$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/XYxibMdNLwtLORRQ3h_pLl7tFWU.roa File: XYxibMdNLwtLORRQ3h_pLl7tFWU.roa (raw, json) Hash identifier: 6KeRepWGD6Rwm/03WeU058Lg7rvtXPV1WPNv1N8MrmQ= Subject key identifier: 5D:8C:62:6C:C7:4D:2F:0B:4B:39:14:50:DE:1F:E9:2E:5E:ED:15:65 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 1205 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/XYxibMdNLwtLORRQ3h_pLl7tFWU.roa Signing time: Mon 26 Aug 2024 05:18:10 +0000 ROA not before: Mon 26 Aug 2024 05:18:10 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 3462 IP address blocks: 202.39.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4613 (0x1205) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 26 05:18:10 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5D8C626CC74D2F0B4B391450DE1FE92E5EED1565 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:c3:df:70:7e:6c:c3:13:8c:7b:1b:69:d7:c7: b7:24:9d:f0:4c:e4:ec:9e:7b:af:fe:c5:0d:7d:5c: 17:90:d3:52:c1:c2:0d:11:df:71:4f:df:54:fc:bb: 69:bc:e5:b6:20:b7:00:f0:a7:35:95:96:3c:8a:5f: 31:e2:ac:54:72:ee:e1:8c:47:b7:5e:05:06:4c:4e: 51:a0:af:0e:d8:e5:2f:a0:83:b9:b7:10:df:57:96: 30:ac:69:0c:b1:49:ef:24:5f:2f:49:f2:c0:7f:90: 86:8a:28:0c:d5:3c:24:f8:87:1f:c8:03:0e:81:20: 33:40:c1:35:3e:1b:c4:2d:19:9b:c0:67:07:3a:5e: a1:e0:30:6b:84:2c:6b:cc:10:fb:99:60:64:7f:e5: 61:d7:4e:52:8b:27:dd:80:39:10:a1:06:99:e9:a4: 26:6c:1a:77:a2:59:59:82:ce:71:4a:3c:19:38:4e: b8:f7:87:fe:65:c1:a7:2a:fe:f9:d7:55:f1:df:70: 0e:cf:44:8b:95:57:4f:36:e7:c4:86:b0:d9:a0:90: 75:70:40:07:c6:67:d8:81:4e:8d:70:4c:14:db:3e: 2a:a4:c4:cd:04:05:40:5f:06:65:31:c0:09:7e:42: 6c:01:00:7c:16:d2:68:59:ed:d3:83:1c:e8:9d:c4: 40:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:8C:62:6C:C7:4D:2F:0B:4B:39:14:50:DE:1F:E9:2E:5E:ED:15:65 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/XYxibMdNLwtLORRQ3h_pLl7tFWU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.39.0.0/18 Signature Algorithm: sha256WithRSAEncryption 4a:48:da:be:05:6b:90:24:ac:79:d7:e2:f6:c0:6e:0d:2c:f0: 9f:d3:c1:d0:62:d6:1f:0c:fd:eb:95:05:17:3e:eb:c2:0f:c5: d5:78:09:a7:d0:b2:a2:de:4c:34:9f:8b:b6:f8:03:66:b8:33: 3d:54:86:5c:25:fc:b0:f7:9b:b3:bf:f3:c0:47:22:96:9d:18: ba:1d:54:52:fb:16:b0:3f:3a:f4:35:9f:19:b7:e0:2f:3e:d1: a2:4b:f8:5c:ff:24:2f:bd:9c:00:aa:a1:98:e6:56:b9:11:ba: e9:a8:10:22:c7:38:82:b7:d0:d6:9b:05:c4:1d:02:af:19:8b: 70:76:b4:04:d2:0f:8d:42:d5:97:d5:40:e1:11:c6:c6:89:c1: a1:bb:be:95:5d:cf:77:30:95:ca:61:3d:8b:e3:3b:38:50:18: be:85:7a:b9:11:5c:41:a1:1c:20:ee:49:cc:36:a8:33:8a:1c: a1:08:97:f0:01:83:8d:33:ee:60:65:eb:48:99:ff:7a:ee:e6: aa:e9:14:85:9e:25:17:c4:90:32:82:b0:36:ac:71:9e:a3:b8: 00:9d:f3:f3:f5:a3:ad:f1:3b:09:a9:65:14:75:88:67:f2:b6: 05:48:61:94:ca:89:8c:e5:01:c0:e0:15:59:7f:ac:a3:72:b1: 7e:27:3b:aa -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICEgUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDA4MjYw NTE4MTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDVEOEM2MjZDQzc0RDJG MEI0QjM5MTQ1MERFMUZFOTJFNUVFRDE1NjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYw99wfmzDE4x7G2nXx7cknfBM5Oyee6/+xQ19XBeQ01LBwg0R 33FP31T8u2m85bYgtwDwpzWVljyKXzHirFRy7uGMR7deBQZMTlGgrw7Y5S+gg7m3 EN9XljCsaQyxSe8kXy9J8sB/kIaKKAzVPCT4hx/IAw6BIDNAwTU+G8QtGZvAZwc6 XqHgMGuELGvMEPuZYGR/5WHXTlKLJ92AORChBpnppCZsGneiWVmCznFKPBk4Trj3 h/5lwacq/vnXVfHfcA7PRIuVV08258SGsNmgkHVwQAfGZ9iBTo1wTBTbPiqkxM0E BUBfBmUxwAl+QmwBAHwW0mhZ7dODHOidxEAzAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUXYxibMdNLwtLORRQ3h/pLl7tFWUwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9YWXhpYk1kTkx3dExPUlJRM2hf cExsN3RGV1Uucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQGyicA MA0GCSqGSIb3DQEBCwUAA4IBAQBKSNq+BWuQJKx51+L2wG4NLPCf08HQYtYfDP3r lQUXPuvCD8XVeAmn0LKi3kw0n4u2+ANmuDM9VIZcJfyw95uzv/PARyKWnRi6HVRS +xawPzr0NZ8Zt+AvPtGiS/hc/yQvvZwAqqGY5la5EbrpqBAixziCt9DWmwXEHQKv GYtwdrQE0g+NQtWX1UDhEcbGicGhu76VXc93MJXKYT2L4zs4UBi+hXq5EVxBoRwg 7knMNqgzihyhCJfwAYONM+5gZetImf967uaq6RSFniUXxJAygrA2rHGeo7gAnfPz 9aOt8TsJqWUUdYhn8rYFSGGUyomM5QHA4BVZf6yjcrF+Jzuq -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:32 2024 by rpki-client on console-ams.rpki-client.org