$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/WBipdb5Ao1FCE75CSfyVOBVZJ6Y.roa File: WBipdb5Ao1FCE75CSfyVOBVZJ6Y.roa (raw, json) Hash identifier: CtC9QVRJsETNgzvkmfQlusqemIXip1oxteGSQQfZGsQ= Subject key identifier: 58:18:A9:75:BE:40:A3:51:42:13:BE:42:49:FC:95:38:15:59:27:A6 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 11B6 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WBipdb5Ao1FCE75CSfyVOBVZJ6Y.roa Signing time: Mon 26 Aug 2024 05:17:51 +0000 ROA not before: Mon 26 Aug 2024 05:17:51 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131660 IP address blocks: 2001:b000:59c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4534 (0x11b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 26 05:17:51 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5818A975BE40A3514213BE4249FC9538155927A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:1e:ad:90:24:6d:18:73:34:28:57:ab:53:d9: ca:ca:8d:e3:67:31:df:70:bf:6e:4c:7a:c8:e9:36: 58:48:cd:95:f7:23:20:ad:9a:1c:ed:d6:ee:a9:0a: 99:65:68:da:a9:e8:7c:22:ba:27:85:6f:da:c7:17: 0a:86:5c:c6:e7:b0:34:c2:bc:69:87:54:e9:8d:9e: 61:c4:e3:91:62:73:d6:57:4a:e1:70:9e:6e:b5:d4: 5c:a7:b7:e6:94:89:0d:90:d9:7d:60:ca:7e:ab:7a: 4e:ff:74:fb:1c:47:e2:5b:92:57:b6:d2:89:79:cc: 82:05:ed:cc:66:be:1d:4b:55:6b:6a:45:70:f1:c3: 47:ed:37:b2:04:15:98:58:e1:3e:3b:20:f2:c4:7a: 60:7d:97:94:c1:d4:0e:a2:dd:8c:00:33:70:4c:9b: d9:87:7a:08:a1:5d:1d:7a:c1:af:41:48:96:2d:ae: 95:8a:4a:2c:73:af:38:35:2a:72:95:da:92:1b:5c: 50:23:6b:63:8f:70:21:63:1e:89:b2:c2:b5:9c:86: 73:57:3b:dc:25:8a:8d:1b:e4:fd:b7:92:9a:4d:07: 9e:dc:bf:66:9e:95:08:c1:52:e2:a0:5a:5a:e4:4c: 71:6b:ec:58:a9:e7:9b:83:03:c9:7e:11:2c:1b:d0: 31:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:18:A9:75:BE:40:A3:51:42:13:BE:42:49:FC:95:38:15:59:27:A6 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WBipdb5Ao1FCE75CSfyVOBVZJ6Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:b000:59c::/48 Signature Algorithm: sha256WithRSAEncryption 8a:b4:f5:68:67:eb:eb:6a:48:11:76:c8:5b:53:2b:be:be:02: b7:fd:15:ad:41:f5:8a:a0:03:1d:68:c8:b4:18:b7:7c:60:e1: 31:48:9f:61:cf:ec:9a:14:e1:78:31:da:11:ca:96:db:10:ca: 76:53:ac:9d:9e:20:f5:9d:24:1d:a5:62:ae:c0:50:9c:fb:fc: 51:07:0e:9c:f9:8b:a9:e4:20:e0:7d:91:40:08:fb:e2:b6:f9: 15:ab:39:01:db:d7:8c:f6:f0:0d:7c:18:6f:a9:b4:59:0d:7d: 1e:2c:e1:bf:16:7c:bc:39:c1:23:9d:11:5d:4e:60:c6:41:89: cc:bf:78:cb:32:49:2b:62:76:6f:14:d1:0d:ef:31:23:b4:88: 6e:91:ce:70:fc:59:93:8c:0f:f1:69:f0:ba:c7:94:aa:17:43: 3d:23:38:8b:71:21:18:3e:b2:f1:2f:85:10:45:5c:86:59:2f: 2f:9f:25:27:a0:fa:28:4d:15:40:5f:a7:c2:1a:1b:26:6a:66: 09:25:f0:31:e0:3e:2a:28:ab:ce:70:ce:ed:16:6c:fc:c5:70: ef:0b:c8:c9:c5:c6:3e:92:10:15:22:53:16:55:22:6f:8a:cf: c2:e3:ac:c8:2d:a1:9a:30:c1:8d:c3:ca:2e:0e:c8:0b:bb:50: e5:59:4e:5d -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICEbYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDA4MjYw NTE3NTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU4MThBOTc1QkU0MEEz NTE0MjEzQkU0MjQ5RkM5NTM4MTU1OTI3QTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+Hq2QJG0YczQoV6tT2crKjeNnMd9wv25MesjpNlhIzZX3IyCt mhzt1u6pCpllaNqp6HwiuieFb9rHFwqGXMbnsDTCvGmHVOmNnmHE45Fic9ZXSuFw nm611Fynt+aUiQ2Q2X1gyn6rek7/dPscR+Jbkle20ol5zIIF7cxmvh1LVWtqRXDx w0ftN7IEFZhY4T47IPLEemB9l5TB1A6i3YwAM3BMm9mHegihXR16wa9BSJYtrpWK Sixzrzg1KnKV2pIbXFAja2OPcCFjHomywrWchnNXO9wlio0b5P23kppNB57cv2ae lQjBUuKgWlrkTHFr7Fip55uDA8l+ESwb0DFxAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUWBipdb5Ao1FCE75CSfyVOBVZJ6YwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9XQmlwZGI1QW8xRkNFNzVDU2Z5 Vk9CVlpKNlkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAGw AAWcMA0GCSqGSIb3DQEBCwUAA4IBAQCKtPVoZ+vrakgRdshbUyu+vgK3/RWtQfWK oAMdaMi0GLd8YOExSJ9hz+yaFOF4MdoRypbbEMp2U6ydniD1nSQdpWKuwFCc+/xR Bw6c+Yup5CDgfZFACPvitvkVqzkB29eM9vANfBhvqbRZDX0eLOG/Fny8OcEjnRFd TmDGQYnMv3jLMkkrYnZvFNEN7zEjtIhukc5w/FmTjA/xafC6x5SqF0M9IziLcSEY PrLxL4UQRVyGWS8vnyUnoPooTRVAX6fCGhsmamYJJfAx4D4qKKvOcM7tFmz8xXDv C8jJxcY+khAVIlMWVSJvis/C46zILaGaMMGNw8ouDsgLu1DlWU5d -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:51 2024 by rpki-client on console-fra.rpki-client.org