$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWINS/hq3LS_87YjKPZaml3qQJ0VeF8zI.roa File: hq3LS_87YjKPZaml3qQJ0VeF8zI.roa (raw, json) Hash identifier: mxsNItwyxgrkD8YieHFnaoupV8JEVaIkDQ0AgoBZY/o= Subject key identifier: 86:AD:CB:4B:FF:3B:62:32:8F:65:A9:A5:DE:A4:09:D1:57:85:F3:32 Certificate issuer: /CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791 Certificate serial: 0C54 Authority key identifier: 61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/hq3LS_87YjKPZaml3qQJ0VeF8zI.roa Signing time: Mon 26 Aug 2024 05:12:38 +0000 ROA not before: Mon 26 Aug 2024 05:12:38 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17416 IP address blocks: 112.213.48.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3156 (0xc54) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=615F9BD98CC70E8836D01A9481C19C5C2D45D791 Validity Not Before: Aug 26 05:12:38 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=86ADCB4BFF3B62328F65A9A5DEA409D15785F332 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:f9:45:ce:71:d0:13:b0:4f:4f:7f:5a:2b:90: 6a:69:ac:de:34:19:d0:c4:e4:95:6c:45:f6:a0:63: e7:19:cb:b1:8f:65:d8:39:bc:d3:c2:18:2f:64:65: 36:00:c1:cd:c0:7c:ed:42:51:ae:6f:c1:d7:57:a8: ad:b1:ea:dc:56:0b:48:41:3c:18:a1:82:9d:b1:60: 05:57:3c:03:58:5e:9b:65:64:4c:34:18:d4:32:76: cd:9a:05:36:69:73:13:ae:33:dc:e8:d5:b4:2f:7d: de:ab:d1:45:28:e0:5f:5e:d5:61:f4:4a:c3:3b:ca: 80:30:0c:7a:06:89:b6:cd:26:63:41:40:50:e4:f0: 03:f8:39:45:3e:d6:5c:ff:87:17:1d:35:72:8e:0e: cc:c8:8f:53:11:a0:6d:2a:91:4d:b0:e4:fd:0b:09: 17:be:c1:80:c0:6e:6d:a7:1d:f0:70:7a:30:d1:0f: 23:bb:cb:28:48:97:a6:61:ae:c4:26:2e:28:99:4c: dd:59:6b:c1:f1:3c:9d:69:64:45:e7:f1:69:dc:39: fb:41:f9:e8:f8:12:82:a5:4d:a4:77:eb:d0:bd:08: dd:78:93:d3:f4:30:47:b3:7e:c0:13:3b:7c:c3:14: 35:84:5a:8f:e5:1d:db:4f:83:94:75:31:0b:0f:81: 36:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:AD:CB:4B:FF:3B:62:32:8F:65:A9:A5:DE:A4:09:D1:57:85:F3:32 X509v3 Authority Key Identifier: keyid:61:5F:9B:D9:8C:C7:0E:88:36:D0:1A:94:81:C1:9C:5C:2D:45:D7:91 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/YV-b2YzHDog20BqUgcGcXC1F15E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YV-b2YzHDog20BqUgcGcXC1F15E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWINS/hq3LS_87YjKPZaml3qQJ0VeF8zI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 112.213.48.0/20 Signature Algorithm: sha256WithRSAEncryption 7a:47:76:f4:5d:2e:b0:a6:45:82:53:3d:80:f1:77:26:bf:f4: 62:49:49:34:e9:63:96:b5:73:43:81:c6:47:61:82:35:0d:69: 95:74:4d:b9:2f:f2:24:c4:71:f2:a3:44:48:e3:06:b4:fc:d7: 8d:03:bf:c1:d7:36:1e:f2:64:e3:ed:c4:22:5b:43:34:60:fb: 81:c1:ed:c6:6f:61:1a:80:df:2d:bb:4f:57:24:8f:0a:2f:72: 46:bd:df:f6:c7:25:90:f3:e9:0d:9b:96:08:2e:e9:6d:4e:6e: 40:67:89:52:ed:58:58:2a:50:d0:27:17:44:9a:24:e2:81:77: 09:06:03:5c:52:58:7a:36:6d:a9:41:27:be:60:c6:b2:f1:d6: 1e:95:e7:e1:90:41:91:0e:a4:8f:5b:6f:e5:89:f4:9f:87:b2: e5:99:f6:89:b2:2d:18:1d:86:a6:be:e1:d4:80:1e:18:52:1d: 1f:34:9a:ec:6f:db:bc:7e:a1:75:28:ae:b7:36:07:68:97:3f: bc:db:73:0f:89:c5:c3:4a:4c:fa:25:3a:59:9d:6a:d5:06:4d: b0:3c:8d:21:42:8b:f2:2b:4b:87:7c:e0:7b:82:db:e4:fd:55: 4c:70:ec:d0:85:aa:14:aa:e5:14:50:76:aa:38:62:bd:ab:6f: b2:ea:83:82 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDFQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjE1 RjlCRDk4Q0M3MEU4ODM2RDAxQTk0ODFDMTlDNUMyRDQ1RDc5MTAeFw0yNDA4MjYw NTEyMzhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg2QURDQjRCRkYzQjYy MzI4RjY1QTlBNURFQTQwOUQxNTc4NUYzMzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCn+UXOcdATsE9Pf1orkGpprN40GdDE5JVsRfagY+cZy7GPZdg5 vNPCGC9kZTYAwc3AfO1CUa5vwddXqK2x6txWC0hBPBihgp2xYAVXPANYXptlZEw0 GNQyds2aBTZpcxOuM9zo1bQvfd6r0UUo4F9e1WH0SsM7yoAwDHoGibbNJmNBQFDk 8AP4OUU+1lz/hxcdNXKODszIj1MRoG0qkU2w5P0LCRe+wYDAbm2nHfBwejDRDyO7 yyhIl6ZhrsQmLiiZTN1Za8HxPJ1pZEXn8WncOftB+ej4EoKlTaR369C9CN14k9P0 MEezfsATO3zDFDWEWo/lHdtPg5R1MQsPgTaLAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUhq3LS/87YjKPZaml3qQJ0VeF8zIwHwYDVR0jBBgwFoAUYV+b2YzHDog20BqU gcGcXC1F15EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFdJTlMv WVYtYjJZekhEb2cyMEJxVWdjR2NYQzFGMTVFLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9ZVi1iMll6SERvZzIwQnFVZ2NHY1hDMUYxNUUuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9EV0lOUy9ocTNMU184N1lqS1BaYW1sM3FR SjBWZUY4ekkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEcNUw MA0GCSqGSIb3DQEBCwUAA4IBAQB6R3b0XS6wpkWCUz2A8Xcmv/RiSUk06WOWtXND gcZHYYI1DWmVdE25L/IkxHHyo0RI4wa0/NeNA7/B1zYe8mTj7cQiW0M0YPuBwe3G b2EagN8tu09XJI8KL3JGvd/2xyWQ8+kNm5YILultTm5AZ4lS7VhYKlDQJxdEmiTi gXcJBgNcUlh6Nm2pQSe+YMay8dYelefhkEGRDqSPW2/lifSfh7LlmfaJsi0YHYam vuHUgB4YUh0fNJrsb9u8fqF1KK63Ngdolz+823MPicXDSkz6JTpZnWrVBk2wPI0h QovyK0uHfOB7gtvk/VVMcOzQhaoUquUUUHaqOGK9q2+y6oOC -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:30 2024 by rpki-client on console-ams.rpki-client.org