$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/Hrq9SXmITa9oPoNhnjEl3OntRLM.roa File: Hrq9SXmITa9oPoNhnjEl3OntRLM.roa (raw, json) Hash identifier: /xkggy5EQ88F4QlQ+fy/bK/8OuEGsy0/9afIQmU4ags= Subject key identifier: 1E:BA:BD:49:79:88:4D:AF:68:3E:83:61:9E:31:25:DC:E9:ED:44:B3 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 1219 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Hrq9SXmITa9oPoNhnjEl3OntRLM.roa Signing time: Mon 26 Aug 2024 05:18:15 +0000 ROA not before: Mon 26 Aug 2024 05:18:15 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 10126 IP address blocks: 220.128.64.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4633 (0x1219) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 26 05:18:15 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1EBABD4979884DAF683E83619E3125DCE9ED44B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:df:18:95:c2:0b:4b:fc:7c:42:42:c1:ac:64: 11:59:19:07:a7:9c:2f:87:1f:28:6d:ec:d2:3d:f7: 12:c4:57:8d:2f:7d:43:04:0c:74:b8:bd:a7:05:50: 39:94:d2:05:5e:e5:1f:2a:51:6a:c3:83:56:7e:b1: b0:69:1c:9e:1b:b8:d0:10:bd:2c:6d:d3:b1:fb:0b: a8:ef:3f:cf:bc:46:3c:f6:7a:49:e6:50:7a:a2:6f: d3:d8:ef:45:91:41:b0:5a:49:fe:e1:0b:66:0b:35: 24:b7:05:86:cb:b6:d7:12:f6:32:b1:7f:8a:0b:47: 80:3f:4e:91:b0:4e:b9:50:f3:9d:17:0e:38:04:67: 55:7c:c0:f8:03:52:91:aa:76:56:1f:e3:8a:cd:1c: 20:97:f8:65:d4:da:1d:2c:33:4e:6e:bb:26:2d:35: c2:12:81:78:22:06:7d:63:64:6f:34:bc:d4:5f:8a: 5f:2a:07:19:7d:b0:f1:30:09:f7:e7:ff:90:73:ed: 6d:e5:bc:ad:f7:ca:c9:f7:c2:4c:bf:8f:b5:0e:58: 00:f6:fa:e6:62:87:ca:f7:4a:68:02:db:b8:f1:66: 27:b4:0d:19:bc:25:2c:ad:40:8c:75:c5:b2:eb:eb: db:3a:48:e6:46:94:6f:8d:c2:12:67:cf:1d:e9:06: 49:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:BA:BD:49:79:88:4D:AF:68:3E:83:61:9E:31:25:DC:E9:ED:44:B3 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Hrq9SXmITa9oPoNhnjEl3OntRLM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 220.128.64.0/20 Signature Algorithm: sha256WithRSAEncryption ae:f6:16:98:fb:df:39:ce:6c:bc:55:bf:f0:8a:68:5e:34:9d: 78:a5:97:e5:f2:13:5e:61:a4:e1:9f:13:2e:cc:98:3e:c5:b6: d3:a4:1a:dc:1a:1f:a5:79:10:48:d8:46:c9:ef:9f:18:67:1a: 08:d7:45:dc:a2:6e:f1:93:63:0b:8d:a6:6a:7d:52:72:78:7f: 36:e0:95:5c:d4:60:bd:c5:08:b8:e5:a3:00:0c:1e:64:1b:f5: 16:b7:a5:89:2c:19:3d:c4:6a:d5:4f:9e:1b:91:c9:a1:46:46: b0:71:ca:b1:40:70:3a:c9:ba:f5:28:fa:c5:15:e1:08:4e:9b: c8:4e:d3:db:56:79:17:17:e4:72:b9:64:c4:27:da:b0:03:e2: f8:70:c1:b5:a5:2e:f6:07:1c:60:e9:bd:3d:ee:5b:eb:07:ce: 0b:42:32:25:63:b4:b6:e1:7a:db:4f:86:2f:a8:66:35:24:e6: 53:05:b6:8d:87:14:0b:16:ae:6d:7d:bf:50:b3:86:56:f5:c3: 6d:71:c0:b6:2d:ac:9a:b8:e8:30:16:bf:fa:e4:23:ad:38:d3: 60:4d:30:af:db:1b:83:1c:b2:17:12:9a:7f:dc:ff:93:59:e9: 4d:1e:03:26:1a:00:81:3c:f7:36:83:c5:a5:66:1b:67:a7:67: 66:e4:93:63 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICEhkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDA4MjYw NTE4MTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDFFQkFCRDQ5Nzk4ODRE QUY2ODNFODM2MTlFMzEyNURDRTlFRDQ0QjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDq3xiVwgtL/HxCQsGsZBFZGQennC+HHyht7NI99xLEV40vfUME DHS4vacFUDmU0gVe5R8qUWrDg1Z+sbBpHJ4buNAQvSxt07H7C6jvP8+8Rjz2eknm UHqib9PY70WRQbBaSf7hC2YLNSS3BYbLttcS9jKxf4oLR4A/TpGwTrlQ850XDjgE Z1V8wPgDUpGqdlYf44rNHCCX+GXU2h0sM05uuyYtNcISgXgiBn1jZG80vNRfil8q Bxl9sPEwCffn/5Bz7W3lvK33ysn3wky/j7UOWAD2+uZih8r3SmgC27jxZie0DRm8 JSytQIx1xbLr69s6SOZGlG+NwhJnzx3pBkkBAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUHrq9SXmITa9oPoNhnjEl3OntRLMwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9IcnE5U1htSVRhOW9Qb05obmpF bDNPbnRSTE0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQE3IBA MA0GCSqGSIb3DQEBCwUAA4IBAQCu9haY+985zmy8Vb/wimheNJ14pZfl8hNeYaTh nxMuzJg+xbbTpBrcGh+leRBI2EbJ758YZxoI10Xcom7xk2MLjaZqfVJyeH824JVc 1GC9xQi45aMADB5kG/UWt6WJLBk9xGrVT54bkcmhRkawccqxQHA6ybr1KPrFFeEI TpvITtPbVnkXF+RyuWTEJ9qwA+L4cMG1pS72Bxxg6b097lvrB84LQjIlY7S24Xrb T4YvqGY1JOZTBbaNhxQLFq5tfb9Qs4ZW9cNtccC2LayauOgwFr/65COtONNgTTCv 2xuDHLIXEpp/3P+TWelNHgMmGgCBPPc2g8WlZhtnp2dm5JNj -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:32 2024 by rpki-client on console-ams.rpki-client.org