$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/qC2vcvSXQegsyYRElrsATW1v9Fc.roa File: qC2vcvSXQegsyYRElrsATW1v9Fc.roa (raw, json) Hash identifier: UjDIt0F7FizSdXJfo6WiRQajaWpTIke7BadEqxSYK4g= Subject key identifier: A8:2D:AF:72:F4:97:41:E8:2C:C9:84:44:96:BB:00:4D:6D:6F:F4:57 Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Certificate serial: 0D70 Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/qC2vcvSXQegsyYRElrsATW1v9Fc.roa Signing time: Mon 26 Aug 2024 05:19:49 +0000 ROA not before: Mon 26 Aug 2024 05:19:49 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9918 IP address blocks: 211.78.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3440 (0xd70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Validity Not Before: Aug 26 05:19:49 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A82DAF72F49741E82CC9844496BB004D6D6FF457 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ea:b7:b7:27:c4:7d:d2:ac:93:2b:7c:0c:ec: 0f:e1:fc:f4:6a:b5:c9:f1:11:73:81:95:1b:34:8c: b1:a9:93:ef:ef:96:64:8a:4a:bd:2f:26:07:98:61: cd:e7:2f:6e:95:7f:22:9a:f8:20:91:f2:99:15:a8: 01:af:f6:89:82:b9:4c:87:f8:c2:ec:fc:cc:fc:42: ed:11:5e:02:f2:82:72:3f:f2:5b:d1:60:44:7a:7b: 35:30:84:7b:d3:2b:e0:fe:60:2c:73:aa:fe:3a:c0: d1:e4:7f:c9:72:fc:18:cc:e3:80:d0:15:7f:6d:fe: 9a:01:33:88:e4:70:14:69:0d:38:62:76:e6:37:f6: a7:37:e4:6e:b5:60:0c:99:b5:88:38:f7:78:52:1e: b6:8e:fd:a0:9f:25:ea:83:31:a2:f1:a5:2e:f1:23: 5d:93:a7:63:95:43:76:8c:81:ed:39:8f:e9:05:aa: f4:30:48:c6:7b:b3:af:91:12:43:90:fc:ba:07:94: 28:6f:e1:fa:2f:ed:24:6c:3f:c8:e1:e6:a7:a6:93: 03:5b:87:71:d7:e8:2f:9f:75:95:98:c8:ec:07:3a: 89:e5:52:03:95:0a:18:b9:ac:84:31:1d:9e:c4:8d: 10:a5:d3:2b:22:f5:d5:02:42:7b:6b:63:6c:b3:ad: 00:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:2D:AF:72:F4:97:41:E8:2C:C9:84:44:96:BB:00:4D:6D:6F:F4:57 X509v3 Authority Key Identifier: keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/qC2vcvSXQegsyYRElrsATW1v9Fc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.78.0.0/18 Signature Algorithm: sha256WithRSAEncryption 2b:2a:7a:d7:49:68:a7:27:90:1a:ca:46:83:12:af:15:ec:d4: 09:7d:34:1c:4a:49:a6:7e:62:1c:23:ca:c1:89:4f:08:3b:f8: 09:65:66:9f:c2:e8:45:9a:30:80:0a:47:33:42:bd:53:28:88: bc:b0:f9:96:12:71:06:7d:20:23:8d:94:77:aa:93:33:8b:23: d6:69:c3:9b:53:e7:f3:a7:74:4c:e7:7a:9d:25:0f:4a:04:11: ad:a4:30:71:2a:45:1f:b0:12:b5:b7:0c:a9:de:45:1b:88:d8: 81:20:9f:9e:0e:69:ec:45:75:f6:3f:91:83:85:c2:e2:54:b8: 4a:0a:85:c7:8f:d9:b8:7a:dd:e5:60:9e:e4:c0:4c:78:c9:c1: 26:10:aa:d0:33:65:8b:3f:37:6e:fd:d2:05:13:6b:57:4d:3b: c1:2f:d4:0e:62:18:26:ba:ad:c9:a5:b8:32:ca:d2:b9:57:fa: bc:6f:35:5c:89:af:23:de:28:2e:fc:03:29:b6:e2:8d:7c:97: 7d:88:c0:1e:61:f9:24:9c:38:83:82:f5:d1:41:54:02:cc:ec: e9:fa:0b:49:9a:66:b5:08:ba:26:e3:85:fb:2b:62:f5:81:3a: 3d:82:b5:d3:08:6a:97:e5:bf:44:c0:a1:5b:c1:93:22:89:f0: 0d:2c:7c:30 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDXAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3 MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yNDA4MjYw NTE5NDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE4MkRBRjcyRjQ5NzQx RTgyQ0M5ODQ0NDk2QkIwMDRENkQ2RkY0NTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDR6re3J8R90qyTK3wM7A/h/PRqtcnxEXOBlRs0jLGpk+/vlmSK Sr0vJgeYYc3nL26VfyKa+CCR8pkVqAGv9omCuUyH+MLs/Mz8Qu0RXgLygnI/8lvR YER6ezUwhHvTK+D+YCxzqv46wNHkf8ly/BjM44DQFX9t/poBM4jkcBRpDThiduY3 9qc35G61YAyZtYg493hSHraO/aCfJeqDMaLxpS7xI12Tp2OVQ3aMge05j+kFqvQw SMZ7s6+REkOQ/LoHlChv4fov7SRsP8jh5qemkwNbh3HX6C+fdZWYyOwHOonlUgOV Chi5rIQxHZ7EjRCl0ysi9dUCQntrY2yzrQAtAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUqC2vcvSXQegsyYRElrsATW1v9FcwHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL3FDMnZjdlNYUWVnc3lZUkVscnNBVFcx djlGYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAbTTgAwDQYJ KoZIhvcNAQELBQADggEBACsqetdJaKcnkBrKRoMSrxXs1Al9NBxKSaZ+YhwjysGJ Twg7+AllZp/C6EWaMIAKRzNCvVMoiLyw+ZYScQZ9ICONlHeqkzOLI9Zpw5tT5/On dEznep0lD0oEEa2kMHEqRR+wErW3DKneRRuI2IEgn54OaexFdfY/kYOFwuJUuEoK hceP2bh63eVgnuTATHjJwSYQqtAzZYs/N2790gUTa1dNO8Ev1A5iGCa6rcmluDLK 0rlX+rxvNVyJryPeKC78Aym24o18l32IwB5h+SScOIOC9dFBVALM7On6C0maZrUI uibjhfsrYvWBOj2CtdMIapflv0TAoVvBkyKJ8A0sfDA= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:09 2024 by rpki-client on console-ams.rpki-client.org