$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/qsBtCU16X01_m3mTwqJuWf6uqd4.roa File: qsBtCU16X01_m3mTwqJuWf6uqd4.roa (raw, json) Hash identifier: velLTKgjxXF/FPg0jeYrWfrMnXE0DSnp4TSj7CKFeig= Subject key identifier: AA:C0:6D:09:4D:7A:5F:4D:7F:9B:79:93:C2:A2:6E:59:FE:AE:A9:DE Certificate issuer: /CN=993F7280F1F9B65439DD65ADFB68CA0D6C99BEC5 Certificate serial: 0C0D Authority key identifier: 99:3F:72:80:F1:F9:B6:54:39:DD:65:AD:FB:68:CA:0D:6C:99:BE:C5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mT9ygPH5tlQ53WWt-2jKDWyZvsU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/qsBtCU16X01_m3mTwqJuWf6uqd4.roa Signing time: Mon 26 Aug 2024 05:25:17 +0000 ROA not before: Mon 26 Aug 2024 05:25:17 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18464 IP address blocks: 103.122.21.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/mT9ygPH5tlQ53WWt-2jKDWyZvsU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/mT9ygPH5tlQ53WWt-2jKDWyZvsU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mT9ygPH5tlQ53WWt-2jKDWyZvsU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3085 (0xc0d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=993F7280F1F9B65439DD65ADFB68CA0D6C99BEC5 Validity Not Before: Aug 26 05:25:17 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=AAC06D094D7A5F4D7F9B7993C2A26E59FEAEA9DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:b3:2c:ab:bb:a3:0d:06:0d:3a:3a:d1:60:cb: c5:b9:20:0e:3b:21:16:7e:6e:bd:a0:08:e1:41:af: b6:56:dc:58:0e:6e:84:af:21:64:cb:f1:18:32:d0: 06:ce:23:9d:d2:18:8e:44:85:17:e3:71:c5:fa:7d: bc:2b:80:2f:a6:2c:d9:7b:6e:a1:d3:c4:9a:d4:4f: d3:45:5c:b1:fc:10:5e:ed:dd:c2:06:0e:8f:0b:b5: d5:93:a0:b2:22:31:65:c4:ce:53:b5:a6:9f:9c:c0: 90:23:0b:15:1f:db:85:7f:07:db:4a:c3:7c:2e:da: 76:e6:ed:ad:53:50:1d:02:ad:91:1f:ee:de:7e:e0: 7e:e6:33:c4:40:e5:e1:05:3c:9a:21:b9:02:96:49: fd:b9:55:0b:f7:63:86:6d:3c:2d:d4:71:ab:b1:cc: 50:87:15:ee:42:11:81:6c:0b:4a:5c:0a:74:36:37: f0:31:28:a7:b4:65:a3:67:59:46:57:73:06:69:19: 2a:59:6c:19:f9:bd:67:a8:5f:05:03:a6:c0:10:47: 89:38:58:d9:11:45:a8:6b:a6:2e:df:f1:c0:20:66: 9c:aa:48:be:9c:7e:92:df:8e:3c:63:73:1f:54:1c: b8:36:b6:f7:69:bb:2b:8f:c2:7d:b3:a1:f9:04:e2: e4:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:C0:6D:09:4D:7A:5F:4D:7F:9B:79:93:C2:A2:6E:59:FE:AE:A9:DE X509v3 Authority Key Identifier: keyid:99:3F:72:80:F1:F9:B6:54:39:DD:65:AD:FB:68:CA:0D:6C:99:BE:C5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/mT9ygPH5tlQ53WWt-2jKDWyZvsU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mT9ygPH5tlQ53WWt-2jKDWyZvsU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/qsBtCU16X01_m3mTwqJuWf6uqd4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.122.21.0/24 Signature Algorithm: sha256WithRSAEncryption 6f:26:b3:39:d7:de:0c:c4:d7:00:62:8c:1f:00:1b:f1:6c:2c: 81:fa:6d:05:a6:cd:3b:ca:84:61:37:5d:1e:f9:2e:12:0c:32: f9:d1:22:bb:43:d5:92:42:5b:39:be:66:5c:b6:4a:6e:80:50: 58:0a:22:f0:ea:5d:22:4d:5f:3c:45:77:f2:71:d7:a7:34:ad: 12:5d:ca:ac:52:90:ff:76:0b:b4:7b:b3:ef:f5:ac:4e:30:fe: 99:12:ec:28:3b:8a:98:17:ad:b7:54:79:ab:71:dc:6e:8c:e5: df:0e:b3:b3:f5:c8:c1:7b:72:5b:18:e2:c4:31:2b:36:87:b6: 71:47:0d:01:0e:88:4d:49:5e:d6:80:35:63:7f:73:ac:4f:2d: 80:81:00:54:4a:61:5f:72:14:54:e0:8c:56:9a:3d:e4:a8:b0: f8:4a:28:9c:24:e7:1d:cf:d5:86:5f:ec:c8:58:3c:b6:6b:d8: 75:df:16:0d:c2:1d:83:8a:d4:8d:d5:b6:00:50:9e:28:12:8f: 7a:98:82:d2:39:db:97:03:80:bf:b2:ad:56:42:49:4f:4e:e0: fc:d3:31:e8:05:62:12:9a:14:a5:69:09:47:26:ef:af:9f:77: ff:52:61:15:45:3b:28:80:8c:20:6c:11:73:74:b9:52:58:f5: 51:00:3e:0e -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICDA0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTkz RjcyODBGMUY5QjY1NDM5REQ2NUFERkI2OENBMEQ2Qzk5QkVDNTAeFw0yNDA4MjYw NTI1MTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEFBQzA2RDA5NEQ3QTVG NEQ3RjlCNzk5M0MyQTI2RTU5RkVBRUE5REUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVsyyru6MNBg06OtFgy8W5IA47IRZ+br2gCOFBr7ZW3FgOboSv IWTL8Rgy0AbOI53SGI5EhRfjccX6fbwrgC+mLNl7bqHTxJrUT9NFXLH8EF7t3cIG Do8LtdWToLIiMWXEzlO1pp+cwJAjCxUf24V/B9tKw3wu2nbm7a1TUB0CrZEf7t5+ 4H7mM8RA5eEFPJohuQKWSf25VQv3Y4ZtPC3UcauxzFCHFe5CEYFsC0pcCnQ2N/Ax KKe0ZaNnWUZXcwZpGSpZbBn5vWeoXwUDpsAQR4k4WNkRRahrpi7f8cAgZpyqSL6c fpLfjjxjcx9UHLg2tvdpuyuPwn2zofkE4uS/AgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUqsBtCU16X01/m3mTwqJuWf6uqd4wHwYDVR0jBBgwFoAUmT9ygPH5tlQ53WWt +2jKDWyZvsUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FLVVJB SE9TVC9tVDl5Z1BINXRsUTUzV1d0LTJqS0RXeVp2c1UuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL21UOXlnUEg1dGxRNTNXV3QtMmpLRFd5WnZzVS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBS1VSQUhPU1QvcXNCdENVMTZY MDFfbTNtVHdxSnVXZjZ1cWQ0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAGd6FTANBgkqhkiG9w0BAQsFAAOCAQEAbyazOdfeDMTXAGKMHwAb8Wws gfptBabNO8qEYTddHvkuEgwy+dEiu0PVkkJbOb5mXLZKboBQWAoi8OpdIk1fPEV3 8nHXpzStEl3KrFKQ/3YLtHuz7/WsTjD+mRLsKDuKmBett1R5q3Hcbozl3w6zs/XI wXtyWxjixDErNoe2cUcNAQ6ITUle1oA1Y39zrE8tgIEAVEphX3IUVOCMVpo95Kiw +EoonCTnHc/Vhl/syFg8tmvYdd8WDcIdg4rUjdW2AFCeKBKPepiC0jnblwOAv7Kt VkJJT07g/NMx6AViEpoUpWkJRybvr593/1JhFUU7KICMIGwRc3S5Ulj1UQA+Dg== -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:44 2024 by rpki-client on console-fra.rpki-client.org