$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/DBs4_QOrmqAUMrMnCJg27AcJ65A.roa File: DBs4_QOrmqAUMrMnCJg27AcJ65A.roa (raw, json) Hash identifier: qcSsS5/SJbvGPZtHYsuKmNlL/ZMJlFo75EnkxrAM09Q= Subject key identifier: 0C:1B:38:FD:03:AB:9A:A0:14:32:B3:27:08:98:36:EC:07:09:EB:90 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 1210 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/DBs4_QOrmqAUMrMnCJg27AcJ65A.roa Signing time: Mon 26 Aug 2024 05:18:12 +0000 ROA not before: Mon 26 Aug 2024 05:18:12 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 142005 IP address blocks: 210.242.123.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4624 (0x1210) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 26 05:18:12 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=0C1B38FD03AB9AA01432B327089836EC0709EB90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:c6:3c:06:a2:e2:09:87:90:fc:c7:db:e4:d9: 35:47:f0:19:d6:5c:70:19:4b:93:54:c5:65:2e:24: f0:b0:27:90:a4:26:de:4e:db:ac:1b:8f:35:d1:53: 35:a7:fb:ae:02:2b:02:1b:05:34:ec:00:4b:89:94: 71:85:ff:4c:2a:12:1d:35:78:7f:70:85:27:6e:22: 9c:1f:d7:30:9e:26:44:86:9a:89:9f:73:cb:8d:f6: a1:a2:2a:25:5e:2f:8a:13:3a:72:a6:0e:2b:e4:d4: c7:17:fd:b9:2e:07:ae:95:c3:1a:1d:9e:ce:4c:62: 76:0e:57:30:79:68:87:e7:37:05:55:5f:df:78:83: 28:1b:84:c1:72:1f:75:63:30:be:2d:b3:a6:48:a1: 71:55:66:61:ea:4b:ed:2c:15:e9:d4:2d:f0:ac:12: 14:3d:1c:64:0b:3c:b3:bb:e2:f3:07:16:96:41:76: 02:36:48:1f:64:0b:40:63:6c:e8:e6:68:11:22:87: 4e:61:38:51:96:c7:2e:cd:b8:b2:99:cf:ba:db:0d: 0b:d6:58:7e:59:ed:02:83:1c:c3:ea:f7:7f:6f:8a: b2:89:f9:2a:d1:2f:2e:20:b8:64:72:06:94:08:d6: 76:f5:04:07:e5:8a:d2:d8:a1:4f:f6:01:3a:fb:d4: 6a:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:1B:38:FD:03:AB:9A:A0:14:32:B3:27:08:98:36:EC:07:09:EB:90 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/DBs4_QOrmqAUMrMnCJg27AcJ65A.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.242.123.0/24 Signature Algorithm: sha256WithRSAEncryption ba:cf:39:7f:cf:54:33:c8:81:2f:4c:54:5c:17:a6:67:e9:44: 82:f2:7a:15:32:7c:c6:43:26:ea:a3:9d:08:78:35:c6:84:a1: d0:bf:fa:67:87:68:75:4c:47:34:20:e0:3a:a3:fb:ac:59:7c: 2d:6b:a9:9c:f6:ac:17:f1:3b:8f:78:e2:46:ce:09:78:12:6c: a8:9f:e9:fd:e7:f3:03:5e:3d:57:20:19:c7:b8:d6:27:db:6c: 0f:86:8d:52:4a:92:63:06:a5:f9:36:1e:10:ed:56:af:4a:c3: ed:a2:fd:dd:2f:89:49:9f:bf:7e:bf:5d:30:de:16:3b:21:9f: 5e:d7:42:eb:d2:b6:b1:4e:bc:37:52:ef:bb:76:8e:d4:a5:85: a6:1f:bb:4e:bc:13:77:1d:28:8f:15:5a:79:e3:2c:34:a5:c6: d5:a9:88:c7:ed:c5:3f:27:bb:4b:7c:37:fd:7d:69:96:d6:fc: b3:cf:04:fd:5d:aa:ea:aa:33:b2:8a:15:1e:8c:75:20:0f:be: 3f:77:11:60:27:a5:f5:22:0d:7f:f5:b3:89:05:93:84:23:a3: 6f:56:0b:7b:1d:5c:e0:36:d8:76:4b:65:07:07:73:d9:41:55: ed:30:11:69:2a:ec:04:5d:13:94:3c:1a:ec:4e:a4:8b:d4:27: f2:0b:09:19 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICEhAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDA4MjYw NTE4MTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDBDMUIzOEZEMDNBQjlB QTAxNDMyQjMyNzA4OTgzNkVDMDcwOUVCOTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCZxjwGouIJh5D8x9vk2TVH8BnWXHAZS5NUxWUuJPCwJ5CkJt5O 26wbjzXRUzWn+64CKwIbBTTsAEuJlHGF/0wqEh01eH9whSduIpwf1zCeJkSGmomf c8uN9qGiKiVeL4oTOnKmDivk1McX/bkuB66Vwxodns5MYnYOVzB5aIfnNwVVX994 gygbhMFyH3VjML4ts6ZIoXFVZmHqS+0sFenULfCsEhQ9HGQLPLO74vMHFpZBdgI2 SB9kC0BjbOjmaBEih05hOFGWxy7NuLKZz7rbDQvWWH5Z7QKDHMPq939virKJ+SrR Ly4guGRyBpQI1nb1BAflitLYoU/2ATr71GqxAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUDBs4/QOrmqAUMrMnCJg27AcJ65AwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9EQnM0X1FPcm1xQVVNck1uQ0pn MjdBY0o2NUEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA0vJ7 MA0GCSqGSIb3DQEBCwUAA4IBAQC6zzl/z1QzyIEvTFRcF6Zn6USC8noVMnzGQybq o50IeDXGhKHQv/pnh2h1TEc0IOA6o/usWXwta6mc9qwX8TuPeOJGzgl4Emyon+n9 5/MDXj1XIBnHuNYn22wPho1SSpJjBqX5Nh4Q7VavSsPtov3dL4lJn79+v10w3hY7 IZ9e10Lr0raxTrw3Uu+7do7UpYWmH7tOvBN3HSiPFVp54yw0pcbVqYjH7cU/J7tL fDf9fWmW1vyzzwT9XarqqjOyihUejHUgD74/dxFgJ6X1Ig1/9bOJBZOEI6NvVgt7 HVzgNth2S2UHB3PZQVXtMBFpKuwEXROUPBrsTqSL1CfyCwkZ -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:51 2024 by rpki-client on console-fra.rpki-client.org