$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/JKE8puI6DgVYP8qVeFZiDsoaK5E.roa File: JKE8puI6DgVYP8qVeFZiDsoaK5E.roa (raw, json) Hash identifier: ja8GaCKmbAAh5JjlB8B4K5W2etXB/HGSa5ScloFtbx4= Subject key identifier: 24:A1:3C:A6:E2:3A:0E:05:58:3F:CA:95:78:56:62:0E:CA:1A:2B:91 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 118C Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/JKE8puI6DgVYP8qVeFZiDsoaK5E.roa Signing time: Mon 26 Aug 2024 05:17:40 +0000 ROA not before: Mon 26 Aug 2024 05:17:40 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 3462 IP address blocks: 211.23.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4492 (0x118c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 26 05:17:40 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=24A13CA6E23A0E05583FCA957856620ECA1A2B91 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:aa:0f:9f:2d:96:2c:00:90:9c:34:6c:dd:28: 3f:6b:95:b3:bc:f8:7c:54:91:0f:c6:67:05:59:97: b2:26:a5:f7:05:3b:8e:8e:04:f6:88:8c:73:73:5a: 8f:50:9e:cf:fe:cd:4e:ec:66:07:29:dd:21:16:86: 81:8b:3c:f8:d4:74:c7:0f:27:3f:ef:ee:d6:c9:b5: 8a:bd:4c:66:38:15:2d:6f:57:20:51:12:77:dc:bd: 24:d9:ef:fd:82:d6:d6:cd:4f:9f:71:c3:4a:ff:dc: b9:50:e0:32:3e:f9:a9:d7:cf:ff:9b:27:83:56:c5: 99:d1:11:b5:46:f9:8c:df:59:36:3d:4a:2b:ba:fd: 35:05:3d:5e:7a:2d:0b:4b:b0:37:65:cc:46:55:85: d2:6c:3b:9a:2b:46:df:14:55:05:68:11:48:63:97: 6e:8f:bd:6d:fe:3a:82:1d:c6:99:ef:b0:f6:4b:68: 03:f1:04:d7:d3:15:06:d8:40:2e:6a:58:8c:c1:c0: b4:a1:16:63:2e:e5:92:10:71:34:d2:f6:64:e1:94: a4:a6:af:5e:ee:78:fa:e3:a1:07:47:c3:47:54:b4: 81:3a:65:b6:68:06:4f:bb:f0:8a:71:88:4e:62:d2: 7a:7b:fe:eb:0d:18:fd:02:34:e4:11:a9:f9:37:7d: 9d:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:A1:3C:A6:E2:3A:0E:05:58:3F:CA:95:78:56:62:0E:CA:1A:2B:91 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/JKE8puI6DgVYP8qVeFZiDsoaK5E.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.23.0.0/16 Signature Algorithm: sha256WithRSAEncryption 00:42:29:7e:6e:fb:ad:10:c4:58:a2:6c:82:e9:7a:c2:cf:a0: b6:04:f1:19:8e:50:0c:ae:94:5d:94:ef:d6:e1:16:2d:31:21: ff:76:7a:b3:e6:6c:1c:80:97:0b:05:14:98:57:8b:07:cc:07: 23:f4:5d:cc:13:c5:f6:e7:1f:8c:f1:a6:8e:a2:fd:15:66:fe: 35:1e:fb:25:ce:be:5e:fd:78:ac:91:69:08:f1:99:23:be:28: 10:f4:46:8c:3a:31:b7:9b:ce:11:e3:0c:18:e2:19:2b:41:14: 70:6f:fe:fe:1a:25:a5:00:68:18:2e:cc:4f:ff:ab:9d:52:04: 80:3e:94:9d:c0:58:8c:27:de:25:ab:75:65:06:e0:6e:a9:a9: ed:e4:27:c7:f2:dc:71:d5:28:d8:08:98:d0:85:71:11:9a:ff: 4b:65:b0:9f:72:15:9a:ba:02:89:25:06:0d:cc:14:5c:89:c2: 53:b0:89:e6:2a:b1:90:0f:66:6e:93:bb:55:95:5c:c2:4b:11: 26:42:78:78:28:21:bf:84:37:8c:89:e6:ea:bf:dd:2f:20:98: fa:a6:78:65:9c:97:44:f4:aa:d9:76:3c:98:67:3b:e2:7c:f3: 4e:8e:76:b9:ea:a1:00:c3:c6:56:b5:29:4f:9d:3c:ba:5d:b1: 7c:92:59:64 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICEYwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDA4MjYw NTE3NDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI0QTEzQ0E2RTIzQTBF MDU1ODNGQ0E5NTc4NTY2MjBFQ0ExQTJCOTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDhqg+fLZYsAJCcNGzdKD9rlbO8+HxUkQ/GZwVZl7ImpfcFO46O BPaIjHNzWo9Qns/+zU7sZgcp3SEWhoGLPPjUdMcPJz/v7tbJtYq9TGY4FS1vVyBR EnfcvSTZ7/2C1tbNT59xw0r/3LlQ4DI++anXz/+bJ4NWxZnREbVG+YzfWTY9Siu6 /TUFPV56LQtLsDdlzEZVhdJsO5orRt8UVQVoEUhjl26PvW3+OoIdxpnvsPZLaAPx BNfTFQbYQC5qWIzBwLShFmMu5ZIQcTTS9mThlKSmr17uePrjoQdHw0dUtIE6ZbZo Bk+78IpxiE5i0np7/usNGP0CNOQRqfk3fZ29AgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUJKE8puI6DgVYP8qVeFZiDsoaK5EwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9KS0U4cHVJNkRnVllQOHFWZUZa aURzb2FLNUUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMA0xcw DQYJKoZIhvcNAQELBQADggEBAABCKX5u+60QxFiibILpesLPoLYE8RmOUAyulF2U 79bhFi0xIf92erPmbByAlwsFFJhXiwfMByP0XcwTxfbnH4zxpo6i/RVm/jUe+yXO vl79eKyRaQjxmSO+KBD0Row6MbebzhHjDBjiGStBFHBv/v4aJaUAaBguzE//q51S BIA+lJ3AWIwn3iWrdWUG4G6pqe3kJ8fy3HHVKNgImNCFcRGa/0tlsJ9yFZq6Aokl Bg3MFFyJwlOwieYqsZAPZm6Tu1WVXMJLESZCeHgoIb+EN4yJ5uq/3S8gmPqmeGWc l0T0qtl2PJhnO+J8806OdrnqoQDDxla1KU+dPLpdsXySWWQ= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:32 2024 by rpki-client on console-ams.rpki-client.org