$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NKBNET/qJSVNDMVIBKEhAmnmum8Mxf5Ie0.roa File: qJSVNDMVIBKEhAmnmum8Mxf5Ie0.roa (raw, json) Hash identifier: ZiN23hU1Q77ZVRrZI4J5S9z4U/f/yCqcKlD0Bxenaag= Subject key identifier: A8:94:95:34:33:15:20:12:84:84:09:A7:9A:E9:BC:33:17:F9:21:ED Certificate issuer: /CN=8051F2ECEFC242E9AF9F1E454A4FB796591B8DAB Certificate serial: 12F8 Authority key identifier: 80:51:F2:EC:EF:C2:42:E9:AF:9F:1E:45:4A:4F:B7:96:59:1B:8D:AB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gFHy7O_CQumvnx5FSk-3llkbjas.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/qJSVNDMVIBKEhAmnmum8Mxf5Ie0.roa Signing time: Mon 26 Aug 2024 05:23:10 +0000 ROA not before: Mon 26 Aug 2024 05:23:10 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9922 IP address blocks: 103.130.48.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/gFHy7O_CQumvnx5FSk-3llkbjas.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/gFHy7O_CQumvnx5FSk-3llkbjas.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/gFHy7O_CQumvnx5FSk-3llkbjas.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4856 (0x12f8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8051F2ECEFC242E9AF9F1E454A4FB796591B8DAB Validity Not Before: Aug 26 05:23:10 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A894953433152012848409A79AE9BC3317F921ED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:03:b5:24:ee:c9:e7:1c:85:32:4f:75:c7:68: 2f:23:34:26:d7:79:0e:4c:0a:b2:1a:d8:9b:db:13: 58:23:cd:ca:e9:c3:47:07:a9:c0:58:dd:59:27:64: fc:55:09:87:bb:4b:14:71:e0:0b:88:38:e9:51:93: bc:f5:c4:d5:37:77:4e:c4:6c:12:c7:d8:b1:0b:54: d9:18:08:dc:dd:d2:09:54:53:34:6e:e1:21:47:71: dd:4e:d3:22:97:86:7f:ec:d4:bb:13:fd:e6:22:47: b6:7a:ed:d1:1e:62:45:d4:a5:6b:e3:84:cb:33:5e: 1b:c4:5b:e9:af:cf:40:ab:f8:26:f0:36:a7:0e:d4: b3:e5:1d:f6:0d:66:7d:87:ac:f6:4c:04:d7:af:7f: e2:30:68:30:71:c2:aa:ee:2b:46:de:c9:78:b4:b3: 44:fd:df:d2:1c:a9:fb:c9:1c:95:c3:9f:39:f6:4e: 23:e2:35:b0:4a:fc:b8:7c:7e:3f:d8:f3:b8:28:62: af:8c:a6:3e:3c:dd:d3:9c:8b:c3:4e:29:cf:8d:26: c4:96:cc:37:09:4a:ca:58:37:02:ad:83:63:43:32: b1:52:bf:43:b2:99:a1:1e:c6:1f:a8:84:bd:11:ad: 5b:24:75:20:8a:3e:1b:f3:fd:e7:8e:51:f1:6c:a2: ab:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:94:95:34:33:15:20:12:84:84:09:A7:9A:E9:BC:33:17:F9:21:ED X509v3 Authority Key Identifier: keyid:80:51:F2:EC:EF:C2:42:E9:AF:9F:1E:45:4A:4F:B7:96:59:1B:8D:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/gFHy7O_CQumvnx5FSk-3llkbjas.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gFHy7O_CQumvnx5FSk-3llkbjas.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/qJSVNDMVIBKEhAmnmum8Mxf5Ie0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.130.48.0/22 Signature Algorithm: sha256WithRSAEncryption 08:73:c3:b2:d9:5d:59:dc:20:a8:3f:4e:ca:65:a6:f6:93:18: df:e9:df:f6:da:35:44:3e:85:63:74:d4:5e:4a:ee:a9:13:b3: 81:bd:65:b0:d5:0d:92:05:e7:c3:57:fa:28:3e:77:6b:1d:2b: 61:42:15:d3:99:85:be:1e:d8:34:46:a8:eb:3b:96:c0:af:c3: 6f:2b:3d:c4:78:f0:da:89:35:dc:98:2a:68:3e:2b:24:18:ae: 1a:d7:2e:87:94:28:c6:db:78:b8:60:8a:19:65:65:52:9a:6b: 7b:30:c8:61:48:bf:39:ab:1f:d2:85:63:fc:55:b2:5f:55:95: 71:55:a3:2b:dc:23:7d:d0:d8:f0:48:e5:0d:a4:b7:cb:4d:13: 6f:51:fa:94:a3:3d:15:7a:32:87:83:3f:72:a8:42:18:bb:10: 16:68:07:3d:36:4d:2a:97:4d:88:c6:35:53:56:d6:7a:fc:da: 5c:ac:f1:93:78:b1:94:e5:c2:aa:67:0d:e8:24:a8:b1:aa:d2: 2c:1d:b4:93:fb:3d:ec:86:11:e1:a0:ae:06:90:c6:72:89:00: 76:2b:51:24:7f:7f:24:ce:8c:ea:9d:8c:8b:3f:ed:91:50:7b: 95:4b:21:5c:07:35:ed:4e:ad:37:f1:61:e8:90:77:c7:6b:48: 3f:d2:73:0c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICEvgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODA1 MUYyRUNFRkMyNDJFOUFGOUYxRTQ1NEE0RkI3OTY1OTFCOERBQjAeFw0yNDA4MjYw NTIzMTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE4OTQ5NTM0MzMxNTIw MTI4NDg0MDlBNzlBRTlCQzMzMTdGOTIxRUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEA7Uk7snnHIUyT3XHaC8jNCbXeQ5MCrIa2JvbE1gjzcrpw0cH qcBY3VknZPxVCYe7SxRx4AuIOOlRk7z1xNU3d07EbBLH2LELVNkYCNzd0glUUzRu 4SFHcd1O0yKXhn/s1LsT/eYiR7Z67dEeYkXUpWvjhMszXhvEW+mvz0Cr+CbwNqcO 1LPlHfYNZn2HrPZMBNevf+IwaDBxwqruK0beyXi0s0T939IcqfvJHJXDnzn2TiPi NbBK/Lh8fj/Y87goYq+Mpj483dOci8NOKc+NJsSWzDcJSspYNwKtg2NDMrFSv0Oy maEexh+ohL0RrVskdSCKPhvz/eeOUfFsoqsjAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUqJSVNDMVIBKEhAmnmum8Mxf5Ie0wHwYDVR0jBBgwFoAUgFHy7O/CQumvnx5F Sk+3llkbjaswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTktCTkVU L2dGSHk3T19DUXVtdm54NUZTay0zbGxrYmphcy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvZ0ZIeTdPX0NRdW12bng1RlNrLTNsbGtiamFzLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvTktCTkVUL3FKU1ZORE1WSUJLRWhBbW5t dW04TXhmNUllMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn gjAwDQYJKoZIhvcNAQELBQADggEBAAhzw7LZXVncIKg/TsplpvaTGN/p3/baNUQ+ hWN01F5K7qkTs4G9ZbDVDZIF58NX+ig+d2sdK2FCFdOZhb4e2DRGqOs7lsCvw28r PcR48NqJNdyYKmg+KyQYrhrXLoeUKMbbeLhgihllZVKaa3swyGFIvzmrH9KFY/xV sl9VlXFVoyvcI33Q2PBI5Q2kt8tNE29R+pSjPRV6MoeDP3KoQhi7EBZoBz02TSqX TYjGNVNW1nr82lys8ZN4sZTlwqpnDegkqLGq0iwdtJP7PeyGEeGgrgaQxnKJAHYr USR/fyTOjOqdjIs/7ZFQe5VLIVwHNe1OrTfxYeiQd8drSD/Scww= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:11 2024 by rpki-client on console-ams.rpki-client.org