$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ND_SECURE/Q4N5bEkm4fQmPYI1BOmAq1s8VBI.roa File: Q4N5bEkm4fQmPYI1BOmAq1s8VBI.roa (raw, json) Hash identifier: Kr54byj3QsDI+NIb5pEbWZ7WoIG++qhX6hhC07Mxlz0= Subject key identifier: 43:83:79:6C:49:26:E1:F4:26:3D:82:35:04:E9:80:AB:5B:3C:54:12 Certificate issuer: /CN=938EB4AB05A861667FD03554ACFB836A2CFDC9DB Certificate serial: F1 Authority key identifier: 93:8E:B4:AB:05:A8:61:66:7F:D0:35:54:AC:FB:83:6A:2C:FD:C9:DB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/k460qwWoYWZ_0DVUrPuDaiz9yds.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ND_SECURE/Q4N5bEkm4fQmPYI1BOmAq1s8VBI.roa Signing time: Thu 21 Nov 2024 15:54:15 +0000 ROA not before: Thu 21 Nov 2024 15:54:15 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 150758 IP address blocks: 210.87.108.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ND_SECURE/k460qwWoYWZ_0DVUrPuDaiz9yds.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ND_SECURE/k460qwWoYWZ_0DVUrPuDaiz9yds.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/k460qwWoYWZ_0DVUrPuDaiz9yds.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 241 (0xf1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=938EB4AB05A861667FD03554ACFB836A2CFDC9DB Validity Not Before: Nov 21 15:54:15 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4383796C4926E1F4263D823504E980AB5B3C5412 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:9f:07:1b:02:c4:c6:4d:71:f7:bc:99:44:32: b4:d8:17:13:6a:02:73:e1:da:65:7b:70:65:98:fc: 7a:ee:9d:16:9c:03:28:16:40:99:3c:a7:e0:a0:e1: df:5f:82:3a:9e:f6:6f:84:44:8a:d2:7e:79:d6:89: ec:4a:5f:99:ce:83:96:83:4c:9d:61:4a:4b:b2:16: b1:d4:31:61:5a:62:56:c7:48:ae:b2:d7:cc:96:45: f2:e6:73:4c:9e:ef:0e:ab:0e:10:9f:2a:e9:e3:19: f4:25:29:75:15:a2:a0:d7:37:aa:d6:c3:61:47:7a: fc:6e:27:e7:e7:15:23:ce:70:af:b5:53:0f:81:12: d2:e7:3b:4e:74:36:6c:80:3a:4a:02:f2:75:bf:7a: 54:f2:a5:af:6f:23:a6:80:a8:87:91:60:ec:90:a3: 02:56:4b:c6:c7:87:78:92:db:11:5c:d8:6f:76:b2: 9d:7c:3c:00:24:64:e9:a3:19:06:16:2b:13:64:9c: 5e:46:96:ec:3e:43:ac:7f:f8:5c:3f:cb:f5:ca:8a: 62:41:77:01:65:59:2a:dc:47:15:fd:70:23:0e:da: 98:17:0b:7b:00:ac:ff:a6:73:51:e6:9b:33:d9:12: 13:07:bd:e9:f8:e1:be:a1:71:a0:66:bc:89:34:9e: 74:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:83:79:6C:49:26:E1:F4:26:3D:82:35:04:E9:80:AB:5B:3C:54:12 X509v3 Authority Key Identifier: keyid:93:8E:B4:AB:05:A8:61:66:7F:D0:35:54:AC:FB:83:6A:2C:FD:C9:DB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ND_SECURE/k460qwWoYWZ_0DVUrPuDaiz9yds.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/k460qwWoYWZ_0DVUrPuDaiz9yds.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ND_SECURE/Q4N5bEkm4fQmPYI1BOmAq1s8VBI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.87.108.0/23 Signature Algorithm: sha256WithRSAEncryption 19:9b:0e:e2:10:b1:45:fc:5d:9d:4b:9f:e2:4f:bb:16:4d:ac: 31:99:d0:78:42:f2:e4:1b:e9:cf:23:2d:70:fd:2b:18:a6:76: 9e:7f:dc:bc:d7:1d:2b:87:11:b4:24:ab:10:bf:fb:04:09:60: e7:49:1f:c5:9b:b8:90:1a:9f:85:4b:92:08:5a:23:81:3d:e4: c3:20:d3:fc:1d:71:8d:6c:27:31:74:b5:d1:b4:d2:d6:8b:35: 84:70:8a:8a:26:a7:a3:b6:45:d9:9d:33:93:95:99:19:24:19: 2c:78:4b:da:6f:1a:3b:2f:99:95:ae:3b:1a:62:d1:71:48:e8: de:65:94:a3:89:eb:89:80:b2:1e:0d:3e:61:98:58:43:21:65: 8b:5b:f1:ba:c7:65:9b:8a:b1:47:cd:2f:46:46:81:27:e0:2f: 09:7a:c9:b0:13:80:81:6d:de:72:c2:42:7f:59:9e:d5:7f:ab: 5e:0c:10:15:26:76:9f:a2:bd:c3:bf:d8:d8:98:30:d0:4e:98: 6f:24:63:5d:af:0a:38:f7:43:b8:34:9b:b8:6f:14:c7:29:cf: 48:26:a0:ac:a0:9a:8e:c4:fd:c8:8a:a6:d2:8f:92:75:3a:da: b9:89:a9:cf:d3:46:86:0b:d3:68:64:f7:e0:1a:9d:77:90:cf: 9b:9b:1c:c3 -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICAPEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTM4 RUI0QUIwNUE4NjE2NjdGRDAzNTU0QUNGQjgzNkEyQ0ZEQzlEQjAeFw0yNDExMjEx NTU0MTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQzODM3OTZDNDkyNkUx RjQyNjNEODIzNTA0RTk4MEFCNUIzQzU0MTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCrnwcbAsTGTXH3vJlEMrTYFxNqAnPh2mV7cGWY/HrunRacAygW QJk8p+Cg4d9fgjqe9m+ERIrSfnnWiexKX5nOg5aDTJ1hSkuyFrHUMWFaYlbHSK6y 18yWRfLmc0ye7w6rDhCfKunjGfQlKXUVoqDXN6rWw2FHevxuJ+fnFSPOcK+1Uw+B EtLnO050NmyAOkoC8nW/elTypa9vI6aAqIeRYOyQowJWS8bHh3iS2xFc2G92sp18 PAAkZOmjGQYWKxNknF5Gluw+Q6x/+Fw/y/XKimJBdwFlWSrcRxX9cCMO2pgXC3sA rP+mc1HmmzPZEhMHven44b6hcaBmvIk0nnRxAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUQ4N5bEkm4fQmPYI1BOmAq1s8VBIwHwYDVR0jBBgwFoAUk460qwWoYWZ/0DVU rPuDaiz9ydswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkRfU0VD VVJFL2s0NjBxd1dvWVdaXzBEVlVyUHVEYWl6OXlkcy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvazQ2MHF3V29ZV1pfMERWVXJQdURhaXo5eWRzLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkRfU0VDVVJFL1E0TjViRWttNGZR bVBZSTFCT21BcTFzOFZCSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHSV2wwDQYJKoZIhvcNAQELBQADggEBABmbDuIQsUX8XZ1Ln+JPuxZNrDGZ 0HhC8uQb6c8jLXD9Kximdp5/3LzXHSuHEbQkqxC/+wQJYOdJH8WbuJAan4VLkgha I4E95MMg0/wdcY1sJzF0tdG00taLNYRwioomp6O2RdmdM5OVmRkkGSx4S9pvGjsv mZWuOxpi0XFI6N5llKOJ64mAsh4NPmGYWEMhZYtb8brHZZuKsUfNL0ZGgSfgLwl6 ybATgIFt3nLCQn9ZntV/q14MEBUmdp+ivcO/2NiYMNBOmG8kY12vCjj3Q7g0m7hv FMcpz0gmoKygmo7E/ciKptKPknU62rmJqc/TRoYL02hk9+AanXeQz5ubHMM= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:53 2024 by rpki-client on console-fra.rpki-client.org