$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/aqZp-PYldSbrmieBxDQ5Uqkddmc.roa File: aqZp-PYldSbrmieBxDQ5Uqkddmc.roa (raw, json) Hash identifier: eosrSHe1Bz65tWNWo137eVAbmqFvGc3egR5Kg5maMdo= Subject key identifier: 6A:A6:69:F8:F6:25:75:26:EB:9A:27:81:C4:34:39:52:A9:1D:76:67 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 11C6 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/aqZp-PYldSbrmieBxDQ5Uqkddmc.roa Signing time: Mon 26 Aug 2024 05:17:55 +0000 ROA not before: Mon 26 Aug 2024 05:17:55 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 10126 IP address blocks: 175.111.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4550 (0x11c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 26 05:17:55 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6AA669F8F6257526EB9A2781C4343952A91D7667 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:b5:07:07:44:ee:d6:ff:f1:64:71:b8:7d:74: 8a:a6:f0:e1:69:04:d6:ce:90:c0:de:1d:90:c9:3f: 1f:57:3a:fb:74:00:fd:7c:78:28:b2:51:c5:11:e4: d7:bf:24:66:98:ed:ad:4d:4c:33:76:fb:3b:a2:48: 03:85:d0:56:f3:2e:ea:10:95:b2:0c:46:77:e1:2b: db:5f:df:7c:90:ca:0b:e1:a1:8c:98:cd:92:a4:a2: 14:9e:da:04:27:f1:d4:36:bc:7d:77:ea:74:48:30: 59:d7:02:e6:5c:2c:69:f3:07:18:4f:14:58:6e:96: d3:53:49:ab:e5:b3:cb:ed:f0:c3:d0:88:eb:08:b0: 88:2f:27:97:e0:c1:42:44:23:86:83:94:5a:4b:1c: b4:21:e2:a5:3b:5f:94:6d:44:1c:55:71:84:7f:60: cd:05:43:ec:2b:ad:55:de:5f:73:a3:43:1e:ca:26: de:19:12:09:36:5a:2d:16:9c:4d:cb:8a:74:b6:79: 45:e8:eb:bb:96:57:f9:ce:31:0a:80:da:f7:ae:c5: 74:3a:25:c1:8f:9f:6d:05:43:9c:eb:87:7b:a3:66: 19:3d:1a:e7:a8:e5:53:6e:28:82:c6:86:0c:b3:14: 7a:15:e2:ba:a5:a1:f1:0d:fd:04:53:a8:ae:e1:98: 0e:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:A6:69:F8:F6:25:75:26:EB:9A:27:81:C4:34:39:52:A9:1D:76:67 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/aqZp-PYldSbrmieBxDQ5Uqkddmc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 175.111.192.0/18 Signature Algorithm: sha256WithRSAEncryption 3a:9e:24:f9:07:18:75:69:2b:af:35:ad:06:42:62:db:fc:ea: 0d:63:37:22:16:94:d0:28:2a:b9:ca:aa:b3:7b:ec:81:7f:1d: 8b:9a:37:b4:59:9f:15:c1:4f:36:3a:73:17:33:da:91:90:52: 97:ce:b7:6d:45:bc:c0:83:71:09:32:be:a7:78:0f:91:3d:84: 02:2f:6a:53:4c:3d:88:2e:25:57:00:69:40:e4:40:49:27:8e: 23:df:1c:bb:07:6b:86:45:f8:83:87:ff:a0:bb:a2:1d:95:dc: 28:e0:04:a2:0a:8c:79:5d:fa:a9:81:ef:d2:63:52:ca:4e:0d: 98:fb:0e:90:e4:7c:4e:e2:21:b9:71:0e:5c:4e:bc:de:c1:a7: 28:60:7d:f3:1f:57:d8:5e:f7:88:b9:7e:83:5d:d9:8e:44:f9: 46:12:16:9c:7b:d2:48:a6:ed:4d:12:77:dc:2a:e1:31:e8:4d: f2:8a:00:84:c2:ac:d6:f6:90:46:46:d1:c7:80:40:1b:9b:e2: 45:41:de:7a:ec:b8:51:98:f8:f4:5f:d4:4a:a6:9c:da:48:87: 72:d9:25:82:16:47:51:ae:c6:91:b3:f6:71:60:42:c0:f7:cc: 62:fe:4d:b2:e6:a1:b2:66:c4:30:97:40:9f:56:c7:33:37:18: 81:f8:24:53 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICEcYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDA4MjYw NTE3NTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZBQTY2OUY4RjYyNTc1 MjZFQjlBMjc4MUM0MzQzOTUyQTkxRDc2NjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCVtQcHRO7W//Fkcbh9dIqm8OFpBNbOkMDeHZDJPx9XOvt0AP18 eCiyUcUR5Ne/JGaY7a1NTDN2+zuiSAOF0FbzLuoQlbIMRnfhK9tf33yQygvhoYyY zZKkohSe2gQn8dQ2vH136nRIMFnXAuZcLGnzBxhPFFhultNTSavls8vt8MPQiOsI sIgvJ5fgwUJEI4aDlFpLHLQh4qU7X5RtRBxVcYR/YM0FQ+wrrVXeX3OjQx7KJt4Z Egk2Wi0WnE3LinS2eUXo67uWV/nOMQqA2veuxXQ6JcGPn20FQ5zrh3ujZhk9Gueo 5VNuKILGhgyzFHoV4rqlofEN/QRTqK7hmA4TAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUaqZp+PYldSbrmieBxDQ5UqkddmcwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9hcVpwLVBZbGRTYnJtaWVCeERR NVVxa2RkbWMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQGr2/A MA0GCSqGSIb3DQEBCwUAA4IBAQA6niT5Bxh1aSuvNa0GQmLb/OoNYzciFpTQKCq5 yqqze+yBfx2Lmje0WZ8VwU82OnMXM9qRkFKXzrdtRbzAg3EJMr6neA+RPYQCL2pT TD2ILiVXAGlA5EBJJ44j3xy7B2uGRfiDh/+gu6Idldwo4ASiCox5Xfqpge/SY1LK Tg2Y+w6Q5HxO4iG5cQ5cTrzewacoYH3zH1fYXveIuX6DXdmORPlGEhace9JIpu1N EnfcKuEx6E3yigCEwqzW9pBGRtHHgEAbm+JFQd567LhRmPj0X9RKppzaSIdy2SWC FkdRrsaRs/ZxYELA98xi/k2y5qGyZsQwl0CfVsczNxiB+CRT -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:51 2024 by rpki-client on console-fra.rpki-client.org