$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/MXfRANseFgd4J4FKO3M9lNsp77c.roa File: MXfRANseFgd4J4FKO3M9lNsp77c.roa (raw, json) Hash identifier: P19YtNMxz4GheJNPjDfEwQreOyJ2b2IFlEfe4n6N0Zg= Subject key identifier: 31:77:D1:00:DB:1E:16:07:78:27:81:4A:3B:73:3D:94:DB:29:EF:B7 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 1740 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/MXfRANseFgd4J4FKO3M9lNsp77c.roa Signing time: Wed 12 Feb 2025 01:36:32 +0000 ROA not before: Wed 12 Feb 2025 01:36:32 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 142005 IP address blocks: 210.61.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5952 (0x1740) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Feb 12 01:36:32 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3177D100DB1E16077827814A3B733D94DB29EFB7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:da:82:83:2a:80:7b:9f:08:01:f7:93:1c:63: 7e:61:8c:0a:0d:85:f3:72:77:91:23:cd:9c:be:d9: fa:f3:5d:83:dc:83:8a:1c:f3:18:47:a6:2a:21:08: 14:1d:8b:09:44:1a:42:58:79:26:2f:c5:25:01:23: 02:45:7e:2f:22:0c:4d:d0:78:8a:d8:47:fa:0d:33: bd:e3:18:22:db:5a:a1:5c:1f:b5:05:92:69:e7:2a: e6:48:47:df:3b:41:ab:51:fe:86:91:46:a9:7d:80: 97:5f:f6:96:d8:ed:c9:ef:ee:3c:c3:65:f1:75:ba: 99:ec:e7:e9:52:48:5d:3f:56:5b:81:4c:5a:05:2a: 40:0b:75:6e:4a:ff:3c:b7:c4:de:45:f8:73:14:6c: 24:74:4e:55:4d:0f:23:27:d7:65:34:93:9e:7b:f6: 81:78:c8:b4:bc:8b:4b:29:be:24:a9:fa:36:f7:6c: 5c:86:b3:e5:69:4c:68:48:87:95:ee:a1:22:54:84: d8:93:df:31:a4:71:8b:f9:b7:f0:a0:59:ea:7e:a3: e8:ac:26:4e:8a:74:8b:d0:c8:c1:d2:76:6d:a1:92: 69:79:f6:c8:5f:d3:df:a9:af:ce:99:dd:43:07:72: 0c:7b:27:c9:c8:d0:fe:98:af:9c:2c:79:72:5d:56: cc:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 31:77:D1:00:DB:1E:16:07:78:27:81:4A:3B:73:3D:94:DB:29:EF:B7 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/MXfRANseFgd4J4FKO3M9lNsp77c.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.61.114.0/24 Signature Algorithm: sha256WithRSAEncryption c4:9b:e8:f4:7c:9f:e6:b4:93:07:33:7e:3f:3e:40:46:42:18: 91:ba:18:d7:60:a5:0f:b2:36:a2:fd:c8:e1:b6:ac:18:5e:96: 45:cb:f6:39:e9:22:72:5f:59:a5:66:c6:02:bd:d9:22:87:ea: d4:ff:d8:96:25:a6:ef:47:68:06:a9:68:4a:8d:77:7b:da:b7: 2d:63:8c:84:db:4f:de:5d:a3:72:8e:18:b4:a1:d0:5b:75:35: 48:f3:22:dd:a9:ef:cc:7a:4f:61:e7:c9:dc:f9:71:3d:47:a4: 1f:45:b3:97:6b:8e:54:da:ba:fc:43:d8:0e:a4:ec:ce:d9:04: b1:6c:57:bb:fd:7a:a7:4c:50:84:69:48:72:fa:93:bb:2f:e5: f7:5c:9d:e6:f2:69:d1:f9:f7:59:90:35:c8:fc:8d:e5:12:38: c9:ad:c9:fc:92:56:af:ce:83:86:d4:65:bd:23:df:61:cd:87: 27:a3:7d:16:1d:b3:b4:10:83:0c:32:8c:3f:f7:ae:00:9d:18: 73:81:17:43:3e:56:dd:72:f3:53:4c:0e:39:4b:39:7d:69:84: 70:93:74:fc:6d:17:f2:54:58:cb:41:8d:27:ae:74:3f:d9:71: e6:28:f6:20:bb:02:00:14:ac:4a:96:43:c8:6d:97:5d:4e:b9: dd:0e:36:ba -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICF0AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTIw MTM2MzJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDMxNzdEMTAwREIxRTE2 MDc3ODI3ODE0QTNCNzMzRDk0REIyOUVGQjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDX2oKDKoB7nwgB95McY35hjAoNhfNyd5EjzZy+2frzXYPcg4oc 8xhHpiohCBQdiwlEGkJYeSYvxSUBIwJFfi8iDE3QeIrYR/oNM73jGCLbWqFcH7UF kmnnKuZIR987QatR/oaRRql9gJdf9pbY7cnv7jzDZfF1upns5+lSSF0/VluBTFoF KkALdW5K/zy3xN5F+HMUbCR0TlVNDyMn12U0k5579oF4yLS8i0spviSp+jb3bFyG s+VpTGhIh5XuoSJUhNiT3zGkcYv5t/CgWep+o+isJk6KdIvQyMHSdm2hkml59shf 09+pr86Z3UMHcgx7J8nI0P6Yr5wseXJdVszjAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUMXfRANseFgd4J4FKO3M9lNsp77cwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9NWGZSQU5zZUZnZDRKNEZLTzNN OWxOc3A3N2Mucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA0j1y MA0GCSqGSIb3DQEBCwUAA4IBAQDEm+j0fJ/mtJMHM34/PkBGQhiRuhjXYKUPsjai /cjhtqwYXpZFy/Y56SJyX1mlZsYCvdkih+rU/9iWJabvR2gGqWhKjXd72rctY4yE 20/eXaNyjhi0odBbdTVI8yLdqe/Mek9h58nc+XE9R6QfRbOXa45U2rr8Q9gOpOzO 2QSxbFe7/XqnTFCEaUhy+pO7L+X3XJ3m8mnR+fdZkDXI/I3lEjjJrcn8klavzoOG 1GW9I99hzYcno30WHbO0EIMMMow/964AnRhzgRdDPlbdcvNTTA45Szl9aYRwk3T8 bRfyVFjLQY0nrnQ/2XHmKPYguwIAFKxKlkPIbZddTrndDja6 -----END CERTIFICATE-----Generated at Wed Feb 19 22:34:46 2025 by rpki-client