$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/UQngKSZNTp8VCsW8qAgnea9vyXc.roa File: UQngKSZNTp8VCsW8qAgnea9vyXc.roa (raw, json) Hash identifier: GbNsQYPi0+BgZMW9TotCH73/OYpFyivePfp9sAtiCpI= Subject key identifier: 51:09:E0:29:26:4D:4E:9F:15:0A:C5:BC:A8:08:27:79:AF:6F:C9:77 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 176C Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/UQngKSZNTp8VCsW8qAgnea9vyXc.roa Signing time: Wed 12 Feb 2025 01:36:41 +0000 ROA not before: Wed 12 Feb 2025 01:36:41 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 3462 IP address blocks: 211.20.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 02:06:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5996 (0x176c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Feb 12 01:36:41 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5109E029264D4E9F150AC5BCA8082779AF6FC977 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:c6:37:1d:1d:41:52:ce:11:a0:dd:40:a1:ff: 81:56:ba:4a:3b:e1:4b:1a:f4:14:ac:5c:06:28:14: 80:bb:e8:80:a7:8e:63:36:f8:84:1b:2f:cc:24:0a: bb:8d:1a:96:0e:2d:20:ec:e4:d0:39:95:16:1e:8d: 94:25:15:0c:51:f7:cd:b1:f7:4e:2e:dd:b1:18:f3: 07:e4:39:ff:5e:82:f6:74:e5:09:e6:80:6e:03:94: 3d:a2:42:cd:7e:35:e6:f1:a6:10:3d:ac:56:89:15: 54:08:89:a3:84:c1:79:c8:96:4c:a6:92:65:a8:e8: f5:74:c8:43:01:b2:bc:af:55:2e:b3:9c:12:fc:f6: 60:2a:8d:0e:71:d7:eb:63:1c:31:71:c6:90:9c:0c: 7d:16:05:70:8c:4b:4c:e0:8c:c8:a6:c9:60:e8:fa: a6:ba:e4:05:ca:6b:c2:62:a1:33:ec:c7:dc:4a:09: aa:a4:1e:06:72:4a:34:cd:d1:2f:24:3a:b8:ca:c8: a6:44:98:84:9f:66:e0:ab:1e:71:67:28:4e:d9:60: ee:0a:d1:ba:81:72:05:b9:82:09:83:35:3b:20:72: 4f:6f:48:fd:ab:e2:db:67:dc:a8:e5:1e:6b:21:b1: b6:f7:1a:e5:f5:7f:c0:c4:9a:6e:54:4f:9c:b7:d6: 0a:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:09:E0:29:26:4D:4E:9F:15:0A:C5:BC:A8:08:27:79:AF:6F:C9:77 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/UQngKSZNTp8VCsW8qAgnea9vyXc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.20.0.0/16 Signature Algorithm: sha256WithRSAEncryption af:92:a1:0c:d9:2d:cd:07:98:60:65:b1:6e:d0:36:82:f3:5d: 98:f7:7e:43:53:4d:aa:b3:56:a6:43:64:58:48:ab:81:7b:52: 58:1a:bf:ec:62:92:86:ec:c1:87:36:66:94:3c:9f:9d:06:d3: 17:19:da:5a:b3:7e:74:43:32:28:d3:49:48:54:34:80:f2:ad: cd:74:21:58:08:2d:4a:67:28:72:11:fd:29:12:1b:bb:25:be: 55:12:45:75:be:e7:e1:3a:47:6e:92:5f:4e:b0:5d:4e:b2:f2: 8a:4a:a1:7c:f2:33:02:d5:ca:ec:a8:89:99:d2:ef:40:df:c8: 80:8e:65:54:81:da:7d:78:19:72:b5:5c:7c:cd:46:78:54:d7: ac:94:d8:67:b3:76:e3:3e:53:4f:f0:8e:95:5e:33:e7:94:92: 4d:80:13:c7:94:30:5e:42:a0:38:eb:aa:5c:7f:70:01:d2:f8: 48:8b:dd:1f:2a:49:34:1c:75:9a:b7:1a:b8:18:32:19:f1:71: 7c:f0:36:54:eb:13:44:52:b4:4b:0f:c1:d5:dd:41:4a:9f:42: 31:37:40:c5:1e:0c:94:38:9c:42:6a:0f:f0:74:02:66:20:36: dc:76:8b:5a:8f:c8:60:a9:d0:97:56:45:35:cb:bb:ee:7a:88: 5b:68:f9:3e -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICF2wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTIw MTM2NDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDUxMDlFMDI5MjY0RDRF OUYxNTBBQzVCQ0E4MDgyNzc5QUY2RkM5NzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCjxjcdHUFSzhGg3UCh/4FWuko74Usa9BSsXAYoFIC76ICnjmM2 +IQbL8wkCruNGpYOLSDs5NA5lRYejZQlFQxR982x904u3bEY8wfkOf9egvZ05Qnm gG4DlD2iQs1+NebxphA9rFaJFVQIiaOEwXnIlkymkmWo6PV0yEMBsryvVS6znBL8 9mAqjQ5x1+tjHDFxxpCcDH0WBXCMS0zgjMimyWDo+qa65AXKa8JioTPsx9xKCaqk HgZySjTN0S8kOrjKyKZEmISfZuCrHnFnKE7ZYO4K0bqBcgW5ggmDNTsgck9vSP2r 4ttn3KjlHmshsbb3GuX1f8DEmm5UT5y31grFAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUUQngKSZNTp8VCsW8qAgnea9vyXcwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9VUW5nS1NaTlRwOFZDc1c4cUFn bmVhOXZ5WGMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMA0xQw DQYJKoZIhvcNAQELBQADggEBAK+SoQzZLc0HmGBlsW7QNoLzXZj3fkNTTaqzVqZD ZFhIq4F7Ulgav+xikobswYc2ZpQ8n50G0xcZ2lqzfnRDMijTSUhUNIDyrc10IVgI LUpnKHIR/SkSG7slvlUSRXW+5+E6R26SX06wXU6y8opKoXzyMwLVyuyoiZnS70Df yICOZVSB2n14GXK1XHzNRnhU16yU2GezduM+U0/wjpVeM+eUkk2AE8eUMF5CoDjr qlx/cAHS+EiL3R8qSTQcdZq3GrgYMhnxcXzwNlTrE0RStEsPwdXdQUqfQjE3QMUe DJQ4nEJqD/B0AmYgNtx2i1qPyGCp0JdWRTXLu+56iFto+T4= -----END CERTIFICATE-----Generated at Mon Apr 7 02:00:13 2025 by rpki-client