$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/Qg4Vy5nV7o2g1_66TBz3BPomqhs.roa File: Qg4Vy5nV7o2g1_66TBz3BPomqhs.roa (raw, json) Hash identifier: S/lqrHIKDbhtK+XpIepDnbW0pVbLI8X4dKB3CqKCb6w= Subject key identifier: 42:0E:15:CB:99:D5:EE:8D:A0:D7:FE:BA:4C:1C:F7:04:FA:26:AA:1B Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 1190 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Qg4Vy5nV7o2g1_66TBz3BPomqhs.roa Signing time: Mon 26 Aug 2024 05:17:41 +0000 ROA not before: Mon 26 Aug 2024 05:17:41 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 3462 IP address blocks: 210.59.138.128/27 maxlen: 27 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4496 (0x1190) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 26 05:17:41 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=420E15CB99D5EE8DA0D7FEBA4C1CF704FA26AA1B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:99:d4:7f:fc:67:10:4a:84:57:4e:3c:fe:11: 45:ef:67:8e:6d:99:19:68:47:da:65:8e:16:d2:b4: 99:52:0c:a5:e3:77:e1:4b:6d:35:fc:ab:dd:1c:b1: bc:95:b6:0d:c9:93:81:74:77:8e:f2:83:d7:3f:ea: 94:29:4b:63:16:a9:dc:f1:63:60:06:94:75:24:4b: fa:90:0e:f0:f4:69:c6:a5:6c:80:c6:b9:ec:6e:62: a2:45:9d:57:e0:06:ec:fa:4e:1b:29:be:3d:48:f1: 8f:f7:16:ad:3e:ad:50:31:d6:5f:3d:ee:3a:c0:06: 40:1a:b6:6c:47:20:2e:b0:80:d2:33:73:36:e3:b9: ef:cd:6c:a4:6a:37:a3:78:b0:ae:ae:9f:d9:67:01: e0:5a:93:9a:a0:3f:79:ee:cf:67:45:64:29:83:bd: 11:14:00:24:b5:38:76:35:d4:f5:51:44:a4:1e:3b: 9e:2f:ca:73:9d:78:43:e7:48:63:98:79:b7:fe:32: db:3f:f2:35:7f:e3:32:26:9a:6e:a5:ab:bc:da:8d: 8e:80:ad:fc:bc:c9:30:4b:fe:df:77:b4:b8:28:d0: bc:17:03:21:c4:e0:c5:ac:dc:a8:40:94:16:38:0f: 21:65:0b:2e:9b:8f:21:a2:ae:fc:e8:b7:25:22:17: 34:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:0E:15:CB:99:D5:EE:8D:A0:D7:FE:BA:4C:1C:F7:04:FA:26:AA:1B X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Qg4Vy5nV7o2g1_66TBz3BPomqhs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.59.138.128/27 Signature Algorithm: sha256WithRSAEncryption 3e:97:7b:cb:d3:ca:c2:af:e3:19:2f:c1:bb:22:f0:df:3d:45: ed:f2:93:5d:f1:3f:3a:24:fc:29:96:ce:98:15:3c:02:6e:19: 8e:ca:3c:0f:c9:13:78:52:2c:bb:62:99:b1:c5:aa:f2:18:0a: 5a:9f:2a:13:73:e0:45:9a:17:5d:f2:f7:85:8b:fc:9d:d9:ee: 76:8f:bd:f3:1e:96:6f:ff:ed:fb:e2:58:24:03:14:f2:f6:eb: 38:da:81:dd:c2:31:91:3f:3c:76:30:2b:7a:70:26:f4:a5:d0: a6:6c:97:57:cb:51:fb:a9:df:30:d5:df:ce:7a:90:71:ec:d6: 91:77:0c:48:e4:73:52:0f:f2:15:b8:4e:82:f9:42:53:f9:1a: 98:24:f4:f7:54:b0:bc:2b:ca:c2:6f:2a:68:cf:7f:90:31:58: ae:3a:86:b1:c2:a1:07:de:34:19:16:f7:77:b2:2a:8c:2c:b3: f5:a6:49:98:2e:22:4b:69:58:98:7e:2f:db:4b:9e:42:50:c3: 00:63:3b:66:34:3e:49:2b:fa:82:4a:45:c0:56:e6:1e:23:d5: b1:a8:ad:fb:61:38:41:37:6d:af:cf:38:c0:d9:01:f0:f5:55: 13:ae:fb:8c:b9:65:63:61:8b:8c:27:f4:e0:52:4c:b0:ed:12: 5e:6a:14:20 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICEZAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDA4MjYw NTE3NDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQyMEUxNUNCOTlENUVF OERBMEQ3RkVCQTRDMUNGNzA0RkEyNkFBMUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDgmdR//GcQSoRXTjz+EUXvZ45tmRloR9pljhbStJlSDKXjd+FL bTX8q90csbyVtg3Jk4F0d47yg9c/6pQpS2MWqdzxY2AGlHUkS/qQDvD0acalbIDG uexuYqJFnVfgBuz6Thspvj1I8Y/3Fq0+rVAx1l897jrABkAatmxHIC6wgNIzczbj ue/NbKRqN6N4sK6un9lnAeBak5qgP3nuz2dFZCmDvREUACS1OHY11PVRRKQeO54v ynOdeEPnSGOYebf+Mts/8jV/4zImmm6lq7zajY6Arfy8yTBL/t93tLgo0LwXAyHE 4MWs3KhAlBY4DyFlCy6bjyGirvzotyUiFzQtAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUQg4Vy5nV7o2g1/66TBz3BPomqhswHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9RZzRWeTVuVjdvMmcxXzY2VEJ6 M0JQb21xaHMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAATAHAwUF0juK gDANBgkqhkiG9w0BAQsFAAOCAQEAPpd7y9PKwq/jGS/BuyLw3z1F7fKTXfE/OiT8 KZbOmBU8Am4Zjso8D8kTeFIsu2KZscWq8hgKWp8qE3PgRZoXXfL3hYv8ndnudo+9 8x6Wb//t++JYJAMU8vbrONqB3cIxkT88djArenAm9KXQpmyXV8tR+6nfMNXfznqQ cezWkXcMSORzUg/yFbhOgvlCU/kamCT091SwvCvKwm8qaM9/kDFYrjqGscKhB940 GRb3d7IqjCyz9aZJmC4iS2lYmH4v20ueQlDDAGM7ZjQ+SSv6gkpFwFbmHiPVsait +2E4QTdtr884wNkB8PVVE677jLllY2GLjCf04FJMsO0SXmoUIA== -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:38 2024 by rpki-client on console-fra.rpki-client.org