61.67.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3242 (0xcaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C Validity Not Before: Aug 26 05:19:26 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=43266B43D9E5F0E037F1F31626BD3B98740B9B48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:19:95:a5:6b:81:7e:e9:81:97:f2:29:22:98: 6e:12:07:05:55:f3:e5:c3:4a:b3:2d:42:a0:b8:f9: 1f:2a:7a:31:de:e7:ca:01:ba:99:5b:e5:d0:4d:80: cd:ec:b3:80:ae:b8:e7:d9:07:65:32:71:f8:fb:5f: 10:10:8f:b1:b4:89:30:89:74:09:5b:e4:c7:a0:4a: 95:09:40:73:2e:e1:e3:12:0a:d5:20:47:29:f5:ef: ce:fb:cf:1b:d9:7d:b2:cf:9a:e6:2b:49:9c:71:ed: 2a:db:7f:39:ae:b1:d7:a5:31:95:9a:06:9d:fd:11: da:b9:bc:fc:71:c5:8c:10:e6:57:bd:66:36:1a:85: d0:50:ee:4b:e2:50:bc:0c:2c:e5:a1:ca:92:5d:1c: 77:06:90:88:0f:e2:b4:4d:b5:db:9d:6e:f0:ae:c0: 8f:0e:e7:80:8b:04:29:58:ff:7c:d3:62:1d:f7:58: 02:9e:da:21:70:7d:b6:d9:64:be:5d:c6:61:45:84: ab:95:fb:ac:83:c2:e7:83:52:5c:69:73:1f:59:b9: 15:00:6e:b0:3b:62:a9:73:85:1d:aa:82:43:47:c7: 1e:ca:4c:55:cb:c0:79:21:5b:91:4b:22:0a:e1:dd: 7f:06:a7:23:fc:81:f2:fd:12:23:d8:c1:f9:a1:f2: c7:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:26:6B:43:D9:E5:F0:E0:37:F1:F3:16:26:BD:3B:98:74:0B:9B:48 X509v3 Authority Key Identifier: keyid:2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/QyZrQ9nl8OA38fMWJr07mHQLm0g.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.67.128.0/17 Signature Algorithm: sha256WithRSAEncryption 5a:86:1d:d3:f3:c8:1b:29:80:4e:e4:91:54:97:09:1d:1b:80: 40:eb:3b:e7:b1:17:50:d3:8e:10:42:1a:74:a8:b7:fb:cc:80: 9e:11:08:db:36:19:d9:42:81:77:1b:48:95:c3:53:52:12:dc: 37:2b:5d:72:07:34:b7:60:02:b1:1d:d9:2b:aa:47:94:dc:8b: e9:ef:72:ea:b5:8f:cd:69:af:65:b7:73:0e:ed:92:7c:a6:ed: 0e:60:c6:47:17:63:08:58:5e:f7:36:a1:d7:a1:05:dd:02:de: 33:b2:ff:f8:1c:57:d8:25:f4:b9:9b:fa:a9:67:b2:c0:6c:8c: a1:79:35:ff:34:f9:11:32:bc:83:92:29:54:9a:fe:68:1c:d1: 1c:77:9c:9e:cb:18:34:a5:2c:58:1f:40:fb:55:80:d5:d8:20: 96:a0:a8:46:cf:e9:f6:c7:88:75:a1:a1:4a:a0:69:f6:74:b0: 43:7c:0b:c1:5f:08:fc:b9:7a:b3:8f:7f:6d:c9:bb:0b:bc:3d: d8:0e:e8:e0:27:85:83:f0:29:24:aa:d6:fe:39:0a:96:bb:01: 03:d0:b6:db:52:f4:5b:31:5b:4c:f0:d7:02:0d:2e:f7:1a:6a: e0:f3:9d:b3:99:d2:8f:8d:f9:03:f7:11:d8:0c:dd:51:84:62: 74:4d:db:61 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDKowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkRC RUQ3NTFEQThGMDE5MzA0MThFMkRFMjQzMkQwRDAzQTk3REE3QzAeFw0yNDA4MjYw NTE5MjZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQzMjY2QjQzRDlFNUYw RTAzN0YxRjMxNjI2QkQzQjk4NzQwQjlCNDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCiGZWla4F+6YGX8ikimG4SBwVV8+XDSrMtQqC4+R8qejHe58oB uplb5dBNgM3ss4CuuOfZB2Uycfj7XxAQj7G0iTCJdAlb5MegSpUJQHMu4eMSCtUg Ryn17877zxvZfbLPmuYrSZxx7SrbfzmusdelMZWaBp39Edq5vPxxxYwQ5le9ZjYa hdBQ7kviULwMLOWhypJdHHcGkIgP4rRNtdudbvCuwI8O54CLBClY/3zTYh33WAKe 2iFwfbbZZL5dxmFFhKuV+6yDwueDUlxpcx9ZuRUAbrA7YqlzhR2qgkNHxx7KTFXL wHkhW5FLIgrh3X8GpyP8gfL9EiPYwfmh8seFAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUQyZrQ9nl8OA38fMWJr07mHQLm0gwHwYDVR0jBBgwFoAULb7XUdqPAZMEGOLe JDLQ0DqX2nwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0JUL0xi N1hVZHFQQVpNRUdPTGVKRExRMERxWDJudy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev TGI3WFVkcVBBWk1FR09MZUpETFEwRHFYMm53LmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0JUL1F5WnJROW5sOE9BMzhmTVdKcjA3bUhR TG0wZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAc9Q4AwDQYJ KoZIhvcNAQELBQADggEBAFqGHdPzyBspgE7kkVSXCR0bgEDrO+exF1DTjhBCGnSo t/vMgJ4RCNs2GdlCgXcbSJXDU1IS3DcrXXIHNLdgArEd2SuqR5Tci+nvcuq1j81p r2W3cw7tknym7Q5gxkcXYwhYXvc2odehBd0C3jOy//gcV9gl9Lmb+qlnssBsjKF5 Nf80+REyvIOSKVSa/mgc0Rx3nJ7LGDSlLFgfQPtVgNXYIJagqEbP6fbHiHWhoUqg afZ0sEN8C8FfCPy5erOPf23Juwu8PdgO6OAnhYPwKSSq1v45Cpa7AQPQtttS9Fsx W0zw1wINLvcaauDznbOZ0o+N+QP3EdgM3VGEYnRN22E= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:40 2024 by rpki-client on console-fra.rpki-client.org