$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/5vb94-aQe02wZNZ5lcyUYseWlKM.roa File: 5vb94-aQe02wZNZ5lcyUYseWlKM.roa (raw, json) Hash identifier: xYL/k6YB0mI3+mKPoL+l0p7Yh252SGQWz+c66XKhOOg= Subject key identifier: E6:F6:FD:E3:E6:90:7B:4D:B0:64:D6:79:95:CC:94:62:C7:96:94:A3 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 11B1 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/5vb94-aQe02wZNZ5lcyUYseWlKM.roa Signing time: Mon 26 Aug 2024 05:17:49 +0000 ROA not before: Mon 26 Aug 2024 05:17:49 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 20940 IP address blocks: 210.65.144.192/26 maxlen: 26 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 02:24:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4529 (0x11b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 26 05:17:49 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E6F6FDE3E6907B4DB064D67995CC9462C79694A3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:78:11:05:fa:1d:9d:9e:e7:3d:94:fe:6b:81: a1:e3:1f:82:69:17:66:98:b8:8a:36:25:f2:79:3a: 3f:53:11:e1:ca:ae:b9:ff:39:af:6e:0a:39:18:80: 1e:35:fe:cd:d8:1f:1e:10:89:8f:53:8d:80:5c:86: 5c:a0:13:56:bf:b1:c5:f9:f1:0f:ca:dc:42:50:bf: ae:20:77:38:64:20:41:54:59:e5:37:5d:f5:fd:b2: c7:8c:17:a2:d7:d4:b8:3c:c5:59:7c:72:32:6b:b1: f1:52:88:e3:fa:a6:54:ce:fe:31:20:87:b6:11:51: a5:09:16:cf:e1:64:df:c6:af:76:e1:3e:8a:6c:66: a9:10:8e:1b:7c:ca:e5:a7:50:be:e7:06:3d:95:17: ca:b1:9e:9a:c9:f8:5c:7e:86:00:db:a9:6e:7e:39: 7c:df:80:fa:20:2c:f0:ef:da:aa:bf:d7:03:1e:a7: 95:c8:2a:17:04:6c:43:79:9d:ce:50:88:d6:ce:92: a3:e9:8d:37:6a:4e:bc:e9:9f:95:c8:a5:c0:c9:26: 85:45:fa:3b:75:ee:c9:10:82:41:75:bf:00:1c:02: 4b:b6:13:ed:5e:6c:c4:0d:60:bb:5a:7d:e4:19:27: 16:b7:b9:ca:1f:7d:7b:67:d2:e4:3c:3e:d3:39:e3: 48:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:F6:FD:E3:E6:90:7B:4D:B0:64:D6:79:95:CC:94:62:C7:96:94:A3 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/5vb94-aQe02wZNZ5lcyUYseWlKM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.65.144.192/26 Signature Algorithm: sha256WithRSAEncryption cc:29:d7:b0:7f:90:0b:ae:a7:e8:31:8b:db:a9:0c:63:68:27: 5d:80:1f:4b:57:36:01:57:b2:83:0d:63:af:0b:d9:7e:a3:c9: 9f:9b:a8:6c:2f:00:33:4b:b9:76:33:2d:c6:bf:3e:66:5e:0e: 89:26:41:41:93:c0:c3:2f:7b:44:b8:ec:95:f0:eb:fc:b2:a2: 2e:21:0c:19:86:d4:2a:29:a1:e7:d1:58:b4:d9:6c:60:30:83: 2e:b5:95:7e:50:c7:cb:43:1b:96:d7:36:a6:ce:72:d5:c0:e8: f6:99:39:e7:01:89:c9:1d:b1:3f:33:ab:90:57:f1:33:61:12: 60:55:d0:06:37:a8:e0:dd:c0:b1:e0:fc:3f:02:95:49:4b:f1: f5:09:25:09:75:51:61:d0:07:cd:c1:7b:b9:ad:6d:a7:a7:3d: e4:b8:f3:61:a6:b7:57:bd:12:af:c1:26:40:4e:3b:26:ff:80: b9:22:ff:47:bb:ca:f4:05:6c:cf:53:5e:ff:47:e1:e5:4c:67: 9b:bd:a4:f0:52:8d:26:13:bf:22:d3:e0:0b:1c:11:5e:d7:a6: cc:ee:95:51:44:72:7f:6b:60:a3:3d:a4:59:60:60:56:d3:37: cc:2b:21:aa:66:52:7b:36:ff:02:08:fc:52:e6:ff:e0:e6:77: 54:86:c5:05 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICEbEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDA4MjYw NTE3NDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEU2RjZGREUzRTY5MDdC NERCMDY0RDY3OTk1Q0M5NDYyQzc5Njk0QTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOeBEF+h2dnuc9lP5rgaHjH4JpF2aYuIo2JfJ5Oj9TEeHKrrn/ Oa9uCjkYgB41/s3YHx4QiY9TjYBchlygE1a/scX58Q/K3EJQv64gdzhkIEFUWeU3 XfX9sseMF6LX1Lg8xVl8cjJrsfFSiOP6plTO/jEgh7YRUaUJFs/hZN/Gr3bhPops ZqkQjht8yuWnUL7nBj2VF8qxnprJ+Fx+hgDbqW5+OXzfgPogLPDv2qq/1wMep5XI KhcEbEN5nc5QiNbOkqPpjTdqTrzpn5XIpcDJJoVF+jt17skQgkF1vwAcAku2E+1e bMQNYLtafeQZJxa3ucoffXtn0uQ8PtM540jtAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQU5vb94+aQe02wZNZ5lcyUYseWlKMwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC81dmI5NC1hUWUwMndaTlo1bGN5 VVlzZVdsS00ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAATAHAwUG0kGQ wDANBgkqhkiG9w0BAQsFAAOCAQEAzCnXsH+QC66n6DGL26kMY2gnXYAfS1c2AVey gw1jrwvZfqPJn5uobC8AM0u5djMtxr8+Zl4OiSZBQZPAwy97RLjslfDr/LKiLiEM GYbUKimh59FYtNlsYDCDLrWVflDHy0Mbltc2ps5y1cDo9pk55wGJyR2xPzOrkFfx M2ESYFXQBjeo4N3AseD8PwKVSUvx9QklCXVRYdAHzcF7ua1tp6c95LjzYaa3V70S r8EmQE47Jv+AuSL/R7vK9AVsz1Ne/0fh5Uxnm72k8FKNJhO/ItPgCxwRXtemzO6V UURyf2tgoz2kWWBgVtM3zCshqmZSezb/Agj8Uub/4OZ3VIbFBQ== -----END CERTIFICATE-----Generated at Fri Nov 22 00:59:09 2024 by rpki-client on console-fra.rpki-client.org