$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/Q9zW1uc4j5mDb-LQaJ8Tg_jweZw.roa File: Q9zW1uc4j5mDb-LQaJ8Tg_jweZw.roa (raw, json) Hash identifier: DeP349PeLAKkclYjaLXTdTp1SviG7syVFowfbM43+4o= Subject key identifier: 43:DC:D6:D6:E7:38:8F:99:83:6F:E2:D0:68:9F:13:83:F8:F0:79:9C Certificate issuer: /CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6 Certificate serial: 0BE6 Authority key identifier: C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/Q9zW1uc4j5mDb-LQaJ8Tg_jweZw.roa Signing time: Mon 26 Aug 2024 05:32:21 +0000 ROA not before: Mon 26 Aug 2024 05:32:21 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 133955 IP address blocks: 223.165.10.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3046 (0xbe6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6 Validity Not Before: Aug 26 05:32:21 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=43DCD6D6E7388F99836FE2D0689F1383F8F0799C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:bc:2c:b4:7b:d0:7c:b8:25:50:9c:02:ce:2c: 03:c0:64:1f:52:b7:08:ae:35:09:bc:8b:ea:39:84: 02:09:92:ac:3d:d4:83:10:70:42:e7:ed:ee:47:e2: d9:49:20:b3:37:eb:5c:a9:cc:4e:3f:91:58:5d:51: 35:fa:ed:7b:a1:03:7b:52:a7:14:b3:54:71:d5:8b: 76:3c:07:bb:f1:b5:2f:6e:46:58:dd:91:bf:94:93: 2e:ac:96:93:72:01:f5:3f:49:b6:cc:74:47:33:88: 8b:b5:61:69:3a:ca:f2:dd:16:41:e1:01:f3:3b:7b: 5b:8c:11:1a:9a:1f:9b:5f:a2:3d:5d:62:1e:81:20: 27:ab:62:17:6e:a5:99:d4:2b:cb:44:50:bb:75:9f: 69:a7:d6:d1:fa:30:d4:a5:7d:6b:f7:e5:98:c0:ed: 21:4e:73:8c:44:86:d3:41:18:7c:73:37:41:c9:07: bf:8b:49:66:2a:5a:f8:7f:d3:86:f7:f9:1b:39:66: d0:af:56:d9:c7:58:88:e4:fd:25:cf:4e:07:ec:40: 53:98:26:20:a6:04:94:df:39:cc:2b:5d:bc:0d:de: 17:29:63:5b:c9:23:ae:c7:42:ec:30:57:a4:c3:70: bc:76:bf:75:48:e6:fc:a6:74:59:bc:ba:ac:9e:72: d9:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:DC:D6:D6:E7:38:8F:99:83:6F:E2:D0:68:9F:13:83:F8:F0:79:9C X509v3 Authority Key Identifier: keyid:C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/Q9zW1uc4j5mDb-LQaJ8Tg_jweZw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.165.10.0/24 Signature Algorithm: sha256WithRSAEncryption 97:3d:da:cb:e3:52:d5:e8:a0:f2:bb:06:35:3c:dd:47:ea:1c: e5:c0:67:85:46:24:9a:fc:72:86:26:1a:63:a8:61:4e:36:cb: 79:0c:9d:74:98:eb:a5:82:46:4c:47:90:d1:d0:58:9f:4a:4c: f4:71:76:b8:83:a1:ed:16:d4:38:a5:0f:30:e8:9f:37:bc:0b: 72:d4:7a:b9:68:e9:33:dd:cc:3a:46:27:de:5c:e0:95:81:5e: e9:50:cc:fe:a5:14:81:f3:ff:63:14:2d:94:9b:98:a0:55:3f: 6e:53:20:63:1a:91:c6:30:41:30:9e:de:01:3f:25:3d:1b:04: 84:de:dc:69:dc:e7:25:32:5e:00:43:21:35:0a:a8:f5:74:c5: 64:03:b1:ae:5f:61:b7:d6:b2:6f:88:70:f4:79:25:c0:b7:0b: 49:12:3e:b7:67:b7:76:d4:af:0b:fc:e5:fc:21:c0:d6:3e:03: 3d:c7:8a:cb:eb:18:27:f8:fe:7d:64:d1:77:f0:2c:56:ce:7b: 77:86:07:ef:bf:8c:94:2d:a4:8b:d8:0e:54:ec:53:20:e1:d6: 15:5c:59:6f:69:ea:73:2b:68:1b:a4:89:07:0a:19:a3:e9:27: e0:3d:c6:04:c9:59:31:01:09:8b:ec:f4:d6:06:49:67:03:bc: 10:fc:91:2c -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICC+YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzI4 RjU3MzI0RTc2NkJDNUU5RkE5OUM0RDdBRDRDNDBEMzk1OEZDNjAeFw0yNDA4MjYw NTMyMjFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQzRENENkQ2RTczODhG OTk4MzZGRTJEMDY4OUYxMzgzRjhGMDc5OUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFvCy0e9B8uCVQnALOLAPAZB9StwiuNQm8i+o5hAIJkqw91IMQ cELn7e5H4tlJILM361ypzE4/kVhdUTX67XuhA3tSpxSzVHHVi3Y8B7vxtS9uRljd kb+Uky6slpNyAfU/SbbMdEcziIu1YWk6yvLdFkHhAfM7e1uMERqaH5tfoj1dYh6B ICerYhdupZnUK8tEULt1n2mn1tH6MNSlfWv35ZjA7SFOc4xEhtNBGHxzN0HJB7+L SWYqWvh/04b3+Rs5ZtCvVtnHWIjk/SXPTgfsQFOYJiCmBJTfOcwrXbwN3hcpY1vJ I67HQuwwV6TDcLx2v3VI5vymdFm8uqyectmpAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUQ9zW1uc4j5mDb+LQaJ8Tg/jweZwwHwYDVR0jBBgwFoAUwo9XMk52a8Xp+pnE 161MQNOVj8YwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdELUNP TS1UVy93bzlYTWs1MmE4WHAtcG5FMTYxTVFOT1ZqOFkuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL3dvOVhNazUyYThYcC1wbkUxNjFNUU5PVmo4WS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1RXRC1DT00tVFcvUTl6VzF1YzRq NW1EYi1MUWFKOFRnX2p3ZVp3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAN+lCjANBgkqhkiG9w0BAQsFAAOCAQEAlz3ay+NS1eig8rsGNTzdR+oc 5cBnhUYkmvxyhiYaY6hhTjbLeQyddJjrpYJGTEeQ0dBYn0pM9HF2uIOh7RbUOKUP MOifN7wLctR6uWjpM93MOkYn3lzglYFe6VDM/qUUgfP/YxQtlJuYoFU/blMgYxqR xjBBMJ7eAT8lPRsEhN7cadznJTJeAEMhNQqo9XTFZAOxrl9ht9ayb4hw9HklwLcL SRI+t2e3dtSvC/zl/CHA1j4DPceKy+sYJ/j+fWTRd/AsVs57d4YH77+MlC2ki9gO VOxTIOHWFVxZb2nqcytoG6SJBwoZo+kn4D3GBMlZMQEJi+z01gZJZwO8EPyRLA== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:40 2024 by rpki-client on console-ams.rpki-client.org