$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/dnjnw4jP2oi9f8JZRZvEWFNXKcw.roa File: dnjnw4jP2oi9f8JZRZvEWFNXKcw.roa (raw, json) Hash identifier: +dzYAirDU278Fxp/86imO99RXovp51I/lvdcmnqSvOU= Subject key identifier: 76:78:E7:C3:88:CF:DA:88:BD:7F:C2:59:45:9B:C4:58:53:57:29:CC Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 11FC Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/dnjnw4jP2oi9f8JZRZvEWFNXKcw.roa Signing time: Mon 26 Aug 2024 05:18:08 +0000 ROA not before: Mon 26 Aug 2024 05:18:08 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 3462 IP address blocks: 61.220.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4604 (0x11fc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 26 05:18:08 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=7678E7C388CFDA88BD7FC259459BC458535729CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:78:fd:71:f4:c0:98:67:fc:20:77:a4:ec:f9: a7:83:c3:77:8f:43:da:e2:37:36:10:40:35:dd:7e: f8:23:8e:54:81:fe:b7:b7:a8:93:ee:3e:b4:5b:25: c0:bc:64:79:7f:ba:7f:46:02:55:1a:b7:6c:fc:92: 6d:f3:7b:f5:ba:44:c5:81:b2:56:26:4c:af:10:75: 95:49:10:a0:2a:af:b9:c4:4f:9b:72:32:50:9a:e1: f1:fc:a8:2e:a9:4e:a1:e4:c4:42:a7:26:1f:7e:52: 3e:50:02:89:07:40:74:fb:7e:bd:a1:b1:0c:6a:fa: 6b:06:f0:a1:88:cf:a9:dc:c5:e8:1a:f4:b6:cb:a8: 4b:f2:82:de:21:d8:85:15:b1:65:b8:ed:9c:e6:61: 6e:76:0a:a6:21:ec:e1:8c:94:1a:cd:74:6e:02:4d: 9e:dd:00:06:11:3b:97:54:79:ac:c4:13:ab:a1:46: 2e:99:b6:f2:73:d9:d8:06:96:c9:5f:6d:a2:c1:af: 99:e5:12:79:31:48:f1:8d:2f:43:e8:f1:d1:08:70: 4e:53:2f:5a:03:d5:31:03:f5:8e:24:f4:b9:34:e4: 91:58:b6:bf:cf:34:ad:0c:64:aa:f3:6a:1b:f6:ee: 87:13:f5:96:91:12:1e:39:d7:49:e4:0a:ad:b4:23: 04:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:78:E7:C3:88:CF:DA:88:BD:7F:C2:59:45:9B:C4:58:53:57:29:CC X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/dnjnw4jP2oi9f8JZRZvEWFNXKcw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.220.0.0/14 Signature Algorithm: sha256WithRSAEncryption 50:7f:62:f5:81:5d:33:d0:28:dd:a8:1f:61:6b:2a:8e:ad:a2: 26:d2:bc:25:68:db:e4:78:56:f2:3c:17:26:35:d4:fc:dd:ca: 68:7f:99:67:d2:3f:fb:82:e0:e4:a4:2d:f8:93:e0:a2:ea:b6: 3c:f1:73:83:4c:62:ad:89:16:06:78:8d:93:89:a1:e0:77:a9: 21:b0:6f:1c:bb:43:03:b9:a4:fc:5e:33:57:f8:27:5a:aa:24: 07:9f:38:56:fd:cf:fa:d3:4b:05:d8:2b:a9:14:4d:89:6e:b0: 34:7e:21:b9:06:7b:a2:15:c3:3d:63:1f:98:95:01:ac:8d:f7: 44:2b:0c:c5:a8:73:9b:df:e7:b6:87:bb:cf:09:ce:72:d0:25: 4b:a3:a1:22:36:3e:88:fc:f8:fc:b4:63:c0:21:8b:8a:19:c0: 0f:e3:dc:16:7d:01:b8:f6:a6:7b:69:ab:7e:df:95:6a:f3:ac: 36:b3:5a:0d:39:44:47:5a:6e:7a:28:ed:ee:e8:18:fd:4f:8e: c3:72:1e:35:c2:cb:b5:58:cf:91:d4:ae:6f:95:ff:a4:7a:56: fa:d3:f3:d0:94:6d:de:00:6b:b6:cb:2e:6f:b4:0f:06:51:bc: a7:fd:9c:44:e0:03:b5:8b:83:9e:99:4c:9a:f0:a7:6e:11:0c: 00:01:6f:67 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICEfwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDA4MjYw NTE4MDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDc2NzhFN0MzODhDRkRB ODhCRDdGQzI1OTQ1OUJDNDU4NTM1NzI5Q0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCleP1x9MCYZ/wgd6Ts+aeDw3ePQ9riNzYQQDXdfvgjjlSB/re3 qJPuPrRbJcC8ZHl/un9GAlUat2z8km3ze/W6RMWBslYmTK8QdZVJEKAqr7nET5ty MlCa4fH8qC6pTqHkxEKnJh9+Uj5QAokHQHT7fr2hsQxq+msG8KGIz6ncxega9LbL qEvygt4h2IUVsWW47ZzmYW52CqYh7OGMlBrNdG4CTZ7dAAYRO5dUeazEE6uhRi6Z tvJz2dgGlslfbaLBr5nlEnkxSPGNL0Po8dEIcE5TL1oD1TED9Y4k9Lk05JFYtr/P NK0MZKrzahv27ocT9ZaREh4510nkCq20IwSPAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUdnjnw4jP2oi9f8JZRZvEWFNXKcwwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9kbmpudzRqUDJvaTlmOEpaUlp2 RVdGTlhLY3cucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMCPdww DQYJKoZIhvcNAQELBQADggEBAFB/YvWBXTPQKN2oH2FrKo6toibSvCVo2+R4VvI8 FyY11Pzdymh/mWfSP/uC4OSkLfiT4KLqtjzxc4NMYq2JFgZ4jZOJoeB3qSGwbxy7 QwO5pPxeM1f4J1qqJAefOFb9z/rTSwXYK6kUTYlusDR+IbkGe6IVwz1jH5iVAayN 90QrDMWoc5vf57aHu88JznLQJUujoSI2Poj8+Py0Y8Ahi4oZwA/j3BZ9Abj2pntp q37flWrzrDazWg05REdabnoo7e7oGP1PjsNyHjXCy7VYz5HUrm+V/6R6VvrT89CU bd4Aa7bLLm+0DwZRvKf9nETgA7WLg56ZTJrwp24RDAABb2c= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:39 2024 by rpki-client on console-fra.rpki-client.org