$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/bEnOmZcgqZYoMfJQIdfU62krptY.roa File: bEnOmZcgqZYoMfJQIdfU62krptY.roa (raw, json) Hash identifier: tRpubspM5q3LfteRL9YBjgsrepa8skjsLph+SK0OQF4= Subject key identifier: 6C:49:CE:99:97:20:A9:96:28:31:F2:50:21:D7:D4:EB:69:2B:A6:D6 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 1188 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/bEnOmZcgqZYoMfJQIdfU62krptY.roa Signing time: Mon 26 Aug 2024 05:17:38 +0000 ROA not before: Mon 26 Aug 2024 05:17:38 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 3462 IP address blocks: 1.34.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4488 (0x1188) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 26 05:17:38 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6C49CE999720A9962831F25021D7D4EB692BA6D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d0:de:65:db:38:77:b7:4c:05:a8:72:2f:23: fd:75:7c:d0:d0:c9:e2:72:db:8d:55:51:d0:09:57: c0:8d:63:4b:ae:be:f7:ff:d5:9b:1c:d6:85:75:e6: dc:8d:c5:9c:b4:c2:2a:bc:40:4b:49:5a:1b:db:f7: 51:5c:c4:24:98:7d:51:63:fc:71:13:57:bf:51:10: b6:b1:04:43:d1:ae:ec:70:29:68:ff:43:c4:63:b5: ae:3e:7c:fb:8d:4f:a6:63:72:2c:7b:e3:a2:fe:b6: 0a:9f:8c:fb:2d:e4:6f:24:c5:cd:56:67:fd:35:84: b4:3f:c2:79:80:52:8c:04:e7:62:fe:48:0e:5c:87: e3:9d:d5:ce:e0:cc:c8:1c:c9:f9:14:99:70:f9:8d: 22:19:2d:cf:85:55:34:fd:92:5c:59:4b:92:dc:28: b1:6c:8b:65:d5:c4:93:2e:0d:c3:ca:20:b1:e0:87: 46:38:18:e7:bf:35:11:23:07:e6:8d:71:10:4b:8e: 7c:61:3f:6b:dd:9b:1b:46:eb:9a:13:ed:33:4c:24: ae:bb:9a:f7:0b:14:d9:1b:df:77:35:8f:ca:89:22: 12:f0:6d:0d:03:1e:33:dd:2d:d2:98:78:74:a3:e5: ca:7f:17:7b:b0:79:b3:b8:ff:46:2f:ba:06:4f:6d: a4:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:49:CE:99:97:20:A9:96:28:31:F2:50:21:D7:D4:EB:69:2B:A6:D6 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/bEnOmZcgqZYoMfJQIdfU62krptY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 1.34.0.0/15 Signature Algorithm: sha256WithRSAEncryption 60:9d:34:00:4a:a3:9e:c0:b1:be:a6:30:50:db:07:fb:84:ba: f1:fd:20:eb:60:f1:8f:00:9b:aa:56:2a:02:fc:44:68:29:35: d8:88:0e:ea:a9:c0:71:71:93:ea:f4:96:12:76:b9:da:09:a8: 00:72:72:6c:e7:4f:3d:8a:e5:20:8c:17:84:6f:1b:79:e4:76: a7:a3:54:70:02:de:60:10:9c:0d:70:d1:d8:99:de:ca:11:ef: ba:66:3b:42:bc:8a:86:53:4a:d1:9c:f3:d9:c3:a0:41:ba:59: c9:a1:8f:9c:d3:41:16:19:ee:2f:a8:74:a0:71:2f:27:2b:93: 69:b3:a5:5b:75:94:9f:92:f1:44:2d:ca:c3:2a:5a:29:a5:9d: b7:c8:bb:75:23:43:65:e6:08:86:d5:e9:fb:e8:1b:6e:f2:3d: b0:4d:7c:05:4c:2a:e8:9b:0b:8d:61:be:13:ed:a8:d6:43:e7: 3a:38:bb:81:9f:d9:83:b9:ff:70:b6:4d:b3:24:5c:2c:de:be: db:13:6d:de:ce:f9:37:5f:01:67:b1:af:a7:f5:ec:c1:08:5d: 0b:5a:7d:59:75:ba:08:5f:4b:8b:7a:ce:26:b8:ee:2a:ea:f7: 47:8f:1e:2e:25:ad:c3:db:eb:4b:c5:28:91:2d:ee:5c:57:42: 53:93:4f:01 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICEYgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDA4MjYw NTE3MzhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZDNDlDRTk5OTcyMEE5 OTYyODMxRjI1MDIxRDdENEVCNjkyQkE2RDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDI0N5l2zh3t0wFqHIvI/11fNDQyeJy241VUdAJV8CNY0uuvvf/ 1Zsc1oV15tyNxZy0wiq8QEtJWhvb91FcxCSYfVFj/HETV79RELaxBEPRruxwKWj/ Q8Rjta4+fPuNT6Zjcix746L+tgqfjPst5G8kxc1WZ/01hLQ/wnmAUowE52L+SA5c h+Od1c7gzMgcyfkUmXD5jSIZLc+FVTT9klxZS5LcKLFsi2XVxJMuDcPKILHgh0Y4 GOe/NREjB+aNcRBLjnxhP2vdmxtG65oT7TNMJK67mvcLFNkb33c1j8qJIhLwbQ0D HjPdLdKYeHSj5cp/F3uwebO4/0YvugZPbaTrAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUbEnOmZcgqZYoMfJQIdfU62krptYwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9iRW5PbVpjZ3FaWW9NZkpRSWRm VTYya3JwdFkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMBASIw DQYJKoZIhvcNAQELBQADggEBAGCdNABKo57Asb6mMFDbB/uEuvH9IOtg8Y8Am6pW KgL8RGgpNdiIDuqpwHFxk+r0lhJ2udoJqABycmznTz2K5SCMF4RvG3nkdqejVHAC 3mAQnA1w0diZ3soR77pmO0K8ioZTStGc89nDoEG6Wcmhj5zTQRYZ7i+odKBxLycr k2mzpVt1lJ+S8UQtysMqWimlnbfIu3UjQ2XmCIbV6fvoG27yPbBNfAVMKuibC41h vhPtqNZD5zo4u4Gf2YO5/3C2TbMkXCzevtsTbd7O+TdfAWexr6f17MEIXQtafVl1 ughfS4t6zia47irq90ePHi4lrcPb60vFKJEt7lxXQlOTTwE= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:32 2024 by rpki-client on console-ams.rpki-client.org