$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/eKOac8iiV5mC_T0w_y_oOPoEymQ.roa File: eKOac8iiV5mC_T0w_y_oOPoEymQ.roa (raw, json) Hash identifier: esLSJpc2AVbx2xUD6WVR01Cn+ISZgOFNNJR0dFy6GLs= Subject key identifier: 78:A3:9A:73:C8:A2:57:99:82:FD:3D:30:FF:2F:E8:38:FA:04:CA:64 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 1223 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/eKOac8iiV5mC_T0w_y_oOPoEymQ.roa Signing time: Mon 26 Aug 2024 05:18:17 +0000 ROA not before: Mon 26 Aug 2024 05:18:17 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 198949 IP address blocks: 210.61.114.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 02:24:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4643 (0x1223) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 26 05:18:17 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=78A39A73C8A2579982FD3D30FF2FE838FA04CA64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:27:8b:8f:0c:bd:b8:eb:39:65:cd:c5:25:31: 4f:eb:4f:8e:37:85:e1:ab:57:60:d6:68:f4:32:58: 33:c5:a4:e3:93:09:d9:6f:7f:1e:ec:2d:e4:ef:a3: 73:d4:59:7d:21:48:9e:ae:b9:cc:25:ce:e3:1a:15: af:7a:b4:20:22:2c:59:07:d8:00:96:b7:1d:01:9c: a2:9c:dc:bc:d1:82:33:85:49:98:fb:1f:ce:14:8f: 00:cb:12:72:eb:6b:32:0c:8e:07:fe:7f:22:3e:b3: 25:e3:17:ba:83:a1:51:57:cb:45:10:3b:17:17:8f: 77:b3:a1:86:f9:58:2e:37:2b:17:86:2d:0d:fc:83: bf:62:10:4d:d1:25:e1:65:39:86:34:2e:f3:a2:a9: 2c:1d:27:65:6a:d7:a7:59:8c:34:e8:a0:dd:7a:29: 4e:89:54:95:5c:2a:10:72:47:ca:68:74:f7:4a:56: e0:7b:c6:ab:a0:22:c7:18:53:5e:b8:db:54:a8:25: 1e:07:8b:6e:f2:38:ae:51:8e:39:44:af:cc:aa:e9: 62:24:7a:31:3f:21:b9:ad:56:f4:dc:1c:6c:7d:77: ae:29:6a:f0:98:55:7e:8e:bf:42:d4:3d:b6:94:f2: e1:53:b4:00:a4:cb:fe:80:40:74:78:6f:20:b8:e9: d5:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:A3:9A:73:C8:A2:57:99:82:FD:3D:30:FF:2F:E8:38:FA:04:CA:64 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/eKOac8iiV5mC_T0w_y_oOPoEymQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.61.114.0/24 Signature Algorithm: sha256WithRSAEncryption 60:82:dc:8f:70:89:b2:6c:3a:2c:59:a9:61:a0:b4:63:be:2f: 39:e0:b4:4d:5f:9d:c9:e6:bd:24:0c:85:da:fc:8a:f1:50:6d: 1f:3f:ad:8b:29:ae:17:b3:f7:c2:31:00:a2:23:74:e1:1c:39: 1d:f5:13:ef:e8:5c:fa:81:05:5d:cf:48:28:f3:c3:ea:e5:55: 88:4c:33:24:f3:50:9a:66:35:bb:67:7c:01:d5:24:78:a1:a9: f5:78:22:ca:e7:93:ed:58:03:43:16:a1:43:d8:ef:18:9d:fa: e4:30:90:73:82:bd:84:47:5a:d8:91:4c:4c:46:33:e3:ac:5f: 5d:65:14:fe:4c:6e:f5:e5:f9:1c:5a:d4:f8:8e:e9:d2:ee:eb: ce:ae:4e:42:f6:50:5a:a2:62:a6:80:bf:6b:09:34:85:a8:7a: 13:13:51:d7:77:9f:90:00:ff:c6:bd:c3:9d:e1:d9:82:21:a2: 34:93:a5:43:6d:65:30:51:d5:c5:12:56:41:06:32:38:0d:3e: db:40:19:27:95:6b:ee:99:aa:cb:ea:44:b3:05:e8:f3:9e:e8: 4a:c9:c1:96:4d:b1:87:28:47:1b:cb:3b:7b:ec:e9:28:d5:e1: 79:8b:c0:8f:a8:3c:a8:fb:18:ee:5d:39:de:d3:c6:4b:ec:9a: 72:88:54:fd -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICEiMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDA4MjYw NTE4MTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDc4QTM5QTczQzhBMjU3 OTk4MkZEM0QzMEZGMkZFODM4RkEwNENBNjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpJ4uPDL246zllzcUlMU/rT443heGrV2DWaPQyWDPFpOOTCdlv fx7sLeTvo3PUWX0hSJ6uucwlzuMaFa96tCAiLFkH2ACWtx0BnKKc3LzRgjOFSZj7 H84UjwDLEnLrazIMjgf+fyI+syXjF7qDoVFXy0UQOxcXj3ezoYb5WC43KxeGLQ38 g79iEE3RJeFlOYY0LvOiqSwdJ2Vq16dZjDTooN16KU6JVJVcKhByR8podPdKVuB7 xqugIscYU16421SoJR4Hi27yOK5RjjlEr8yq6WIkejE/IbmtVvTcHGx9d64pavCY VX6Ov0LUPbaU8uFTtACky/6AQHR4byC46dWjAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUeKOac8iiV5mC/T0w/y/oOPoEymQwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9lS09hYzhpaVY1bUNfVDB3X3lf b09Qb0V5bVEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA0j1y MA0GCSqGSIb3DQEBCwUAA4IBAQBggtyPcImybDosWalhoLRjvi854LRNX53J5r0k DIXa/IrxUG0fP62LKa4Xs/fCMQCiI3ThHDkd9RPv6Fz6gQVdz0go88Pq5VWITDMk 81CaZjW7Z3wB1SR4oan1eCLK55PtWANDFqFD2O8YnfrkMJBzgr2ER1rYkUxMRjPj rF9dZRT+TG715fkcWtT4junS7uvOrk5C9lBaomKmgL9rCTSFqHoTE1HXd5+QAP/G vcOd4dmCIaI0k6VDbWUwUdXFElZBBjI4DT7bQBknlWvumarL6kSzBejznuhKycGW TbGHKEcbyzt77Oko1eF5i8CPqDyo+xjuXTne08ZL7JpyiFT9 -----END CERTIFICATE-----Generated at Sun Nov 24 22:50:19 2024 by rpki-client on console-fra.rpki-client.org