$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/0IGKCXD3ZlJVKEAlH2Gu16Zzw2g.roa File: 0IGKCXD3ZlJVKEAlH2Gu16Zzw2g.roa (raw, json) Hash identifier: fly1vqwiMGElrFweU9fzJ/Wfqkg1GHj0PbHh6gNhuhA= Subject key identifier: D0:81:8A:09:70:F7:66:52:55:28:40:25:1F:61:AE:D7:A6:73:C3:68 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 1199 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/0IGKCXD3ZlJVKEAlH2Gu16Zzw2g.roa Signing time: Mon 26 Aug 2024 05:17:42 +0000 ROA not before: Mon 26 Aug 2024 05:17:42 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17714 IP address blocks: 203.78.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4505 (0x1199) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 26 05:17:42 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D0818A0970F76652552840251F61AED7A673C368 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fc:49:8d:b5:74:a0:bb:3a:5f:ab:f8:32:29:ff: 1c:8a:f7:a1:b5:f3:9c:a5:d7:aa:6e:12:4b:b8:c1: 8c:70:03:59:6a:5c:b2:1d:0e:0c:11:a5:17:a8:70: 9d:56:95:47:81:be:0e:81:8d:80:93:bb:c2:0f:ee: 61:6e:08:23:e1:fa:0c:ae:38:6f:84:94:c1:ac:75: bf:75:39:9c:d6:ca:ca:8a:9d:9d:27:21:b4:e8:84: c0:5a:e0:13:4a:f1:3b:55:33:15:2f:2c:0b:fe:86: 4a:4c:0f:56:86:c3:8a:de:5a:8a:51:6c:ec:e4:76: 2c:49:1c:d6:7e:52:2f:ae:6f:a5:45:88:77:a8:dd: e0:e6:98:24:bc:59:3d:40:ca:2c:7b:25:42:6d:6f: 4c:ef:b0:f0:3d:02:c8:93:33:f5:0b:bb:72:fd:76: ed:0d:87:09:02:bd:23:a3:05:f8:fb:41:cc:8a:9a: bd:e9:81:49:43:18:8e:4f:e7:83:82:95:ee:81:98: ce:96:33:7c:d7:fb:92:6d:42:12:1e:c5:94:2d:96: 4b:9b:5a:a8:c7:f5:ed:36:e5:54:b4:05:05:af:40: 46:6b:50:6c:a2:bc:f3:69:4b:b7:90:ab:35:98:fb: 97:33:6f:ab:bb:d0:cf:8f:57:6f:be:45:6c:a8:08: c5:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:81:8A:09:70:F7:66:52:55:28:40:25:1F:61:AE:D7:A6:73:C3:68 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/0IGKCXD3ZlJVKEAlH2Gu16Zzw2g.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.78.190.0/24 Signature Algorithm: sha256WithRSAEncryption 85:1c:26:76:ea:9d:6d:f8:ca:98:52:f1:8c:b6:bf:d7:f0:54: 91:e1:f8:7a:66:cb:65:a8:35:14:cc:47:e3:3a:f3:66:3b:6b: 0d:14:07:9b:0e:c3:cf:d0:48:12:a8:de:e5:8a:50:56:93:d1: a6:e2:9f:ea:62:3b:bc:6c:6a:d5:84:e6:64:00:d8:c5:43:f1: 39:f1:8d:3e:c7:9b:6d:ae:85:28:7c:8d:b0:2b:f2:31:1f:67: c9:ae:ea:60:b6:ae:07:95:88:05:da:f4:1f:b0:25:a0:e4:aa: 9e:71:c8:11:35:0f:87:92:a4:09:1e:a6:52:0f:c2:cc:4c:d6: ee:0f:86:dc:99:9c:94:76:41:22:e1:d2:a2:5f:0a:7b:eb:12: 72:3d:ad:1f:9b:ba:bd:28:e7:11:b8:17:4f:e0:2c:e1:a8:76: 19:d6:6e:2e:55:d0:b8:3b:5b:a1:f0:cc:1e:01:10:91:4f:ab: de:a6:e6:5d:e1:cd:cc:f8:cd:b5:05:64:87:e1:09:1c:0e:a3: cc:fd:a9:ae:d1:b4:a4:fc:c1:40:76:57:f1:d9:f8:0a:c5:88: 1f:36:19:b0:2b:6b:2f:5b:8a:ec:68:86:c8:95:33:66:ee:d5: 9a:89:d1:64:41:b2:5a:e6:77:d2:13:cf:5a:b9:e0:10:e3:35: ea:6f:7f:5f -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICEZkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDA4MjYw NTE3NDJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQwODE4QTA5NzBGNzY2 NTI1NTI4NDAyNTFGNjFBRUQ3QTY3M0MzNjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD8SY21dKC7Ol+r+DIp/xyK96G185yl16puEku4wYxwA1lqXLId DgwRpReocJ1WlUeBvg6BjYCTu8IP7mFuCCPh+gyuOG+ElMGsdb91OZzWysqKnZ0n IbTohMBa4BNK8TtVMxUvLAv+hkpMD1aGw4reWopRbOzkdixJHNZ+Ui+ub6VFiHeo 3eDmmCS8WT1Ayix7JUJtb0zvsPA9AsiTM/ULu3L9du0NhwkCvSOjBfj7QcyKmr3p gUlDGI5P54OCle6BmM6WM3zX+5JtQhIexZQtlkubWqjH9e025VS0BQWvQEZrUGyi vPNpS7eQqzWY+5czb6u70M+PV2++RWyoCMUjAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU0IGKCXD3ZlJVKEAlH2Gu16Zzw2gwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC8wSUdLQ1hEM1psSlZLRUFsSDJH dTE2Wnp3Mmcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy06+ MA0GCSqGSIb3DQEBCwUAA4IBAQCFHCZ26p1t+MqYUvGMtr/X8FSR4fh6ZstlqDUU zEfjOvNmO2sNFAebDsPP0EgSqN7lilBWk9Gm4p/qYju8bGrVhOZkANjFQ/E58Y0+ x5ttroUofI2wK/IxH2fJrupgtq4HlYgF2vQfsCWg5KqeccgRNQ+HkqQJHqZSD8LM TNbuD4bcmZyUdkEi4dKiXwp76xJyPa0fm7q9KOcRuBdP4CzhqHYZ1m4uVdC4O1uh 8MweARCRT6vepuZd4c3M+M21BWSH4QkcDqPM/amu0bSk/MFAdlfx2fgKxYgfNhmw K2svW4rsaIbIlTNm7tWaidFkQbJa5nfSE89aueAQ4zXqb39f -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:32 2024 by rpki-client on console-ams.rpki-client.org