$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/NlH_X3SVJJF1NB6vx9-SdftxsVA.roa File: NlH_X3SVJJF1NB6vx9-SdftxsVA.roa (raw, json) Hash identifier: dOV4tusjHoplIm90m4S/S0hpnNloYW8h9oriqc7Utcc= Subject key identifier: 36:51:FF:5F:74:95:24:91:75:34:1E:AF:C7:DF:92:75:FB:71:B1:50 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 17AC Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/NlH_X3SVJJF1NB6vx9-SdftxsVA.roa Signing time: Wed 12 Feb 2025 01:36:56 +0000 ROA not before: Wed 12 Feb 2025 01:36:56 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 20940 IP address blocks: 2001:b032:104::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 17:36:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6060 (0x17ac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Feb 12 01:36:56 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3651FF5F7495249175341EAFC7DF9275FB71B150 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fd:d3:26:93:10:2a:b1:41:fe:9c:51:83:8a:8b: d0:e3:ac:09:30:01:73:7f:26:08:34:f3:9f:7b:a3: 10:72:09:fd:3d:16:74:91:7d:b6:7c:39:c5:aa:9c: 98:8f:5e:c4:da:6b:f5:fb:56:33:84:2b:35:a2:46: 32:ba:88:f7:a9:bf:ff:48:2c:34:03:a7:1f:38:a6: 11:89:5f:07:bc:ee:8d:ba:22:95:9a:eb:ec:6c:2d: d9:ef:ff:55:56:4e:c1:e7:02:94:22:3c:ae:82:5b: 2b:23:60:85:dc:40:c4:d3:37:4a:ba:56:e8:b1:9c: ee:a1:3f:34:fd:84:4a:af:c7:71:55:db:21:e1:d8: 13:30:e6:f6:d6:25:9c:6a:5c:9a:51:86:db:7f:e1: 35:7d:04:af:e5:75:9c:b4:12:d2:36:ae:80:85:17: 06:b7:3c:03:59:7d:29:d0:2b:11:89:b9:d8:07:af: 3a:94:58:2e:0b:c5:52:5c:21:ee:2e:e1:a9:ef:24: 3c:86:2b:fd:98:9e:6b:78:16:07:d7:e1:39:01:f0: fa:21:38:03:15:c1:88:81:0c:e6:ea:3b:11:f9:84: c8:29:db:fa:c4:ef:e0:5d:18:be:c1:ae:37:d5:72: 67:55:8d:03:02:cf:14:88:6c:b3:0b:ca:df:fc:89: e7:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:51:FF:5F:74:95:24:91:75:34:1E:AF:C7:DF:92:75:FB:71:B1:50 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/NlH_X3SVJJF1NB6vx9-SdftxsVA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:b032:104::/48 Signature Algorithm: sha256WithRSAEncryption 0e:b5:f0:ed:e6:82:11:d5:45:9f:30:7a:94:1f:3c:f3:ad:a5: 31:ce:93:6a:bc:64:10:71:7f:26:37:2b:13:52:2f:dc:22:c8: 8d:90:ee:07:dd:d3:28:3a:5f:27:6a:c3:ee:9c:55:c5:fc:bb: 19:e7:61:34:95:de:3e:d6:b2:d2:2f:61:f9:9f:a9:94:3e:f1: 54:9c:a2:99:5a:f8:f1:10:e3:37:58:6d:59:8f:8b:0a:d6:74: 2e:eb:90:64:dc:af:7b:bd:a4:ff:c8:e1:0b:34:7a:d3:75:ba: 6b:a7:4b:7e:f9:4c:03:0b:0f:6f:38:55:b6:fe:69:b6:e7:94: fd:33:74:24:a9:9e:53:17:10:5f:14:27:2e:f4:ec:2e:05:7a: 4e:76:02:9e:5e:f0:09:ca:6b:24:83:02:50:b3:d8:45:d6:cd: a4:87:aa:27:25:de:dd:7d:25:1c:33:76:cc:d4:d3:af:4c:ba: d3:28:f2:61:eb:a3:a4:c2:3f:92:bf:40:cf:39:1b:c7:31:23: 1c:05:e7:87:0a:35:ea:ed:62:03:30:28:89:e8:bb:7c:9d:4a: ef:98:7c:67:bf:ad:10:0b:b0:16:d4:84:47:a9:8f:6e:f4:b7: d9:b6:5c:d7:54:88:95:96:0b:f9:89:ed:f3:fe:87:91:97:61: 63:a3:50:56 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICF6wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTIw MTM2NTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDM2NTFGRjVGNzQ5NTI0 OTE3NTM0MUVBRkM3REY5Mjc1RkI3MUIxNTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD90yaTECqxQf6cUYOKi9DjrAkwAXN/Jgg08597oxByCf09FnSR fbZ8OcWqnJiPXsTaa/X7VjOEKzWiRjK6iPepv/9ILDQDpx84phGJXwe87o26IpWa 6+xsLdnv/1VWTsHnApQiPK6CWysjYIXcQMTTN0q6VuixnO6hPzT9hEqvx3FV2yHh 2BMw5vbWJZxqXJpRhtt/4TV9BK/ldZy0EtI2roCFFwa3PANZfSnQKxGJudgHrzqU WC4LxVJcIe4u4anvJDyGK/2Ynmt4FgfX4TkB8PohOAMVwYiBDObqOxH5hMgp2/rE 7+BdGL7BrjfVcmdVjQMCzxSIbLMLyt/8iedVAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUNlH/X3SVJJF1NB6vx9+SdftxsVAwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9ObEhfWDNTVkpKRjFOQjZ2eDkt U2RmdHhzVkEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAGw MgEEMA0GCSqGSIb3DQEBCwUAA4IBAQAOtfDt5oIR1UWfMHqUHzzzraUxzpNqvGQQ cX8mNysTUi/cIsiNkO4H3dMoOl8nasPunFXF/LsZ52E0ld4+1rLSL2H5n6mUPvFU nKKZWvjxEOM3WG1Zj4sK1nQu65Bk3K97vaT/yOELNHrTdbprp0t++UwDCw9vOFW2 /mm255T9M3QkqZ5TFxBfFCcu9OwuBXpOdgKeXvAJymskgwJQs9hF1s2kh6onJd7d fSUcM3bM1NOvTLrTKPJh66Okwj+Sv0DPORvHMSMcBeeHCjXq7WIDMCiJ6Lt8nUrv mHxnv60QC7AW1IRHqY9u9LfZtlzXVIiVlgv5ie3z/oeRl2Fjo1BW -----END CERTIFICATE-----Generated at Sat Apr 5 17:24:55 2025 by rpki-client