$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/0BPG5pLn6zaN3SqrMGeXEUMaDYw.roa File: 0BPG5pLn6zaN3SqrMGeXEUMaDYw.roa (raw, json) Hash identifier: BkSmkW0zwj09FsV4sGtUbJftjQygE9ZtxaZ3VOuTUZc= Subject key identifier: D0:13:C6:E6:92:E7:EB:36:8D:DD:2A:AB:30:67:97:11:43:1A:0D:8C Certificate issuer: /CN=5876E4B8DFAA224C019D246931FC3CD7A4FEED2A Certificate serial: 0D28 Authority key identifier: 58:76:E4:B8:DF:AA:22:4C:01:9D:24:69:31:FC:3C:D7:A4:FE:ED:2A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WHbkuN-qIkwBnSRpMfw816T-7So.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/0BPG5pLn6zaN3SqrMGeXEUMaDYw.roa Signing time: Mon 26 Aug 2024 05:17:37 +0000 ROA not before: Mon 26 Aug 2024 05:17:37 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131660 IP address blocks: 168.95.245.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WHbkuN-qIkwBnSRpMfw816T-7So.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WHbkuN-qIkwBnSRpMfw816T-7So.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/WHbkuN-qIkwBnSRpMfw816T-7So.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3368 (0xd28) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5876E4B8DFAA224C019D246931FC3CD7A4FEED2A Validity Not Before: Aug 26 05:17:37 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D013C6E692E7EB368DDD2AAB30679711431A0D8C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b0:de:b8:15:7b:d8:f7:68:27:53:89:3e:ed: 51:e8:4b:2f:36:b4:30:bc:06:00:e7:09:8f:45:79: 74:5f:e5:26:c6:65:f1:b2:8b:fb:5c:19:22:f2:5e: 45:07:01:a8:5f:d3:66:24:e9:fe:df:8b:47:f1:04: b1:99:2c:89:ee:20:06:62:19:05:36:7f:f1:bc:93: a9:9a:34:63:7a:13:d4:69:8b:14:c9:c8:d0:8a:1f: 6b:9d:e6:5c:08:07:d1:9b:75:47:fd:81:81:04:c7: 33:ee:84:b1:bc:c0:5f:47:58:6c:77:26:8c:2a:92: 3a:dd:a8:10:b6:51:64:42:1c:6d:74:cc:8b:65:3f: 1d:52:ef:70:af:99:21:16:7d:b7:ba:5a:42:5c:f5: 2c:7d:c8:b0:9a:84:5d:5b:eb:05:fd:08:eb:eb:4f: e4:9d:ed:e5:ef:96:e8:55:2f:2d:56:86:2c:19:dd: 36:e1:2c:20:e3:dd:21:ba:12:bb:62:a7:04:99:24: 64:a1:bd:66:ca:a5:06:94:be:e0:bb:91:dd:f2:3a: 83:cb:47:31:d7:82:51:35:12:57:88:b7:03:3e:49: 8b:d7:c8:a8:fc:6a:e5:cc:af:99:1a:bb:be:00:6b: a1:71:e4:ec:7c:a5:3e:37:e0:de:3a:3c:8e:be:df: 77:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:13:C6:E6:92:E7:EB:36:8D:DD:2A:AB:30:67:97:11:43:1A:0D:8C X509v3 Authority Key Identifier: keyid:58:76:E4:B8:DF:AA:22:4C:01:9D:24:69:31:FC:3C:D7:A4:FE:ED:2A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WHbkuN-qIkwBnSRpMfw816T-7So.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WHbkuN-qIkwBnSRpMfw816T-7So.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/0BPG5pLn6zaN3SqrMGeXEUMaDYw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 168.95.245.0/24 Signature Algorithm: sha256WithRSAEncryption 21:32:c1:94:ff:9a:46:67:02:0f:1e:fa:24:e0:c9:ac:9b:6c: 91:b0:34:98:bd:ec:7b:57:db:1e:c9:5d:76:67:9c:f2:58:73: 45:2a:88:b2:99:8a:74:3e:80:5d:12:04:ad:8f:91:3f:4a:9f: e9:59:2c:3f:0c:94:55:6b:3e:f9:3c:59:39:45:9b:2c:00:ab: d9:3d:06:10:1c:8d:43:7a:cb:73:08:52:8c:d2:7d:43:9f:86: df:58:af:16:18:fe:4b:f9:d5:d9:09:4e:81:a0:4f:dd:11:73: 73:b3:51:b9:b3:bb:20:91:bc:8c:97:26:ac:37:d3:c4:b5:ff: a8:c3:31:9d:15:58:02:ad:e9:56:3a:be:26:2b:00:1d:3a:b8: c8:15:02:b7:6a:eb:b6:af:dc:7f:ec:f6:ef:d6:ae:06:d2:2f: 10:1a:ce:b8:a8:f6:2a:c3:c8:9b:39:78:3a:33:c5:88:f5:ea: 19:7d:c4:1a:39:cf:bc:29:0f:82:bd:27:22:89:00:d6:87:45: 86:77:bc:11:68:61:7e:ef:32:0b:c1:9d:75:a2:cb:37:4b:96: 82:b4:cd:65:b0:38:31:21:9c:d2:e4:6b:1d:3b:c1:78:55:70: b3:9a:8f:a6:bf:8d:c6:91:87:72:ee:2d:61:eb:cf:49:71:f5: cf:64:e3:76 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDSgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTg3 NkU0QjhERkFBMjI0QzAxOUQyNDY5MzFGQzNDRDdBNEZFRUQyQTAeFw0yNDA4MjYw NTE3MzdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQwMTNDNkU2OTJFN0VC MzY4REREMkFBQjMwNjc5NzExNDMxQTBEOEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9sN64FXvY92gnU4k+7VHoSy82tDC8BgDnCY9FeXRf5SbGZfGy i/tcGSLyXkUHAahf02Yk6f7fi0fxBLGZLInuIAZiGQU2f/G8k6maNGN6E9RpixTJ yNCKH2ud5lwIB9GbdUf9gYEExzPuhLG8wF9HWGx3JowqkjrdqBC2UWRCHG10zItl Px1S73CvmSEWfbe6WkJc9Sx9yLCahF1b6wX9COvrT+Sd7eXvluhVLy1WhiwZ3Tbh LCDj3SG6ErtipwSZJGShvWbKpQaUvuC7kd3yOoPLRzHXglE1EleItwM+SYvXyKj8 auXMr5kau74Aa6Fx5Ox8pT434N46PI6+33enAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU0BPG5pLn6zaN3SqrMGeXEUMaDYwwHwYDVR0jBBgwFoAUWHbkuN+qIkwBnSRp Mfw816T+7SowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv V0hia3VOLXFJa3dCblNScE1mdzgxNlQtN1NvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9XSGJrdU4tcUlrd0JuU1JwTWZ3ODE2VC03U28uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC8wQlBHNXBMbjZ6YU4zU3FyTUdl WEVVTWFEWXcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAqF/1 MA0GCSqGSIb3DQEBCwUAA4IBAQAhMsGU/5pGZwIPHvok4Mmsm2yRsDSYvex7V9se yV12Z5zyWHNFKoiymYp0PoBdEgStj5E/Sp/pWSw/DJRVaz75PFk5RZssAKvZPQYQ HI1DestzCFKM0n1Dn4bfWK8WGP5L+dXZCU6BoE/dEXNzs1G5s7sgkbyMlyasN9PE tf+owzGdFVgCrelWOr4mKwAdOrjIFQK3auu2r9x/7Pbv1q4G0i8QGs64qPYqw8ib OXg6M8WI9eoZfcQaOc+8KQ+CvSciiQDWh0WGd7wRaGF+7zILwZ11oss3S5aCtM1l sDgxIZzS5GsdO8F4VXCzmo+mv43GkYdy7i1h689JcfXPZON2 -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:51 2024 by rpki-client on console-fra.rpki-client.org