$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TCB/QxctflsVSK-MXjBdWBbO9gE5JbE.roa File: QxctflsVSK-MXjBdWBbO9gE5JbE.roa (raw, json) Hash identifier: h5lrifcjrG6tr4mySDtN5MtNxIIzTjMB4LJ/VWynhsc= Subject key identifier: 43:17:2D:7E:5B:15:48:AF:8C:5E:30:5D:58:16:CE:F6:01:39:25:B1 Certificate issuer: /CN=BF82A3AC11455030743C0A743711F8A0D8EBAE28 Certificate serial: 0C5C Authority key identifier: BF:82:A3:AC:11:45:50:30:74:3C:0A:74:37:11:F8:A0:D8:EB:AE:28 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/v4KjrBFFUDB0PAp0NxH4oNjrrig.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/QxctflsVSK-MXjBdWBbO9gE5JbE.roa Signing time: Mon 26 Aug 2024 05:27:41 +0000 ROA not before: Mon 26 Aug 2024 05:27:41 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131590 IP address blocks: 2400:c780:fffe:1d00::/64 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/v4KjrBFFUDB0PAp0NxH4oNjrrig.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/v4KjrBFFUDB0PAp0NxH4oNjrrig.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/v4KjrBFFUDB0PAp0NxH4oNjrrig.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3164 (0xc5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BF82A3AC11455030743C0A743711F8A0D8EBAE28 Validity Not Before: Aug 26 05:27:41 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=43172D7E5B1548AF8C5E305D5816CEF6013925B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:31:de:47:c1:70:8c:da:f8:4b:e4:ab:4f:ce: 0b:10:7e:93:46:29:ec:7c:cd:d4:87:5e:9d:98:ba: 82:f5:30:c7:a0:2b:7f:b4:0b:2f:b5:b7:c0:1d:de: 90:12:bd:b5:5b:b6:8b:16:fa:51:ae:95:25:91:c1: 53:af:7d:28:df:11:f3:f5:e9:2b:b2:a6:93:d0:8c: cf:8f:6a:1c:fb:d2:db:d4:39:a6:dc:78:a5:38:e9: b0:9c:0d:9c:e4:12:ca:bd:07:58:77:3f:02:e7:7f: 07:ba:1c:82:b8:ca:94:f3:6b:41:06:ae:7f:60:f2: 4a:84:0d:80:3a:86:c6:cd:ba:73:41:64:c9:a2:d6: 53:b8:44:91:9b:fa:85:26:b7:5f:9d:a1:7d:6f:de: fd:53:3e:a4:46:e6:ac:42:0a:2d:e2:59:60:e0:66: 56:6f:30:26:90:91:4c:d6:b2:1e:79:31:2e:97:e0: 9f:81:f5:8e:f5:b8:be:74:68:84:12:b6:61:80:cc: 4f:d0:5b:a7:d3:2a:04:50:e8:48:63:60:ab:c6:d5: a7:d6:f6:ee:03:79:15:79:9d:59:1e:a5:1e:d8:23: d6:e0:2f:91:10:6f:53:fc:9b:01:5b:2f:1a:90:e6: 6a:59:55:ca:af:6a:36:54:d6:3c:62:43:e8:0b:09: a3:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:17:2D:7E:5B:15:48:AF:8C:5E:30:5D:58:16:CE:F6:01:39:25:B1 X509v3 Authority Key Identifier: keyid:BF:82:A3:AC:11:45:50:30:74:3C:0A:74:37:11:F8:A0:D8:EB:AE:28 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/v4KjrBFFUDB0PAp0NxH4oNjrrig.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/v4KjrBFFUDB0PAp0NxH4oNjrrig.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/QxctflsVSK-MXjBdWBbO9gE5JbE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2400:c780:fffe:1d00::/64 Signature Algorithm: sha256WithRSAEncryption 9b:c3:42:bd:aa:10:d6:f4:3b:7f:6d:03:97:f6:2e:d3:5e:36: 46:89:10:73:f7:8a:9c:66:0a:b0:e5:bb:a9:cd:2c:de:72:36: 52:ed:80:66:a0:7d:14:da:5d:2e:75:51:18:78:ea:db:16:f1: 3e:08:ce:93:28:9d:ed:a2:4b:82:5e:a6:c7:8d:90:bd:a8:e0: 31:a3:7e:cd:0a:cc:87:4d:1a:2b:5d:44:d5:62:e9:6c:17:70: 46:ac:8d:b9:29:2c:1c:b7:63:8e:dc:61:5a:70:41:21:15:59: 37:90:cf:c5:25:6d:bd:49:c5:de:8b:f2:03:9d:77:85:34:c1: c8:ae:06:13:4f:6c:f2:60:5d:9a:5e:0c:5b:7f:21:38:e1:ed: 4f:b6:12:db:44:d1:6f:4a:bd:e2:eb:8c:f8:cd:bd:5b:d4:ac: 3c:9a:b3:ba:a8:c7:97:8e:ac:f4:68:50:05:65:fc:cf:5e:8f: dd:dc:63:0c:c1:8f:fb:29:6c:06:52:b0:ee:42:ba:25:38:08: 66:3f:48:8a:8f:44:7f:95:24:3e:aa:e3:6e:2e:ec:b9:ed:8e: 30:f0:43:92:f4:77:d1:57:1a:75:e9:01:87:5a:92:3a:16:f8: 94:52:d6:e7:ff:fc:e7:0d:aa:08:93:2e:b7:4d:69:ce:81:f3: 04:93:b7:1b -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICDFwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkY4 MkEzQUMxMTQ1NTAzMDc0M0MwQTc0MzcxMUY4QTBEOEVCQUUyODAeFw0yNDA4MjYw NTI3NDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQzMTcyRDdFNUIxNTQ4 QUY4QzVFMzA1RDU4MTZDRUY2MDEzOTI1QjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCMd5HwXCM2vhL5KtPzgsQfpNGKex8zdSHXp2YuoL1MMegK3+0 Cy+1t8Ad3pASvbVbtosW+lGulSWRwVOvfSjfEfP16SuyppPQjM+Pahz70tvUOabc eKU46bCcDZzkEsq9B1h3PwLnfwe6HIK4ypTza0EGrn9g8kqEDYA6hsbNunNBZMmi 1lO4RJGb+oUmt1+doX1v3v1TPqRG5qxCCi3iWWDgZlZvMCaQkUzWsh55MS6X4J+B 9Y71uL50aIQStmGAzE/QW6fTKgRQ6EhjYKvG1afW9u4DeRV5nVkepR7YI9bgL5EQ b1P8mwFbLxqQ5mpZVcqvajZU1jxiQ+gLCaMDAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUQxctflsVSK+MXjBdWBbO9gE5JbEwHwYDVR0jBBgwFoAUv4KjrBFFUDB0PAp0 NxH4oNjrrigwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVENCL3Y0 S2pyQkZGVURCMFBBcDBOeEg0b05qcnJpZy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev djRLanJCRkZVREIwUEFwME54SDRvTmpycmlnLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvVENCL1F4Y3RmbHNWU0stTVhqQmRXQmJPOWdF NUpiRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwJAYIKwYBBQUHAQcBAf8EFTATMBEEAgACMAsDCQAkAMeA//4d ADANBgkqhkiG9w0BAQsFAAOCAQEAm8NCvaoQ1vQ7f20Dl/Yu0142RokQc/eKnGYK sOW7qc0s3nI2Uu2AZqB9FNpdLnVRGHjq2xbxPgjOkyid7aJLgl6mx42QvajgMaN+ zQrMh00aK11E1WLpbBdwRqyNuSksHLdjjtxhWnBBIRVZN5DPxSVtvUnF3ovyA513 hTTByK4GE09s8mBdml4MW38hOOHtT7YS20TRb0q94uuM+M29W9SsPJqzuqjHl46s 9GhQBWX8z16P3dxjDMGP+ylsBlKw7kK6JTgIZj9Iio9Ef5UkPqrjbi7sue2OMPBD kvR30VcadekBh1qSOhb4lFLW5//85w2qCJMut01pzoHzBJO3Gw== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:54 2024 by rpki-client on console-fra.rpki-client.org