$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/L__hF6En_yfNBjvSM-HcBgzemFA.roa File: L__hF6En_yfNBjvSM-HcBgzemFA.roa (raw, json) Hash identifier: goOj9QvUowExJeZcyuaQFIpWQGthsur/EBfoG1PJ2mQ= Subject key identifier: 2F:FF:E1:17:A1:27:FF:27:CD:06:3B:D2:33:E1:DC:06:0C:DE:98:50 Certificate issuer: /CN=5876E4B8DFAA224C019D246931FC3CD7A4FEED2A Certificate serial: 0D29 Authority key identifier: 58:76:E4:B8:DF:AA:22:4C:01:9D:24:69:31:FC:3C:D7:A4:FE:ED:2A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WHbkuN-qIkwBnSRpMfw816T-7So.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/L__hF6En_yfNBjvSM-HcBgzemFA.roa Signing time: Mon 26 Aug 2024 05:17:52 +0000 ROA not before: Mon 26 Aug 2024 05:17:52 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131660 IP address blocks: 168.95.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WHbkuN-qIkwBnSRpMfw816T-7So.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WHbkuN-qIkwBnSRpMfw816T-7So.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/WHbkuN-qIkwBnSRpMfw816T-7So.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3369 (0xd29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5876E4B8DFAA224C019D246931FC3CD7A4FEED2A Validity Not Before: Aug 26 05:17:52 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2FFFE117A127FF27CD063BD233E1DC060CDE9850 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:16:28:fe:0d:2e:32:e0:c5:cc:8d:b7:bf:6c: 39:4c:1f:34:51:bb:dc:d5:83:75:90:d6:40:56:b1: 47:68:24:e2:19:f1:cc:94:a2:f6:59:95:2f:5a:0b: 1e:5d:ab:6f:ff:c2:db:d8:13:f9:58:16:a5:dd:c8: 33:f0:e7:0b:80:03:86:15:37:c7:7c:9e:29:8e:aa: 69:58:f4:56:2b:13:f5:85:b9:c6:70:c9:98:a6:31: 7a:17:b6:5e:95:28:2f:6c:3f:52:43:d0:89:58:44: df:1d:aa:e2:39:b5:06:58:60:53:8e:7f:bf:09:2e: 2b:31:db:12:56:6c:f3:73:aa:cb:77:54:f8:49:30: ac:a8:b2:00:46:5e:f5:c8:43:c1:5c:ad:de:33:c5: 68:79:36:ab:51:63:83:57:87:5c:57:8a:b5:07:b1: 5a:64:b3:6e:cf:0d:1a:e2:01:33:c1:0c:f1:34:f6: 12:71:b4:92:a6:3a:6c:72:90:3f:8c:4f:60:e0:2a: a0:b5:39:bd:2e:ee:f3:5c:4f:c0:fc:ce:13:fe:b7: 07:ef:97:be:43:33:22:b7:45:b5:5f:26:58:61:83: ce:7d:7c:e5:8c:e5:66:7b:28:a9:ce:e7:f6:fe:65: bb:67:de:bc:37:b3:22:e5:f7:18:49:46:70:12:00: 41:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2F:FF:E1:17:A1:27:FF:27:CD:06:3B:D2:33:E1:DC:06:0C:DE:98:50 X509v3 Authority Key Identifier: keyid:58:76:E4:B8:DF:AA:22:4C:01:9D:24:69:31:FC:3C:D7:A4:FE:ED:2A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WHbkuN-qIkwBnSRpMfw816T-7So.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WHbkuN-qIkwBnSRpMfw816T-7So.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/L__hF6En_yfNBjvSM-HcBgzemFA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 168.95.246.0/24 Signature Algorithm: sha256WithRSAEncryption 48:b1:9a:4b:b1:51:47:4c:92:ba:9e:e2:b4:fc:73:2a:e4:9b: b6:0c:5d:f1:27:64:54:79:6a:2d:1d:57:9d:f0:2a:d7:d5:b0: 8d:cb:82:b7:14:b2:be:e3:6b:af:11:bd:84:f6:e7:48:10:f8: 4c:22:e2:de:17:6d:cd:6d:c2:20:4f:7c:f0:74:5d:30:e3:59: 70:e2:36:16:12:73:31:43:21:61:e4:55:a0:ba:b1:8f:63:8e: 15:af:00:54:5b:f8:9e:26:5c:1d:cb:a1:88:51:c1:8f:c0:a6: fb:50:f5:cb:b1:78:f6:d5:63:1c:25:37:b8:c7:75:a1:e5:c8: 92:0a:48:b1:c2:91:6d:6a:7a:8b:e3:6c:04:f1:b0:28:d3:09: 84:42:18:35:4e:87:90:df:22:da:0e:f8:e3:24:49:60:1e:23: 99:2f:08:b5:d1:c8:c5:39:7b:f9:9d:88:33:b4:50:d1:97:2c: 6a:68:3c:4b:de:f9:56:9a:1c:0e:55:84:53:e0:f8:17:ab:c0: af:97:f2:6f:51:69:d6:ab:bb:7f:49:b7:56:cf:c6:ab:da:59: 28:b9:ea:77:b8:7d:e3:d5:3b:fc:38:bd:ad:ee:3e:79:b3:de: c8:51:fe:8c:10:51:c0:45:01:a0:8f:d5:e0:e3:0e:e0:77:b6: c7:0b:98:24 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDSkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTg3 NkU0QjhERkFBMjI0QzAxOUQyNDY5MzFGQzNDRDdBNEZFRUQyQTAeFw0yNDA4MjYw NTE3NTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDJGRkZFMTE3QTEyN0ZG MjdDRDA2M0JEMjMzRTFEQzA2MENERTk4NTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCrFij+DS4y4MXMjbe/bDlMHzRRu9zVg3WQ1kBWsUdoJOIZ8cyU ovZZlS9aCx5dq2//wtvYE/lYFqXdyDPw5wuAA4YVN8d8nimOqmlY9FYrE/WFucZw yZimMXoXtl6VKC9sP1JD0IlYRN8dquI5tQZYYFOOf78JLisx2xJWbPNzqst3VPhJ MKyosgBGXvXIQ8Fcrd4zxWh5NqtRY4NXh1xXirUHsVpks27PDRriATPBDPE09hJx tJKmOmxykD+MT2DgKqC1Ob0u7vNcT8D8zhP+twfvl75DMyK3RbVfJlhhg859fOWM 5WZ7KKnO5/b+Zbtn3rw3syLl9xhJRnASAEHTAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUL//hF6En/yfNBjvSM+HcBgzemFAwHwYDVR0jBBgwFoAUWHbkuN+qIkwBnSRp Mfw816T+7SowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv V0hia3VOLXFJa3dCblNScE1mdzgxNlQtN1NvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9XSGJrdU4tcUlrd0JuU1JwTWZ3ODE2VC03U28uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9MX19oRjZFbl95Zk5CanZTTS1I Y0JnemVtRkEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAqF/2 MA0GCSqGSIb3DQEBCwUAA4IBAQBIsZpLsVFHTJK6nuK0/HMq5Ju2DF3xJ2RUeWot HVed8CrX1bCNy4K3FLK+42uvEb2E9udIEPhMIuLeF23NbcIgT3zwdF0w41lw4jYW EnMxQyFh5FWgurGPY44VrwBUW/ieJlwdy6GIUcGPwKb7UPXLsXj21WMcJTe4x3Wh 5ciSCkixwpFtanqL42wE8bAo0wmEQhg1ToeQ3yLaDvjjJElgHiOZLwi10cjFOXv5 nYgztFDRlyxqaDxL3vlWmhwOVYRT4PgXq8Cvl/JvUWnWq7t/SbdWz8ar2lkouep3 uH3j1Tv8OL2t7j55s97IUf6MEFHARQGgj9Xg4w7gd7bHC5gk -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:38 2024 by rpki-client on console-fra.rpki-client.org