$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/7nPeezVXnJuCAAgcahJiCdwUlng.roa File: 7nPeezVXnJuCAAgcahJiCdwUlng.roa (raw, json) Hash identifier: +gNtpnl1/T7CdAl3VAeUUfu3ehO0w7ZY9fKfCiM8fqg= Subject key identifier: EE:73:DE:7B:35:57:9C:9B:82:00:08:1C:6A:12:62:09:DC:14:96:78 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 121D Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/7nPeezVXnJuCAAgcahJiCdwUlng.roa Signing time: Mon 26 Aug 2024 05:18:16 +0000 ROA not before: Mon 26 Aug 2024 05:18:16 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 3462 IP address blocks: 203.66.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4637 (0x121d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 26 05:18:16 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=EE73DE7B35579C9B8200081C6A126209DC149678 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a5:ff:8b:eb:7c:7c:ad:56:0b:96:64:04:82: 46:5f:22:dc:f5:e8:8d:d3:f4:b5:9e:27:45:43:6b: 68:4a:96:62:ca:dc:70:39:ee:11:6d:e6:13:61:91: 61:f7:83:bd:74:af:c7:71:6d:64:dc:6a:42:99:af: f1:d5:b5:7c:46:0b:2c:36:5a:7b:bd:93:40:61:89: 4a:11:98:b0:22:3d:71:68:7d:10:ae:63:65:72:ca: 78:71:e3:f1:9f:aa:d5:c4:cf:ad:df:93:d7:5b:0d: 1a:3b:02:70:7c:ae:b7:3d:d3:77:0e:a4:54:f6:4a: b8:b4:cb:26:3e:97:45:e0:6b:c6:11:fb:f7:d7:88: 57:73:2b:73:0b:cc:13:65:1b:d9:9c:a2:d6:3f:37: 1a:ed:3f:4b:f4:83:01:22:b2:e8:e4:0d:ec:ea:3d: fd:ff:2c:9f:e8:18:49:6f:19:6a:41:59:9d:22:12: 32:23:01:7c:51:0e:28:e5:8a:bc:19:e6:d7:ae:36: d1:58:86:c9:1e:50:f6:3d:da:36:c1:e6:0e:22:95: ff:ce:ab:6b:ed:17:03:b5:45:54:5d:09:24:0e:0f: de:08:12:a6:c7:22:f5:24:90:ee:b2:21:52:31:91: 7f:90:03:8a:63:c8:16:8f:aa:b8:0f:53:68:d7:7e: 5d:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:73:DE:7B:35:57:9C:9B:82:00:08:1C:6A:12:62:09:DC:14:96:78 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/7nPeezVXnJuCAAgcahJiCdwUlng.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.66.0.0/16 Signature Algorithm: sha256WithRSAEncryption a5:77:75:9b:93:1b:57:02:f4:73:8e:00:cf:e2:00:b2:b6:d0: 57:c8:80:f1:b6:36:c6:ca:51:e7:9e:25:45:30:cc:ee:24:b5: e7:b1:32:96:e5:52:20:64:1f:31:c4:4e:55:5e:e9:c6:4d:09: c1:4e:3f:52:98:d7:a1:4c:5b:ac:74:ec:81:11:16:b0:1f:aa: 94:54:b4:6b:a7:55:94:b8:6d:d3:d9:47:ac:f9:af:21:a2:2d: af:f5:ac:e0:b5:f0:4a:7d:70:4c:df:18:b3:6e:e4:ac:e8:5e: 8a:85:7f:f0:7c:f4:e7:95:60:2f:ef:2d:78:14:07:4b:8f:0e: 57:9e:b4:49:9d:53:5a:2d:d2:b6:99:c3:2e:1c:02:12:a2:28: ed:11:c2:02:54:d4:7f:13:50:c3:ed:38:8b:e7:0b:88:7d:e8: c6:7a:60:a8:43:f5:c7:0d:cb:4a:2f:e8:bb:bf:e1:c0:34:ad: ac:56:c3:11:d3:95:76:45:5d:42:25:de:07:a2:30:01:1c:1e: d2:20:33:dd:69:f3:d5:b4:d6:4d:2f:7a:20:e9:e4:2c:5b:63: 9c:68:d8:c9:52:df:05:df:5b:f0:7a:9d:91:2b:c9:e4:ce:c1: f6:da:51:ac:fe:3d:4e:92:67:2d:f6:95:a3:e9:9b:94:46:66: 7a:04:a1:54 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICEh0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDA4MjYw NTE4MTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEVFNzNERTdCMzU1NzlD OUI4MjAwMDgxQzZBMTI2MjA5REMxNDk2NzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKpf+L63x8rVYLlmQEgkZfItz16I3T9LWeJ0VDa2hKlmLK3HA5 7hFt5hNhkWH3g710r8dxbWTcakKZr/HVtXxGCyw2Wnu9k0BhiUoRmLAiPXFofRCu Y2Vyynhx4/GfqtXEz63fk9dbDRo7AnB8rrc903cOpFT2Sri0yyY+l0Xga8YR+/fX iFdzK3MLzBNlG9mcotY/NxrtP0v0gwEisujkDezqPf3/LJ/oGElvGWpBWZ0iEjIj AXxRDijlirwZ5teuNtFYhskeUPY92jbB5g4ilf/Oq2vtFwO1RVRdCSQOD94IEqbH IvUkkO6yIVIxkX+QA4pjyBaPqrgPU2jXfl3zAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQU7nPeezVXnJuCAAgcahJiCdwUlngwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC83blBlZXpWWG5KdUNBQWdjYWhK aUNkd1Vsbmcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAy0Iw DQYJKoZIhvcNAQELBQADggEBAKV3dZuTG1cC9HOOAM/iALK20FfIgPG2NsbKUeee JUUwzO4kteexMpblUiBkHzHETlVe6cZNCcFOP1KY16FMW6x07IERFrAfqpRUtGun VZS4bdPZR6z5ryGiLa/1rOC18Ep9cEzfGLNu5KzoXoqFf/B89OeVYC/vLXgUB0uP DleetEmdU1ot0raZwy4cAhKiKO0RwgJU1H8TUMPtOIvnC4h96MZ6YKhD9ccNy0ov 6Lu/4cA0raxWwxHTlXZFXUIl3geiMAEcHtIgM91p89W01k0veiDp5CxbY5xo2MlS 3wXfW/B6nZEryeTOwfbaUaz+PU6SZy32laPpm5RGZnoEoVQ= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:51 2024 by rpki-client on console-fra.rpki-client.org