$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/BepHNxMSKfSBLYBZmuVqEFsr828.roa File: BepHNxMSKfSBLYBZmuVqEFsr828.roa (raw, json) Hash identifier: 7VE9TnOrFZsRirwrC6zAzL5hxdoAXhcOZury7unY6DQ= Subject key identifier: 05:EA:47:37:13:12:29:F4:81:2D:80:59:9A:E5:6A:10:5B:2B:F3:6F Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 11D6 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/BepHNxMSKfSBLYBZmuVqEFsr828.roa Signing time: Mon 26 Aug 2024 05:17:59 +0000 ROA not before: Mon 26 Aug 2024 05:17:59 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9505 IP address blocks: 220.128.48.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4566 (0x11d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 26 05:17:59 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=05EA4737131229F4812D80599AE56A105B2BF36F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:e3:05:40:9f:8c:be:9d:90:49:80:23:28:46: 01:c4:bf:dd:0a:dd:5f:a5:ca:0d:c4:16:56:f1:cb: e2:39:47:19:d3:43:8b:49:40:60:ec:34:2d:0e:84: 0f:60:bd:14:2e:71:64:1b:1c:77:4d:1f:aa:f7:fe: f3:39:ab:47:30:e8:0c:dc:ba:d6:46:c7:0e:5c:d6: ba:6a:90:0a:55:e1:6b:c3:fa:19:c0:c1:d1:3e:8d: 2c:af:8e:3a:aa:d7:b5:88:77:ac:de:8f:c1:a3:35: 0a:f9:3d:33:b6:b4:ff:5a:8a:0f:a9:e8:64:7a:aa: 83:8d:a2:92:8e:3d:49:74:4b:60:e4:a7:40:dc:4e: 9d:21:8a:6c:b4:f7:c9:53:f2:1d:c4:7e:29:e3:3a: 91:f4:b8:fa:06:37:c5:27:09:c3:c8:d0:51:c2:20: 10:27:be:99:6a:32:e4:f8:ac:1c:38:29:d7:1c:2f: 5f:e8:dc:5e:f6:1f:6d:2a:10:a4:33:40:0b:74:08: 8c:3b:53:a6:b1:1a:89:77:90:23:93:b4:10:0d:dd: a4:56:92:b1:54:42:b6:81:1a:bf:f4:8d:35:c9:73: 46:b7:3f:05:c7:5a:8d:f8:7e:bd:75:e4:23:47:7b: 81:98:c1:05:92:f0:bc:bd:18:79:31:7d:07:e8:a7: 75:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:EA:47:37:13:12:29:F4:81:2D:80:59:9A:E5:6A:10:5B:2B:F3:6F X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/BepHNxMSKfSBLYBZmuVqEFsr828.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 220.128.48.0/21 Signature Algorithm: sha256WithRSAEncryption 81:d0:11:4e:ad:92:bb:f2:f3:49:e6:b9:54:3a:f2:c4:1b:3a: 4f:7b:a6:2a:04:68:d0:3c:6b:4b:00:86:5c:1d:81:09:41:6d: 4a:df:56:4e:bf:9b:09:8c:f4:78:c3:1e:da:e1:06:10:b1:61: cf:09:8c:37:e5:ab:a9:dc:64:31:92:e5:1e:1e:de:5c:eb:04: 7c:09:f8:0a:3c:a3:ea:e5:1e:74:3f:e1:c4:da:98:34:df:4d: 1a:67:74:d3:11:05:51:01:db:e4:26:89:43:24:79:ef:e0:9d: a1:c9:ef:f4:4d:73:ec:8a:52:b9:a2:a2:ed:bb:2a:aa:a1:23: 40:7a:1a:96:68:c6:46:a9:9c:ab:cf:50:c9:3a:85:83:10:de: 8d:90:12:11:92:b9:f6:b1:3f:62:bd:a3:5b:e2:45:c6:71:c1: c1:7b:bc:30:c6:7c:b4:12:3a:68:23:ee:2e:fb:a3:a4:2a:be: ae:ac:9e:4b:99:20:59:3c:60:4d:7b:03:ee:0b:06:e5:da:4f: a7:b8:36:3f:e8:b7:9c:da:6f:6f:d5:e9:dc:4c:b7:ad:12:06: 83:c2:6d:26:3f:2e:23:92:b2:2c:31:95:b3:d0:08:80:a5:08: 9b:5c:30:76:58:ac:c4:34:f8:63:6c:96:e5:1c:22:36:d2:c3: 90:0d:96:f6 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICEdYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDA4MjYw NTE3NTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDA1RUE0NzM3MTMxMjI5 RjQ4MTJEODA1OTlBRTU2QTEwNUIyQkYzNkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDU4wVAn4y+nZBJgCMoRgHEv90K3V+lyg3EFlbxy+I5RxnTQ4tJ QGDsNC0OhA9gvRQucWQbHHdNH6r3/vM5q0cw6AzcutZGxw5c1rpqkApV4WvD+hnA wdE+jSyvjjqq17WId6zej8GjNQr5PTO2tP9aig+p6GR6qoONopKOPUl0S2Dkp0Dc Tp0himy098lT8h3EfinjOpH0uPoGN8UnCcPI0FHCIBAnvplqMuT4rBw4KdccL1/o 3F72H20qEKQzQAt0CIw7U6axGol3kCOTtBAN3aRWkrFUQraBGr/0jTXJc0a3PwXH Wo34fr115CNHe4GYwQWS8Ly9GHkxfQfop3WlAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUBepHNxMSKfSBLYBZmuVqEFsr828wHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9CZXBITnhNU0tmU0JMWUJabXVW cUVGc3I4Mjgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQD3IAw MA0GCSqGSIb3DQEBCwUAA4IBAQCB0BFOrZK78vNJ5rlUOvLEGzpPe6YqBGjQPGtL AIZcHYEJQW1K31ZOv5sJjPR4wx7a4QYQsWHPCYw35aup3GQxkuUeHt5c6wR8CfgK PKPq5R50P+HE2pg0300aZ3TTEQVRAdvkJolDJHnv4J2hye/0TXPsilK5oqLtuyqq oSNAehqWaMZGqZyrz1DJOoWDEN6NkBIRkrn2sT9ivaNb4kXGccHBe7wwxny0Ejpo I+4u+6OkKr6urJ5LmSBZPGBNewPuCwbl2k+nuDY/6Lec2m9v1encTLetEgaDwm0m Py4jkrIsMZWz0AiApQibXDB2WKzENPhjbJblHCI20sOQDZb2 -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:32 2024 by rpki-client on console-ams.rpki-client.org