$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/LkdDedLeeDQT_8DdahTshUQTexk.roa File: LkdDedLeeDQT_8DdahTshUQTexk.roa (raw, json) Hash identifier: HnrLC0PjV4ABv+TryBoG8LVDN5TF7P9oY8AzF+qDClM= Subject key identifier: 2E:47:43:79:D2:DE:78:34:13:FF:C0:DD:6A:14:EC:85:44:13:7B:19 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 11FA Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/LkdDedLeeDQT_8DdahTshUQTexk.roa Signing time: Mon 26 Aug 2024 05:18:08 +0000 ROA not before: Mon 26 Aug 2024 05:18:08 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 20940 IP address blocks: 2001:b034:700:580::/64 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 02:24:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4602 (0x11fa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 26 05:18:08 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2E474379D2DE783413FFC0DD6A14EC8544137B19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:c0:b1:0e:9f:0e:f3:cc:8d:00:ff:29:60:fd: 2a:e2:f4:c0:ef:56:7c:b7:da:8d:f2:bb:a5:fc:6e: 71:da:80:2a:52:6e:51:93:60:a9:4f:5b:27:d5:d4: 33:4f:2f:d6:b9:e4:1d:c6:e1:cc:ec:9b:a6:1a:0b: 2c:e4:d3:94:cb:5b:d6:dd:2c:a6:db:4c:51:db:b0: 5e:cf:6c:e8:5d:9f:9e:fe:53:fb:94:27:fd:ed:64: 81:26:b0:1d:b3:f7:ec:e1:75:21:f5:34:2d:bc:0f: 81:32:cd:86:26:cf:38:d6:2c:63:97:06:6b:2a:5c: 7c:7c:46:37:6a:74:1b:10:13:07:15:5b:06:dd:d8: ab:3f:1a:65:4c:4c:3f:29:22:f3:e6:da:5d:6f:a4: 06:7c:4b:c7:3e:da:d9:49:9c:8f:0c:ad:3a:b4:3b: f1:6e:67:4f:58:3c:d0:41:85:36:91:2e:06:9e:69: e2:b6:43:08:29:49:30:3b:54:70:fd:dd:b1:de:80: e0:86:53:0c:ad:14:25:14:0b:78:63:5a:a0:08:6c: 71:d5:20:ea:d2:ef:2c:f5:6f:9e:a2:43:7f:bd:24: 9b:a8:66:7c:25:b9:16:08:24:e9:4d:85:21:63:28: 8d:53:17:7a:b6:00:7b:4d:5a:49:00:23:a8:6b:dd: f0:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:47:43:79:D2:DE:78:34:13:FF:C0:DD:6A:14:EC:85:44:13:7B:19 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/LkdDedLeeDQT_8DdahTshUQTexk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:b034:700:580::/64 Signature Algorithm: sha256WithRSAEncryption 4b:a9:98:6e:ec:06:24:5c:f8:b2:b4:fe:ba:ed:bd:38:27:0e: 89:bc:4b:16:b4:ff:1e:4a:49:56:e3:f9:29:70:8c:6c:c8:99: 74:42:36:b2:33:b7:00:8a:a5:8f:9f:06:65:09:c7:42:18:7b: e1:bb:e7:cb:46:48:ca:a0:7c:c0:47:08:5f:ce:7d:07:42:18: ad:3d:ce:30:d2:6c:04:57:20:6f:eb:da:c3:cc:c1:d4:66:48: ea:3f:e8:f4:f5:db:b1:8b:92:6d:f8:a2:4f:de:2c:5d:56:85: 33:97:31:07:b4:11:70:86:c8:76:98:7d:de:25:26:7b:17:01: 7c:0e:de:0e:51:7e:f7:83:95:53:fe:f4:e3:35:fa:ff:0a:98: af:b4:59:22:af:41:b5:9c:eb:07:0d:94:7d:c7:60:ac:eb:39: 81:f0:4e:27:b1:6b:f9:d8:fa:34:aa:83:ff:92:14:d8:28:11: 1a:6b:ec:35:78:69:6f:65:fd:91:69:0b:f1:51:a2:1f:23:51: a3:e9:a7:72:ee:2c:56:42:d4:00:bd:88:fc:ac:aa:40:8d:45: ce:5c:53:29:6f:1b:ca:79:af:cc:72:f2:f1:55:ee:b0:21:2d: f0:1c:26:a7:1a:88:07:91:9b:d2:6d:69:d1:cc:21:02:02:e6: 21:05:90:a6 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICEfowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDA4MjYw NTE4MDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDJFNDc0Mzc5RDJERTc4 MzQxM0ZGQzBERDZBMTRFQzg1NDQxMzdCMTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3wLEOnw7zzI0A/ylg/Sri9MDvVny32o3yu6X8bnHagCpSblGT YKlPWyfV1DNPL9a55B3G4czsm6YaCyzk05TLW9bdLKbbTFHbsF7PbOhdn57+U/uU J/3tZIEmsB2z9+zhdSH1NC28D4EyzYYmzzjWLGOXBmsqXHx8RjdqdBsQEwcVWwbd 2Ks/GmVMTD8pIvPm2l1vpAZ8S8c+2tlJnI8MrTq0O/FuZ09YPNBBhTaRLgaeaeK2 QwgpSTA7VHD93bHegOCGUwytFCUUC3hjWqAIbHHVIOrS7yz1b56iQ3+9JJuoZnwl uRYIJOlNhSFjKI1TF3q2AHtNWkkAI6hr3fBVAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQULkdDedLeeDQT/8DdahTshUQTexkwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9Ma2REZWRMZWVEUVRfOERkYWhU c2hVUVRleGsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCQGCCsGAQUFBwEHAQH/BBUwEzARBAIAAjALAwkAIAGw NAcABYAwDQYJKoZIhvcNAQELBQADggEBAEupmG7sBiRc+LK0/rrtvTgnDom8Sxa0 /x5KSVbj+SlwjGzImXRCNrIztwCKpY+fBmUJx0IYe+G758tGSMqgfMBHCF/OfQdC GK09zjDSbARXIG/r2sPMwdRmSOo/6PT127GLkm34ok/eLF1WhTOXMQe0EXCGyHaY fd4lJnsXAXwO3g5RfveDlVP+9OM1+v8KmK+0WSKvQbWc6wcNlH3HYKzrOYHwTiex a/nY+jSqg/+SFNgoERpr7DV4aW9l/ZFpC/FRoh8jUaPpp3LuLFZC1AC9iPysqkCN Rc5cUylvG8p5r8xy8vFV7rAhLfAcJqcaiAeRm9JtadHMIQIC5iEFkKY= -----END CERTIFICATE-----Generated at Fri Nov 22 00:15:15 2024 by rpki-client on console-ams.rpki-client.org