$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/QDoD9aiXJ_1J16bJlL_XtiLUjec.roa File: QDoD9aiXJ_1J16bJlL_XtiLUjec.roa (raw, json) Hash identifier: vIq5htsAIS3xgUuAbFOtat1TSaVyUxbjFFyE3VWld/E= Subject key identifier: 40:3A:03:F5:A8:97:27:FD:49:D7:A6:C9:94:BF:D7:B6:22:D4:8D:E7 Certificate issuer: /CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C Certificate serial: 0CBE Authority key identifier: 00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/QDoD9aiXJ_1J16bJlL_XtiLUjec.roa Signing time: Mon 26 Aug 2024 05:25:54 +0000 ROA not before: Mon 26 Aug 2024 05:25:54 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 38047 IP address blocks: 2402:c340:cdef::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/AFcumcZO1lL6gdUB76Fs-dRK6Zw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/AFcumcZO1lL6gdUB76Fs-dRK6Zw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3262 (0xcbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=00572E99C64ED652FA81D501EFA16CF9D44AE99C Validity Not Before: Aug 26 05:25:54 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=403A03F5A89727FD49D7A6C994BFD7B622D48DE7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:51:2d:48:d2:71:0a:ad:ba:73:c4:31:a1:a9: 88:67:b0:19:af:e1:b7:bf:20:e8:fc:fb:24:9d:c9: 48:35:4b:70:5b:37:60:b4:e4:ca:bb:c1:98:e1:10: e3:c0:85:44:dd:55:f6:a6:c0:7b:04:9a:38:1e:40: ee:9c:c5:33:00:96:c5:b0:79:d6:93:e2:bf:9f:8c: e0:1b:ae:9e:00:d2:af:3b:b4:a9:6d:0d:20:b0:af: 11:64:f3:4a:42:80:7d:30:3e:08:ac:ab:49:52:60: f5:4c:44:6a:ba:20:71:9e:75:df:3e:1a:50:85:e7: 2e:2e:a0:33:21:bf:c0:6f:1e:71:26:40:10:6e:23: 8b:44:97:e9:a4:db:69:08:a1:8d:a4:ee:11:5c:df: c0:78:de:4a:21:8a:23:06:7d:9e:f3:c7:f9:58:eb: 79:f5:49:8f:2f:67:89:33:88:ea:7f:35:cc:ff:ad: fd:0d:2b:8c:35:50:14:d6:32:a3:a8:88:fc:4b:16: b4:96:7a:9e:4a:26:90:dc:6c:ad:ab:eb:a0:31:9c: 6e:f7:ed:d3:59:8f:d9:6c:3b:92:8f:b2:ea:93:f6: 6d:b1:9c:03:6e:bf:e7:b8:64:9e:e3:9d:0e:64:6c: c4:3a:78:6d:9a:9b:f0:e5:8b:5a:62:b6:a3:33:59: 08:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:3A:03:F5:A8:97:27:FD:49:D7:A6:C9:94:BF:D7:B6:22:D4:8D:E7 X509v3 Authority Key Identifier: keyid:00:57:2E:99:C6:4E:D6:52:FA:81:D5:01:EF:A1:6C:F9:D4:4A:E9:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/AFcumcZO1lL6gdUB76Fs-dRK6Zw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AFcumcZO1lL6gdUB76Fs-dRK6Zw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINCHENG/QDoD9aiXJ_1J16bJlL_XtiLUjec.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2402:c340:cdef::/48 Signature Algorithm: sha256WithRSAEncryption 5b:22:35:fb:5c:57:21:00:87:6c:db:c6:68:b2:a3:a4:19:18: bd:22:3f:4c:90:94:15:5c:e3:78:b4:7f:76:65:cf:f8:fa:43: 09:25:c6:e4:42:e5:98:dc:79:8d:89:78:40:86:bd:5b:25:00: d3:4e:8a:cb:b6:63:e7:37:9c:ca:22:f0:78:c2:36:6f:6b:78: 14:23:47:e8:88:d0:32:af:44:ce:78:dc:84:42:59:ed:fc:6e: 47:7f:e1:ba:63:a8:3b:0f:fa:d2:b1:c0:47:1e:31:19:30:d3: bd:b2:0c:e9:32:dc:53:cd:9b:05:c1:76:e2:44:9d:62:f2:ac: fe:e6:a2:ec:5b:6e:7d:28:bc:ee:87:9b:14:b9:4a:07:a5:2a: 29:c3:ec:b5:56:2c:b2:e9:a0:f4:26:e6:d5:96:09:0e:86:e6: 8f:f9:13:3e:78:c3:55:8f:f1:91:87:7c:6e:08:c3:1e:a8:c3: 8f:f3:c3:45:b7:c8:57:ae:a3:c5:84:b5:11:04:82:9e:42:8a: 5b:c0:63:8f:eb:9b:81:45:db:c4:d4:b8:b8:8e:83:94:54:a3: 4e:97:02:ef:02:2f:71:d6:96:02:af:58:4a:18:9d:42:c9:8b: 8c:ce:07:7d:17:58:bb:5e:c3:a3:9e:10:df:c4:ab:06:b5:40: 49:e4:70:80 -----BEGIN CERTIFICATE----- MIIE2zCCA8OgAwIBAgICDL4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDA1 NzJFOTlDNjRFRDY1MkZBODFENTAxRUZBMTZDRjlENDRBRTk5QzAeFw0yNDA4MjYw NTI1NTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQwM0EwM0Y1QTg5NzI3 RkQ0OUQ3QTZDOTk0QkZEN0I2MjJENDhERTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNUS1I0nEKrbpzxDGhqYhnsBmv4be/IOj8+ySdyUg1S3BbN2C0 5Mq7wZjhEOPAhUTdVfamwHsEmjgeQO6cxTMAlsWwedaT4r+fjOAbrp4A0q87tKlt DSCwrxFk80pCgH0wPgisq0lSYPVMRGq6IHGedd8+GlCF5y4uoDMhv8BvHnEmQBBu I4tEl+mk22kIoY2k7hFc38B43kohiiMGfZ7zx/lY63n1SY8vZ4kziOp/Ncz/rf0N K4w1UBTWMqOoiPxLFrSWep5KJpDcbK2r66AxnG737dNZj9lsO5KPsuqT9m2xnANu v+e4ZJ7jnQ5kbMQ6eG2am/Dli1pitqMzWQhPAgMBAAGjggH3MIIB8zAdBgNVHQ4E FgQUQDoD9aiXJ/1J16bJlL/XtiLUjecwHwYDVR0jBBgwFoAUAFcumcZO1lL6gdUB 76Fs+dRK6ZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hJTkNI RU5HL0FGY3VtY1pPMWxMNmdkVUI3NkZzLWRSSzZady5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvQUZjdW1jWk8xbEw2Z2RVQjc2RnMtZFJLNlp3LmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hJTkNIRU5HL1FEb0Q5YWlYSl8x SjE2YkpsTF9YdGlMVWplYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAkAsNAze8wDQYJKoZIhvcNAQELBQADggEBAFsiNftcVyEAh2zbxmiyo6QZ GL0iP0yQlBVc43i0f3Zlz/j6QwklxuRC5ZjceY2JeECGvVslANNOisu2Y+c3nMoi 8HjCNm9reBQjR+iI0DKvRM543IRCWe38bkd/4bpjqDsP+tKxwEceMRkw072yDOky 3FPNmwXBduJEnWLyrP7mouxbbn0ovO6HmxS5SgelKinD7LVWLLLpoPQm5tWWCQ6G 5o/5Ez54w1WP8ZGHfG4Iwx6ow4/zw0W3yFeuo8WEtREEgp5CilvAY4/rm4FF28TU uLiOg5RUo06XAu8CL3HWlgKvWEoYnULJi4zOB30XWLtew6OeEN/Eqwa1QEnkcIA= -----END CERTIFICATE-----Generated at Fri Nov 22 14:13:13 2024 by rpki-client on console-fra.rpki-client.org