$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/O76xd_aQVcIaS9TC5786vqpk6z8.roa File: O76xd_aQVcIaS9TC5786vqpk6z8.roa (raw, json) Hash identifier: HG/SgHAN29ynrkisejM88ZisqBQ6YbIJnsotjpYNMNk= Subject key identifier: 3B:BE:B1:77:F6:90:55:C2:1A:4B:D4:C2:E7:BF:3A:BE:AA:64:EB:3F Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 17B1 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/O76xd_aQVcIaS9TC5786vqpk6z8.roa Signing time: Wed 12 Feb 2025 01:36:58 +0000 ROA not before: Wed 12 Feb 2025 01:36:58 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9680 IP address blocks: 2001:b000:92::/48 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 18:06:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6065 (0x17b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Feb 12 01:36:58 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3BBEB177F69055C21A4BD4C2E7BF3ABEAA64EB3F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:a2:52:7f:cd:f0:d9:03:f7:82:db:9a:7a:28: 44:73:47:43:c1:81:a3:17:f9:f0:e5:2e:af:89:19: bf:5e:e3:17:54:7d:7d:2b:5f:20:73:ac:39:b8:14: 87:e3:09:3b:16:d0:aa:fa:1f:ee:1a:ee:53:a1:5d: bf:83:06:60:b6:f2:c4:15:44:c6:23:70:a4:c7:89: f3:9a:de:b4:0b:68:37:83:e2:46:89:93:84:3c:54: cf:31:32:21:81:bd:e3:35:ad:0d:01:63:09:39:ba: b0:f6:97:43:bf:e7:5b:36:5a:4b:09:76:e2:77:1d: 2c:b4:09:3d:d2:17:be:ab:37:b3:a1:ef:d9:34:72: 5d:4e:47:f4:47:5f:93:07:9f:9f:6a:f0:7b:5b:0e: e6:50:28:c0:41:df:f9:cf:15:eb:89:57:78:ba:dd: a1:0b:70:0d:21:5f:c5:02:51:e3:d2:db:8b:2b:71: e3:73:a6:d6:7c:21:33:27:da:bd:58:20:c8:3d:84: a2:c3:b3:12:21:96:5a:5f:6c:2e:ae:b9:3a:24:81: b9:fa:a4:c7:f1:7c:fb:e3:cb:f2:f4:d5:be:d1:9f: c1:db:a1:f9:28:c3:13:fe:66:8e:1e:56:b9:79:0a: 3e:ea:a1:6a:05:59:97:c3:67:c1:66:66:c1:9c:da: d6:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:BE:B1:77:F6:90:55:C2:1A:4B:D4:C2:E7:BF:3A:BE:AA:64:EB:3F X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/O76xd_aQVcIaS9TC5786vqpk6z8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:b000:92::/48 Signature Algorithm: sha256WithRSAEncryption c2:0a:a2:04:99:53:34:ff:3d:a8:04:e3:98:98:64:94:94:5b: c1:eb:15:e0:bb:ba:f7:23:a5:11:de:5e:0b:5c:85:ec:c4:6e: 59:ca:5e:f7:1b:58:76:3f:00:24:53:9f:b8:d6:c1:56:89:63: e5:a7:b6:23:c6:bc:a5:54:4b:6e:d4:7a:68:5c:a2:66:18:03: 1d:6c:c4:b9:56:ce:67:c9:cf:36:c5:a8:c0:e3:8d:fa:09:9b: d4:85:92:9c:3a:e7:1d:b1:c1:0d:bc:45:57:77:bf:a0:e6:99: c7:eb:b7:4f:8d:5e:0d:af:84:b1:cf:53:67:e4:32:57:71:d4: 86:57:2c:22:05:73:a8:28:cc:7a:d4:db:c4:26:28:e4:51:a4: 68:bf:d0:8e:44:98:ce:30:a1:22:84:dc:2f:bc:f0:0b:dd:3e: 29:70:07:df:b1:04:a1:61:55:75:34:3f:17:89:a9:4b:7f:ee: 70:97:ed:6a:93:29:08:74:3e:6b:12:1f:45:36:a6:a9:67:0c: 15:d9:db:b4:53:4a:73:62:45:e9:0e:c6:ac:f2:f0:b9:38:f3: 15:7c:e0:ed:8a:34:bd:28:7d:78:58:b5:57:a7:67:f1:47:17: fe:f6:1b:b2:51:eb:57:83:b3:5d:50:e5:57:84:bf:d7:77:8a: 86:ce:8e:1e -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICF7EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTIw MTM2NThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNCQkVCMTc3RjY5MDU1 QzIxQTRCRDRDMkU3QkYzQUJFQUE2NEVCM0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDAolJ/zfDZA/eC25p6KERzR0PBgaMX+fDlLq+JGb9e4xdUfX0r XyBzrDm4FIfjCTsW0Kr6H+4a7lOhXb+DBmC28sQVRMYjcKTHifOa3rQLaDeD4kaJ k4Q8VM8xMiGBveM1rQ0BYwk5urD2l0O/51s2WksJduJ3HSy0CT3SF76rN7Oh79k0 cl1OR/RHX5MHn59q8HtbDuZQKMBB3/nPFeuJV3i63aELcA0hX8UCUePS24srceNz ptZ8ITMn2r1YIMg9hKLDsxIhllpfbC6uuTokgbn6pMfxfPvjy/L01b7Rn8Hbofko wxP+Zo4eVrl5Cj7qoWoFWZfDZ8FmZsGc2taTAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUO76xd/aQVcIaS9TC5786vqpk6z8wHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9PNzZ4ZF9hUVZjSWFTOVRDNTc4 NnZxcGs2ejgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAGw AACSMA0GCSqGSIb3DQEBCwUAA4IBAQDCCqIEmVM0/z2oBOOYmGSUlFvB6xXgu7r3 I6UR3l4LXIXsxG5Zyl73G1h2PwAkU5+41sFWiWPlp7YjxrylVEtu1HpoXKJmGAMd bMS5Vs5nyc82xajA4436CZvUhZKcOucdscENvEVXd7+g5pnH67dPjV4Nr4Sxz1Nn 5DJXcdSGVywiBXOoKMx61NvEJijkUaRov9CORJjOMKEihNwvvPAL3T4pcAffsQSh YVV1ND8XialLf+5wl+1qkykIdD5rEh9FNqapZwwV2du0U0pzYkXpDsas8vC5OPMV fODtijS9KH14WLVXp2fxRxf+9huyUetXg7NdUOVXhL/Xd4qGzo4e -----END CERTIFICATE-----Generated at Mon Apr 7 17:44:49 2025 by rpki-client