$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/W9dYOR34UTJ6EnEzpMEDE6D25us.roa File: W9dYOR34UTJ6EnEzpMEDE6D25us.roa (raw, json) Hash identifier: DjmvaQgG3KzIHWw4XdUOfqrZrBHtu5Bpf5nNktSIfFs= Subject key identifier: 5B:D7:58:39:1D:F8:51:32:7A:12:71:33:A4:C1:03:13:A0:F6:E6:EB Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 17A3 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/W9dYOR34UTJ6EnEzpMEDE6D25us.roa Signing time: Wed 12 Feb 2025 01:36:54 +0000 ROA not before: Wed 12 Feb 2025 01:36:54 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 142005 IP address blocks: 210.242.83.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6051 (0x17a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Feb 12 01:36:54 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5BD758391DF851327A127133A4C10313A0F6E6EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:93:0e:f9:23:d1:2e:d7:df:5f:ca:8a:f4:f5: bc:85:bd:e7:96:82:a6:7a:21:0d:d9:0c:d3:2b:99: 5c:ac:cc:1d:73:a9:e2:37:d5:cd:79:29:df:94:aa: da:66:a9:19:c2:95:76:ab:83:12:cc:79:6e:e6:3b: ff:87:03:bb:ba:b9:18:9f:60:b9:71:d9:8a:34:19: 85:e0:c7:0b:b2:92:f8:fe:9a:10:41:43:7a:a7:91: 15:7f:bc:05:30:f1:5e:26:ba:01:4d:e4:d9:97:76: 09:67:f8:06:ce:2d:61:3a:f4:35:7e:81:49:7c:70: 6d:58:2c:60:9d:fd:0a:2f:d0:72:6d:88:d7:4b:90: 4f:35:8b:cf:0c:93:69:81:ae:55:04:f5:a7:bb:2c: 21:2e:15:1f:b1:82:3b:47:b7:20:be:e4:25:69:2f: 83:93:f4:7e:f7:97:28:d0:be:02:a7:08:ff:f4:60: f0:98:ee:cf:42:63:d4:90:d8:9a:cc:48:7f:d6:c5: a2:d1:0a:ae:4a:76:d0:74:73:dc:ff:88:4c:84:54: b1:cf:8d:a1:f9:c3:07:f9:24:b5:cb:c3:08:d6:30: 5c:be:94:ca:4b:c1:28:8d:c0:01:42:af:76:9c:a1: 26:70:87:61:0c:12:5e:1d:9e:57:43:47:4a:a8:04: 3b:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:D7:58:39:1D:F8:51:32:7A:12:71:33:A4:C1:03:13:A0:F6:E6:EB X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/W9dYOR34UTJ6EnEzpMEDE6D25us.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.242.83.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:56:99:34:2d:95:a1:db:9a:55:0b:a4:fb:18:3f:00:9c:8f: cf:d1:0d:bb:dc:84:c5:5b:10:9b:bd:a8:85:5e:28:eb:b5:5b: 7b:2c:99:85:81:7e:3c:11:bd:42:91:9f:17:f5:5e:4b:8f:d1: 35:0b:0c:74:d8:06:79:5f:c2:08:dd:58:b8:09:f4:db:9b:b8: 74:5f:e3:b0:01:66:50:19:bb:e5:98:90:56:7f:8d:91:77:81: f8:4e:a0:6c:9c:8f:07:5c:46:af:94:47:00:f4:51:f9:5a:15: cd:8c:86:ac:98:91:be:2e:10:a4:78:a3:83:56:9e:72:c4:12: 2e:92:f3:5b:1d:c7:17:44:e8:4d:af:78:c7:27:fa:8e:31:9e: 3b:38:68:6e:78:fd:ff:9a:5f:ed:3f:6f:66:dd:ca:10:9a:44: 32:c6:19:ac:03:e1:95:5b:5e:7f:e6:8a:69:b2:de:ad:24:34: 82:a9:16:f7:0a:85:6a:ed:41:b4:3e:50:37:d4:bd:f1:08:54: 06:db:bd:7c:b4:d8:71:94:5a:2d:aa:23:54:7a:58:10:de:7e: b4:a6:d0:02:35:21:3b:ed:ce:ac:a7:bd:3d:2c:cd:23:42:8e: 29:5e:f3:4f:b3:93:f6:ff:3d:61:d3:3d:57:ce:9d:b3:6d:46: 38:1a:d1:57 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICF6MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTIw MTM2NTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDVCRDc1ODM5MURGODUx MzI3QTEyNzEzM0E0QzEwMzEzQTBGNkU2RUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDokw75I9Eu199fyor09byFveeWgqZ6IQ3ZDNMrmVyszB1zqeI3 1c15Kd+UqtpmqRnClXargxLMeW7mO/+HA7u6uRifYLlx2Yo0GYXgxwuykvj+mhBB Q3qnkRV/vAUw8V4mugFN5NmXdgln+AbOLWE69DV+gUl8cG1YLGCd/Qov0HJtiNdL kE81i88Mk2mBrlUE9ae7LCEuFR+xgjtHtyC+5CVpL4OT9H73lyjQvgKnCP/0YPCY 7s9CY9SQ2JrMSH/WxaLRCq5KdtB0c9z/iEyEVLHPjaH5wwf5JLXLwwjWMFy+lMpL wSiNwAFCr3acoSZwh2EMEl4dnldDR0qoBDuRAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUW9dYOR34UTJ6EnEzpMEDE6D25uswHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9XOWRZT1IzNFVUSjZFbkV6cE1F REU2RDI1dXMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA0vJT MA0GCSqGSIb3DQEBCwUAA4IBAQBcVpk0LZWh25pVC6T7GD8AnI/P0Q273ITFWxCb vaiFXijrtVt7LJmFgX48Eb1CkZ8X9V5Lj9E1Cwx02AZ5X8II3Vi4CfTbm7h0X+Ow AWZQGbvlmJBWf42Rd4H4TqBsnI8HXEavlEcA9FH5WhXNjIasmJG+LhCkeKODVp5y xBIukvNbHccXROhNr3jHJ/qOMZ47OGhueP3/ml/tP29m3coQmkQyxhmsA+GVW15/ 5oppst6tJDSCqRb3CoVq7UG0PlA31L3xCFQG2718tNhxlFotqiNUelgQ3n60ptAC NSE77c6sp709LM0jQo4pXvNPs5P2/z1h0z1Xzp2zbUY4GtFX -----END CERTIFICATE-----Generated at Wed Feb 19 22:36:05 2025 by rpki-client