$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LIANGCAI/9qk-KBmMJCDteDJzlUglF3ZTBqY.roa File: 9qk-KBmMJCDteDJzlUglF3ZTBqY.roa (raw, json) Hash identifier: NMqJ1veXj6s0PqDcZLWNRjVimKPrEcJlTmSj33BFUzk= Subject key identifier: F6:A9:3E:28:19:8C:24:20:ED:78:32:73:95:48:25:17:76:53:06:A6 Certificate issuer: /CN=5501FE0C3056F611261AC1C0EDC67E2344D7993A Certificate serial: 0104 Authority key identifier: 55:01:FE:0C:30:56:F6:11:26:1A:C1:C0:ED:C6:7E:23:44:D7:99:3A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VQH-DDBW9hEmGsHA7cZ-I0TXmTo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LIANGCAI/9qk-KBmMJCDteDJzlUglF3ZTBqY.roa Signing time: Mon 23 Sep 2024 05:17:37 +0000 ROA not before: Mon 23 Sep 2024 05:17:37 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131642 IP address blocks: 103.99.138.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/LIANGCAI/VQH-DDBW9hEmGsHA7cZ-I0TXmTo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/LIANGCAI/VQH-DDBW9hEmGsHA7cZ-I0TXmTo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/VQH-DDBW9hEmGsHA7cZ-I0TXmTo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 260 (0x104) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5501FE0C3056F611261AC1C0EDC67E2344D7993A Validity Not Before: Sep 23 05:17:37 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F6A93E28198C2420ED78327395482517765306A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:1f:0e:95:bc:62:07:95:d4:41:00:c7:ac:82: bf:27:89:fa:e3:3e:9b:e4:15:b5:bf:6c:e4:73:4f: d6:dd:22:53:39:1c:31:25:db:83:6d:0a:28:6e:57: a7:c7:f8:a0:2a:da:ce:ea:08:98:30:66:c2:e3:f5: b5:fe:c1:26:ff:48:ea:10:28:b3:c4:8a:e3:ed:75: 41:57:90:1e:1c:ac:ee:42:01:ef:4b:91:d8:a9:f2: ed:3c:c7:be:f2:d3:19:c9:a5:ac:77:81:61:12:4b: 1c:3b:d1:93:70:47:ed:77:f8:49:71:0f:44:ee:87: ce:b2:fe:3b:39:ad:3a:be:25:0f:ee:43:57:aa:96: cb:6b:96:a8:2f:67:f6:3c:2c:bb:ee:32:51:82:94: 1c:22:98:c3:10:8d:62:43:d2:66:8e:1e:57:b2:36: 30:a4:06:a2:d1:a7:98:4a:4f:a1:49:61:1a:f9:84: f8:27:74:08:ae:92:8e:56:89:33:cd:35:12:c2:f9: 64:f0:a6:81:a6:fb:c6:8b:18:bd:87:1b:96:a3:ee: 16:4d:1e:e3:2e:fb:3c:51:ea:b1:96:b9:6a:75:3b: 05:ae:2d:e4:4e:7f:6d:85:b0:ee:fa:2c:41:5b:4f: b3:bc:c6:f3:c5:49:63:ed:d3:6e:fd:09:75:eb:0a: c1:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:A9:3E:28:19:8C:24:20:ED:78:32:73:95:48:25:17:76:53:06:A6 X509v3 Authority Key Identifier: keyid:55:01:FE:0C:30:56:F6:11:26:1A:C1:C0:ED:C6:7E:23:44:D7:99:3A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIANGCAI/VQH-DDBW9hEmGsHA7cZ-I0TXmTo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VQH-DDBW9hEmGsHA7cZ-I0TXmTo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIANGCAI/9qk-KBmMJCDteDJzlUglF3ZTBqY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.99.138.0/23 Signature Algorithm: sha256WithRSAEncryption 36:64:f2:4b:0d:08:3c:65:f2:cf:e7:f0:b7:9f:30:c4:14:d6: 19:41:ab:d3:ea:f1:3e:01:a5:33:4f:8f:93:e3:3d:9c:14:f5: 81:fe:60:94:fc:c3:50:1e:f2:e3:41:63:d7:99:99:59:5a:9b: d9:e3:5f:fe:7f:9a:d7:5e:45:f7:4b:3e:12:d2:59:fb:66:a5: 0a:7b:e3:b0:0f:a0:d1:b1:c6:bd:f0:1e:80:37:3c:f9:2c:93: c4:4f:05:dc:08:0f:f5:0d:e2:58:1f:ee:55:8f:b7:f8:10:0e: ca:3f:c9:b6:bb:3c:f5:44:25:8a:70:75:b7:24:fa:7f:ef:a1: 0c:1a:cf:e3:36:80:b6:6d:80:ae:96:20:2f:29:b4:ba:83:7a: d6:04:dc:68:b2:47:75:bd:7c:3d:67:00:d4:ee:f4:65:96:f3: e4:8b:17:5c:0a:fd:39:8d:0a:4e:ba:36:9f:94:1e:d3:70:ff: a9:9c:21:dc:67:1c:a1:df:24:d9:d8:28:4d:7f:59:68:dc:40: 3c:ba:21:df:e1:5d:27:31:45:dc:39:79:cc:f0:4c:5a:cf:0f: cd:c3:94:31:1c:a9:84:9d:21:ba:7b:04:c3:e5:3d:4e:fb:d8: ac:cf:da:ef:2e:bf:62:16:d3:b9:43:16:01:bb:e4:4b:00:c0: 4c:5e:5c:66 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICAQQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTUw MUZFMEMzMDU2RjYxMTI2MUFDMUMwRURDNjdFMjM0NEQ3OTkzQTAeFw0yNDA5MjMw NTE3MzdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEY2QTkzRTI4MTk4QzI0 MjBFRDc4MzI3Mzk1NDgyNTE3NzY1MzA2QTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1Hw6VvGIHldRBAMesgr8nifrjPpvkFbW/bORzT9bdIlM5HDEl 24NtCihuV6fH+KAq2s7qCJgwZsLj9bX+wSb/SOoQKLPEiuPtdUFXkB4crO5CAe9L kdip8u08x77y0xnJpax3gWESSxw70ZNwR+13+ElxD0Tuh86y/js5rTq+JQ/uQ1eq lstrlqgvZ/Y8LLvuMlGClBwimMMQjWJD0maOHleyNjCkBqLRp5hKT6FJYRr5hPgn dAiuko5WiTPNNRLC+WTwpoGm+8aLGL2HG5aj7hZNHuMu+zxR6rGWuWp1OwWuLeRO f22FsO76LEFbT7O8xvPFSWPt0279CXXrCsHvAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU9qk+KBmMJCDteDJzlUglF3ZTBqYwHwYDVR0jBBgwFoAUVQH+DDBW9hEmGsHA 7cZ+I0TXmTowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTElBTkdD QUkvVlFILUREQlc5aEVtR3NIQTdjWi1JMFRYbVRvLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9WUUgtRERCVzloRW1Hc0hBN2NaLUkwVFhtVG8uY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9MSUFOR0NBSS85cWstS0JtTUpDRHRl REp6bFVnbEYzWlRCcVkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBZ2OKMA0GCSqGSIb3DQEBCwUAA4IBAQA2ZPJLDQg8ZfLP5/C3nzDEFNYZQavT 6vE+AaUzT4+T4z2cFPWB/mCU/MNQHvLjQWPXmZlZWpvZ41/+f5rXXkX3Sz4S0ln7 ZqUKe+OwD6DRsca98B6ANzz5LJPETwXcCA/1DeJYH+5Vj7f4EA7KP8m2uzz1RCWK cHW3JPp/76EMGs/jNoC2bYCuliAvKbS6g3rWBNxoskd1vXw9ZwDU7vRllvPkixdc Cv05jQpOujaflB7TcP+pnCHcZxyh3yTZ2ChNf1lo3EA8uiHf4V0nMUXcOXnM8Exa zw/Nw5QxHKmEnSG6ewTD5T1O+9isz9rvLr9iFtO5QxYBu+RLAMBMXlxm -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:52 2024 by rpki-client on console-fra.rpki-client.org