$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/QeFIq35KD-EpQvo6_Tu6v5W0KHI.roa File: QeFIq35KD-EpQvo6_Tu6v5W0KHI.roa (raw, json) Hash identifier: VwsXLEIHoma0o06l4MfszVmMdtQwU9YAbYVUDpi9B1k= Subject key identifier: 41:E1:48:AB:7E:4A:0F:E1:29:42:FA:3A:FD:3B:BA:BF:95:B4:28:72 Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB Certificate serial: 0C45 Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/QeFIq35KD-EpQvo6_Tu6v5W0KHI.roa Signing time: Mon 26 Aug 2024 05:23:49 +0000 ROA not before: Mon 26 Aug 2024 05:23:49 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4781 IP address blocks: 210.63.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3141 (0xc45) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB Validity Not Before: Aug 26 05:23:49 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=41E148AB7E4A0FE12942FA3AFD3BBABF95B42872 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:ea:d0:63:1f:8e:50:6d:3d:cc:b2:4b:52:40: 81:df:d3:e3:4c:64:80:0c:0b:a8:8f:63:26:80:56: fa:a6:7f:8f:cc:5d:76:05:75:81:78:31:b1:c7:ca: 48:dc:a9:bf:09:42:c1:3c:a9:fd:59:6f:22:a9:3e: 95:58:4a:1f:9c:ef:20:0c:25:77:79:98:47:dc:64: 08:72:53:7b:2b:1f:39:54:7e:e6:e6:c6:b6:27:ae: f6:6b:dd:d5:8b:21:35:e6:71:0f:e8:b3:72:5d:93: f6:94:4b:60:f5:91:60:9c:d9:c5:e2:ad:17:8e:dc: 18:f8:3a:aa:d8:cb:b6:d3:77:ec:1e:26:f6:46:b8: ea:ce:57:4f:2d:cd:62:69:88:fd:90:0c:42:55:0b: 00:4f:33:e1:a1:49:2f:45:33:c6:e0:99:22:c6:62: 48:36:77:09:4b:36:66:ed:59:d8:e6:2d:60:9a:8a: be:54:ec:78:51:1a:79:11:e4:86:06:35:38:1b:2c: ae:41:d6:4c:ef:7e:78:34:4d:d4:47:87:0b:f1:44: 57:37:00:d2:1b:68:d7:92:5c:1b:51:a6:ef:77:46: 7a:ac:62:5f:7c:a9:29:63:95:b8:3d:1d:7f:66:fb: 87:9f:f5:18:0c:10:a5:6a:51:81:16:64:e0:6b:3d: c3:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:E1:48:AB:7E:4A:0F:E1:29:42:FA:3A:FD:3B:BA:BF:95:B4:28:72 X509v3 Authority Key Identifier: keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/QeFIq35KD-EpQvo6_Tu6v5W0KHI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.63.100.0/24 Signature Algorithm: sha256WithRSAEncryption 35:34:1d:84:28:6d:77:8a:7e:1e:df:90:b1:38:67:f0:ed:a3: 2b:f2:7a:1d:f9:a7:5e:ab:82:58:c2:0f:a1:58:71:39:e2:69: af:2e:29:9e:c1:ee:84:5b:95:83:77:eb:0a:2f:61:e2:9c:3a: dd:57:73:66:55:b8:88:a5:02:5c:f2:6d:e2:e2:43:23:87:3d: 95:33:28:fe:df:5c:39:4a:53:2f:7e:7e:62:a3:08:b3:24:09: 9b:2e:70:10:6b:d3:a9:83:ad:d0:de:7b:ac:77:21:1d:d1:ea: e7:97:22:b0:20:80:df:af:2e:70:9d:0e:29:50:74:78:61:ca: f9:1f:4c:0a:2b:f8:ee:99:42:f7:16:1d:36:75:19:6c:50:60: 64:cd:a6:db:24:df:14:98:2d:1f:ec:30:99:3b:2d:6d:3d:3f: 2a:fd:3e:cf:74:fe:77:6e:29:09:b6:36:3b:bf:5b:92:0c:e7: e0:de:42:04:c6:3b:57:72:4c:81:a8:e0:86:b5:7b:c1:a3:24: b8:b8:a7:46:ba:82:72:b7:3d:07:de:32:1d:75:26:ba:20:ed: ea:4b:2e:2a:50:f4:d6:38:72:ba:49:fa:32:5d:7f:30:f6:3b: 14:26:30:32:74:4b:24:8b:ec:16:ef:52:35:e9:d5:94:d6:ae: 0e:3c:ac:59 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDEUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTI5 QjYwNkRCODYyODNCRDRBMDhBRjdFQjMzRUYzOEEyNTY2MzFCQjAeFw0yNDA4MjYw NTIzNDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQxRTE0OEFCN0U0QTBG RTEyOTQyRkEzQUZEM0JCQUJGOTVCNDI4NzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDd6tBjH45QbT3MsktSQIHf0+NMZIAMC6iPYyaAVvqmf4/MXXYF dYF4MbHHykjcqb8JQsE8qf1ZbyKpPpVYSh+c7yAMJXd5mEfcZAhyU3srHzlUfubm xrYnrvZr3dWLITXmcQ/os3Jdk/aUS2D1kWCc2cXirReO3Bj4OqrYy7bTd+weJvZG uOrOV08tzWJpiP2QDEJVCwBPM+GhSS9FM8bgmSLGYkg2dwlLNmbtWdjmLWCair5U 7HhRGnkR5IYGNTgbLK5B1kzvfng0TdRHhwvxRFc3ANIbaNeSXBtRpu93RnqsYl98 qSljlbg9HX9m+4ef9RgMEKVqUYEWZOBrPcMJAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUQeFIq35KD+EpQvo6/Tu6v5W0KHIwHwYDVR0jBBgwFoAUUptgbbhig71KCK9+ sz7ziiVmMbswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUEFHSUMv VXB0Z2JiaGlnNzFLQ0s5LXN6N3ppaVZtTWJzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9VcHRnYmJoaWc3MUtDSzktc3o3emlpVm1NYnMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9QQUdJQy9RZUZJcTM1S0QtRXBRdm82X1R1 NnY1VzBLSEkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA0j9k MA0GCSqGSIb3DQEBCwUAA4IBAQA1NB2EKG13in4e35CxOGfw7aMr8nod+adeq4JY wg+hWHE54mmvLimewe6EW5WDd+sKL2HinDrdV3NmVbiIpQJc8m3i4kMjhz2VMyj+ 31w5SlMvfn5iowizJAmbLnAQa9Opg63Q3nusdyEd0ernlyKwIIDfry5wnQ4pUHR4 Ycr5H0wKK/jumUL3Fh02dRlsUGBkzabbJN8UmC0f7DCZOy1tPT8q/T7PdP53bikJ tjY7v1uSDOfg3kIExjtXckyBqOCGtXvBoyS4uKdGuoJytz0H3jIddSa6IO3qSy4q UPTWOHK6SfoyXX8w9jsUJjAydEski+wW71I16dWU1q4OPKxZ -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:42 2024 by rpki-client on console-fra.rpki-client.org