$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/PPN-gXgM2yeUiljzRSzoGNimNQo.roa File: PPN-gXgM2yeUiljzRSzoGNimNQo.roa (raw, json) Hash identifier: flYhIt1eILrX5i/dyz5Qwi4IKMDamesZBcgpDgqKqs0= Subject key identifier: 3C:F3:7E:81:78:0C:DB:27:94:8A:58:F3:45:2C:E8:18:D8:A6:35:0A Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 11FE Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/PPN-gXgM2yeUiljzRSzoGNimNQo.roa Signing time: Mon 26 Aug 2024 05:18:09 +0000 ROA not before: Mon 26 Aug 2024 05:18:09 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 3462 IP address blocks: 61.218.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4606 (0x11fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 26 05:18:09 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3CF37E81780CDB27948A58F3452CE818D8A6350A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:be:ca:ef:1a:88:f2:d2:8b:bc:e2:18:e1:ec: ee:7a:68:87:b8:38:c8:03:42:28:7b:e1:a9:58:cd: 43:f9:f3:50:2c:59:28:51:2d:49:ff:87:ed:48:b6: d8:0f:7b:81:45:ad:3b:b8:44:e4:0c:8f:c6:93:f1: 08:82:32:6b:57:76:2c:67:79:5c:62:4e:5b:45:d6: c6:44:59:52:52:21:b9:fd:f4:0d:1c:44:ae:d1:be: 39:37:e1:28:8b:87:11:a4:d8:d3:c1:bb:93:60:75: 8a:a3:77:e8:4a:3f:43:cc:9d:95:cd:aa:d4:a9:bf: 57:62:7a:9c:17:04:ea:c1:36:89:00:11:6a:04:f7: 4d:95:d9:9a:e5:0b:8a:e4:73:2c:66:a4:a6:9f:88: b2:75:09:d4:b0:e1:df:d0:b3:ad:4b:d2:59:b6:2b: 9f:9c:5e:c8:fb:13:b0:d2:bc:78:05:e2:09:9a:ab: a9:3d:07:db:f1:06:29:4f:5d:af:70:b3:31:82:de: c8:0f:34:e5:4f:98:18:89:40:0b:45:4c:34:6d:4f: 3d:6f:5d:27:9c:33:5f:44:23:12:1b:bb:20:94:b1: 94:84:dd:6a:74:33:74:20:5b:f0:af:ce:37:a8:2f: 2d:23:6d:0a:90:7c:2e:3a:a5:af:9a:7a:ec:9c:57: 82:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:F3:7E:81:78:0C:DB:27:94:8A:58:F3:45:2C:E8:18:D8:A6:35:0A X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/PPN-gXgM2yeUiljzRSzoGNimNQo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.218.0.0/15 Signature Algorithm: sha256WithRSAEncryption 9d:8c:b2:10:ab:76:d3:59:d5:0b:74:a2:50:c0:c8:61:ba:02: 55:9f:09:fc:2f:40:1e:ee:e6:31:9e:e5:ce:03:51:b5:5f:d2: 8f:1e:6f:8a:f4:1e:d0:8a:90:4d:8b:94:cb:2f:62:b3:20:a9: 2a:1b:21:ba:04:74:40:ff:5a:61:2b:14:5c:26:90:b4:96:81: 03:36:80:53:42:f0:46:58:e1:07:15:e6:44:18:66:cd:77:47: ec:b3:3b:ca:25:35:90:0f:bf:02:79:dc:9f:68:2c:28:e0:de: 13:cc:e6:49:1e:46:9e:ed:9b:50:1f:a6:91:d0:1f:71:e8:d9: 87:1d:b9:99:43:e2:74:cf:5d:9e:3e:57:81:24:d1:1a:47:85: af:1e:db:03:ce:a3:e2:ae:ac:05:3a:25:60:c0:1f:f1:d6:a4: f2:a4:5c:03:46:20:d9:09:b1:8d:f1:de:b7:58:f9:60:e2:32: 99:63:17:f7:d6:68:7c:90:da:ce:40:9e:15:cf:b3:44:d4:76: a2:64:19:8b:3c:d5:2a:9e:92:48:44:1e:94:6e:ca:c1:ae:ed: 27:14:c1:1a:6e:b7:b8:22:4f:9d:d8:83:05:65:bd:81:0d:e2: 53:7f:a2:13:f8:d5:4f:a6:b9:93:56:3b:82:fc:4a:31:96:c9: 51:6a:05:0e -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICEf4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDA4MjYw NTE4MDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNDRjM3RTgxNzgwQ0RC Mjc5NDhBNThGMzQ1MkNFODE4RDhBNjM1MEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRvsrvGojy0ou84hjh7O56aIe4OMgDQih74alYzUP581AsWShR LUn/h+1IttgPe4FFrTu4ROQMj8aT8QiCMmtXdixneVxiTltF1sZEWVJSIbn99A0c RK7Rvjk34SiLhxGk2NPBu5NgdYqjd+hKP0PMnZXNqtSpv1diepwXBOrBNokAEWoE 902V2ZrlC4rkcyxmpKafiLJ1CdSw4d/Qs61L0lm2K5+cXsj7E7DSvHgF4gmaq6k9 B9vxBilPXa9wszGC3sgPNOVPmBiJQAtFTDRtTz1vXSecM19EIxIbuyCUsZSE3Wp0 M3QgW/CvzjeoLy0jbQqQfC46pa+aeuycV4IzAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUPPN+gXgM2yeUiljzRSzoGNimNQowHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9QUE4tZ1hnTTJ5ZVVpbGp6UlN6 b0dOaW1OUW8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMBPdow DQYJKoZIhvcNAQELBQADggEBAJ2MshCrdtNZ1Qt0olDAyGG6AlWfCfwvQB7u5jGe 5c4DUbVf0o8eb4r0HtCKkE2LlMsvYrMgqSobIboEdED/WmErFFwmkLSWgQM2gFNC 8EZY4QcV5kQYZs13R+yzO8olNZAPvwJ53J9oLCjg3hPM5kkeRp7tm1AfppHQH3Ho 2YcduZlD4nTPXZ4+V4Ek0RpHha8e2wPOo+KurAU6JWDAH/HWpPKkXANGINkJsY3x 3rdY+WDiMpljF/fWaHyQ2s5AnhXPs0TUdqJkGYs81SqekkhEHpRuysGu7ScUwRpu t7giT53YgwVlvYEN4lN/ohP41U+muZNWO4L8SjGWyVFqBQ4= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:38 2024 by rpki-client on console-fra.rpki-client.org