$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/QUaAwZl1bnjKDSjbQ59POZzwzXk.roa File: QUaAwZl1bnjKDSjbQ59POZzwzXk.roa (raw, json) Hash identifier: XvTsamoEbLso/O5kfgym+HmW90pXGPfqpk5pTiJ1Dm4= Subject key identifier: 41:46:80:C1:99:75:6E:78:CA:0D:28:DB:43:9F:4F:39:9C:F0:CD:79 Certificate issuer: /CN=3730D9A195AB710286722CE5CCA467CFBA5BD494 Certificate serial: BA Authority key identifier: 37:30:D9:A1:95:AB:71:02:86:72:2C:E5:CC:A4:67:CF:BA:5B:D4:94 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NzDZoZWrcQKGcizlzKRnz7pb1JQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/QUaAwZl1bnjKDSjbQ59POZzwzXk.roa Signing time: Mon 26 Aug 2024 05:23:08 +0000 ROA not before: Mon 26 Aug 2024 05:23:08 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 31972 IP address blocks: 64.78.160.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/NzDZoZWrcQKGcizlzKRnz7pb1JQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/NzDZoZWrcQKGcizlzKRnz7pb1JQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NzDZoZWrcQKGcizlzKRnz7pb1JQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 186 (0xba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3730D9A195AB710286722CE5CCA467CFBA5BD494 Validity Not Before: Aug 26 05:23:08 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=414680C199756E78CA0D28DB439F4F399CF0CD79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:12:f5:35:9a:66:6c:d8:26:0e:83:7e:85:04: 91:e0:19:43:3f:1f:23:89:07:85:94:aa:43:8d:3a: 9b:04:a1:2f:ff:6e:11:23:ff:f0:bd:3c:a2:24:3d: eb:1b:a8:e8:1b:3d:54:08:cb:40:bf:68:d5:65:81: 71:3b:8a:5c:48:8a:ef:2f:05:a2:65:73:cf:63:99: 6f:69:7c:6f:f5:7b:e9:a9:87:0a:0d:4d:ed:75:0d: df:4e:8f:e4:71:87:58:74:cf:a1:c9:a6:c7:d5:0c: 6d:2c:7a:70:5a:47:d6:33:d4:2f:1b:92:ac:15:19: 04:bc:cc:a2:60:9a:3c:99:02:04:4b:b3:6c:b0:5b: dc:d5:26:02:bc:80:72:42:20:e3:be:5f:8e:3d:41: 98:3c:47:35:75:08:c9:ea:15:57:a4:3a:c2:a1:53: df:a4:82:bc:db:88:86:2c:f6:76:34:b2:ab:a1:9a: 85:ae:b2:86:2e:b8:26:a4:6a:fd:9c:09:cc:22:ce: c6:73:ec:ef:fe:bb:d4:e0:e4:34:6e:ee:1c:c4:55: 48:d7:24:e0:1e:00:73:da:af:21:ac:25:67:f3:6c: 10:f1:21:01:71:98:30:14:5c:53:bd:77:48:f1:65: 59:5e:7d:b0:5a:cf:9f:62:48:1a:9e:f2:f1:82:c2: a7:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:46:80:C1:99:75:6E:78:CA:0D:28:DB:43:9F:4F:39:9C:F0:CD:79 X509v3 Authority Key Identifier: keyid:37:30:D9:A1:95:AB:71:02:86:72:2C:E5:CC:A4:67:CF:BA:5B:D4:94 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/NzDZoZWrcQKGcizlzKRnz7pb1JQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NzDZoZWrcQKGcizlzKRnz7pb1JQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NIMBUSCOM/QUaAwZl1bnjKDSjbQ59POZzwzXk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 64.78.160.0/20 Signature Algorithm: sha256WithRSAEncryption b5:a3:04:35:fa:75:90:c8:5c:ec:29:26:dc:fb:af:5c:bf:a8: 06:71:cb:70:75:38:e4:c8:07:b1:99:de:04:27:2e:24:eb:2a: ea:a0:27:ef:d6:dc:0c:8f:1c:8b:31:27:0c:4d:5e:ec:0b:7c: 5d:18:4a:9d:f0:c4:36:ec:f1:22:06:69:a0:5c:ca:67:3d:bf: 2e:6d:39:d3:8a:6a:65:de:1f:d9:eb:d3:08:54:73:72:d4:45: fd:31:54:dd:0a:c7:e2:bf:67:94:cc:63:08:b0:39:08:38:dc: d9:e3:12:30:9d:8e:da:c4:cb:d1:66:fd:b7:7d:42:85:73:93: 40:58:e4:a1:00:21:c7:28:d6:7f:7c:52:65:dc:1e:55:b5:58: 25:3b:37:97:60:f7:67:82:85:dd:63:c5:4e:84:8a:32:4d:a9: a5:93:52:fe:4c:00:cf:06:3f:29:4c:49:a6:c2:64:49:9a:05: 80:3f:5b:54:49:51:ad:44:45:5c:91:e1:83:3f:98:6b:a4:e5: 4f:d7:81:3c:b5:06:0a:c8:7a:14:56:7d:9e:3a:91:a7:8c:97: cb:d6:24:03:c4:9f:0b:e5:d4:85:28:f7:20:c2:41:f8:38:40: 08:ac:46:19:b2:dd:bf:c0:69:1f:5a:d2:47:aa:cb:f2:e9:15: 48:8e:cd:0c -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICALowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzcz MEQ5QTE5NUFCNzEwMjg2NzIyQ0U1Q0NBNDY3Q0ZCQTVCRDQ5NDAeFw0yNDA4MjYw NTIzMDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQxNDY4MEMxOTk3NTZF NzhDQTBEMjhEQjQzOUY0RjM5OUNGMENENzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtEvU1mmZs2CYOg36FBJHgGUM/HyOJB4WUqkONOpsEoS//bhEj //C9PKIkPesbqOgbPVQIy0C/aNVlgXE7ilxIiu8vBaJlc89jmW9pfG/1e+mphwoN Te11Dd9Oj+Rxh1h0z6HJpsfVDG0senBaR9Yz1C8bkqwVGQS8zKJgmjyZAgRLs2yw W9zVJgK8gHJCIOO+X449QZg8RzV1CMnqFVekOsKhU9+kgrzbiIYs9nY0squhmoWu soYuuCakav2cCcwizsZz7O/+u9Tg5DRu7hzEVUjXJOAeAHParyGsJWfzbBDxIQFx mDAUXFO9d0jxZVlefbBaz59iSBqe8vGCwqfDAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUQUaAwZl1bnjKDSjbQ59POZzwzXkwHwYDVR0jBBgwFoAUNzDZoZWrcQKGcizl zKRnz7pb1JQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTklNQlVT Q09NL056RFpvWldyY1FLR2Npemx6S1JuejdwYjFKUS5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvTnpEWm9aV3JjUUtHY2l6bHpLUm56N3BiMUpRLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTklNQlVTQ09NL1FVYUF3WmwxYm5q S0RTamJRNTlQT1p6d3pYay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARATqAwDQYJKoZIhvcNAQELBQADggEBALWjBDX6dZDIXOwpJtz7r1y/qAZx y3B1OOTIB7GZ3gQnLiTrKuqgJ+/W3AyPHIsxJwxNXuwLfF0YSp3wxDbs8SIGaaBc ymc9vy5tOdOKamXeH9nr0whUc3LURf0xVN0Kx+K/Z5TMYwiwOQg43NnjEjCdjtrE y9Fm/bd9QoVzk0BY5KEAIcco1n98UmXcHlW1WCU7N5dg92eChd1jxU6EijJNqaWT Uv5MAM8GPylMSabCZEmaBYA/W1RJUa1ERVyR4YM/mGuk5U/XgTy1BgrIehRWfZ46 kaeMl8vWJAPEnwvl1IUo9yDCQfg4QAisRhmy3b/AaR9a0keqy/LpFUiOzQw= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:11 2024 by rpki-client on console-ams.rpki-client.org