$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/-fRLk_OhGAyHc7Idhu5Z7awO5A4.roa File: -fRLk_OhGAyHc7Idhu5Z7awO5A4.roa (raw, json) Hash identifier: YjegI8rGZTLm7JL8soV33tw7yegVFTVVujxF3gqY1DU= Subject key identifier: F9:F4:4B:93:F3:A1:18:0C:87:73:B2:1D:86:EE:59:ED:AC:0E:E4:0E Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 1221 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/-fRLk_OhGAyHc7Idhu5Z7awO5A4.roa Signing time: Mon 26 Aug 2024 05:18:16 +0000 ROA not before: Mon 26 Aug 2024 05:18:16 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 3462 IP address blocks: 1.160.0.0/12 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4641 (0x1221) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 26 05:18:16 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F9F44B93F3A1180C8773B21D86EE59EDAC0EE40E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:8f:3a:cd:87:2e:6c:0f:d7:b2:08:34:f6:f5: cf:f1:c2:35:b8:ea:69:10:a7:3b:cb:ad:d0:83:83: 76:4e:03:d6:dd:7f:e6:9e:38:37:b4:4f:c3:34:3f: 48:45:c7:36:40:95:64:05:0f:9e:40:11:3c:f1:53: e1:c2:2c:b5:09:b8:4f:15:8d:86:46:c6:b7:39:1a: 4c:9b:40:c3:22:60:5c:75:d6:2f:28:9f:ca:ba:24: 2e:32:c6:58:40:d9:23:43:01:b6:f5:44:fd:9f:0a: f7:92:38:cb:ec:28:70:f2:8c:e3:08:d4:b6:e3:a5: c7:c1:90:36:0a:8b:72:df:3f:c1:f6:43:0f:8e:5b: 9d:ae:0c:3a:3c:58:6d:7c:41:f6:75:67:e6:98:15: 13:c6:85:9a:6b:f9:c1:74:6b:e8:3d:8e:05:20:f9: 01:d6:a5:78:a1:a8:18:75:b2:c0:07:c4:f7:fa:8f: a8:01:b3:84:f7:aa:0a:59:a2:a0:44:1c:99:1b:59: 5a:19:d4:c7:66:ef:57:e2:a5:7c:82:c6:b9:46:86: be:ac:30:c5:e2:8c:99:19:2d:87:6e:28:3f:2d:89: e6:1f:72:8b:d1:f3:83:9e:42:a5:a2:a0:e0:ed:64: 4c:be:3e:92:4d:c9:b0:d4:13:b7:85:77:b0:b2:4c: ab:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:F4:4B:93:F3:A1:18:0C:87:73:B2:1D:86:EE:59:ED:AC:0E:E4:0E X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/-fRLk_OhGAyHc7Idhu5Z7awO5A4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 1.160.0.0/12 Signature Algorithm: sha256WithRSAEncryption 22:35:03:81:19:d7:75:2f:b5:2e:7b:b1:97:cf:11:50:6e:bf: 3a:21:af:cb:65:3c:92:75:4f:64:20:92:77:b4:41:97:75:94: 64:e0:50:16:ef:4f:ce:e3:63:26:fb:d3:5b:1f:f7:fb:59:5e: fe:2e:a0:aa:f4:64:a3:0d:79:50:17:a1:bd:a7:5f:e6:1f:6f: 51:38:0d:4b:e4:1f:de:3f:6d:56:7e:df:bb:e5:e4:8d:6d:bc: df:9b:6a:e3:f6:c2:f4:59:d4:ab:ba:5d:c7:45:91:59:b9:80: 15:70:77:8a:bd:3e:4e:82:e1:f4:c0:e0:74:d8:12:84:28:5b: 7c:5d:c4:eb:35:e8:5c:c2:83:26:25:8f:18:80:8e:99:76:dd: 7e:13:f3:03:70:46:3a:33:34:70:df:ce:ae:2a:e7:1d:c8:e3: 0d:5a:52:e7:6c:8f:3d:68:a7:ab:b4:28:8f:a5:03:e3:99:a7: 4a:58:01:1f:15:87:81:6a:7d:33:56:8a:bf:c5:c2:aa:20:50: b2:61:ae:6b:56:d5:3a:be:95:9d:c0:8e:20:68:a4:92:92:20: 99:cb:aa:f6:24:68:08:83:6f:b4:6e:ba:51:fb:4a:bb:d4:07: ff:8d:d6:9f:fb:57:3f:8a:6c:12:f7:ab:cc:4d:a0:be:af:71: 48:2b:0e:51 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICEiEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDA4MjYw NTE4MTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEY5RjQ0QjkzRjNBMTE4 MEM4NzczQjIxRDg2RUU1OUVEQUMwRUU0MEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDcjzrNhy5sD9eyCDT29c/xwjW46mkQpzvLrdCDg3ZOA9bdf+ae ODe0T8M0P0hFxzZAlWQFD55AETzxU+HCLLUJuE8VjYZGxrc5GkybQMMiYFx11i8o n8q6JC4yxlhA2SNDAbb1RP2fCveSOMvsKHDyjOMI1LbjpcfBkDYKi3LfP8H2Qw+O W52uDDo8WG18QfZ1Z+aYFRPGhZpr+cF0a+g9jgUg+QHWpXihqBh1ssAHxPf6j6gB s4T3qgpZoqBEHJkbWVoZ1Mdm71fipXyCxrlGhr6sMMXijJkZLYduKD8tieYfcovR 84OeQqWioODtZEy+PpJNybDUE7eFd7CyTKvHAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQU+fRLk/OhGAyHc7Idhu5Z7awO5A4wHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC8tZlJMa19PaEdBeUhjN0lkaHU1 Wjdhd081QTQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMEAaAw DQYJKoZIhvcNAQELBQADggEBACI1A4EZ13UvtS57sZfPEVBuvzohr8tlPJJ1T2Qg kne0QZd1lGTgUBbvT87jYyb701sf9/tZXv4uoKr0ZKMNeVAXob2nX+Yfb1E4DUvk H94/bVZ+37vl5I1tvN+bauP2wvRZ1Ku6XcdFkVm5gBVwd4q9Pk6C4fTA4HTYEoQo W3xdxOs16FzCgyYljxiAjpl23X4T8wNwRjozNHDfzq4q5x3I4w1aUudsjz1op6u0 KI+lA+OZp0pYAR8Vh4FqfTNWir/FwqogULJhrmtW1Tq+lZ3AjiBopJKSIJnLqvYk aAiDb7RuulH7SrvUB/+N1p/7Vz+KbBL3q8xNoL6vcUgrDlE= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:32 2024 by rpki-client on console-ams.rpki-client.org