$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/qcA4Dy-TEFr4MHq0T2I3bZoFJTw.roa File: qcA4Dy-TEFr4MHq0T2I3bZoFJTw.roa (raw, json) Hash identifier: cSTwhOlRid74enSYGREauGNM1uaaeuj0IWoSjii85ME= Subject key identifier: A9:C0:38:0F:2F:93:10:5A:F8:30:7A:B4:4F:62:37:6D:9A:05:25:3C Certificate issuer: /CN=A18EB377DD0318AE465D8F3F7D6E0AD0A4E9ED1E Certificate serial: 0E59 Authority key identifier: A1:8E:B3:77:DD:03:18:AE:46:5D:8F:3F:7D:6E:0A:D0:A4:E9:ED:1E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/qcA4Dy-TEFr4MHq0T2I3bZoFJTw.roa Signing time: Mon 26 Aug 2024 05:20:54 +0000 ROA not before: Mon 26 Aug 2024 05:20:54 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 48024 IP address blocks: 2404:73c0::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3673 (0xe59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A18EB377DD0318AE465D8F3F7D6E0AD0A4E9ED1E Validity Not Before: Aug 26 05:20:54 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A9C0380F2F93105AF8307AB44F62376D9A05253C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:65:a5:86:32:e4:da:ea:87:9c:80:b5:51:be: 9f:73:76:22:e0:ca:26:e3:90:d0:66:08:3c:50:ed: 78:2b:9d:b1:15:ec:5c:68:f8:8d:fc:0f:4f:42:79: e7:2a:16:06:ba:f3:98:cb:81:c8:a3:d7:fe:a9:58: 4c:b5:d8:90:db:02:e3:bb:00:4c:a1:e9:a0:87:4c: d0:8b:a8:6f:aa:42:b9:e1:ad:32:7e:45:4c:fd:9b: 33:cb:22:fb:91:1b:05:d1:2c:ea:59:d7:25:8b:84: 28:28:a5:75:fc:d5:33:a4:fc:f3:fa:59:eb:ec:68: 09:50:96:e4:ec:98:eb:55:f8:dd:5b:6d:a9:f4:88: 6b:0b:bf:75:45:68:89:d6:e8:18:f5:46:a0:31:f7: b1:81:d2:16:cb:a4:b3:e9:34:3b:de:57:e4:d4:9c: 88:8e:8c:37:e8:f8:cf:32:4f:5b:bc:ca:dd:3b:03: ae:e2:fe:f7:d5:24:7a:9f:97:96:ef:07:49:d9:0f: 80:d5:20:50:23:e5:16:21:af:92:df:2b:6e:7e:0c: eb:05:fc:ca:bd:99:00:ac:ec:72:5d:50:b9:fd:89: 31:b8:cf:4d:2e:6b:b7:aa:10:84:72:66:d4:19:a2: 76:81:4c:21:5f:3b:b6:e5:73:d1:6f:24:81:ac:cc: fc:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:C0:38:0F:2F:93:10:5A:F8:30:7A:B4:4F:62:37:6D:9A:05:25:3C X509v3 Authority Key Identifier: keyid:A1:8E:B3:77:DD:03:18:AE:46:5D:8F:3F:7D:6E:0A:D0:A4:E9:ED:1E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/qcA4Dy-TEFr4MHq0T2I3bZoFJTw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2404:73c0::/32 Signature Algorithm: sha256WithRSAEncryption 7f:c3:9c:d7:f2:86:b6:e5:82:ae:57:bc:c8:e0:50:bb:2c:08: 64:c2:04:9a:02:5a:6e:c0:cf:c6:0f:cb:6d:05:66:e1:78:ed: 86:9e:35:c0:30:15:cf:72:8b:e9:5d:49:f5:a0:9c:db:c4:6d: d0:03:42:3f:70:5a:a5:9a:fb:99:66:c5:3f:e8:ca:25:a8:4a: 6e:fb:4b:46:f8:00:dc:83:f6:2c:ff:3d:86:76:a1:6e:aa:cb: 54:ef:49:13:41:c0:da:e7:2d:4d:06:41:9f:1f:ec:7d:d0:ad: f7:48:2a:41:77:67:72:a4:39:c9:28:9d:73:6a:46:64:39:41: 8e:2f:25:c9:87:06:c6:51:70:93:f8:71:8f:6b:11:29:94:de: 82:b0:7e:f0:91:cf:36:44:34:1a:65:9e:4b:c5:69:12:69:11: 23:3a:85:fb:44:05:e1:7a:fb:32:71:b3:9a:24:6d:aa:6b:6c: 4c:91:e6:04:1f:05:32:71:79:c5:74:39:0b:d7:42:43:c1:d7: 8a:53:06:48:30:e9:00:b4:fc:85:49:f2:14:eb:02:56:f0:44: b9:ae:4d:a0:a9:02:24:54:78:ce:5b:77:86:e6:55:49:d9:d4: c4:dd:7f:c2:24:54:c3:d6:92:97:7e:0d:d6:ce:50:4f:59:1e: fe:fd:4d:b4 -----BEGIN CERTIFICATE----- MIIE2zCCA8OgAwIBAgICDlkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTE4 RUIzNzdERDAzMThBRTQ2NUQ4RjNGN0Q2RTBBRDBBNEU5RUQxRTAeFw0yNDA4MjYw NTIwNTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE5QzAzODBGMkY5MzEw NUFGODMwN0FCNDRGNjIzNzZEOUEwNTI1M0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBZaWGMuTa6oecgLVRvp9zdiLgyibjkNBmCDxQ7XgrnbEV7Fxo +I38D09CeecqFga685jLgcij1/6pWEy12JDbAuO7AEyh6aCHTNCLqG+qQrnhrTJ+ RUz9mzPLIvuRGwXRLOpZ1yWLhCgopXX81TOk/PP6WevsaAlQluTsmOtV+N1bban0 iGsLv3VFaInW6Bj1RqAx97GB0hbLpLPpNDveV+TUnIiOjDfo+M8yT1u8yt07A67i /vfVJHqfl5bvB0nZD4DVIFAj5RYhr5LfK25+DOsF/Mq9mQCs7HJdULn9iTG4z00u a7eqEIRyZtQZonaBTCFfO7blc9FvJIGszPxDAgMBAAGjggH3MIIB8zAdBgNVHQ4E FgQUqcA4Dy+TEFr4MHq0T2I3bZoFJTwwHwYDVR0jBBgwFoAUoY6zd90DGK5GXY8/ fW4K0KTp7R4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUlOR0pJ TkdFTi9vWTZ6ZDkwREdLNUdYWThfZlc0SzBLVHA3UjQuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL29ZNnpkOTBER0s1R1hZOF9mVzRLMEtUcDdSNC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL01JTkdKSU5HRU4vcWNBNER5LVRF RnI0TUhxMFQySTNiWm9GSlR3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQC AAIwBwMFACQEc8AwDQYJKoZIhvcNAQELBQADggEBAH/DnNfyhrblgq5XvMjgULss CGTCBJoCWm7Az8YPy20FZuF47YaeNcAwFc9yi+ldSfWgnNvEbdADQj9wWqWa+5lm xT/oyiWoSm77S0b4ANyD9iz/PYZ2oW6qy1TvSRNBwNrnLU0GQZ8f7H3QrfdIKkF3 Z3KkOckonXNqRmQ5QY4vJcmHBsZRcJP4cY9rESmU3oKwfvCRzzZENBplnkvFaRJp ESM6hftEBeF6+zJxs5okbaprbEyR5gQfBTJxecV0OQvXQkPB14pTBkgw6QC0/IVJ 8hTrAlbwRLmuTaCpAiRUeM5bd4bmVUnZ1MTdf8IkVMPWkpd+DdbOUE9ZHv79TbQ= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:33 2024 by rpki-client on console-ams.rpki-client.org