$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/b-zWGoW86SbJom26qMJYIymUp40.roa File: b-zWGoW86SbJom26qMJYIymUp40.roa (raw, json) Hash identifier: etmDVm+8wY2LrOANn4OSGgKbOLmGf4Gl+c6mScOymN8= Subject key identifier: 6F:EC:D6:1A:85:BC:E9:26:C9:A2:6D:BA:A8:C2:58:23:29:94:A7:8D Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 119D Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/b-zWGoW86SbJom26qMJYIymUp40.roa Signing time: Mon 26 Aug 2024 05:17:43 +0000 ROA not before: Mon 26 Aug 2024 05:17:43 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 3462 IP address blocks: 211.22.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4509 (0x119d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 26 05:17:43 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6FECD61A85BCE926C9A26DBAA8C258232994A78D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:bb:db:b7:94:ff:de:a6:9b:b3:3d:0b:73:9f: 7f:e1:2d:f1:e1:01:43:c9:32:3c:e0:68:37:5c:09: 39:6b:1f:5b:b7:f8:4e:51:9d:ae:6c:b6:8b:37:d4: 89:eb:42:34:e0:66:65:20:63:9b:f4:92:26:70:1b: 94:eb:14:b0:3d:d0:78:63:84:41:f4:07:6a:77:ea: 0e:e9:58:c1:a7:c9:7b:3f:77:5b:f1:9f:d2:05:93: 82:6e:4b:04:c3:17:0f:e8:c5:a4:13:1b:8d:7e:1c: 05:1d:9f:43:01:a2:07:7f:90:d5:3e:f2:ea:32:ad: 5b:4a:1c:31:98:d2:32:f3:0d:40:eb:00:c9:4c:d1: eb:27:54:cb:b7:be:b4:a4:cc:46:7a:0b:41:c9:ed: 73:9d:6d:3c:fa:8a:9a:22:1e:21:14:12:75:d8:16: ec:7e:3b:91:84:4f:5b:93:ee:1b:8a:1f:94:4b:4b: 1a:df:62:50:7d:f5:25:f5:08:fa:78:7a:96:ee:8e: 0e:18:96:c9:fc:3e:7b:41:fe:9b:08:1d:72:7c:15: f7:5a:52:af:bd:b9:e2:2c:31:1f:d6:04:2e:55:f9: 50:15:33:fa:53:48:69:16:80:93:8d:e5:47:28:7b: ab:d1:85:f2:72:5a:26:c6:d0:db:0b:31:75:d2:fc: f4:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:EC:D6:1A:85:BC:E9:26:C9:A2:6D:BA:A8:C2:58:23:29:94:A7:8D X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/b-zWGoW86SbJom26qMJYIymUp40.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.22.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8a:9b:6f:a6:21:e5:9e:23:da:cf:4c:d9:4b:7d:7b:54:7a:60: 3e:86:ee:62:2b:b1:de:7e:3f:fb:5b:d3:40:f7:6c:c9:38:d0: f5:19:ee:f1:89:c9:d8:cd:26:07:71:9b:9f:f9:b7:f2:e2:cc: 65:59:30:01:20:60:12:71:33:8a:ac:ea:e9:cc:97:bd:11:25: 55:4b:61:0e:81:52:32:34:82:a6:3a:14:a0:23:97:e5:be:4a: af:0f:dc:61:10:53:a7:ee:70:6d:26:38:eb:5c:6d:5a:f5:d9: 4a:be:51:e4:a1:b1:d1:85:f5:a5:ef:6a:f2:dc:21:48:66:b4: c9:da:61:af:35:91:a9:e8:1f:e4:48:4a:a0:76:68:34:dd:f6: bf:c5:50:76:5b:c1:c6:0e:e1:b7:29:d1:10:94:30:8a:5a:b1: 5a:af:d6:a6:35:f2:aa:15:eb:f4:d3:01:ee:dd:b6:0a:6e:8d: 29:ce:ce:eb:cc:6f:f0:c9:af:5c:ef:bf:e0:3c:60:59:d3:4b: 68:4f:c4:06:6e:b7:4a:12:ff:12:c4:96:2e:45:00:44:ff:e1: f6:64:d7:98:b7:2e:7f:7e:41:04:54:f9:68:5e:ee:e6:2c:08: 59:51:e1:4c:3d:f2:a0:ba:bd:dd:9b:78:dd:7e:92:d7:9c:bf: 00:fb:db:7c -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICEZ0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDA4MjYw NTE3NDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZGRUNENjFBODVCQ0U5 MjZDOUEyNkRCQUE4QzI1ODIzMjk5NEE3OEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQChu9u3lP/eppuzPQtzn3/hLfHhAUPJMjzgaDdcCTlrH1u3+E5R na5stos31InrQjTgZmUgY5v0kiZwG5TrFLA90HhjhEH0B2p36g7pWMGnyXs/d1vx n9IFk4JuSwTDFw/oxaQTG41+HAUdn0MBogd/kNU+8uoyrVtKHDGY0jLzDUDrAMlM 0esnVMu3vrSkzEZ6C0HJ7XOdbTz6ipoiHiEUEnXYFux+O5GET1uT7huKH5RLSxrf YlB99SX1CPp4epbujg4Ylsn8PntB/psIHXJ8FfdaUq+9ueIsMR/WBC5V+VAVM/pT SGkWgJON5Ucoe6vRhfJyWibG0NsLMXXS/PS/AgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUb+zWGoW86SbJom26qMJYIymUp40wHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9iLXpXR29XODZTYkpvbTI2cU1K WUl5bVVwNDAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMA0xYw DQYJKoZIhvcNAQELBQADggEBAIqbb6Yh5Z4j2s9M2Ut9e1R6YD6G7mIrsd5+P/tb 00D3bMk40PUZ7vGJydjNJgdxm5/5t/LizGVZMAEgYBJxM4qs6unMl70RJVVLYQ6B UjI0gqY6FKAjl+W+Sq8P3GEQU6fucG0mOOtcbVr12Uq+UeShsdGF9aXvavLcIUhm tMnaYa81kanoH+RISqB2aDTd9r/FUHZbwcYO4bcp0RCUMIpasVqv1qY18qoV6/TT Ae7dtgpujSnOzuvMb/DJr1zvv+A8YFnTS2hPxAZut0oS/xLEli5FAET/4fZk15i3 Ln9+QQRU+Whe7uYsCFlR4Uw98qC6vd2beN1+ktecvwD723w= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:07 2024 by rpki-client on console-ams.rpki-client.org