$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/JnKNvc_kzt1d43y0q7Q7kBo5mLc.roa File: JnKNvc_kzt1d43y0q7Q7kBo5mLc.roa (raw, json) Hash identifier: pwxPpB9nnAsLJHdTCWs7A2LatW6i//9np+IT87IrDKo= Subject key identifier: 26:72:8D:BD:CF:E4:CE:DD:5D:E3:7C:B4:AB:B4:3B:90:1A:39:98:B7 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 1751 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/JnKNvc_kzt1d43y0q7Q7kBo5mLc.roa Signing time: Wed 12 Feb 2025 01:36:35 +0000 ROA not before: Wed 12 Feb 2025 01:36:35 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 142005 IP address blocks: 210.61.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5969 (0x1751) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Feb 12 01:36:35 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=26728DBDCFE4CEDD5DE37CB4ABB43B901A3998B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:a7:32:42:2e:3b:7b:a9:42:5d:f3:f5:3a:d6: 09:37:9c:25:be:96:4e:24:6f:b8:9a:28:19:47:46: 9a:65:01:bb:09:58:7b:5e:31:ef:04:27:90:80:84: d2:9c:52:00:41:00:51:2d:a4:2a:33:50:22:e1:38: da:03:d0:0e:5d:f6:34:4e:d5:10:a1:a0:d2:a9:df: 0e:31:6c:1d:77:62:68:29:a0:58:79:61:be:4a:93: e3:a2:c5:46:3a:75:02:76:c3:16:6d:57:6a:b0:57: 57:2f:c1:55:4d:7c:28:04:29:43:71:b3:41:16:ac: ca:c4:08:1f:c4:d6:36:32:b5:7e:17:0a:22:39:48: 3e:71:2b:4c:7d:0e:46:d3:b7:bb:c3:74:c7:d7:01: ca:8f:b9:2c:f5:d8:76:0c:60:7b:15:46:f8:3f:21: 59:8b:ab:5d:01:8a:37:3f:34:95:b0:2e:6f:98:d3: 4e:06:9b:35:47:e1:b1:17:bf:c6:ee:98:46:f3:76: 43:9c:be:ec:4b:05:46:76:43:dc:05:ff:7b:0f:41: 49:b8:cb:0c:7c:37:0c:0a:33:84:1c:fa:4d:d1:6e: 54:cf:57:82:08:88:6a:47:35:e0:41:c9:bc:dd:1b: db:bc:d5:e5:2c:38:c5:c7:91:c7:1a:c4:0b:b9:8b: 15:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:72:8D:BD:CF:E4:CE:DD:5D:E3:7C:B4:AB:B4:3B:90:1A:39:98:B7 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/JnKNvc_kzt1d43y0q7Q7kBo5mLc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.61.107.0/24 Signature Algorithm: sha256WithRSAEncryption 5e:b0:b3:66:32:73:35:6e:f9:08:a0:37:81:5e:6d:c3:dd:81: c8:95:de:15:94:fa:4f:0a:89:6f:7f:c5:e9:5f:f9:0f:1f:21: b9:b0:96:4f:4b:21:5d:30:43:68:f3:bf:7a:36:4f:56:74:18: 96:df:52:bd:05:4d:c0:94:c1:65:c2:62:48:aa:f8:6f:77:13: 1b:24:cc:ea:80:8d:4b:30:eb:38:e7:71:58:84:c0:9f:56:45: 44:5e:fa:1a:33:96:bc:c3:74:a3:42:f9:f9:32:fd:3d:f0:9a: 62:a1:91:e8:ef:48:ad:44:00:0e:a8:4e:1c:51:b0:94:3f:75: d5:12:22:d3:72:de:7a:5d:f9:ec:15:9e:f7:4a:18:23:a9:a4: 23:da:ea:2d:5b:2c:5a:23:fb:ba:dc:ce:92:0a:48:73:87:b3: 21:f4:a0:57:7f:80:e1:be:47:8d:02:78:94:5d:1c:4c:27:fd: 33:b8:8a:08:0c:1d:6d:17:b3:fa:b2:71:22:82:e1:fa:eb:5f: e4:57:95:81:c8:eb:51:59:aa:57:a7:c5:15:bc:10:a9:0a:8c: fa:d6:2b:4e:17:93:cf:81:a7:f5:4f:38:f5:ab:5f:63:e3:c6: 08:b4:c6:cf:d1:75:ca:1e:4f:7c:fe:3b:d0:6a:cb:53:1f:e3: 47:e1:a1:5d -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICF1EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTIw MTM2MzVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI2NzI4REJEQ0ZFNENF REQ1REUzN0NCNEFCQjQzQjkwMUEzOTk4QjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFpzJCLjt7qUJd8/U61gk3nCW+lk4kb7iaKBlHRpplAbsJWHte Me8EJ5CAhNKcUgBBAFEtpCozUCLhONoD0A5d9jRO1RChoNKp3w4xbB13YmgpoFh5 Yb5Kk+OixUY6dQJ2wxZtV2qwV1cvwVVNfCgEKUNxs0EWrMrECB/E1jYytX4XCiI5 SD5xK0x9DkbTt7vDdMfXAcqPuSz12HYMYHsVRvg/IVmLq10Bijc/NJWwLm+Y004G mzVH4bEXv8bumEbzdkOcvuxLBUZ2Q9wF/3sPQUm4ywx8NwwKM4Qc+k3RblTPV4II iGpHNeBBybzdG9u81eUsOMXHkccaxAu5ixWbAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUJnKNvc/kzt1d43y0q7Q7kBo5mLcwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9KbktOdmNfa3p0MWQ0M3kwcTdR N2tCbzVtTGMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA0j1r MA0GCSqGSIb3DQEBCwUAA4IBAQBesLNmMnM1bvkIoDeBXm3D3YHIld4VlPpPColv f8XpX/kPHyG5sJZPSyFdMENo8796Nk9WdBiW31K9BU3AlMFlwmJIqvhvdxMbJMzq gI1LMOs453FYhMCfVkVEXvoaM5a8w3SjQvn5Mv098JpioZHo70itRAAOqE4cUbCU P3XVEiLTct56XfnsFZ73ShgjqaQj2uotWyxaI/u63M6SCkhzh7Mh9KBXf4DhvkeN AniUXRxMJ/0zuIoIDB1tF7P6snEiguH661/kV5WByOtRWapXp8UVvBCpCoz61itO F5PPgaf1Tzj1q19j48YItMbP0XXKHk98/jvQastTH+NH4aFd -----END CERTIFICATE-----Generated at Wed Feb 19 22:32:22 2025 by rpki-client