$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/XIjtiB61ik_Xhng-xMEosKSFE10.roa File: XIjtiB61ik_Xhng-xMEosKSFE10.roa (raw, json) Hash identifier: IZYqzXi6KdjpOLEVRxUQrOJ+O4gMaoCzx8zkvxJafQM= Subject key identifier: 5C:88:ED:88:1E:B5:8A:4F:D7:86:78:3E:C4:C1:28:B0:A4:85:13:5D Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 1187 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/XIjtiB61ik_Xhng-xMEosKSFE10.roa Signing time: Mon 26 Aug 2024 05:17:38 +0000 ROA not before: Mon 26 Aug 2024 05:17:38 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 23675 IP address blocks: 203.66.102.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4487 (0x1187) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 26 05:17:38 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5C88ED881EB58A4FD786783EC4C128B0A485135D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:55:b1:0d:4c:ec:bb:fc:fe:a3:ea:0d:38:3e: 29:22:15:5c:1e:31:26:d5:af:b1:1e:b2:f0:6a:db: 40:43:71:1c:79:d0:9a:55:fd:54:5f:74:4b:db:8d: 01:b4:fa:cd:97:5f:7a:54:52:a2:82:db:0d:73:b4: c3:7c:a6:c1:1b:e8:b7:f4:8b:93:25:3c:77:59:4a: 6f:fa:af:ac:a7:7c:49:60:6f:0e:89:5a:d5:76:45: 39:0a:c4:00:a7:77:e6:be:81:57:30:f2:ce:69:05: 60:75:c2:38:c7:bb:1c:6a:7c:53:28:77:4e:62:49: 8f:d1:e8:09:21:ed:bd:c5:50:a9:35:bb:fd:ad:c7: 4f:27:fb:e8:d1:dd:cc:1a:57:68:e6:d5:48:8c:75: b0:65:fc:ba:eb:fe:d0:6c:f7:61:fa:d5:e4:aa:d3: 2c:22:f9:b4:b1:a4:2f:c3:3c:67:96:06:65:32:75: e4:d1:3e:41:7a:7f:e9:b9:cc:fc:25:a0:06:12:51: 5b:99:9d:1f:4f:1b:0e:ac:89:8d:59:0d:40:ab:01: 5e:e7:b5:53:3e:84:10:dd:32:26:e8:09:7d:d1:4c: ea:33:7c:fa:a5:1d:29:99:f3:87:d9:39:68:af:3b: 6b:08:ba:97:f0:d5:64:77:b2:00:2c:6e:6b:f4:04: 71:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:88:ED:88:1E:B5:8A:4F:D7:86:78:3E:C4:C1:28:B0:A4:85:13:5D X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/XIjtiB61ik_Xhng-xMEosKSFE10.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.66.102.0/24 Signature Algorithm: sha256WithRSAEncryption 90:a4:20:f5:f4:dd:80:56:40:95:71:7a:9c:39:83:6e:a0:77: 2f:bc:75:11:6c:6a:88:9c:3b:52:cd:3e:55:5c:98:7b:18:65: b8:c7:ff:36:ad:79:06:2b:5d:2e:fe:90:c3:85:98:ed:fd:69: 51:55:05:91:ff:8b:80:fe:26:d7:7b:4e:11:da:a9:9d:20:1d: 10:8c:3e:9b:1a:e9:a4:42:b2:89:e7:7f:60:80:0b:ad:7e:12: be:db:75:7e:da:38:6c:87:7b:e9:e6:f9:b7:27:c0:76:cb:e5: 75:ea:22:67:a1:82:ad:a0:1e:24:6b:6d:9c:3a:9b:cf:cb:d3: 22:15:20:32:84:71:2e:be:98:ef:e9:30:9c:e5:f9:45:74:f2: b6:1f:0c:7a:87:52:93:39:b6:eb:25:c6:52:63:19:20:90:c5: 0f:b4:7a:3d:ae:28:cf:3f:6a:41:63:30:8f:d9:25:9d:7e:b0: f5:92:5c:6c:7d:72:0f:71:41:e8:da:69:f4:a2:4a:5e:7a:18: d2:8d:e9:21:9f:a4:33:f5:27:03:23:8d:1f:16:b3:1d:5a:2c: 3e:06:9b:f1:ab:4f:6d:8d:17:1e:10:32:c0:31:b4:74:df:eb: 7b:ac:6c:03:31:6e:c3:a4:6b:39:d6:f4:9f:47:29:7e:ba:b9: c7:f2:51:62 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICEYcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDA4MjYw NTE3MzhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDVDODhFRDg4MUVCNThB NEZENzg2NzgzRUM0QzEyOEIwQTQ4NTEzNUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD3VbENTOy7/P6j6g04PikiFVweMSbVr7EesvBq20BDcRx50JpV /VRfdEvbjQG0+s2XX3pUUqKC2w1ztMN8psEb6Lf0i5MlPHdZSm/6r6ynfElgbw6J WtV2RTkKxACnd+a+gVcw8s5pBWB1wjjHuxxqfFMod05iSY/R6Akh7b3FUKk1u/2t x08n++jR3cwaV2jm1UiMdbBl/Lrr/tBs92H61eSq0ywi+bSxpC/DPGeWBmUydeTR PkF6f+m5zPwloAYSUVuZnR9PGw6siY1ZDUCrAV7ntVM+hBDdMiboCX3RTOozfPql HSmZ84fZOWivO2sIupfw1WR3sgAsbmv0BHE5AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUXIjtiB61ik/Xhng+xMEosKSFE10wHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9YSWp0aUI2MWlrX1hobmcteE1F b3NLU0ZFMTAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy0Jm MA0GCSqGSIb3DQEBCwUAA4IBAQCQpCD19N2AVkCVcXqcOYNuoHcvvHURbGqInDtS zT5VXJh7GGW4x/82rXkGK10u/pDDhZjt/WlRVQWR/4uA/ibXe04R2qmdIB0QjD6b GumkQrKJ539ggAutfhK+23V+2jhsh3vp5vm3J8B2y+V16iJnoYKtoB4ka22cOpvP y9MiFSAyhHEuvpjv6TCc5flFdPK2Hwx6h1KTObbrJcZSYxkgkMUPtHo9rijPP2pB YzCP2SWdfrD1klxsfXIPcUHo2mn0okpeehjSjekhn6Qz9ScDI40fFrMdWiw+Bpvx q09tjRceEDLAMbR03+t7rGwDMW7DpGs51vSfRyl+urnH8lFi -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:07 2024 by rpki-client on console-ams.rpki-client.org