$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/Qgy68yjkPAiXln-t2sl62FoGB7M.roa File: Qgy68yjkPAiXln-t2sl62FoGB7M.roa (raw, json) Hash identifier: kJ11MZsDIzDWBTr/2ZWlaB8d0mN2Wg/pPG5N2bOg8Fs= Subject key identifier: 42:0C:BA:F3:28:E4:3C:08:97:96:7F:AD:DA:C9:7A:D8:5A:06:07:B3 Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Certificate serial: 0ED8 Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Qgy68yjkPAiXln-t2sl62FoGB7M.roa Signing time: Mon 26 Aug 2024 05:21:58 +0000 ROA not before: Mon 26 Aug 2024 05:21:58 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 192.72.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 23:54:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3800 (0xed8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Validity Not Before: Aug 26 05:21:58 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=420CBAF328E43C0897967FADDAC97AD85A0607B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:5d:64:00:bf:aa:64:0f:e9:fe:05:ef:b4:f3: 16:b2:4b:a3:3e:6a:6a:86:ec:8f:89:e0:ba:5c:9f: 1a:bf:57:83:50:b6:85:cf:8f:64:36:4a:60:2a:45: e1:01:be:8e:69:e6:fa:00:71:98:96:83:b5:85:56: 27:57:df:86:05:0f:d6:e1:6a:e6:1e:df:26:dd:c5: f1:e8:34:c1:aa:1f:12:26:bf:74:fa:cf:e0:28:98: d0:e1:b9:a9:c6:a5:52:79:7d:37:07:93:f9:94:aa: 7f:79:30:82:68:8f:58:40:9a:b8:8b:c9:1b:8e:c9: 9f:05:de:24:04:3b:51:ba:79:cf:e4:b3:84:aa:ce: 9c:af:6e:86:c3:4e:27:7d:62:59:68:9f:f0:dc:96: 9f:7c:ed:72:a3:f7:ed:c1:4c:f8:b1:52:52:4f:7d: 64:81:3f:4d:76:d6:ce:0e:e4:8f:4e:c7:17:89:2c: 71:32:31:03:c3:cd:54:ff:58:a4:9c:73:bf:42:2a: 36:8d:61:88:b1:d1:27:aa:5a:8a:2f:81:36:06:79: c0:25:c5:5b:4b:05:9c:1d:b0:cf:41:e7:5d:59:56: 7a:45:a4:22:39:58:c1:b9:3c:e5:15:5d:47:1b:83: 37:3c:27:85:71:2a:df:13:17:35:b5:c7:ef:c6:a4: f7:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:0C:BA:F3:28:E4:3C:08:97:96:7F:AD:DA:C9:7A:D8:5A:06:07:B3 X509v3 Authority Key Identifier: keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/Qgy68yjkPAiXln-t2sl62FoGB7M.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 192.72.4.0/22 Signature Algorithm: sha256WithRSAEncryption 73:32:8c:c5:5e:a1:ce:5d:cf:81:40:b0:84:a6:82:74:e6:03: ca:28:74:2e:0b:43:3b:4e:3e:9c:df:a9:02:0d:ff:ae:2f:1d: 78:36:f6:27:13:b6:13:9c:b3:3b:2a:8a:ee:77:92:c7:10:91: 70:c8:10:67:d3:53:53:a5:52:72:bb:d2:a1:56:68:fc:b6:dc: 1e:06:3d:40:6a:3f:34:06:0d:54:d0:cf:6b:2b:d8:17:ed:41: c5:dd:38:1c:89:8f:10:a2:40:d9:1d:df:ea:b3:27:7b:42:e8: c4:09:7c:1a:0f:7e:13:be:16:fd:6d:8c:4f:2c:6c:00:bb:fa: b9:0d:34:5b:80:8c:9d:bf:00:54:8f:f6:39:3c:3c:27:e0:9c: 7e:c4:76:73:2b:9e:50:35:b0:1a:2e:26:ec:7b:b6:91:b9:ae: a3:48:0a:c7:a0:4b:0d:70:c6:68:f5:05:0a:79:4e:c5:0c:a5: 98:80:4a:80:ff:51:ab:a7:81:bc:65:5a:a3:95:07:f0:5c:61: f2:cc:66:33:18:a4:7e:80:ce:f3:e2:30:dd:10:f0:c3:48:76: b5:50:0f:44:5a:2c:8b:6c:5a:7e:a4:b8:12:56:13:fd:27:05: 37:35:f4:91:76:aa:33:18:37:50:ad:ed:f1:27:4f:8c:7e:3f: c5:e6:af:e4 -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICDtgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yNDA4MjYw NTIxNThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQyMENCQUYzMjhFNDND MDg5Nzk2N0ZBRERBQzk3QUQ4NUEwNjA3QjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDcXWQAv6pkD+n+Be+08xayS6M+amqG7I+J4Lpcnxq/V4NQtoXP j2Q2SmAqReEBvo5p5voAcZiWg7WFVidX34YFD9bhauYe3ybdxfHoNMGqHxImv3T6 z+AomNDhuanGpVJ5fTcHk/mUqn95MIJoj1hAmriLyRuOyZ8F3iQEO1G6ec/ks4Sq zpyvbobDTid9Yllon/Dclp987XKj9+3BTPixUlJPfWSBP0121s4O5I9OxxeJLHEy MQPDzVT/WKScc79CKjaNYYix0SeqWoovgTYGecAlxVtLBZwdsM9B511ZVnpFpCI5 WMG5POUVXUcbgzc8J4VxKt8TFzW1x+/GpPd9AgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUQgy68yjkPAiXln+t2sl62FoGB7MwHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC 1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90 S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvUWd5Njh5amtQQWlYbG4tdDJzbDYy Rm9HQjdNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEAsBIBDAN BgkqhkiG9w0BAQsFAAOCAQEAczKMxV6hzl3PgUCwhKaCdOYDyih0LgtDO04+nN+p Ag3/ri8deDb2JxO2E5yzOyqK7neSxxCRcMgQZ9NTU6VScrvSoVZo/LbcHgY9QGo/ NAYNVNDPayvYF+1Bxd04HImPEKJA2R3f6rMne0LoxAl8Gg9+E74W/W2MTyxsALv6 uQ00W4CMnb8AVI/2OTw8J+CcfsR2cyueUDWwGi4m7Hu2kbmuo0gKx6BLDXDGaPUF CnlOxQylmIBKgP9Rq6eBvGVao5UH8Fxh8sxmMxikfoDO8+Iw3RDww0h2tVAPRFos i2xafqS4ElYT/ScFNzX0kXaqMxg3UK3t8SdPjH4/xeav5A== -----END CERTIFICATE-----Generated at Fri Nov 22 22:31:46 2024 by rpki-client on console-fra.rpki-client.org