$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/qkTBklndsB0DS1ex_moWuHKSpmI.roa File: qkTBklndsB0DS1ex_moWuHKSpmI.roa (raw, json) Hash identifier: E9NizxJRJkeiQ2f1ylhJAgGCNplJdOIK2D3SaeZ9IEc= Subject key identifier: AA:44:C1:92:59:DD:B0:1D:03:4B:57:B1:FE:6A:16:B8:72:92:A6:62 Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Certificate serial: 0B69 Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/qkTBklndsB0DS1ex_moWuHKSpmI.roa Signing time: Fri 01 Sep 2023 09:45:56 +0000 ROA not before: Fri 01 Sep 2023 09:45:56 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 45474 IP address blocks: 27.105.206.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 04 May 2024 09:50:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2921 (0xb69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Validity Not Before: Sep 1 09:45:56 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=AA44C19259DDB01D034B57B1FE6A16B87292A662 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:05:5b:a6:d5:18:f2:81:41:68:31:1e:98:45: fe:61:f9:eb:6b:5a:d4:8a:30:6e:13:cb:14:b8:69: 67:60:fc:d5:78:bd:54:c6:06:2a:7a:fa:95:29:2b: b9:f4:c7:e7:fb:b6:03:82:49:cc:48:3e:8d:33:11: 1b:0c:8f:04:12:78:e4:8e:1b:45:4f:f0:15:11:e8: a3:56:10:33:da:c1:bf:43:56:61:91:79:7f:2c:1d: db:6b:72:c4:11:12:3b:26:cf:d2:2c:06:a7:22:2b: 0c:9c:27:69:1c:ea:29:7b:fe:cd:d7:47:5a:ba:27: 56:aa:cd:c1:ee:e0:ff:69:93:1e:42:46:91:ed:f6: 51:fc:22:f2:e8:18:ca:8d:cc:f3:4f:af:d3:0a:ab: 4a:bf:b1:b7:c3:52:38:15:b1:3c:54:d9:a9:3d:0d: c4:88:66:10:99:21:71:69:80:48:28:eb:15:63:d4: b3:7a:04:83:e7:65:bc:51:ec:85:1d:fb:49:dd:10: f1:f1:1a:b3:fc:c8:15:c9:1c:15:d7:11:b8:6d:f9: 39:ae:12:e5:11:df:19:9d:75:17:ff:c0:df:e0:8b: 6d:17:68:a7:b1:64:45:e4:57:6c:66:8c:32:26:70: 58:3b:57:3a:7a:ef:82:38:29:c9:48:70:c1:71:8f: d7:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:44:C1:92:59:DD:B0:1D:03:4B:57:B1:FE:6A:16:B8:72:92:A6:62 X509v3 Authority Key Identifier: keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/qkTBklndsB0DS1ex_moWuHKSpmI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 27.105.206.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:6b:59:29:51:90:9f:b8:0a:2d:9d:c6:09:f6:b6:60:7d:20: f4:ee:b3:4e:dd:27:16:ca:00:44:5b:56:f1:ee:f7:2e:06:53: 90:6b:2f:dc:bc:77:e4:3d:ba:2d:6a:31:78:9e:78:50:e7:7c: 6f:62:3d:3c:99:df:2a:3f:7c:90:94:1f:2d:33:ea:01:9d:f4: c4:b0:02:f9:e6:41:86:e8:0a:30:7c:43:1f:67:99:b3:e1:68: 8a:ce:d3:26:65:5a:94:68:67:8d:84:2f:c1:ad:f0:f4:16:2e: 8a:24:01:a0:19:11:75:37:7e:76:53:db:4b:1d:de:d6:95:ce: 49:5e:25:e3:e4:d9:a4:b7:72:17:77:c3:d0:19:c5:99:78:4e: e5:76:2b:de:f0:ca:79:75:0c:24:ff:98:f4:46:63:f3:fc:13: d2:e2:00:f2:08:af:f0:12:c1:54:27:4d:fb:df:01:44:76:63: 0c:ba:40:04:b6:df:16:fb:aa:f6:cc:f6:c7:8e:d1:ea:da:51: 29:53:58:94:8e:f2:e6:53:66:59:07:1a:9f:1d:e5:62:91:45: bf:4d:5a:cb:ef:fe:6b:73:c5:86:28:f6:b8:d4:94:3e:34:37: 7d:9d:fc:38:d5:87:cf:75:3d:38:56:e2:10:58:91:c1:e5:43: 02:47:5f:03 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICC2kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0NC NTQ1NDE1M0FDQ0VDRTg1MjBEMzM5MDdENTRFNTZDNUNBOUE0QjAeFw0yMzA5MDEw OTQ1NTZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEFBNDRDMTkyNTlEREIw MUQwMzRCNTdCMUZFNkExNkI4NzI5MkE2NjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMBVum1RjygUFoMR6YRf5h+etrWtSKMG4TyxS4aWdg/NV4vVTG Bip6+pUpK7n0x+f7tgOCScxIPo0zERsMjwQSeOSOG0VP8BUR6KNWEDPawb9DVmGR eX8sHdtrcsQREjsmz9IsBqciKwycJ2kc6il7/s3XR1q6J1aqzcHu4P9pkx5CRpHt 9lH8IvLoGMqNzPNPr9MKq0q/sbfDUjgVsTxU2ak9DcSIZhCZIXFpgEgo6xVj1LN6 BIPnZbxR7IUd+0ndEPHxGrP8yBXJHBXXEbht+TmuEuUR3xmddRf/wN/gi20XaKex ZEXkV2xmjDImcFg7Vzp674I4KclIcMFxj9dLAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUqkTBklndsB0DS1ex/moWuHKSpmIwHwYDVR0jBBgwFoAUzLVFQVOszs6FINM5 B9VOVsXKmkswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU09ORVQv ekxWRlFWT3N6czZGSU5NNUI5Vk9Wc1hLbWtzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS96TFZGUVZPc3pzNkZJTk01QjlWT1ZzWEtta3MuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TT05FVC9xa1RCa2xuZHNCMERTMWV4X21v V3VIS1NwbUkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAG2nO MA0GCSqGSIb3DQEBCwUAA4IBAQCKa1kpUZCfuAotncYJ9rZgfSD07rNO3ScWygBE W1bx7vcuBlOQay/cvHfkPbotajF4nnhQ53xvYj08md8qP3yQlB8tM+oBnfTEsAL5 5kGG6AowfEMfZ5mz4WiKztMmZVqUaGeNhC/BrfD0Fi6KJAGgGRF1N352U9tLHd7W lc5JXiXj5Nmkt3IXd8PQGcWZeE7ldive8Mp5dQwk/5j0RmPz/BPS4gDyCK/wEsFU J0373wFEdmMMukAEtt8W+6r2zPbHjtHq2lEpU1iUjvLmU2ZZBxqfHeVikUW/TVrL 7/5rc8WGKPa41JQ+NDd9nfw41YfPdT04VuIQWJHB5UMCR18D -----END CERTIFICATE-----Generated at Fri May 3 00:48:56 2024 by rpki-client on console-fra.rpki-client.org