$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/ddJBFfXY_9Tg7Ri4a4wId9H9piw.roa File: ddJBFfXY_9Tg7Ri4a4wId9H9piw.roa (raw, json) Hash identifier: M6z/aW3RdUR3s/kYm5jYciSKAyQufjYMGfgbW9egZL4= Subject key identifier: 75:D2:41:15:F5:D8:FF:D4:E0:ED:18:B8:6B:8C:08:77:D1:FD:A6:2C Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 11B4 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ddJBFfXY_9Tg7Ri4a4wId9H9piw.roa Signing time: Mon 26 Aug 2024 05:17:51 +0000 ROA not before: Mon 26 Aug 2024 05:17:51 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 3462 IP address blocks: 220.129.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4532 (0x11b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 26 05:17:51 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=75D24115F5D8FFD4E0ED18B86B8C0877D1FDA62C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:14:bc:59:cd:61:71:1e:af:77:dc:b8:74:9b: 47:88:1e:61:14:3e:20:9f:16:3d:a9:df:cc:84:08: a3:65:d7:32:5b:54:38:c9:02:9e:47:73:4c:5d:62: e6:5d:fa:25:55:ab:78:61:bd:84:7d:46:ee:8c:0f: c6:24:99:58:7f:15:80:a7:42:19:67:eb:19:b9:91: 29:d4:01:4c:b2:44:f5:36:0d:55:2e:f0:4b:2c:84: a0:12:0e:6a:84:e0:2f:48:e6:9b:91:d0:dc:78:34: 82:c7:d2:10:89:56:c1:b5:05:a8:81:f0:5e:60:54: a0:b1:c9:2c:78:0c:3f:a2:25:ba:77:94:ae:11:24: 1a:1e:b6:a3:4a:36:e0:5a:78:d3:ef:22:bf:db:c5: 2f:24:53:53:62:8c:3b:ba:f8:cc:3f:7b:fd:b0:46: 31:bd:cd:e8:c2:d1:a1:3d:b9:62:6d:71:1b:63:da: 86:28:bc:a7:00:84:b7:fd:1a:f1:a1:4a:d7:e7:b9: 7d:04:93:b3:5b:27:04:9f:4d:9b:01:bd:e6:c0:00: 06:ba:4b:a8:66:a3:46:1b:6e:13:29:4c:2f:1f:0d: c3:96:f1:43:53:ab:b7:66:e9:fe:e5:90:79:3e:a5: eb:5d:2e:8c:a6:e6:72:fb:8b:b4:2c:1c:b3:46:84: 7d:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:D2:41:15:F5:D8:FF:D4:E0:ED:18:B8:6B:8C:08:77:D1:FD:A6:2C X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ddJBFfXY_9Tg7Ri4a4wId9H9piw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 220.129.0.0/16 Signature Algorithm: sha256WithRSAEncryption 2e:cd:30:b7:04:2a:07:17:c5:8e:28:6a:06:94:1a:6f:bf:42: ce:47:00:89:81:e6:1f:cd:46:58:0c:14:39:27:34:f6:0a:7d: 33:af:0c:82:db:69:df:31:ca:5c:7f:7c:ac:28:dd:ed:ad:0f: c1:16:19:04:ac:5d:55:0d:3c:16:e0:58:01:91:d1:c7:04:a4: 44:c4:6f:a4:ec:2d:79:6a:26:b9:cc:b3:af:5a:2e:4e:29:40: 08:c3:4b:9d:24:34:ab:6e:9d:d1:7c:df:34:f6:26:45:f3:08: ce:31:6c:1b:33:88:8a:6c:1c:a4:f1:35:ce:bd:74:bb:30:7e: e3:78:df:94:48:6f:a3:4d:2f:f2:d8:43:2c:2b:d0:08:0d:dd: ed:48:9f:47:fb:3f:5f:8a:24:01:d5:af:2a:4c:be:64:0a:43: 6a:03:da:73:c3:d3:db:22:8b:45:6b:9f:ec:35:3c:aa:64:ac: 4e:c3:80:44:12:9d:ef:8d:ab:64:38:7c:13:40:9b:55:bb:ce: 36:ea:52:0e:fc:ae:9e:8b:ec:89:f1:7d:6f:58:b9:39:92:03: 8f:ff:b8:b3:ad:95:9c:93:aa:88:65:b4:92:73:25:56:4e:65: 5c:35:40:ca:d3:96:58:55:2a:ca:5d:0a:86:9c:92:57:1a:67: 94:52:4d:f8 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICEbQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDA4MjYw NTE3NTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDc1RDI0MTE1RjVEOEZG RDRFMEVEMThCODZCOEMwODc3RDFGREE2MkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCsFLxZzWFxHq933Lh0m0eIHmEUPiCfFj2p38yECKNl1zJbVDjJ Ap5Hc0xdYuZd+iVVq3hhvYR9Ru6MD8YkmVh/FYCnQhln6xm5kSnUAUyyRPU2DVUu 8EsshKASDmqE4C9I5puR0Nx4NILH0hCJVsG1BaiB8F5gVKCxySx4DD+iJbp3lK4R JBoetqNKNuBaeNPvIr/bxS8kU1NijDu6+Mw/e/2wRjG9zejC0aE9uWJtcRtj2oYo vKcAhLf9GvGhStfnuX0Ek7NbJwSfTZsBvebAAAa6S6hmo0YbbhMpTC8fDcOW8UNT q7dm6f7lkHk+petdLoym5nL7i7QsHLNGhH2bAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUddJBFfXY/9Tg7Ri4a4wId9H9piwwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9kZEpCRmZYWV85VGc3Umk0YTR3 SWQ5SDlwaXcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMA3IEw DQYJKoZIhvcNAQELBQADggEBAC7NMLcEKgcXxY4oagaUGm+/Qs5HAImB5h/NRlgM FDknNPYKfTOvDILbad8xylx/fKwo3e2tD8EWGQSsXVUNPBbgWAGR0ccEpETEb6Ts LXlqJrnMs69aLk4pQAjDS50kNKtundF83zT2JkXzCM4xbBsziIpsHKTxNc69dLsw fuN435RIb6NNL/LYQywr0AgN3e1In0f7P1+KJAHVrypMvmQKQ2oD2nPD09sii0Vr n+w1PKpkrE7DgEQSne+Nq2Q4fBNAm1W7zjbqUg78rp6L7InxfW9YuTmSA4//uLOt lZyTqohltJJzJVZOZVw1QMrTllhVKspdCoacklcaZ5RSTfg= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:32 2024 by rpki-client on console-ams.rpki-client.org