$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/DhGUny9UJfIHjQUgmG20SYDGIp4.roa File: DhGUny9UJfIHjQUgmG20SYDGIp4.roa (raw, json) Hash identifier: kUcFIvSNBFi5AJ74Rmc1Y6+dXexxFCr0eXco06VW8L4= Subject key identifier: 0E:11:94:9F:2F:54:25:F2:07:8D:05:20:98:6D:B4:49:80:C6:22:9E Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 1254 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/DhGUny9UJfIHjQUgmG20SYDGIp4.roa Signing time: Tue 15 Oct 2024 08:12:45 +0000 ROA not before: Tue 15 Oct 2024 08:12:45 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 800 IP address blocks: 175.111.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 02:24:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4692 (0x1254) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Oct 15 08:12:45 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=0E11949F2F5425F2078D0520986DB44980C6229E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:12:34:49:7f:79:a5:51:46:ce:26:56:cf:68: f3:44:41:0b:84:26:27:21:a4:85:9a:9b:e3:fb:f8: 84:df:7f:3d:87:08:b7:1c:9b:9d:2b:de:ea:ec:3f: 9a:a0:3c:6e:e5:23:73:0f:de:e6:08:fb:89:51:7f: ad:58:f1:4a:b3:e4:3b:a2:56:55:0f:7b:16:73:cb: db:c9:85:d6:8f:95:ce:c7:e9:e1:f2:78:84:bf:04: 3f:5e:04:93:14:cf:cb:44:81:aa:5e:40:41:d4:69: f5:f6:01:70:19:82:0a:b5:69:46:49:61:23:56:34: ba:b1:41:c1:4e:a0:7c:ef:3c:46:41:09:6c:34:ad: 70:45:92:b0:a3:8d:18:ea:d7:bd:44:67:4c:70:23: a1:02:04:c8:bd:68:2c:13:d8:41:ae:a5:59:de:56: 05:19:eb:68:a4:2f:f4:b1:b7:a0:e7:a0:b0:a6:bc: 87:a2:f7:a0:9b:b0:d4:2a:0a:35:c4:57:97:a4:1f: 8b:b9:09:13:87:34:3e:14:8c:6b:aa:56:cb:93:a9: be:69:d9:8b:06:fd:39:18:c6:0b:1b:f1:3b:48:ef: 13:3c:97:3e:b5:f2:5c:97:12:94:53:ee:37:97:00: 1e:6f:1b:37:b7:5b:dc:65:76:c5:55:ca:5b:c1:69: e2:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:11:94:9F:2F:54:25:F2:07:8D:05:20:98:6D:B4:49:80:C6:22:9E X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/DhGUny9UJfIHjQUgmG20SYDGIp4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 175.111.237.0/24 Signature Algorithm: sha256WithRSAEncryption c9:56:29:db:53:ae:2c:22:d3:a3:73:88:2c:a6:b4:b7:5b:94: 4f:a4:30:07:59:18:84:7a:ed:21:b4:24:f9:43:6c:8a:47:b9: a2:b3:6a:22:f1:06:65:98:a0:26:1b:0b:f1:20:70:5b:94:b5: 52:df:74:19:ae:24:f7:f1:7d:de:92:10:ee:de:c3:c4:1e:b9: 6d:b7:8d:72:6d:d8:57:91:d6:31:7d:c0:bd:df:48:b2:81:7e: 52:16:1d:97:47:cb:5c:26:4d:47:42:66:a0:ee:38:16:fb:d5: 58:00:31:5c:60:0e:3f:97:65:a0:1b:d6:4a:c8:38:03:db:42: 67:d2:83:ad:e1:ac:02:6e:cd:91:0f:67:72:2f:5a:ef:35:f6: e8:be:b2:b2:58:c1:30:9b:57:21:65:f8:26:2d:44:40:18:ea: b0:77:7e:0a:7c:a9:5b:de:ec:25:4b:96:c6:7f:b1:14:ce:ca: 7d:b3:e7:ed:07:66:ef:21:3d:9b:91:d6:46:3c:89:8f:18:ea: ac:e5:28:f8:6d:49:16:24:dd:c4:45:c4:66:11:99:fb:09:05: 16:90:8d:19:72:8c:80:72:fd:2c:d8:42:dd:83:4d:6f:01:68: 8a:ba:a0:82:d8:1b:e3:19:79:de:e7:68:2c:00:2c:9b:b4:79: 78:52:74:75 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICElQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDEwMTUw ODEyNDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDBFMTE5NDlGMkY1NDI1 RjIwNzhEMDUyMDk4NkRCNDQ5ODBDNjIyOUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCiEjRJf3mlUUbOJlbPaPNEQQuEJichpIWam+P7+ITffz2HCLcc m50r3ursP5qgPG7lI3MP3uYI+4lRf61Y8Uqz5DuiVlUPexZzy9vJhdaPlc7H6eHy eIS/BD9eBJMUz8tEgapeQEHUafX2AXAZggq1aUZJYSNWNLqxQcFOoHzvPEZBCWw0 rXBFkrCjjRjq171EZ0xwI6ECBMi9aCwT2EGupVneVgUZ62ikL/Sxt6DnoLCmvIei 96CbsNQqCjXEV5ekH4u5CROHND4UjGuqVsuTqb5p2YsG/TkYxgsb8TtI7xM8lz61 8lyXEpRT7jeXAB5vGze3W9xldsVVylvBaeKFAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUDhGUny9UJfIHjQUgmG20SYDGIp4wHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9EaEdVbnk5VUpmSUhqUVVnbUcy MFNZREdJcDQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAr2/t MA0GCSqGSIb3DQEBCwUAA4IBAQDJVinbU64sItOjc4gsprS3W5RPpDAHWRiEeu0h tCT5Q2yKR7mis2oi8QZlmKAmGwvxIHBblLVS33QZriT38X3ekhDu3sPEHrltt41y bdhXkdYxfcC930iygX5SFh2XR8tcJk1HQmag7jgW+9VYADFcYA4/l2WgG9ZKyDgD 20Jn0oOt4awCbs2RD2dyL1rvNfbovrKyWMEwm1chZfgmLURAGOqwd34KfKlb3uwl S5bGf7EUzsp9s+ftB2bvIT2bkdZGPImPGOqs5Sj4bUkWJN3ERcRmEZn7CQUWkI0Z coyAcv0s2ELdg01vAWiKuqCC2BvjGXne52gsACybtHl4UnR1 -----END CERTIFICATE-----Generated at Sun Nov 24 21:50:13 2024 by rpki-client on console-ams.rpki-client.org