$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/YCUYsXzPJ8yubXkePSUjTEON17E.roa File: YCUYsXzPJ8yubXkePSUjTEON17E.roa (raw, json) Hash identifier: reVdFlgubYWPAsKD4HsqKOm752u3nFaB6wB9PHigpaw= Subject key identifier: 60:25:18:B1:7C:CF:27:CC:AE:6D:79:1E:3D:25:23:4C:43:8D:D7:B1 Certificate issuer: /CN=534C76274A330B071EFD20DB05F6D0429293743E Certificate serial: 0D30 Authority key identifier: 53:4C:76:27:4A:33:0B:07:1E:FD:20:DB:05:F6:D0:42:92:93:74:3E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/U0x2J0ozCwce_SDbBfbQQpKTdD4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/YCUYsXzPJ8yubXkePSUjTEON17E.roa Signing time: Mon 26 Aug 2024 05:18:12 +0000 ROA not before: Mon 26 Aug 2024 05:18:12 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 7481 IP address blocks: 2001:7fa:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/U0x2J0ozCwce_SDbBfbQQpKTdD4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/U0x2J0ozCwce_SDbBfbQQpKTdD4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/U0x2J0ozCwce_SDbBfbQQpKTdD4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/0dL1XCbbKFIKeZb_cu0BBCAHmKI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0dL1XCbbKFIKeZb_cu0BBCAHmKI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0dL1XCbbKFIKeZb_cu0BBCAHmKI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 13:24:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3376 (0xd30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=534C76274A330B071EFD20DB05F6D0429293743E Validity Not Before: Aug 26 05:18:12 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=602518B17CCF27CCAE6D791E3D25234C438DD7B1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:30:ba:50:cf:9c:ec:9f:0f:93:3d:ae:a1:36: 28:9b:24:06:60:ff:17:48:e8:87:a9:d0:c4:83:3d: 9b:10:67:dc:e1:69:00:a7:43:02:d7:3a:bd:21:54: 38:4d:23:f2:1c:e9:a2:30:04:07:34:42:06:4b:3f: 31:f3:3f:bc:22:9a:b2:91:e7:e8:44:2b:ab:66:06: cc:f5:2f:70:08:e8:78:c2:90:09:d1:21:97:73:4d: 33:9b:9b:8c:c5:9d:7a:c4:19:95:70:e4:74:95:38: 51:67:a8:13:59:6b:28:ff:3d:3b:04:dd:25:62:00: ef:51:41:84:f2:ac:9b:30:f0:14:df:80:f1:a8:11: 37:2e:d1:0e:18:b6:c9:48:dc:ec:27:53:fd:c8:89: 4c:78:5e:8d:21:4c:bc:a4:42:ee:ff:11:24:fc:3d: bf:e7:f3:60:86:24:57:df:d8:af:1a:42:91:e3:0c: 1e:a6:80:d3:f2:f9:35:83:b7:64:4b:5f:77:8e:d6: 8a:e3:62:9a:b5:d4:79:43:99:6b:18:17:84:8d:6c: a4:b9:eb:ba:17:09:51:97:2b:2c:01:87:b9:11:79: ac:64:c6:7a:1c:67:88:c5:4c:85:62:81:7f:be:5d: 5f:07:23:b6:cd:9f:00:70:a2:c5:fd:29:57:63:96: 5f:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:25:18:B1:7C:CF:27:CC:AE:6D:79:1E:3D:25:23:4C:43:8D:D7:B1 X509v3 Authority Key Identifier: keyid:53:4C:76:27:4A:33:0B:07:1E:FD:20:DB:05:F6:D0:42:92:93:74:3E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/U0x2J0ozCwce_SDbBfbQQpKTdD4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/U0x2J0ozCwce_SDbBfbQQpKTdD4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/YCUYsXzPJ8yubXkePSUjTEON17E.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:7fa:1::/48 Signature Algorithm: sha256WithRSAEncryption 14:08:12:8f:c8:47:72:a8:8e:84:1c:50:1a:9c:c6:9b:b9:9e: 71:9e:b4:82:e4:54:bc:b6:05:0d:7d:32:32:b1:11:74:50:76: 2f:d9:47:bb:78:83:34:4d:26:3b:22:49:46:1e:5d:9c:df:74: 43:eb:e9:5e:1f:9f:e3:e0:f4:08:a6:cc:d9:ea:a6:34:0e:01: 69:6d:26:bf:1f:2c:8d:58:cb:70:a7:0e:95:15:b9:f0:58:6b: fa:8f:be:e6:f2:64:de:e5:d8:d5:0e:9f:5f:89:77:1f:8b:69: 41:f6:1e:9e:f8:a0:64:81:0c:bc:39:ef:03:9d:28:0f:1c:3f: d8:f4:ba:36:df:ca:6e:8c:c1:e6:23:bf:7f:26:fd:a7:78:51: 12:06:b2:cd:be:94:e1:ac:8a:dd:9a:5c:b2:3f:4d:a4:94:0f: b3:a6:89:4b:54:c1:bc:28:1e:c2:80:e6:fd:31:1e:d0:e5:7e: 93:f5:68:fa:29:17:6e:6e:3b:58:cd:74:f2:95:b3:0b:33:b7: 25:da:97:8a:55:d5:ed:39:c8:a5:21:ae:2f:41:b6:e4:60:0e: 8e:ef:c6:a5:81:5b:94:b5:8b:30:df:5a:a7:1d:75:b3:ad:0d: d2:6f:40:d6:51:56:20:c4:e4:20:12:c3:22:f2:28:60:eb:11: bb:48:b3:bb -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICDTAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTM0 Qzc2Mjc0QTMzMEIwNzFFRkQyMERCMDVGNkQwNDI5MjkzNzQzRTAeFw0yNDA4MjYw NTE4MTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDYwMjUxOEIxN0NDRjI3 Q0NBRTZENzkxRTNEMjUyMzRDNDM4REQ3QjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBMLpQz5zsnw+TPa6hNiibJAZg/xdI6Iep0MSDPZsQZ9zhaQCn QwLXOr0hVDhNI/Ic6aIwBAc0QgZLPzHzP7wimrKR5+hEK6tmBsz1L3AI6HjCkAnR IZdzTTObm4zFnXrEGZVw5HSVOFFnqBNZayj/PTsE3SViAO9RQYTyrJsw8BTfgPGo ETcu0Q4YtslI3OwnU/3IiUx4Xo0hTLykQu7/EST8Pb/n82CGJFff2K8aQpHjDB6m gNPy+TWDt2RLX3eO1orjYpq11HlDmWsYF4SNbKS567oXCVGXKywBh7kReaxkxnoc Z4jFTIVigX++XV8HI7bNnwBwosX9KVdjll+5AgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUYCUYsXzPJ8yubXkePSUjTEON17EwHwYDVR0jBBgwFoAUU0x2J0ozCwce/SDb BfbQQpKTdD4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv VTB4Mkowb3pDd2NlX1NEYkJmYlFRcEtUZEQ0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9VMHgySjBvekN3Y2VfU0RiQmZiUVFwS1RkRDQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9ZQ1VZc1h6UEo4eXViWGtlUFNV alRFT04xN0Uucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEH +gABMA0GCSqGSIb3DQEBCwUAA4IBAQAUCBKPyEdyqI6EHFAanMabuZ5xnrSC5FS8 tgUNfTIysRF0UHYv2Ue7eIM0TSY7IklGHl2c33RD6+leH5/j4PQIpszZ6qY0DgFp bSa/HyyNWMtwpw6VFbnwWGv6j77m8mTe5djVDp9fiXcfi2lB9h6e+KBkgQy8Oe8D nSgPHD/Y9Lo238pujMHmI79/Jv2neFESBrLNvpThrIrdmlyyP02klA+zpolLVMG8 KB7CgOb9MR7Q5X6T9Wj6KRdubjtYzXTylbMLM7cl2peKVdXtOcilIa4vQbbkYA6O 78algVuUtYsw31qnHXWzrQ3Sb0DWUVYgxOQgEsMi8ihg6xG7SLO7 -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:51 2024 by rpki-client on console-fra.rpki-client.org