$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/VJnyYvG7yHIUmuezdaBm-7iX39g.roa File: VJnyYvG7yHIUmuezdaBm-7iX39g.roa (raw, json) Hash identifier: rIpVczsVq1OTE5VUSx3fE58drBOfIASudTToxnbd4VM= Subject key identifier: 54:99:F2:62:F1:BB:C8:72:14:9A:E7:B3:75:A0:66:FB:B8:97:DF:D8 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 11A1 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/VJnyYvG7yHIUmuezdaBm-7iX39g.roa Signing time: Mon 26 Aug 2024 05:17:45 +0000 ROA not before: Mon 26 Aug 2024 05:17:45 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17421 IP address blocks: 111.80.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4513 (0x11a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 26 05:17:45 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5499F262F1BBC872149AE7B375A066FBB897DFD8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:34:4a:9b:26:76:29:f7:fd:d1:6b:d3:8a:a4: 8d:0e:ad:0f:cb:fc:92:d5:2f:8a:04:d9:56:0f:ec: 73:15:07:4a:a7:81:e8:9f:28:7f:1b:bf:d3:1b:ff: 51:28:1d:10:a7:22:d9:93:81:0f:5e:2d:2f:77:2d: 5c:c1:aa:ca:7d:0a:59:17:61:41:a2:52:5c:bd:1f: 50:d3:1a:3e:f7:62:4b:ce:43:39:f3:29:bc:e3:df: ad:8a:cf:3b:6e:7f:6f:58:ec:3b:8c:38:db:e6:fc: f2:4a:06:f7:df:25:80:e3:00:c9:9b:89:f0:f6:00: 91:18:c7:ec:6e:37:f9:44:4a:58:b6:bf:da:32:cc: 61:2b:e9:47:96:1f:9c:d6:42:7d:bc:c9:cc:86:95: e4:b1:4d:e2:25:6e:86:9a:70:7a:53:b5:81:87:b9: ef:36:01:0f:af:46:94:3f:cd:21:75:87:9c:46:27: 47:fb:b6:b4:45:2b:9b:7c:2f:f8:60:07:12:42:8b: 90:40:0d:89:46:44:d2:6d:33:48:1a:bb:e4:1c:b1: 54:0e:e0:56:c6:70:49:fe:c1:3f:a8:37:39:ff:49: bd:55:96:64:c7:8a:ed:3a:ee:b7:db:2a:67:15:7e: c3:d9:92:f7:49:f8:b5:2a:b4:33:f3:27:5c:5c:3d: a5:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:99:F2:62:F1:BB:C8:72:14:9A:E7:B3:75:A0:66:FB:B8:97:DF:D8 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/VJnyYvG7yHIUmuezdaBm-7iX39g.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 111.80.0.0/14 Signature Algorithm: sha256WithRSAEncryption 5b:0a:8c:ef:fd:cd:9f:1a:d5:5d:2d:e7:30:74:36:04:ae:03: cc:66:37:7f:f4:73:1f:ea:a2:bc:97:1a:f7:31:67:52:0a:3d: b2:3f:4a:d0:c7:80:7e:dc:dd:75:f5:90:b4:92:e9:6e:55:2f: ff:58:1f:76:38:56:17:a2:02:57:44:33:46:42:d9:a0:8f:12: 11:d0:28:c5:39:f3:5e:34:8a:e3:8a:0c:3b:98:07:29:37:74: c7:be:98:89:a9:f6:df:33:66:4c:a6:40:51:a1:31:37:25:d9: c6:7f:b2:78:07:8f:15:5a:bd:44:1f:dd:11:14:2c:e4:c2:7d: f7:8b:bb:ca:ce:9f:55:53:96:9e:a5:d3:b5:8b:a6:3f:af:20: a3:13:e3:74:d1:c4:88:71:12:7b:f1:c3:9f:8f:ad:60:3e:b1: c4:86:74:80:68:9b:45:70:d6:a8:76:a4:94:3e:bc:97:f7:eb: 44:69:10:af:9e:41:fe:9b:9b:7e:bd:a6:da:66:da:8b:d3:2d: f3:51:f9:21:a9:e1:1d:8f:ee:91:b9:29:22:6d:69:fd:11:cd: 3f:ba:90:05:8c:de:02:89:48:ec:34:a0:77:8a:e6:c5:ef:56: c4:36:ac:da:0c:9c:45:67:79:75:78:da:92:23:de:06:ce:10: 71:2e:e1:38 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICEaEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDA4MjYw NTE3NDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU0OTlGMjYyRjFCQkM4 NzIxNDlBRTdCMzc1QTA2NkZCQjg5N0RGRDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD4NEqbJnYp9/3Ra9OKpI0OrQ/L/JLVL4oE2VYP7HMVB0qngeif KH8bv9Mb/1EoHRCnItmTgQ9eLS93LVzBqsp9ClkXYUGiUly9H1DTGj73YkvOQznz Kbzj362Kzztuf29Y7DuMONvm/PJKBvffJYDjAMmbifD2AJEYx+xuN/lESli2v9oy zGEr6UeWH5zWQn28ycyGleSxTeIlboaacHpTtYGHue82AQ+vRpQ/zSF1h5xGJ0f7 trRFK5t8L/hgBxJCi5BADYlGRNJtM0gau+QcsVQO4FbGcEn+wT+oNzn/Sb1VlmTH iu067rfbKmcVfsPZkvdJ+LUqtDPzJ1xcPaW9AgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUVJnyYvG7yHIUmuezdaBm+7iX39gwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9WSm55WXZHN3lISVVtdWV6ZGFC bS03aVgzOWcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMCb1Aw DQYJKoZIhvcNAQELBQADggEBAFsKjO/9zZ8a1V0t5zB0NgSuA8xmN3/0cx/qoryX GvcxZ1IKPbI/StDHgH7c3XX1kLSS6W5VL/9YH3Y4VheiAldEM0ZC2aCPEhHQKMU5 8140iuOKDDuYByk3dMe+mImp9t8zZkymQFGhMTcl2cZ/sngHjxVavUQf3REULOTC ffeLu8rOn1VTlp6l07WLpj+vIKMT43TRxIhxEnvxw5+PrWA+scSGdIBom0Vw1qh2 pJQ+vJf360RpEK+eQf6bm369ptpm2ovTLfNR+SGp4R2P7pG5KSJtaf0RzT+6kAWM 3gKJSOw0oHeK5sXvVsQ2rNoMnEVneXV42pIj3gbOEHEu4Tg= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:51 2024 by rpki-client on console-fra.rpki-client.org