$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/8gqb-L7sMa0qCX-7keMd8youNO8.roa File: 8gqb-L7sMa0qCX-7keMd8youNO8.roa (raw, json) Hash identifier: 1krPOU+ambXLV5oD51gMPVo/WHlA6c1QnzJ2Ljshhq0= Subject key identifier: F2:0A:9B:F8:BE:EC:31:AD:2A:09:7F:BB:91:E3:1D:F3:2A:2E:34:EF Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 1730 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/8gqb-L7sMa0qCX-7keMd8youNO8.roa Signing time: Wed 12 Feb 2025 01:36:28 +0000 ROA not before: Wed 12 Feb 2025 01:36:28 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 198949 IP address blocks: 210.242.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 18:06:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5936 (0x1730) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Feb 12 01:36:28 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F20A9BF8BEEC31AD2A097FBB91E31DF32A2E34EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:0c:73:19:c4:72:68:21:dc:93:8b:ef:28:b0: a4:a4:75:86:c7:a5:e2:7a:13:b1:8b:7c:04:54:3f: a4:6c:db:62:10:ad:b8:fd:21:69:c4:1d:03:b4:63: 9d:54:d9:b8:9d:8b:90:03:fa:19:6c:a9:d2:74:f9: cc:64:5d:82:5a:f6:ad:4e:96:5a:61:eb:5e:fb:f7: b0:83:2f:95:69:2e:68:b0:82:09:e0:d9:2b:d5:e5: 07:d0:87:4f:f1:15:2e:25:b0:33:4c:5c:b8:0e:2b: d4:87:86:e5:5e:b5:72:be:f4:d6:5e:d3:dd:b7:65: ed:c5:8e:fa:44:49:6e:04:d4:81:7a:04:65:68:97: c3:1e:7b:29:b1:48:a4:d3:93:c6:1a:1e:57:63:54: c5:d9:dd:31:01:d6:89:38:65:d8:cd:b3:83:4d:6f: 9c:0d:6c:b4:7d:ab:6d:8c:05:ee:8e:d0:6b:bc:55: 76:72:62:a7:39:2f:31:70:41:73:8c:24:49:16:1a: 47:8f:13:54:e9:e8:ed:e0:b1:68:b6:c0:0f:af:51: b7:9a:bb:2d:80:69:c7:9f:94:41:d0:6a:9e:d7:ce: b0:12:13:0a:79:ce:b9:ca:cc:c8:fe:52:6b:3e:15: 29:9c:85:ca:8b:0f:d7:6e:dd:eb:5c:88:a4:36:f2: fe:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:0A:9B:F8:BE:EC:31:AD:2A:09:7F:BB:91:E3:1D:F3:2A:2E:34:EF X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/8gqb-L7sMa0qCX-7keMd8youNO8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.242.123.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:01:fa:71:ab:d5:e2:63:10:8f:2e:dc:9b:07:d7:ad:33:35: 7c:19:4f:64:f7:b1:89:d5:11:ed:9d:f9:40:ec:4f:74:ab:e3: 0e:5f:f4:31:f1:05:40:72:35:78:b4:95:79:ee:9b:24:11:ba: 48:56:79:bd:2e:b2:d9:38:ff:d7:a7:53:80:5c:28:03:4d:45: e7:e0:6d:d7:ef:e9:1a:e6:18:eb:a5:4d:98:68:88:9b:f7:e6: ce:1f:9b:28:84:1c:b7:52:8c:9c:10:ae:f2:3d:c9:c2:d0:4e: f0:60:9c:80:ec:1c:f1:41:4b:37:cb:eb:1d:b7:05:43:a3:35: ce:32:3b:c8:66:34:05:aa:dd:dc:2e:b8:16:59:e5:a1:93:69: 8e:e3:6e:38:08:30:3e:12:b3:1d:b9:68:fc:2a:fd:04:22:39: 0c:d2:39:7d:96:91:71:bb:7e:d8:98:c7:35:89:c6:1e:45:2b: 65:11:80:e5:9a:01:06:f5:0d:12:7f:9b:35:46:f4:40:21:ed: 64:e8:1d:70:f7:c3:55:c0:84:a9:d4:77:af:a7:6a:28:2c:be: 2d:1b:ff:26:83:a6:16:4e:53:cb:25:cd:51:4c:68:cf:cf:36: bb:ea:5a:65:2e:82:90:12:8f:8f:f1:81:f1:c9:4b:4e:ed:19: 24:b4:97:79 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICFzAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTIw MTM2MjhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEYyMEE5QkY4QkVFQzMx QUQyQTA5N0ZCQjkxRTMxREYzMkEyRTM0RUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDkDHMZxHJoIdyTi+8osKSkdYbHpeJ6E7GLfARUP6Rs22IQrbj9 IWnEHQO0Y51U2bidi5AD+hlsqdJ0+cxkXYJa9q1Ollph617797CDL5VpLmiwggng 2SvV5QfQh0/xFS4lsDNMXLgOK9SHhuVetXK+9NZe0923Ze3FjvpESW4E1IF6BGVo l8MeeymxSKTTk8YaHldjVMXZ3TEB1ok4ZdjNs4NNb5wNbLR9q22MBe6O0Gu8VXZy Yqc5LzFwQXOMJEkWGkePE1Tp6O3gsWi2wA+vUbeauy2AaceflEHQap7XzrASEwp5 zrnKzMj+Ums+FSmchcqLD9du3etciKQ28v7TAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU8gqb+L7sMa0qCX+7keMd8youNO8wHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC84Z3FiLUw3c01hMHFDWC03a2VN ZDh5b3VOTzgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA0vJ7 MA0GCSqGSIb3DQEBCwUAA4IBAQA7Afpxq9XiYxCPLtybB9etMzV8GU9k97GJ1RHt nflA7E90q+MOX/Qx8QVAcjV4tJV57pskEbpIVnm9LrLZOP/Xp1OAXCgDTUXn4G3X 7+ka5hjrpU2YaIib9+bOH5sohBy3UoycEK7yPcnC0E7wYJyA7BzxQUs3y+sdtwVD ozXOMjvIZjQFqt3cLrgWWeWhk2mO4244CDA+ErMduWj8Kv0EIjkM0jl9lpFxu37Y mMc1icYeRStlEYDlmgEG9Q0Sf5s1RvRAIe1k6B1w98NVwISp1Hevp2ooLL4tG/8m g6YWTlPLJc1RTGjPzza76lplLoKQEo+P8YHxyUtO7RkktJd5 -----END CERTIFICATE-----Generated at Mon Apr 7 17:49:53 2025 by rpki-client