$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/IL6dm7nWo5gaFhHqaaU6i4Zgozs.roa File: IL6dm7nWo5gaFhHqaaU6i4Zgozs.roa (raw, json) Hash identifier: SjE3hei1iKnOzAvtQ3LZARbjycCoQXAetKbl0KP631k= Subject key identifier: 20:BE:9D:9B:B9:D6:A3:98:1A:16:11:EA:69:A5:3A:8B:86:60:A3:3B Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 1185 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/IL6dm7nWo5gaFhHqaaU6i4Zgozs.roa Signing time: Mon 26 Aug 2024 05:17:37 +0000 ROA not before: Mon 26 Aug 2024 05:17:37 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 3462 IP address blocks: 111.240.0.0/12 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4485 (0x1185) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 26 05:17:37 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=20BE9D9BB9D6A3981A1611EA69A53A8B8660A33B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:c5:ef:38:36:02:93:8b:b1:bd:d3:69:75:02: 92:b8:d3:21:04:f2:b4:db:2d:e5:3c:39:00:e2:01: a4:7b:a0:ac:74:fe:30:79:bc:bb:fe:15:24:8b:11: f7:6e:f3:02:6b:20:3b:d5:10:a6:1f:40:b1:1a:e0: 61:d2:60:fd:5d:25:3b:49:51:99:be:e5:68:bb:90: d9:36:33:e8:9d:38:7a:ec:03:1a:b2:2b:0a:a5:98: 3d:6f:8b:56:c0:f7:43:4d:04:ce:e6:7f:e5:cf:9f: 06:ca:a8:ec:cf:c6:0a:fe:bd:87:fe:6a:69:49:be: e0:c8:46:1e:68:0c:fa:57:52:19:be:e2:a4:1e:37: 76:6b:4e:a1:8d:b5:24:2a:0f:2d:e6:be:41:30:88: cd:ee:92:6e:dd:8b:6c:95:74:0d:86:03:46:1f:46: 91:02:49:9c:50:6f:0c:3c:71:18:9a:18:ce:df:3e: b3:35:56:8e:20:cb:3b:1a:a8:56:2b:0e:bf:26:22: ce:4b:b9:ae:19:51:ce:d2:71:1b:f4:6f:2f:ac:8e: bd:9f:76:2a:00:d7:02:5f:4c:50:55:2e:ec:c2:cc: ad:4c:04:b9:55:47:e0:ac:69:47:58:1e:a4:7a:98: 87:4a:d5:ed:5f:67:98:79:b9:ea:1f:4e:4b:98:0f: ed:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:BE:9D:9B:B9:D6:A3:98:1A:16:11:EA:69:A5:3A:8B:86:60:A3:3B X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/IL6dm7nWo5gaFhHqaaU6i4Zgozs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 111.240.0.0/12 Signature Algorithm: sha256WithRSAEncryption 1e:1e:ce:f6:b5:ed:82:b7:22:ce:c1:92:ed:a0:ef:dc:90:75: 1d:dc:fc:49:32:f8:1b:f5:81:26:17:a6:ac:6e:e5:6c:61:c1: f8:56:bb:32:e5:57:03:81:98:f3:0d:12:18:e1:aa:f2:92:f3: 2a:22:a9:e5:ec:f6:83:69:9b:f2:73:29:cb:19:11:29:77:46: e3:af:a5:47:d7:f1:2a:25:b6:44:f6:2f:1b:ca:39:25:05:81: d0:a1:cb:92:68:cd:20:7a:b2:3a:fe:01:6c:dc:ec:88:10:e1: 36:1f:87:0c:89:08:f3:46:b0:6e:9f:80:5b:d8:52:9a:28:37: ae:8a:3b:57:0e:99:d8:2f:b5:23:d2:8d:f3:01:91:d0:8a:80: 12:3d:b9:74:3e:f9:83:73:b7:26:f7:4e:09:81:e8:fc:1c:b5: a1:d7:be:c5:dc:90:ac:de:b6:d1:a8:5e:aa:fc:f7:13:e6:2b: ff:29:fa:fd:33:45:c6:e7:c4:07:18:d4:30:58:6b:f8:54:b5: 35:9e:f8:c0:8b:f6:e3:25:38:d9:fa:a9:69:d6:ad:f9:0e:c3: cc:ac:53:ab:24:b0:d4:e1:75:cb:80:d1:ea:e7:22:78:c5:68: fc:00:68:06:bc:e7:60:f5:ee:43:c7:6e:07:14:55:86:80:cf: cc:9a:43:9c -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICEYUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDA4MjYw NTE3MzdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDIwQkU5RDlCQjlENkEz OTgxQTE2MTFFQTY5QTUzQThCODY2MEEzM0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2xe84NgKTi7G902l1ApK40yEE8rTbLeU8OQDiAaR7oKx0/jB5 vLv+FSSLEfdu8wJrIDvVEKYfQLEa4GHSYP1dJTtJUZm+5Wi7kNk2M+idOHrsAxqy KwqlmD1vi1bA90NNBM7mf+XPnwbKqOzPxgr+vYf+amlJvuDIRh5oDPpXUhm+4qQe N3ZrTqGNtSQqDy3mvkEwiM3ukm7di2yVdA2GA0YfRpECSZxQbww8cRiaGM7fPrM1 Vo4gyzsaqFYrDr8mIs5Lua4ZUc7ScRv0by+sjr2fdioA1wJfTFBVLuzCzK1MBLlV R+CsaUdYHqR6mIdK1e1fZ5h5ueofTkuYD+1XAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUIL6dm7nWo5gaFhHqaaU6i4ZgozswHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9JTDZkbTduV281Z2FGaEhxYWFV Nmk0WmdvenMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMEb/Aw DQYJKoZIhvcNAQELBQADggEBAB4ezva17YK3Is7Bku2g79yQdR3c/Eky+Bv1gSYX pqxu5WxhwfhWuzLlVwOBmPMNEhjhqvKS8yoiqeXs9oNpm/JzKcsZESl3RuOvpUfX 8SoltkT2LxvKOSUFgdChy5JozSB6sjr+AWzc7IgQ4TYfhwyJCPNGsG6fgFvYUpoo N66KO1cOmdgvtSPSjfMBkdCKgBI9uXQ++YNztyb3TgmB6PwctaHXvsXckKzettGo Xqr89xPmK/8p+v0zRcbnxAcY1DBYa/hUtTWe+MCL9uMlONn6qWnWrfkOw8ysU6sk sNThdcuA0ernInjFaPwAaAa852D17kPHbgcUVYaAz8yaQ5w= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:51 2024 by rpki-client on console-fra.rpki-client.org