$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/9ZuGiYKAAno84jPVc_pnge9EaE0.roa File: 9ZuGiYKAAno84jPVc_pnge9EaE0.roa (raw, json) Hash identifier: OEurTh3TkCS4liEoV1wWdKrYSmPqNEmjFIJ60NFCEvU= Subject key identifier: F5:9B:86:89:82:80:02:7A:3C:E2:33:D5:73:FA:67:81:EF:44:68:4D Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 11D5 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/9ZuGiYKAAno84jPVc_pnge9EaE0.roa Signing time: Mon 26 Aug 2024 05:17:59 +0000 ROA not before: Mon 26 Aug 2024 05:17:59 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 3462 IP address blocks: 2001:b000::/21 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4565 (0x11d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 26 05:17:59 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F59B86898280027A3CE233D573FA6781EF44684D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:74:5b:f6:06:48:21:fe:e7:1f:a1:3a:6c:96: 84:cc:ee:6c:9e:21:b9:ce:5f:d9:be:35:1d:7c:7b: 77:48:f9:24:9c:5c:85:5d:8c:1e:86:09:55:b9:8a: 97:17:1a:dc:08:c4:30:7a:26:e4:59:5f:63:a1:29: 42:c0:ee:22:c9:12:3f:62:ea:1a:43:e6:98:d2:2f: cd:7c:c7:13:10:b4:6f:c3:20:65:8f:0f:fc:66:b2: 64:96:b5:29:bf:16:32:3e:fe:57:3a:5c:c9:be:d4: a5:93:2e:9b:7a:d4:4e:b5:0a:df:8a:6a:b1:c7:7c: 7b:90:c5:4d:15:21:19:ff:5b:29:9d:3b:a4:b9:58: 0d:fe:2a:37:61:d3:27:c8:49:aa:5c:67:db:e4:8f: 35:53:06:52:68:f0:2c:3e:30:7e:68:7c:e2:b5:bc: 3d:5e:d6:fa:01:3a:80:6c:7a:27:18:b8:71:59:4b: 39:10:e1:0e:ac:6a:e9:b1:d9:b6:37:9b:11:7a:67: 08:34:e7:f9:d1:a1:19:cf:04:c0:0a:0f:2e:27:a8: ed:7c:cf:57:ae:21:f9:87:84:d2:9b:52:0d:f1:a1: 14:92:b1:59:a8:44:e1:c8:d3:72:c8:d8:12:a5:36: 39:1e:d2:ec:fa:e8:02:78:f5:d7:67:07:7f:7b:18: 1f:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:9B:86:89:82:80:02:7A:3C:E2:33:D5:73:FA:67:81:EF:44:68:4D X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/9ZuGiYKAAno84jPVc_pnge9EaE0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:b000::/21 Signature Algorithm: sha256WithRSAEncryption 12:f7:aa:3b:84:a8:37:37:70:50:1c:ca:ce:33:9f:cd:7c:2f: 81:7b:61:9f:9e:a1:f8:32:b4:8d:61:00:24:e0:54:58:0b:b2: 50:85:61:ff:e7:48:0a:b3:a2:0b:68:a4:06:97:0b:a9:f8:d3: 1b:93:af:e2:d9:d0:af:d7:64:c7:dc:a0:bb:49:8f:e7:8a:ee: 67:72:c5:b0:e4:94:c4:09:d6:25:1b:74:e2:69:1e:dd:67:bf: 68:8b:6e:08:3c:00:a6:c7:fb:a0:bf:1c:24:0d:38:f3:2a:47: 15:3b:8f:51:04:c1:ee:bf:7f:32:ee:8a:dc:45:91:a2:4b:a7: c1:13:8c:06:b7:61:71:7d:79:f8:87:e9:75:6f:0e:de:2c:f8: 16:1e:b7:52:e8:21:83:81:3a:d8:30:ae:58:1f:49:36:2a:27: e2:62:09:c5:2a:0a:a8:25:cf:4f:75:5b:6c:e4:84:ce:1e:94: 5b:33:2d:b8:dd:b4:86:13:ac:9b:49:06:96:1e:4d:8a:23:e7: a2:7f:3a:0a:e6:d1:33:0b:0c:c0:24:ae:02:22:da:12:80:1d: 83:dd:67:bb:be:66:cb:34:3d:2b:1c:ab:3f:f9:ec:89:e6:aa: c8:c5:a1:c7:4f:ea:c1:53:03:f4:72:65:46:8b:43:02:c3:b0: 20:0c:21:fc -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICEdUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDA4MjYw NTE3NTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEY1OUI4Njg5ODI4MDAy N0EzQ0UyMzNENTczRkE2NzgxRUY0NDY4NEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDdFv2Bkgh/ucfoTpsloTM7myeIbnOX9m+NR18e3dI+SScXIVd jB6GCVW5ipcXGtwIxDB6JuRZX2OhKULA7iLJEj9i6hpD5pjSL818xxMQtG/DIGWP D/xmsmSWtSm/FjI+/lc6XMm+1KWTLpt61E61Ct+KarHHfHuQxU0VIRn/WymdO6S5 WA3+Kjdh0yfISapcZ9vkjzVTBlJo8Cw+MH5ofOK1vD1e1voBOoBseicYuHFZSzkQ 4Q6saumx2bY3mxF6Zwg05/nRoRnPBMAKDy4nqO18z1euIfmHhNKbUg3xoRSSsVmo ROHI03LI2BKlNjke0uz66AJ49ddnB397GB9RAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU9ZuGiYKAAno84jPVc/pnge9EaE0wHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC85WnVHaVlLQUFubzg0alBWY19w bmdlOUVhRTAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAAjAGAwQDIAGw MA0GCSqGSIb3DQEBCwUAA4IBAQAS96o7hKg3N3BQHMrOM5/NfC+Be2GfnqH4MrSN YQAk4FRYC7JQhWH/50gKs6ILaKQGlwup+NMbk6/i2dCv12TH3KC7SY/niu5ncsWw 5JTECdYlG3TiaR7dZ79oi24IPACmx/ugvxwkDTjzKkcVO49RBMHuv38y7orcRZGi S6fBE4wGt2FxfXn4h+l1bw7eLPgWHrdS6CGDgTrYMK5YH0k2KifiYgnFKgqoJc9P dVts5ITOHpRbMy243bSGE6ybSQaWHk2KI+eifzoK5tEzCwzAJK4CItoSgB2D3We7 vmbLND0rHKs/+eyJ5qrIxaHHT+rBUwP0cmVGi0MCw7AgDCH8 -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:51 2024 by rpki-client on console-fra.rpki-client.org