$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/TLnldUmgv8dTXeAi24KYlxOVtGw.roa File: TLnldUmgv8dTXeAi24KYlxOVtGw.roa (raw, json) Hash identifier: 8PQ++iVfitUMvAwj/qUuOyF4Ot4y9KJRQkoPYxTWy3U= Subject key identifier: 4C:B9:E5:75:49:A0:BF:C7:53:5D:E0:22:DB:82:98:97:13:95:B4:6C Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 11C4 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/TLnldUmgv8dTXeAi24KYlxOVtGw.roa Signing time: Mon 26 Aug 2024 05:17:55 +0000 ROA not before: Mon 26 Aug 2024 05:17:55 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 3462 IP address blocks: 61.216.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4548 (0x11c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 26 05:17:55 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4CB9E57549A0BFC7535DE022DB8298971395B46C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b2:10:6a:5d:10:0a:96:29:25:75:33:d3:07: c0:e9:5e:e9:e3:40:9a:d1:17:0f:b2:10:cb:1d:22: 40:a0:a2:a6:8e:f4:d5:f1:16:45:37:88:8b:02:fc: 50:62:33:47:b1:ee:77:e7:19:ca:45:2d:aa:da:0b: eb:8c:87:26:bb:0c:d7:3e:62:77:e5:85:f7:28:2b: 0e:85:cf:bd:bb:fc:03:53:67:d5:0b:a4:49:55:fd: 07:f5:ec:98:26:ac:99:54:1b:0a:e7:36:b2:7d:26: 7e:e0:9e:3e:e2:a6:d4:72:49:7e:9b:6d:2f:eb:f1: 40:9e:17:fe:c1:2f:d8:bc:78:12:e6:9c:15:2c:06: 99:1e:a5:36:45:09:0a:e7:66:38:07:f8:b3:f3:01: 0e:0a:a9:7e:48:97:30:44:92:ac:40:9c:16:ee:e0: 94:db:f5:71:0f:f5:75:ad:74:0d:9d:41:1d:1c:19: 41:18:86:f4:b2:f0:8e:22:ea:af:de:6d:e0:63:b5: 62:71:4e:a7:31:2a:d9:ea:8c:00:cf:b5:82:99:76: 89:29:f8:53:9d:f6:66:d9:f9:96:46:6f:f2:c3:2a: 01:39:47:37:6d:94:5c:c7:f4:99:fc:bf:d5:fe:ac: 03:ff:d3:fc:b7:ef:f0:2a:4a:14:cb:a1:3d:d3:6f: 8b:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:B9:E5:75:49:A0:BF:C7:53:5D:E0:22:DB:82:98:97:13:95:B4:6C X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/TLnldUmgv8dTXeAi24KYlxOVtGw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.216.0.0/16 Signature Algorithm: sha256WithRSAEncryption 41:27:8c:1a:b7:15:90:51:c0:52:43:eb:c1:6a:25:b4:38:5a: ad:1e:dd:12:37:29:9d:56:28:c8:b0:04:42:c2:c0:2b:7e:6e: 7e:26:3e:98:8f:f9:93:89:7c:97:11:1b:90:ea:8e:6d:80:8f: 38:af:96:c5:f9:42:8d:03:b7:bc:69:f2:ba:d4:4c:2e:cc:02: 8f:3d:6d:ad:15:41:ae:90:c5:44:ae:0c:1a:77:4d:6b:5c:31: d0:dc:42:67:b7:fd:02:cb:ec:6e:f6:e6:1d:36:1c:53:bf:a6: 0b:63:75:fc:19:17:da:d6:96:d0:86:c9:90:c2:d2:b5:e0:e6: d5:45:e2:d4:cf:56:c2:a3:07:ad:42:6d:a6:8a:d8:41:da:e6: 2c:7e:14:d5:47:cb:44:ae:ee:9a:cb:d7:dc:d2:6c:15:4b:3e: b9:ce:4a:87:53:10:23:e2:61:20:ae:78:40:60:86:d9:6f:32: 26:a1:c9:14:03:43:92:a4:4a:22:a1:d9:dc:2e:e6:ff:59:e9: 4f:ed:f1:ad:eb:04:57:94:4e:e3:0a:49:cd:8c:ec:d2:22:49: 38:27:f1:92:2b:63:0d:f3:f6:ac:7b:66:9a:b6:1a:a2:3d:e1: cd:e9:be:91:17:04:60:d6:91:b5:fd:1a:1f:2f:24:8a:3a:dc: fd:8e:0f:69 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICEcQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDA4MjYw NTE3NTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDRDQjlFNTc1NDlBMEJG Qzc1MzVERTAyMkRCODI5ODk3MTM5NUI0NkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxshBqXRAKlikldTPTB8DpXunjQJrRFw+yEMsdIkCgoqaO9NXx FkU3iIsC/FBiM0ex7nfnGcpFLaraC+uMhya7DNc+YnflhfcoKw6Fz727/ANTZ9UL pElV/Qf17JgmrJlUGwrnNrJ9Jn7gnj7iptRySX6bbS/r8UCeF/7BL9i8eBLmnBUs BpkepTZFCQrnZjgH+LPzAQ4KqX5IlzBEkqxAnBbu4JTb9XEP9XWtdA2dQR0cGUEY hvSy8I4i6q/ebeBjtWJxTqcxKtnqjADPtYKZdokp+FOd9mbZ+ZZGb/LDKgE5Rzdt lFzH9Jn8v9X+rAP/0/y37/AqShTLoT3Tb4sJAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUTLnldUmgv8dTXeAi24KYlxOVtGwwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9UTG5sZFVtZ3Y4ZFRYZUFpMjRL WWx4T1Z0R3cucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAPdgw DQYJKoZIhvcNAQELBQADggEBAEEnjBq3FZBRwFJD68FqJbQ4Wq0e3RI3KZ1WKMiw BELCwCt+bn4mPpiP+ZOJfJcRG5Dqjm2AjzivlsX5Qo0Dt7xp8rrUTC7MAo89ba0V Qa6QxUSuDBp3TWtcMdDcQme3/QLL7G725h02HFO/pgtjdfwZF9rWltCGyZDC0rXg 5tVF4tTPVsKjB61CbaaK2EHa5ix+FNVHy0Su7prL19zSbBVLPrnOSodTECPiYSCu eEBghtlvMiahyRQDQ5KkSiKh2dwu5v9Z6U/t8a3rBFeUTuMKSc2M7NIiSTgn8ZIr Yw3z9qx7Zpq2GqI94c3pvpEXBGDWkbX9Gh8vJIo63P2OD2k= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:32 2024 by rpki-client on console-ams.rpki-client.org