$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/CQz02fh7Uhe7jdwAKMeepxkzQDc.roa File: CQz02fh7Uhe7jdwAKMeepxkzQDc.roa (raw, json) Hash identifier: 1HBlUzuOoZgniMEphCqUoMGgnR+eiJ11DifHDJFEv6E= Subject key identifier: 09:0C:F4:D9:F8:7B:52:17:BB:8D:DC:00:28:C7:9E:A7:19:33:40:37 Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7 Certificate serial: 0D7E Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/CQz02fh7Uhe7jdwAKMeepxkzQDc.roa Signing time: Mon 26 Aug 2024 05:35:00 +0000 ROA not before: Mon 26 Aug 2024 05:35:00 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18424 IP address blocks: 121.50.144.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3454 (0xd7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7 Validity Not Before: Aug 26 05:35:00 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=090CF4D9F87B5217BB8DDC0028C79EA719334037 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:57:f1:17:af:f0:ad:72:5d:cd:b1:af:29:41: 0e:ed:a1:86:1a:e6:58:99:2f:1e:b2:8d:e3:c4:1f: 44:1d:93:7a:2f:db:0b:be:56:7b:d2:c3:39:f0:88: 11:41:2b:17:69:3e:f7:ea:39:e7:6a:36:74:74:3c: ef:37:fd:a6:f4:a3:6d:10:5d:08:98:62:b0:81:ce: 33:9f:5c:00:dc:dd:92:74:79:14:9c:66:8c:cf:92: 55:1e:fe:4a:47:1c:b3:24:dd:45:c5:2d:ec:85:9a: 91:40:61:d7:d8:6e:e3:86:02:3e:ab:94:40:e4:2e: 43:72:15:d3:6b:8d:a5:31:6d:0f:08:62:a8:93:04: 43:e5:ff:2e:45:b7:6c:df:9e:f2:00:20:86:d5:d0: 37:8d:4f:51:5f:55:78:07:ed:11:49:c9:6b:c3:cd: da:a3:0c:e7:88:8a:4b:38:b3:a6:7d:e6:8d:25:56: d7:cb:71:e8:8c:f7:b8:27:b7:ad:91:db:6b:be:78: ad:bd:95:5c:98:ce:5a:a1:f7:85:1c:a4:34:79:b4: 85:dc:97:4c:06:1a:da:f7:06:e1:60:22:3d:ae:80: 67:ba:34:74:d5:fa:b6:e9:5f:f2:7c:11:b4:64:37: 41:87:cf:0f:19:bd:56:b6:a5:df:10:22:2e:6b:8b: 6c:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:0C:F4:D9:F8:7B:52:17:BB:8D:DC:00:28:C7:9E:A7:19:33:40:37 X509v3 Authority Key Identifier: keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/CQz02fh7Uhe7jdwAKMeepxkzQDc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 121.50.144.0/21 Signature Algorithm: sha256WithRSAEncryption 47:92:93:8e:ca:cf:b9:11:df:8a:56:9d:f0:c0:02:e1:ee:1f: b6:47:5c:82:60:a2:3c:72:8f:48:d7:04:00:d6:74:23:c7:ab: bb:6a:cf:c1:f2:df:f2:bd:36:ea:2e:d6:85:69:a6:15:b6:c4: 59:12:d2:84:a9:4b:59:d9:dc:f1:b1:91:f7:94:4a:3f:c1:20: ac:b0:99:2d:db:78:17:4c:f4:45:9f:f2:98:05:d8:35:64:1d: 17:cf:96:50:7e:e4:24:9c:a0:26:3d:aa:a6:44:3e:34:68:0d: 7f:a9:f0:18:27:3a:dc:90:0c:14:51:af:6f:aa:29:dc:06:0d: 99:77:17:9a:78:bc:e8:29:75:ba:9a:99:b9:f3:d2:a9:2b:8e: 3e:53:25:97:78:ba:90:86:2f:c9:df:fd:1c:32:42:a2:25:01: 54:66:e7:fa:e9:54:e9:13:23:cb:c1:c0:c5:b3:34:e8:75:e7: 3a:aa:7d:e0:94:fc:d6:58:f8:01:b1:f5:76:5a:cc:f7:4b:a6: 1e:1f:28:04:c1:5a:97:1d:68:6a:67:4a:cd:44:55:c8:89:0e: d7:49:d5:5e:5d:88:3f:35:2c:fe:48:63:20:f6:8b:52:ca:cf: e9:c8:2d:47:2d:b5:1a:b6:35:09:af:bf:b3:7a:6b:2b:9b:06: 93:34:38:4d -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICDX4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkY3 RUNEQjYyMDJGRkMyQzM0REY3QkNENzFBMUMwODg4NTM4MkZCNzAeFw0yNDA4MjYw NTM1MDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDA5MENGNEQ5Rjg3QjUy MTdCQjhEREMwMDI4Qzc5RUE3MTkzMzQwMzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRV/EXr/Ctcl3Nsa8pQQ7toYYa5liZLx6yjePEH0Qdk3ov2wu+ VnvSwznwiBFBKxdpPvfqOedqNnR0PO83/ab0o20QXQiYYrCBzjOfXADc3ZJ0eRSc ZozPklUe/kpHHLMk3UXFLeyFmpFAYdfYbuOGAj6rlEDkLkNyFdNrjaUxbQ8IYqiT BEPl/y5Ft2zfnvIAIIbV0DeNT1FfVXgH7RFJyWvDzdqjDOeIiks4s6Z95o0lVtfL ceiM97gnt62R22u+eK29lVyYzlqh94UcpDR5tIXcl0wGGtr3BuFgIj2ugGe6NHTV +rbpX/J8EbRkN0GHzw8ZvVa2pd8QIi5ri2xjAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQUCQz02fh7Uhe7jdwAKMeepxkzQDcwHwYDVR0jBBgwFoAU/37NtiAv/Cw033vN caHAiIU4L7cwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJ V0FOL18zN050aUF2X0N3MDMzdk5jYUhBaUlVNEw3Yy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvXzM3TnRpQXZfQ3cwMzN2TmNhSEFpSVU0TDdjLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJV0FOL0NRejAyZmg3VWhl N2pkd0FLTWVlcHhrelFEYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAN5MpAwDQYJKoZIhvcNAQELBQADggEBAEeSk47Kz7kR34pWnfDAAuHuH7ZH XIJgojxyj0jXBADWdCPHq7tqz8Hy3/K9Nuou1oVpphW2xFkS0oSpS1nZ3PGxkfeU Sj/BIKywmS3beBdM9EWf8pgF2DVkHRfPllB+5CScoCY9qqZEPjRoDX+p8BgnOtyQ DBRRr2+qKdwGDZl3F5p4vOgpdbqambnz0qkrjj5TJZd4upCGL8nf/RwyQqIlAVRm 5/rpVOkTI8vBwMWzNOh15zqqfeCU/NZY+AGx9XZazPdLph4fKATBWpcdaGpnSs1E VciJDtdJ1V5diD81LP5IYyD2i1LKz+nILUcttRq2NQmvv7N6ayubBpM0OE0= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:27 2024 by rpki-client on console-ams.rpki-client.org