$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/q2lmmGXRQnu6dhtjXyYsFZRnjcg.roa File: q2lmmGXRQnu6dhtjXyYsFZRnjcg.roa (raw, json) Hash identifier: eiCO9qco77eWT2IeyI8WhwAh/t7QL74RQOlUNkV6Xig= Subject key identifier: AB:69:66:98:65:D1:42:7B:BA:76:1B:63:5F:26:2C:15:94:67:8D:C8 Certificate issuer: /CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Certificate serial: 16D1 Authority key identifier: 6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/q2lmmGXRQnu6dhtjXyYsFZRnjcg.roa Signing time: Mon 26 Aug 2024 05:22:39 +0000 ROA not before: Mon 26 Aug 2024 05:22:39 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 42.0.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5841 (0x16d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6EE5B41857AD23D5BEE6716E31AA334BF2545B72 Validity Not Before: Aug 26 05:22:39 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=AB69669865D1427BBA761B635F262C1594678DC8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:b8:cc:51:5a:c9:7f:bc:95:da:4b:b2:7d:e2: a3:1c:19:d4:f2:12:e5:ea:4d:1d:ef:bd:35:38:3f: 36:af:cb:ce:14:73:78:05:e1:c5:b3:9a:dd:7d:5d: 86:4a:47:47:ec:ae:89:7c:64:87:ec:8b:00:df:44: 97:b8:98:eb:67:9e:dc:8d:d6:e7:9a:e5:07:77:e5: 0a:ff:e7:6d:2b:99:ba:86:13:c2:e4:03:fa:1e:90: e4:46:5b:6d:1c:15:46:8e:3f:fe:0f:12:83:2f:11: cc:ff:99:16:41:b8:0f:02:f4:02:9e:3a:c5:65:d0: 04:c0:e9:71:13:e0:1e:49:05:38:d4:50:f3:88:47: 31:95:22:d8:d5:77:03:78:00:39:0e:3b:9d:3d:0c: 96:27:98:bf:cc:67:35:64:ea:a6:07:ca:45:8f:b1: 85:a9:79:87:60:f0:83:b9:4f:ec:60:21:ce:01:33: 96:f4:6f:21:24:1b:d8:3c:fc:2c:34:3f:a0:7e:d6: 79:4e:fa:70:4b:63:0e:ea:18:40:7b:a4:67:29:38: 8f:9e:2b:41:0c:e1:30:01:da:3c:fd:32:d5:55:9c: db:ef:07:fd:ce:db:16:c1:95:4c:91:d8:be:7f:27: b4:08:75:d2:e2:a7:3f:db:d8:0d:af:8f:f2:33:3d: 41:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:69:66:98:65:D1:42:7B:BA:76:1B:63:5F:26:2C:15:94:67:8D:C8 X509v3 Authority Key Identifier: keyid:6E:E5:B4:18:57:AD:23:D5:BE:E6:71:6E:31:AA:33:4B:F2:54:5B:72 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/buW0GFetI9W-5nFuMaozS_JUW3I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/buW0GFetI9W-5nFuMaozS_JUW3I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/q2lmmGXRQnu6dhtjXyYsFZRnjcg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 42.0.64.0/18 Signature Algorithm: sha256WithRSAEncryption 01:c6:3d:d4:68:99:5e:a3:74:3d:9f:97:34:08:22:3a:50:42: 7f:10:46:9f:7f:b8:af:80:e6:d6:76:51:2e:1d:b6:c4:7b:3c: 81:b0:75:07:51:53:27:e2:30:e1:17:f6:f0:4d:0c:05:28:0d: 92:e8:ec:2b:8e:22:a1:f8:7b:b7:94:d0:b8:a8:a8:15:6e:61: d8:c9:ba:1f:5b:19:4d:71:b7:01:fb:a5:28:ef:56:7f:0d:bc: ae:32:19:8e:c4:00:2c:76:d7:be:d2:6f:53:38:53:3a:8d:1f: a1:27:41:45:14:42:f4:5d:e4:99:92:f7:0f:b0:54:5f:4f:ca: 76:94:15:2b:ac:15:3a:2a:a5:5e:78:d8:05:67:2b:35:77:de: 44:b5:74:11:af:90:b0:3b:6f:e1:ab:07:c0:69:bf:47:52:d4: 71:07:1b:e0:67:72:63:53:45:a1:d6:ab:5f:6e:04:00:bd:df: 7c:c2:7b:f9:dc:49:09:02:e7:c4:18:eb:c7:d0:2b:b4:21:6b: 48:4c:af:4a:ae:9b:3d:b6:90:46:d0:a0:93:30:e9:52:61:8f: c3:2a:68:c4:ad:46:39:57:ce:a7:bc:65:09:30:4a:79:a1:1e: 10:97:71:1f:68:da:61:82:27:7c:41:99:07:fd:bf:11:f3:e5: 0c:34:78:5e -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICFtEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkVF NUI0MTg1N0FEMjNENUJFRTY3MTZFMzFBQTMzNEJGMjU0NUI3MjAeFw0yNDA4MjYw NTIyMzlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEFCNjk2Njk4NjVEMTQy N0JCQTc2MUI2MzVGMjYyQzE1OTQ2NzhEQzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHuMxRWsl/vJXaS7J94qMcGdTyEuXqTR3vvTU4Pzavy84Uc3gF 4cWzmt19XYZKR0fsrol8ZIfsiwDfRJe4mOtnntyN1uea5Qd35Qr/520rmbqGE8Lk A/oekORGW20cFUaOP/4PEoMvEcz/mRZBuA8C9AKeOsVl0ATA6XET4B5JBTjUUPOI RzGVItjVdwN4ADkOO509DJYnmL/MZzVk6qYHykWPsYWpeYdg8IO5T+xgIc4BM5b0 byEkG9g8/Cw0P6B+1nlO+nBLYw7qGEB7pGcpOI+eK0EM4TAB2jz9MtVVnNvvB/3O 2xbBlUyR2L5/J7QIddLipz/b2A2vj/IzPUHXAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUq2lmmGXRQnu6dhtjXyYsFZRnjcgwHwYDVR0jBBgwFoAUbuW0GFetI9W+5nFu MaozS/JUW3IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy9i dVcwR0ZldEk5Vy01bkZ1TWFvelNfSlVXM0kuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2J1VzBHRmV0STlXLTVuRnVNYW96U19KVVczSS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvcTJsbW1HWFJRbnU2ZGh0alh5WXNG WlJuamNnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEBioAQDAN BgkqhkiG9w0BAQsFAAOCAQEAAcY91GiZXqN0PZ+XNAgiOlBCfxBGn3+4r4Dm1nZR Lh22xHs8gbB1B1FTJ+Iw4Rf28E0MBSgNkujsK44iofh7t5TQuKioFW5h2Mm6H1sZ TXG3AfulKO9Wfw28rjIZjsQALHbXvtJvUzhTOo0foSdBRRRC9F3kmZL3D7BUX0/K dpQVK6wVOiqlXnjYBWcrNXfeRLV0Ea+QsDtv4asHwGm/R1LUcQcb4GdyY1NFodar X24EAL3ffMJ7+dxJCQLnxBjrx9ArtCFrSEyvSq6bPbaQRtCgkzDpUmGPwypoxK1G OVfOp7xlCTBKeaEeEJdxH2jaYYInfEGZB/2/EfPlDDR4Xg== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:33 2024 by rpki-client on console-ams.rpki-client.org