$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/AuQ-mR-M2SyfsFOLDeYt2ee3apg.roa File: AuQ-mR-M2SyfsFOLDeYt2ee3apg.roa (raw, json) Hash identifier: SusVwCGN1WuAZlJMHh1BUq9BofBLx59K7hm84ZbCIbA= Subject key identifier: 02:E4:3E:99:1F:8C:D9:2C:9F:B0:53:8B:0D:E6:2D:D9:E7:B7:6A:98 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 121F Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/AuQ-mR-M2SyfsFOLDeYt2ee3apg.roa Signing time: Mon 26 Aug 2024 05:18:16 +0000 ROA not before: Mon 26 Aug 2024 05:18:16 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 198949 IP address blocks: 210.242.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 02:24:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4639 (0x121f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 26 05:18:16 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=02E43E991F8CD92C9FB0538B0DE62DD9E7B76A98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:58:33:93:5a:86:90:e2:dc:d4:a1:2f:07:6f: fe:2d:e4:94:0d:30:eb:96:5b:82:11:5a:70:0e:c0: 3c:97:4b:82:21:f3:74:e8:34:e0:e1:85:fc:b7:d8: 80:0d:75:d8:f3:ed:a4:13:f4:7d:ba:92:d4:24:ba: f9:a8:d5:96:27:e5:c1:15:8f:bf:2f:8a:c5:a2:a7: 73:d6:1e:e2:8e:05:46:11:de:ef:71:8e:b7:03:54: 57:e8:fe:2c:13:a2:0d:7c:f3:43:34:e2:4c:0d:4d: 58:aa:cf:23:5d:c6:b1:d5:68:d5:7e:7d:2c:63:17: 85:0e:26:e6:3f:cd:b0:bd:a9:28:c0:c6:68:1e:27: d3:2d:a8:4e:ab:06:a4:18:6c:6e:f5:e2:b8:d7:fe: 53:f5:d7:7d:6f:1a:2a:73:9c:a5:ce:54:aa:2c:5f: 13:8b:fa:62:2f:db:31:4c:bb:4d:e2:4a:82:1f:9c: 4c:7e:7d:64:d8:73:f0:ae:b8:b2:dd:99:b1:78:e5: f0:a9:7f:00:2c:6b:e3:a2:25:7a:5f:78:ad:66:63: d8:98:02:92:05:03:c2:a2:7e:f3:63:a0:6d:9a:85: 11:17:17:1d:fd:56:0d:da:ef:71:af:c3:f4:6d:11: ee:51:65:23:27:b0:00:d1:63:c5:08:c1:2c:09:4d: 5a:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:E4:3E:99:1F:8C:D9:2C:9F:B0:53:8B:0D:E6:2D:D9:E7:B7:6A:98 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/AuQ-mR-M2SyfsFOLDeYt2ee3apg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.242.118.0/24 Signature Algorithm: sha256WithRSAEncryption 57:e8:1b:de:fa:c7:88:f6:97:07:de:de:3d:20:2f:97:28:9d: 01:a6:35:95:43:b2:e6:b1:ca:c6:4a:dc:01:24:73:df:98:b7: 8f:c7:de:eb:51:2c:61:da:2e:7f:ca:b4:a7:12:72:41:af:c6: 74:fc:e9:ba:5a:8e:be:2f:2e:7c:74:38:c0:62:da:9c:df:62: 9f:9f:dc:01:44:e9:64:da:a1:46:a5:d8:6f:94:c0:21:36:88: 94:72:3a:60:6b:59:3f:f1:5b:66:45:82:63:5f:17:cc:de:59: 0a:1e:a5:19:f4:eb:1c:b4:9e:c8:95:06:9b:3f:46:ee:1c:66: 45:3b:37:9f:fe:d2:5f:c3:05:a6:da:4b:64:40:13:94:a3:0d: 44:1c:a5:c0:ef:ff:19:01:e7:97:72:38:ae:2c:89:a4:27:2d: 9b:06:a2:8d:65:4d:5a:01:49:62:85:1a:11:86:d6:e8:83:a6: da:6e:6f:8d:0b:13:db:09:86:fe:c8:db:3a:c6:0b:30:b2:7a: 50:2d:45:02:31:e4:db:a6:db:ca:5a:2d:c8:e4:6d:36:46:52: 7f:92:02:25:8c:67:f5:a6:20:fc:b7:bc:0e:82:31:65:0e:49: e0:c8:5d:f5:89:7e:02:ea:02:54:f0:fb:4a:14:06:c3:f1:d3: 65:f0:1a:67 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICEh8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDA4MjYw NTE4MTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDAyRTQzRTk5MUY4Q0Q5 MkM5RkIwNTM4QjBERTYyREQ5RTdCNzZBOTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCfWDOTWoaQ4tzUoS8Hb/4t5JQNMOuWW4IRWnAOwDyXS4Ih83To NODhhfy32IANddjz7aQT9H26ktQkuvmo1ZYn5cEVj78visWip3PWHuKOBUYR3u9x jrcDVFfo/iwTog1880M04kwNTViqzyNdxrHVaNV+fSxjF4UOJuY/zbC9qSjAxmge J9MtqE6rBqQYbG714rjX/lP1131vGipznKXOVKosXxOL+mIv2zFMu03iSoIfnEx+ fWTYc/CuuLLdmbF45fCpfwAsa+OiJXpfeK1mY9iYApIFA8KifvNjoG2ahREXFx39 Vg3a73Gvw/RtEe5RZSMnsADRY8UIwSwJTVr9AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUAuQ+mR+M2SyfsFOLDeYt2ee3apgwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9BdVEtbVItTTJTeWZzRk9MRGVZ dDJlZTNhcGcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA0vJ2 MA0GCSqGSIb3DQEBCwUAA4IBAQBX6Bve+seI9pcH3t49IC+XKJ0BpjWVQ7LmscrG StwBJHPfmLePx97rUSxh2i5/yrSnEnJBr8Z0/Om6Wo6+Ly58dDjAYtqc32Kfn9wB ROlk2qFGpdhvlMAhNoiUcjpga1k/8VtmRYJjXxfM3lkKHqUZ9OsctJ7IlQabP0bu HGZFOzef/tJfwwWm2ktkQBOUow1EHKXA7/8ZAeeXcjiuLImkJy2bBqKNZU1aAUli hRoRhtbog6babm+NCxPbCYb+yNs6xgswsnpQLUUCMeTbptvKWi3I5G02RlJ/kgIl jGf1piD8t7wOgjFlDkngyF31iX4C6gJU8PtKFAbD8dNl8Bpn -----END CERTIFICATE-----Generated at Sun Nov 24 23:45:32 2024 by rpki-client on console-ams.rpki-client.org