$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/ZDnJRXLI2U5_3yby3lod6hKL_zk.roa File: ZDnJRXLI2U5_3yby3lod6hKL_zk.roa (raw, json) Hash identifier: r4A5KqnokaFaIZQvF6tIRL7rUSSCOrPhOe5BHRywekE= Subject key identifier: 64:39:C9:45:72:C8:D9:4E:7F:DF:26:F2:DE:5A:1D:EA:12:8B:FF:39 Certificate issuer: /CN=534C76274A330B071EFD20DB05F6D0429293743E Certificate serial: 0DC6 Authority key identifier: 53:4C:76:27:4A:33:0B:07:1E:FD:20:DB:05:F6:D0:42:92:93:74:3E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/U0x2J0ozCwce_SDbBfbQQpKTdD4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ZDnJRXLI2U5_3yby3lod6hKL_zk.roa Signing time: Wed 12 Feb 2025 01:36:27 +0000 ROA not before: Wed 12 Feb 2025 01:36:27 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 7481 IP address blocks: 2001:7fa:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/U0x2J0ozCwce_SDbBfbQQpKTdD4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/U0x2J0ozCwce_SDbBfbQQpKTdD4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/U0x2J0ozCwce_SDbBfbQQpKTdD4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/0dL1XCbbKFIKeZb_cu0BBCAHmKI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0dL1XCbbKFIKeZb_cu0BBCAHmKI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0dL1XCbbKFIKeZb_cu0BBCAHmKI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:58:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3526 (0xdc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=534C76274A330B071EFD20DB05F6D0429293743E Validity Not Before: Feb 12 01:36:27 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6439C94572C8D94E7FDF26F2DE5A1DEA128BFF39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:2b:20:31:c8:1f:a0:07:18:dc:fe:b2:bf:e5: c6:7b:1a:f4:aa:c9:92:47:f5:ca:0b:4d:c5:76:fa: 17:22:8d:ce:62:c7:53:5b:d7:b2:05:46:4e:b1:c6: 16:1f:4d:29:82:34:dc:51:a1:a7:e4:b6:26:ec:1a: 32:c0:8f:66:8f:cd:77:09:93:83:e8:a4:13:cb:b2: 6e:6a:89:8e:87:86:b4:f3:0e:3e:2f:6b:36:ee:86: cd:c0:61:5a:95:37:76:44:d8:c3:3f:48:94:f9:2c: cb:ea:79:74:11:18:7a:96:42:e8:12:c4:f0:50:91: 17:d7:a1:cd:b8:f2:9a:24:12:20:c4:c6:47:e7:98: 6f:3e:a7:38:2b:59:32:2b:5e:10:ac:8d:30:ca:a9: ad:74:ff:4d:36:25:9c:72:78:d7:88:19:d7:0b:11: d1:70:6a:cb:23:47:02:1e:e6:97:ed:cd:c6:6e:e3: 85:92:f6:19:08:e4:86:a8:da:37:ef:b8:15:c3:2b: 29:f3:43:5c:e6:df:72:16:6f:96:bd:ec:72:97:c9: 36:f3:b3:bf:6d:2f:2c:29:46:19:b8:6c:15:e3:60: ba:7f:9d:cc:5d:a4:a3:10:cf:0f:d8:98:ac:aa:fa: 98:d7:1b:8d:f0:3e:a3:45:97:b5:30:42:27:8e:23: d9:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:39:C9:45:72:C8:D9:4E:7F:DF:26:F2:DE:5A:1D:EA:12:8B:FF:39 X509v3 Authority Key Identifier: keyid:53:4C:76:27:4A:33:0B:07:1E:FD:20:DB:05:F6:D0:42:92:93:74:3E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/U0x2J0ozCwce_SDbBfbQQpKTdD4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/U0x2J0ozCwce_SDbBfbQQpKTdD4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ZDnJRXLI2U5_3yby3lod6hKL_zk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:7fa:1::/48 Signature Algorithm: sha256WithRSAEncryption 02:13:89:3a:c0:d3:c4:61:0e:80:b1:8f:1d:23:e5:7f:cf:70: 89:bf:c8:56:38:71:ee:f2:9d:8c:a5:0f:ec:a5:70:25:64:85: 80:5a:c1:a0:9a:15:e4:48:cd:39:6b:3e:8c:c4:8e:27:76:12: b5:a9:63:16:44:03:75:4c:91:97:65:94:59:a5:27:72:f6:27: da:56:7a:c3:f7:2b:4a:10:41:4c:44:00:11:c1:6c:38:55:e1: b5:6a:a7:eb:8f:f1:4e:0f:76:97:ec:53:a0:ad:7d:fd:24:ef: ca:68:10:ce:79:b2:6f:e2:50:53:e7:b1:5d:db:a3:bd:a6:61: 69:b3:77:b2:75:03:3b:b3:d0:00:2d:08:09:3d:6e:6f:b3:2e: ce:c7:d3:87:f0:fd:d3:64:a0:fe:5a:f6:6b:7b:01:f5:26:b2: 2c:1c:9f:6b:aa:f8:14:8a:b6:b9:84:59:ff:71:e4:9d:9f:dc: b6:a0:26:79:eb:eb:13:a6:7e:aa:e9:5b:0f:05:85:e8:6a:3c: a2:76:c3:3f:17:b0:65:c8:ac:eb:90:73:8b:73:3e:08:5e:6d: 26:13:4f:9d:e2:d3:cb:45:4b:f7:04:ef:34:16:42:60:27:de: 86:9f:60:02:6d:cc:a4:f8:f9:64:00:ea:6d:9f:00:38:ff:0b: 07:ee:65:d5 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICDcYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTM0 Qzc2Mjc0QTMzMEIwNzFFRkQyMERCMDVGNkQwNDI5MjkzNzQzRTAeFw0yNTAyMTIw MTM2MjdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY0MzlDOTQ1NzJDOEQ5 NEU3RkRGMjZGMkRFNUExREVBMTI4QkZGMzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD2KyAxyB+gBxjc/rK/5cZ7GvSqyZJH9coLTcV2+hcijc5ix1Nb 17IFRk6xxhYfTSmCNNxRoafktibsGjLAj2aPzXcJk4PopBPLsm5qiY6HhrTzDj4v azbuhs3AYVqVN3ZE2MM/SJT5LMvqeXQRGHqWQugSxPBQkRfXoc248pokEiDExkfn mG8+pzgrWTIrXhCsjTDKqa10/002JZxyeNeIGdcLEdFwassjRwIe5pftzcZu44WS 9hkI5Iao2jfvuBXDKynzQ1zm33IWb5a97HKXyTbzs79tLywpRhm4bBXjYLp/ncxd pKMQzw/YmKyq+pjXG43wPqNFl7UwQieOI9lDAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUZDnJRXLI2U5/3yby3lod6hKL/zkwHwYDVR0jBBgwFoAUU0x2J0ozCwce/SDb BfbQQpKTdD4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv VTB4Mkowb3pDd2NlX1NEYkJmYlFRcEtUZEQ0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9VMHgySjBvekN3Y2VfU0RiQmZiUVFwS1RkRDQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9aRG5KUlhMSTJVNV8zeWJ5M2xv ZDZoS0xfemsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEH +gABMA0GCSqGSIb3DQEBCwUAA4IBAQACE4k6wNPEYQ6AsY8dI+V/z3CJv8hWOHHu 8p2MpQ/spXAlZIWAWsGgmhXkSM05az6MxI4ndhK1qWMWRAN1TJGXZZRZpSdy9ifa VnrD9ytKEEFMRAARwWw4VeG1aqfrj/FOD3aX7FOgrX39JO/KaBDOebJv4lBT57Fd 26O9pmFps3eydQM7s9AALQgJPW5vsy7Ox9OH8P3TZKD+WvZrewH1JrIsHJ9rqvgU ira5hFn/ceSdn9y2oCZ56+sTpn6q6VsPBYXoajyidsM/F7BlyKzrkHOLcz4IXm0m E0+d4tPLRUv3BO80FkJgJ96Gn2ACbcyk+PlkAOptnwA4/wsH7mXV -----END CERTIFICATE-----Generated at Wed Feb 19 22:10:17 2025 by rpki-client