$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/qnHYj_7E-lm8G2EAmiL2M04c_xc.roa File: qnHYj_7E-lm8G2EAmiL2M04c_xc.roa (raw, json) Hash identifier: EZeD4g8OAuXBalNqwWjAJfGgdIE4wKe3B7wlmah5plA= Subject key identifier: AA:71:D8:8F:FE:C4:FA:59:BC:1B:61:00:9A:22:F6:33:4E:1C:FF:17 Certificate issuer: /CN=ADFE6E56DAF8492EC7DE88B3A906B3139B55B864 Certificate serial: 06DE Authority key identifier: AD:FE:6E:56:DA:F8:49:2E:C7:DE:88:B3:A9:06:B3:13:9B:55:B8:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/rf5uVtr4SS7H3oizqQazE5tVuGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/qnHYj_7E-lm8G2EAmiL2M04c_xc.roa Signing time: Mon 26 Aug 2024 05:20:58 +0000 ROA not before: Mon 26 Aug 2024 05:20:58 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17415 IP address blocks: 2406:3540::/32 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/rf5uVtr4SS7H3oizqQazE5tVuGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/rf5uVtr4SS7H3oizqQazE5tVuGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/rf5uVtr4SS7H3oizqQazE5tVuGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1758 (0x6de) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADFE6E56DAF8492EC7DE88B3A906B3139B55B864 Validity Not Before: Aug 26 05:20:58 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=AA71D88FFEC4FA59BC1B61009A22F6334E1CFF17 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:9e:d3:4e:48:e7:8e:a7:59:16:e9:c6:a0:95: ad:b4:47:27:02:ed:55:eb:76:8e:e4:d2:b1:60:b5: 3a:42:7c:32:2b:ab:ef:30:44:28:84:c7:4e:1c:57: 5a:a8:53:6b:15:ec:b4:97:92:fd:7e:a2:6d:14:6f: 03:c0:b6:91:69:38:f3:5e:18:81:ff:2c:53:0b:f9: 79:98:39:f6:4f:1a:7d:fd:18:e9:2c:44:6b:11:50: 20:5b:e4:51:e6:78:00:ca:b5:19:b3:a3:ff:a4:8a: be:9c:7b:7d:ec:7b:ad:c6:33:ec:8a:3b:01:10:6f: 6e:27:3b:93:e7:34:6f:a7:19:76:0e:12:3b:9e:b5: 37:ef:88:71:e2:08:31:52:e7:10:98:b5:ba:6b:b4: 3b:3c:d8:19:15:db:c0:73:ec:a9:61:f9:c3:15:a0: 86:cf:f7:9e:b5:a0:bc:6e:09:67:a9:78:b2:cf:4f: 7d:d3:17:94:c2:7e:27:ce:c2:a3:31:0a:ea:db:ee: 43:a4:28:88:ce:c4:32:c4:ff:57:2a:0b:de:65:d3: a8:02:ba:95:c9:4a:01:82:ad:1d:49:a5:18:c7:d5: 48:3f:c8:41:4c:db:3e:b8:7a:74:37:41:42:dd:27: 99:fc:81:7e:cb:da:3f:f9:bc:0b:b1:d2:94:47:3b: 30:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:71:D8:8F:FE:C4:FA:59:BC:1B:61:00:9A:22:F6:33:4E:1C:FF:17 X509v3 Authority Key Identifier: keyid:AD:FE:6E:56:DA:F8:49:2E:C7:DE:88:B3:A9:06:B3:13:9B:55:B8:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/rf5uVtr4SS7H3oizqQazE5tVuGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/rf5uVtr4SS7H3oizqQazE5tVuGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/qnHYj_7E-lm8G2EAmiL2M04c_xc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2406:3540::/32 Signature Algorithm: sha256WithRSAEncryption b2:9c:cf:61:eb:08:a9:1f:e2:9e:6d:05:75:ad:58:73:3a:12: cc:14:ec:d7:d4:0c:16:ec:6d:9f:ca:d2:4e:e9:1d:b6:2f:37: 31:51:27:df:6d:73:4c:d8:e9:b1:e2:1b:cb:b6:81:f2:47:20: 4c:a2:e1:5e:91:42:f5:c8:22:53:0e:9c:6d:16:9a:b7:72:4e: 4b:e2:24:f8:4d:49:35:bd:de:f5:4f:35:60:ef:8e:e1:cc:1f: 52:10:87:51:91:db:2d:e0:25:d1:18:f8:33:23:0a:dd:86:08: fb:a1:62:52:eb:1d:ff:b4:77:c5:cb:08:3d:93:4b:21:ee:a1: e2:e3:02:fd:cd:5f:b5:58:8a:30:f1:cd:fa:e0:36:81:e8:50: 61:13:da:84:5d:50:cc:f6:cb:f5:5f:12:1e:4c:13:d7:75:8e: e7:6c:91:80:75:bb:c8:e8:5f:ad:06:c0:ce:f6:e9:86:2e:8e: a2:10:79:2a:30:a1:6d:a1:4f:f3:92:3a:2b:6e:f1:55:a8:34: c0:49:b9:ad:bb:53:6d:31:14:0b:da:a2:db:35:94:e3:75:19: 6f:e3:63:f5:c4:fa:d3:13:45:90:0d:f8:9a:0f:42:16:97:4e: d3:ab:6e:d5:3c:cb:24:28:65:bb:16:65:e0:78:c7:4a:da:7a: 2e:aa:e8:f0 -----BEGIN CERTIFICATE----- MIIE2TCCA8GgAwIBAgICBt4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQURG RTZFNTZEQUY4NDkyRUM3REU4OEIzQTkwNkIzMTM5QjU1Qjg2NDAeFw0yNDA4MjYw NTIwNThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEFBNzFEODhGRkVDNEZB NTlCQzFCNjEwMDlBMjJGNjMzNEUxQ0ZGMTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4ntNOSOeOp1kW6cagla20RycC7VXrdo7k0rFgtTpCfDIrq+8w RCiEx04cV1qoU2sV7LSXkv1+om0UbwPAtpFpOPNeGIH/LFML+XmYOfZPGn39GOks RGsRUCBb5FHmeADKtRmzo/+kir6ce33se63GM+yKOwEQb24nO5PnNG+nGXYOEjue tTfviHHiCDFS5xCYtbprtDs82BkV28Bz7Klh+cMVoIbP9561oLxuCWepeLLPT33T F5TCfifOwqMxCurb7kOkKIjOxDLE/1cqC95l06gCupXJSgGCrR1JpRjH1Ug/yEFM 2z64enQ3QULdJ5n8gX7L2j/5vAux0pRHOzD9AgMBAAGjggH1MIIB8TAdBgNVHQ4E FgQUqnHYj/7E+lm8G2EAmiL2M04c/xcwHwYDVR0jBBgwFoAUrf5uVtr4SS7H3oiz qQazE5tVuGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUlOR1lJ VEVBL3JmNXVWdHI0U1M3SDNvaXpxUWF6RTV0VnVHUS5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvcmY1dVZ0cjRTUzdIM29penFRYXpFNXRWdUdRLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUlOR1lJVEVBL3FuSFlqXzdFLWxt OEcyRUFtaUwyTTA0Y194Yy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgAC MAcDBQAkBjVAMA0GCSqGSIb3DQEBCwUAA4IBAQCynM9h6wipH+KebQV1rVhzOhLM FOzX1AwW7G2fytJO6R22LzcxUSffbXNM2Omx4hvLtoHyRyBMouFekUL1yCJTDpxt Fpq3ck5L4iT4TUk1vd71TzVg747hzB9SEIdRkdst4CXRGPgzIwrdhgj7oWJS6x3/ tHfFywg9k0sh7qHi4wL9zV+1WIow8c364DaB6FBhE9qEXVDM9sv1XxIeTBPXdY7n bJGAdbvI6F+tBsDO9umGLo6iEHkqMKFtoU/zkjorbvFVqDTASbmtu1NtMRQL2qLb NZTjdRlv42P1xPrTE0WQDfiaD0IWl07Tq27VPMskKGW7FmXgeMdK2nouqujw -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:09 2024 by rpki-client on console-ams.rpki-client.org