$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/4FG9rjMgGHrnRaRjWXJ5zpVdTvc.roa File: 4FG9rjMgGHrnRaRjWXJ5zpVdTvc.roa (raw, json) Hash identifier: 3byH/a1L615bANwGL7U4Tt/rvmfODC5NxF+T7JKY4aU= Subject key identifier: E0:51:BD:AE:33:20:18:7A:E7:45:A4:63:59:72:79:CE:95:5D:4E:F7 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 1192 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/4FG9rjMgGHrnRaRjWXJ5zpVdTvc.roa Signing time: Mon 26 Aug 2024 05:17:41 +0000 ROA not before: Mon 26 Aug 2024 05:17:41 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 20940 IP address blocks: 2001:b032:104::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 02:24:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4498 (0x1192) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 26 05:17:41 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E051BDAE3320187AE745A463597279CE955D4EF7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:d3:a0:dd:40:5c:eb:1f:36:35:33:1e:6b:fe: 4d:ef:e2:31:2b:2f:10:26:8e:04:7c:47:a7:17:91: db:99:b5:c9:52:36:c2:ad:65:69:b2:2d:75:eb:72: 70:f5:29:d2:88:6d:8a:dc:c5:bc:55:db:c9:d8:eb: 0e:11:27:84:4a:23:44:fb:56:24:f5:0a:34:11:78: eb:20:8c:c2:c4:9d:0a:6e:11:4e:6c:8d:03:06:c2: d6:00:4a:e6:3c:fd:f4:31:59:1e:59:00:19:6e:b1: 39:c1:8e:dd:19:6c:dd:64:4a:ff:b4:dd:cd:c2:ff: 08:91:28:92:c6:71:bf:fc:ec:de:ee:b0:fc:f9:ae: 16:82:43:7a:f7:44:10:3a:31:2b:18:c1:42:81:d2: 2b:6d:83:a8:a5:08:f8:b1:9a:2a:8a:72:6a:76:f7: 3d:2e:eb:c6:d6:fa:51:0e:99:4d:b0:ee:1d:de:db: 82:b4:76:9e:40:46:c1:3b:c8:6d:b0:d8:d5:a1:42: 2f:80:5d:c4:18:d0:7b:db:b2:92:64:7f:24:ca:42: ee:d4:b2:25:8f:92:d7:fe:5d:ca:17:59:a4:8f:d8: c4:ee:90:2d:c2:2c:a8:33:11:a7:94:1e:24:af:89: 46:31:47:ee:86:47:e4:5f:ce:ea:65:22:27:b1:e4: 97:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:51:BD:AE:33:20:18:7A:E7:45:A4:63:59:72:79:CE:95:5D:4E:F7 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/4FG9rjMgGHrnRaRjWXJ5zpVdTvc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:b032:104::/48 Signature Algorithm: sha256WithRSAEncryption 04:04:db:7d:49:aa:ab:47:41:93:b0:23:2e:55:87:77:ce:41: 5a:ea:d1:d6:05:0a:6c:cb:ca:ec:21:0f:16:62:9e:26:c0:6f: 0e:1e:1a:11:bb:14:85:be:d5:bd:4a:38:00:64:b2:83:84:a9: db:87:f9:c7:a9:81:e1:28:13:8c:11:78:c8:77:23:03:a6:b0: 89:31:57:1c:5b:7a:ac:7d:a9:1d:f9:ab:20:da:85:77:82:ad: d8:39:95:5f:47:d5:10:72:d7:d9:14:63:28:f0:fa:11:97:ab: 92:39:0c:a2:4b:2c:f2:4e:29:62:f9:27:86:9b:5e:30:8e:fa: b4:4d:94:a5:de:9b:f7:33:ec:69:6a:dd:06:56:c6:d5:99:ac: 02:0d:25:9f:bc:08:37:40:1f:b3:77:ea:40:71:02:32:2b:17: 0f:ae:d3:8f:d4:07:a3:08:3f:1a:40:a0:20:82:5d:46:b9:f9: 59:fa:3f:e7:42:8a:d0:8a:e2:9d:ce:0f:e3:25:08:0a:8b:d2: 90:09:16:48:59:ab:de:c5:b7:ee:c7:58:3c:4a:59:08:81:03: 55:b8:c9:07:7a:92:2e:da:84:8f:be:b8:73:dd:5e:66:a5:0d: 79:31:d8:05:13:14:66:2b:73:aa:ff:ba:d7:5f:b3:34:74:da: ca:79:b7:55 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICEZIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDA4MjYw NTE3NDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEUwNTFCREFFMzMyMDE4 N0FFNzQ1QTQ2MzU5NzI3OUNFOTU1RDRFRjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC906DdQFzrHzY1Mx5r/k3v4jErLxAmjgR8R6cXkduZtclSNsKt ZWmyLXXrcnD1KdKIbYrcxbxV28nY6w4RJ4RKI0T7ViT1CjQReOsgjMLEnQpuEU5s jQMGwtYASuY8/fQxWR5ZABlusTnBjt0ZbN1kSv+03c3C/wiRKJLGcb/87N7usPz5 rhaCQ3r3RBA6MSsYwUKB0ittg6ilCPixmiqKcmp29z0u68bW+lEOmU2w7h3e24K0 dp5ARsE7yG2w2NWhQi+AXcQY0HvbspJkfyTKQu7UsiWPktf+XcoXWaSP2MTukC3C LKgzEaeUHiSviUYxR+6GR+RfzuplIiex5JcJAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQU4FG9rjMgGHrnRaRjWXJ5zpVdTvcwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC80Rkc5cmpNZ0dIcm5SYVJqV1hK NXpwVmRUdmMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAGw MgEEMA0GCSqGSIb3DQEBCwUAA4IBAQAEBNt9SaqrR0GTsCMuVYd3zkFa6tHWBQps y8rsIQ8WYp4mwG8OHhoRuxSFvtW9SjgAZLKDhKnbh/nHqYHhKBOMEXjIdyMDprCJ MVccW3qsfakd+asg2oV3gq3YOZVfR9UQctfZFGMo8PoRl6uSOQyiSyzyTili+SeG m14wjvq0TZSl3pv3M+xpat0GVsbVmawCDSWfvAg3QB+zd+pAcQIyKxcPrtOP1Aej CD8aQKAggl1GuflZ+j/nQorQiuKdzg/jJQgKi9KQCRZIWavexbfux1g8SlkIgQNV uMkHepIu2oSPvrhz3V5mpQ15MdgFExRmK3Oq/7rXX7M0dNrKebdV -----END CERTIFICATE-----Generated at Fri Nov 22 00:59:09 2024 by rpki-client on console-fra.rpki-client.org