$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/ccibQ1mOBlp3qvioUxWkiMfw8II.roa File: ccibQ1mOBlp3qvioUxWkiMfw8II.roa (raw, json) Hash identifier: XEPrVoLrLgsu1Jn/emIZE05WpRpT5f/ycpjRkmuZqrg= Subject key identifier: 71:C8:9B:43:59:8E:06:5A:77:AA:F8:A8:53:15:A4:88:C7:F0:F0:82 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 1203 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ccibQ1mOBlp3qvioUxWkiMfw8II.roa Signing time: Mon 26 Aug 2024 05:18:10 +0000 ROA not before: Mon 26 Aug 2024 05:18:10 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 20940 IP address blocks: 2001:b034:700:600::/56 maxlen: 56 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 02:24:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4611 (0x1203) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 26 05:18:10 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=71C89B43598E065A77AAF8A85315A488C7F0F082 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:88:ef:31:b7:57:83:84:41:40:84:b5:6d:b0: 65:2a:a0:ee:59:c3:50:96:ff:13:5f:c5:49:9f:c2: b6:b1:73:11:d2:eb:e4:06:cb:82:d4:df:d6:b9:40: 45:02:1d:8d:09:a6:13:bc:f6:57:f4:74:aa:59:7c: 9e:22:01:55:5a:de:00:9f:ec:5b:6e:81:0e:aa:ed: a8:0a:65:ff:f8:42:66:f0:78:cf:11:24:70:ce:f9: 79:2e:64:dc:3c:b8:56:53:fd:06:2a:a4:22:57:08: 47:de:d6:72:dc:2f:ac:f4:a9:38:1c:07:a8:90:e2: c9:c7:e1:06:7b:90:63:f4:03:35:74:74:bf:ac:77: ca:ac:55:d7:45:d4:bd:35:f5:62:34:23:a2:8d:97: 88:3f:87:b6:56:31:21:74:48:a6:d0:71:d6:75:d0: 9b:43:c9:8d:98:1f:c4:80:fe:bb:28:ed:3e:71:f8: 86:d7:2b:f5:e8:47:d1:83:e2:28:9b:12:24:5d:d1: a1:e8:bc:36:15:ef:7b:41:2e:39:36:37:a8:6a:96: b6:a7:e7:75:ef:1c:2c:f4:fc:51:0f:8e:b9:61:f2: 77:f3:6c:13:a6:40:95:fd:dc:7c:9f:96:9b:6f:4b: 4a:10:df:17:35:95:3b:b8:f4:d5:98:22:6d:dc:0d: e0:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:C8:9B:43:59:8E:06:5A:77:AA:F8:A8:53:15:A4:88:C7:F0:F0:82 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ccibQ1mOBlp3qvioUxWkiMfw8II.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:b034:700:600::/56 Signature Algorithm: sha256WithRSAEncryption 88:3e:c5:d1:ce:c2:bb:f3:8c:ef:86:4e:ae:9e:e6:94:a2:57: 8d:4b:e9:d6:42:28:b4:e6:3e:23:3a:34:fd:93:6f:2d:d3:c7: fb:55:99:14:38:66:f9:a3:25:f5:73:40:cf:b3:e6:52:ec:f1: 88:d4:be:1d:d3:f1:49:d1:c8:41:26:28:20:34:83:54:9c:26: 2c:f7:46:d9:dd:d3:ad:1d:38:0e:34:3e:29:92:b9:09:37:9d: ec:da:7e:a9:8b:75:f6:ac:54:ef:47:db:34:71:1d:24:01:15: bd:6d:d7:2b:0a:87:d7:5a:88:e9:43:f9:94:41:7f:1b:40:66: 17:e6:a5:1d:1d:22:ee:b8:41:75:5c:af:6d:45:37:5f:5c:5d: f2:4f:97:06:a6:4b:7a:47:27:b9:79:f8:41:c8:0f:cf:7c:0c: a4:f8:16:4a:17:c5:c2:9e:16:f0:fa:d6:b1:1f:21:ac:f1:1d: f5:cf:94:ac:be:0a:14:99:2a:52:96:62:74:f2:53:da:7a:22: 25:6c:8b:7c:9d:8d:f9:b2:82:bc:b7:42:8a:a4:24:41:1a:8d: 0d:53:9e:50:53:ca:86:57:e3:38:c6:ef:05:76:2d:78:4f:51: 43:4b:7c:3a:d1:ca:b8:57:55:46:01:f5:93:79:2d:de:1b:2f: b9:6f:6c:95 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEgMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDA4MjYw NTE4MTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDcxQzg5QjQzNTk4RTA2 NUE3N0FBRjhBODUzMTVBNDg4QzdGMEYwODIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDsiO8xt1eDhEFAhLVtsGUqoO5Zw1CW/xNfxUmfwraxcxHS6+QG y4LU39a5QEUCHY0JphO89lf0dKpZfJ4iAVVa3gCf7FtugQ6q7agKZf/4QmbweM8R JHDO+XkuZNw8uFZT/QYqpCJXCEfe1nLcL6z0qTgcB6iQ4snH4QZ7kGP0AzV0dL+s d8qsVddF1L019WI0I6KNl4g/h7ZWMSF0SKbQcdZ10JtDyY2YH8SA/rso7T5x+IbX K/XoR9GD4iibEiRd0aHovDYV73tBLjk2N6hqlran53XvHCz0/FEPjrlh8nfzbBOm QJX93HyflptvS0oQ3xc1lTu49NWYIm3cDeCpAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUccibQ1mOBlp3qvioUxWkiMfw8IIwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9jY2liUTFtT0JscDNxdmlvVXhX a2lNZnc4SUkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCMGCCsGAQUFBwEHAQH/BBQwEjAQBAIAAjAKAwgAIAGw NAcABjANBgkqhkiG9w0BAQsFAAOCAQEAiD7F0c7Cu/OM74ZOrp7mlKJXjUvp1kIo tOY+Izo0/ZNvLdPH+1WZFDhm+aMl9XNAz7PmUuzxiNS+HdPxSdHIQSYoIDSDVJwm LPdG2d3TrR04DjQ+KZK5CTed7Np+qYt19qxU70fbNHEdJAEVvW3XKwqH11qI6UP5 lEF/G0BmF+alHR0i7rhBdVyvbUU3X1xd8k+XBqZLekcnuXn4QcgPz3wMpPgWShfF wp4W8PrWsR8hrPEd9c+UrL4KFJkqUpZidPJT2noiJWyLfJ2N+bKCvLdCiqQkQRqN DVOeUFPKhlfjOMbvBXYteE9RQ0t8OtHKuFdVRgH1k3kt3hsvuW9slQ== -----END CERTIFICATE-----Generated at Fri Nov 22 00:15:15 2024 by rpki-client on console-ams.rpki-client.org