$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TANET/Q2-plPZn31WvWySjQjl6V0Xukuo.roa File: Q2-plPZn31WvWySjQjl6V0Xukuo.roa (raw, json) Hash identifier: 5Q1xdtTZ1WRgrzObTfywU0QJ4uK2FdLhEDFOhTfri50= Subject key identifier: 43:6F:A9:94:F6:67:DF:55:AF:5B:24:A3:42:39:7A:57:45:EE:92:EA Certificate issuer: /CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Certificate serial: 0E5E Authority key identifier: E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/Q2-plPZn31WvWySjQjl6V0Xukuo.roa Signing time: Mon 26 Aug 2024 05:27:20 +0000 ROA not before: Mon 26 Aug 2024 05:27:20 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 1659 IP address blocks: 203.68.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 00:49:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3678 (0xe5e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E1A88C34D246EF7C2A7C1AC5FE97B262BC48178E Validity Not Before: Aug 26 05:27:20 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=436FA994F667DF55AF5B24A342397A5745EE92EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:d4:31:47:6b:40:a2:d3:d0:27:0f:9c:73:9b: 87:c5:60:af:c0:f0:1d:eb:4d:b3:2a:d7:6f:08:87: ad:55:a9:27:f1:2f:af:77:6e:eb:19:05:86:cb:48: 2d:3c:6f:5f:7d:e7:b7:aa:41:7d:17:50:b9:34:69: 20:71:87:32:37:c3:90:1c:96:24:a4:fc:80:51:d9: bb:6f:87:79:5d:21:2a:1b:e5:54:a5:7b:7b:4a:0d: 4a:70:7c:0b:0f:ed:3a:8e:9d:36:ab:9d:9b:2a:c7: e6:90:4c:b9:00:70:01:67:5f:f7:24:7b:fd:a3:39: 1d:84:ec:b9:32:3c:70:35:33:06:39:bb:b2:c7:8f: 6e:50:27:94:6c:b8:fe:99:36:99:15:3b:d4:8b:b0: 95:4c:de:98:7a:e5:8f:52:ad:0f:9c:54:46:51:ee: 5f:cb:f1:6a:28:6a:bc:64:9c:82:48:1a:0a:70:08: 49:66:5e:91:f0:f6:79:07:9b:d2:2e:e3:59:2d:c9: 04:8f:a4:cf:64:94:17:50:51:f4:03:aa:e1:38:8c: 6d:20:08:6d:cc:00:7a:c1:3e:65:76:10:3e:27:61: 1a:87:44:0c:ca:dd:5a:40:e8:7a:fd:f1:a9:1a:d5: a3:20:c2:92:19:7a:c2:fe:20:be:ac:fc:4b:90:b2: b7:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:6F:A9:94:F6:67:DF:55:AF:5B:24:A3:42:39:7A:57:45:EE:92:EA X509v3 Authority Key Identifier: keyid:E1:A8:8C:34:D2:46:EF:7C:2A:7C:1A:C5:FE:97:B2:62:BC:48:17:8E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/4aiMNNJG73wqfBrF_peyYrxIF44.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4aiMNNJG73wqfBrF_peyYrxIF44.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TANET/Q2-plPZn31WvWySjQjl6V0Xukuo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.68.0.0/16 Signature Algorithm: sha256WithRSAEncryption 0f:5e:19:f8:00:ca:28:b0:ba:35:e4:ba:e4:d2:76:c7:28:b2: 82:8b:f6:68:ac:de:2b:02:8a:06:79:1c:af:06:c9:97:da:53: 22:ba:0f:d3:97:e9:cd:c3:b1:2e:60:2f:22:e0:13:65:1f:74: ca:67:dc:21:0b:b8:f3:aa:a1:2d:71:00:8b:6d:1b:0a:18:7a: ab:67:39:f5:14:43:58:e5:95:5e:2a:f4:2b:d5:0f:34:9d:8f: 5e:dd:c3:5e:64:9e:d9:87:89:2f:cf:ee:5b:36:90:2b:41:d4: 65:55:1e:80:60:88:a5:d4:ff:ae:4b:a2:60:cc:a8:11:f4:51: a1:e3:f5:ff:67:90:6e:fe:93:5b:e3:93:0e:2f:a6:a5:0d:99: c0:c7:48:dc:ae:63:db:7f:33:28:b4:24:29:38:1a:6e:28:ab: a7:66:ef:70:52:38:84:41:69:1d:df:d4:27:9f:51:8b:a3:9b: 40:28:a5:19:f9:d9:7d:da:9e:63:3d:7b:f8:98:23:4a:b8:3d: 30:47:44:66:79:e2:d7:9e:5b:9d:b5:36:43:47:a9:57:74:6b: 5f:ab:6b:57:7d:08:de:13:fe:b4:ae:ac:a5:da:1b:05:b6:59: 85:7a:1c:40:87:31:4a:ba:58:ff:27:b6:c8:fb:f0:f7:d8:b2: 5d:1f:45:03 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDl4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTFB ODhDMzREMjQ2RUY3QzJBN0MxQUM1RkU5N0IyNjJCQzQ4MTc4RTAeFw0yNDA4MjYw NTI3MjBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQzNkZBOTk0RjY2N0RG NTVBRjVCMjRBMzQyMzk3QTU3NDVFRTkyRUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCz1DFHa0Ci09AnD5xzm4fFYK/A8B3rTbMq128Ih61VqSfxL693 busZBYbLSC08b19957eqQX0XULk0aSBxhzI3w5AcliSk/IBR2btvh3ldISob5VSl e3tKDUpwfAsP7TqOnTarnZsqx+aQTLkAcAFnX/cke/2jOR2E7LkyPHA1MwY5u7LH j25QJ5RsuP6ZNpkVO9SLsJVM3ph65Y9SrQ+cVEZR7l/L8WooarxknIJIGgpwCElm XpHw9nkHm9Iu41ktyQSPpM9klBdQUfQDquE4jG0gCG3MAHrBPmV2ED4nYRqHRAzK 3VpA6Hr98aka1aMgwpIZesL+IL6s/EuQsrfNAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUQ2+plPZn31WvWySjQjl6V0XukuowHwYDVR0jBBgwFoAU4aiMNNJG73wqfBrF /peyYrxIF44wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFORVQv NGFpTU5OSkc3M3dxZkJyRl9wZXlZcnhJRjQ0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS80YWlNTk5KRzczd3FmQnJGX3BleVlyeElGNDQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQU5FVC9RMi1wbFBabjMxV3ZXeVNqUWps NlYwWHVrdW8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAy0Qw DQYJKoZIhvcNAQELBQADggEBAA9eGfgAyiiwujXkuuTSdscosoKL9mis3isCigZ5 HK8GyZfaUyK6D9OX6c3DsS5gLyLgE2UfdMpn3CELuPOqoS1xAIttGwoYeqtnOfUU Q1jllV4q9CvVDzSdj17dw15kntmHiS/P7ls2kCtB1GVVHoBgiKXU/65LomDMqBH0 UaHj9f9nkG7+k1vjkw4vpqUNmcDHSNyuY9t/Myi0JCk4Gm4oq6dm73BSOIRBaR3f 1CefUYujm0AopRn52X3anmM9e/iYI0q4PTBHRGZ54teeW521NkNHqVd0a1+ra1d9 CN4T/rSurKXaGwW2WYV6HECHMUq6WP8ntsj78PfYsl0fRQM= -----END CERTIFICATE-----Generated at Fri Sep 20 21:34:50 2024 by rpki-client on console-ams.rpki-client.org