$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/j1q9mCwFbrnac_XKfDmnKyM-Joo.roa File: j1q9mCwFbrnac_XKfDmnKyM-Joo.roa (raw, json) Hash identifier: 0daZ4uWa5EugMJIHQuy+A93HfRI5nf9i0dGo2c9QBH4= Subject key identifier: 8F:5A:BD:98:2C:05:6E:B9:DA:73:F5:CA:7C:39:A7:2B:23:3E:26:8A Certificate issuer: /CN=A18EB377DD0318AE465D8F3F7D6E0AD0A4E9ED1E Certificate serial: 0E58 Authority key identifier: A1:8E:B3:77:DD:03:18:AE:46:5D:8F:3F:7D:6E:0A:D0:A4:E9:ED:1E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/j1q9mCwFbrnac_XKfDmnKyM-Joo.roa Signing time: Mon 26 Aug 2024 05:20:54 +0000 ROA not before: Mon 26 Aug 2024 05:20:54 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131633 IP address blocks: 2404:73c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3672 (0xe58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A18EB377DD0318AE465D8F3F7D6E0AD0A4E9ED1E Validity Not Before: Aug 26 05:20:54 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8F5ABD982C056EB9DA73F5CA7C39A72B233E268A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:ee:3b:07:87:b1:d5:bf:b8:52:cb:a1:48:fc: 8a:aa:6c:70:e7:54:09:cf:0c:f6:e2:f3:44:1e:0b: db:7f:37:ab:08:13:07:e8:e2:c8:e9:0e:e9:fb:a8: 34:28:b8:7f:60:70:43:07:51:ac:86:96:e1:86:d5: c6:97:21:a9:0e:e3:07:79:93:01:ab:3e:e0:90:45: fc:eb:f8:32:de:48:ee:28:2b:b7:11:49:6c:7b:40: 11:41:a6:fe:57:30:b0:b4:fe:1e:04:ab:4f:19:1d: 19:26:c3:b7:52:0a:03:fc:4c:3d:6d:88:cb:3e:8c: e3:7f:c5:05:5f:23:e1:a7:d8:6c:2f:51:63:ee:be: 23:40:1c:55:1a:16:93:a6:ff:29:73:95:b8:e2:89: 3b:98:e8:9e:23:0e:c1:9f:90:d3:7b:c7:b4:e0:56: 2d:0a:fa:77:5b:a0:64:89:d7:c8:46:b6:2e:bc:e5: de:9e:f1:98:04:e3:f2:7a:30:7d:65:88:72:68:07: 3c:b9:43:9a:f7:aa:7e:ad:fd:14:30:70:0e:94:3b: bc:36:c2:ae:f5:05:bc:fa:55:85:12:88:4f:e5:7f: d0:a2:b0:a9:c7:cd:29:0b:44:6b:d2:cc:dd:11:58: 1d:bf:4c:2d:10:b2:a8:20:82:b7:ec:4b:db:6a:95: 70:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:5A:BD:98:2C:05:6E:B9:DA:73:F5:CA:7C:39:A7:2B:23:3E:26:8A X509v3 Authority Key Identifier: keyid:A1:8E:B3:77:DD:03:18:AE:46:5D:8F:3F:7D:6E:0A:D0:A4:E9:ED:1E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/j1q9mCwFbrnac_XKfDmnKyM-Joo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2404:73c0::/32 Signature Algorithm: sha256WithRSAEncryption 52:bd:7a:45:64:40:5e:4b:85:7a:5a:b2:d2:b2:3c:44:cf:ff: 0c:94:a2:28:00:db:a2:f4:f3:ca:89:b6:b3:7b:f7:7f:94:c4: 44:d7:b4:cd:73:90:1e:d6:fe:ad:34:e2:5c:fc:fe:33:cf:19: 47:cc:55:21:fc:55:f4:6c:1f:e0:d6:c3:a9:3b:fd:5d:35:b0: ca:8b:9c:48:61:7d:57:8d:e0:01:25:1c:ef:42:82:a1:8b:8f: 6e:ce:65:eb:04:9b:8f:35:8c:f2:fb:16:31:75:67:68:9e:0f: 8a:ef:a6:01:f5:1e:9b:53:9c:e1:c4:8a:0f:b9:aa:01:45:95: a2:93:b7:c7:b9:45:0e:45:6e:94:01:cc:e2:db:af:41:25:83: 39:2d:0e:da:eb:93:26:57:b3:c6:c8:a6:ce:31:5d:4a:6d:aa: 4f:a9:3e:91:ea:37:30:d1:4a:4a:5f:45:24:68:44:4e:90:53: ca:94:56:db:cf:c6:68:78:8e:cd:5c:b6:54:d3:5c:30:33:db: c2:35:67:a8:0f:13:dc:3a:61:3f:6f:59:34:eb:1b:f1:77:8c: f0:46:7d:5c:61:de:6a:1d:e6:4d:65:01:ca:ed:20:98:5a:8d: 8d:59:ef:11:02:44:f6:9e:aa:07:a2:fc:85:4f:68:01:ab:ce: f5:2a:42:76 -----BEGIN CERTIFICATE----- MIIE2zCCA8OgAwIBAgICDlgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTE4 RUIzNzdERDAzMThBRTQ2NUQ4RjNGN0Q2RTBBRDBBNEU5RUQxRTAeFw0yNDA4MjYw NTIwNTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhGNUFCRDk4MkMwNTZF QjlEQTczRjVDQTdDMzlBNzJCMjMzRTI2OEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD37jsHh7HVv7hSy6FI/IqqbHDnVAnPDPbi80QeC9t/N6sIEwfo 4sjpDun7qDQouH9gcEMHUayGluGG1caXIakO4wd5kwGrPuCQRfzr+DLeSO4oK7cR SWx7QBFBpv5XMLC0/h4Eq08ZHRkmw7dSCgP8TD1tiMs+jON/xQVfI+Gn2GwvUWPu viNAHFUaFpOm/ylzlbjiiTuY6J4jDsGfkNN7x7TgVi0K+ndboGSJ18hGti685d6e 8ZgE4/J6MH1liHJoBzy5Q5r3qn6t/RQwcA6UO7w2wq71Bbz6VYUSiE/lf9CisKnH zSkLRGvSzN0RWB2/TC0QsqgggrfsS9tqlXC1AgMBAAGjggH3MIIB8zAdBgNVHQ4E FgQUj1q9mCwFbrnac/XKfDmnKyM+JoowHwYDVR0jBBgwFoAUoY6zd90DGK5GXY8/ fW4K0KTp7R4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUlOR0pJ TkdFTi9vWTZ6ZDkwREdLNUdYWThfZlc0SzBLVHA3UjQuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL29ZNnpkOTBER0s1R1hZOF9mVzRLMEtUcDdSNC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL01JTkdKSU5HRU4vajFxOW1Dd0Zi cm5hY19YS2ZEbW5LeU0tSm9vLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQC AAIwBwMFACQEc8AwDQYJKoZIhvcNAQELBQADggEBAFK9ekVkQF5LhXpastKyPETP /wyUoigA26L088qJtrN793+UxETXtM1zkB7W/q004lz8/jPPGUfMVSH8VfRsH+DW w6k7/V01sMqLnEhhfVeN4AElHO9CgqGLj27OZesEm481jPL7FjF1Z2ieD4rvpgH1 HptTnOHEig+5qgFFlaKTt8e5RQ5FbpQBzOLbr0ElgzktDtrrkyZXs8bIps4xXUpt qk+pPpHqNzDRSkpfRSRoRE6QU8qUVtvPxmh4js1ctlTTXDAz28I1Z6gPE9w6YT9v WTTrG/F3jPBGfVxh3mod5k1lAcrtIJhajY1Z7xECRPaeqgei/IVPaAGrzvUqQnY= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:40 2024 by rpki-client on console-fra.rpki-client.org