$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/f-PJY4inbucifalZV5Mlf4BunVY.roa File: f-PJY4inbucifalZV5Mlf4BunVY.roa (raw, json) Hash identifier: ThxkUHyShbg+GsQ1UfoQnwC97T7CDGsAEPcZxsLoPT0= Subject key identifier: 7F:E3:C9:63:88:A7:6E:E7:22:7D:A9:59:57:93:25:7F:80:6E:9D:56 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 121B Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/f-PJY4inbucifalZV5Mlf4BunVY.roa Signing time: Mon 26 Aug 2024 05:18:15 +0000 ROA not before: Mon 26 Aug 2024 05:18:15 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 3462 IP address blocks: 203.69.47.224/27 maxlen: 27 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4635 (0x121b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 26 05:18:15 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=7FE3C96388A76EE7227DA9595793257F806E9D56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:9a:11:32:0c:54:21:ae:6a:85:24:13:98:18: b7:0d:1c:64:f9:74:be:e4:70:5b:40:0e:63:5a:7c: 5c:1a:8d:82:43:70:1f:30:c8:9d:27:98:e4:ef:17: 5e:c3:37:cb:38:53:4a:5e:19:05:cc:40:c0:bf:7d: c3:cf:5f:0b:ae:58:5e:5a:ad:88:80:3e:8a:db:79: fe:8f:f0:7c:b1:c6:30:ae:b7:c6:41:a4:94:fc:fe: 44:f2:9c:57:75:d4:74:c8:09:de:9b:5e:7f:6a:41: 89:70:79:8a:10:0b:69:24:15:b9:4e:73:1c:d6:6a: 96:18:73:70:da:43:24:ba:4c:0f:f7:7b:47:5c:e2: 47:fd:54:63:91:4f:5f:e9:e1:93:0e:ec:3f:20:fc: 02:5e:7c:dc:69:db:d4:96:dc:4a:68:97:eb:29:70: d4:02:22:e3:15:07:45:52:39:5d:85:eb:02:1f:47: a1:28:02:70:2a:16:29:3c:a5:e2:d8:53:51:c3:b2: 4c:51:f7:f8:7e:31:c2:16:d8:9a:84:2a:7b:31:b2: db:9d:39:6c:bc:ab:6b:2c:59:6f:20:f0:cf:3f:a9: 03:04:70:9f:40:0a:94:85:7c:e8:8f:13:97:50:34: 8b:ff:b8:b9:e6:24:fb:cc:32:13:c5:ee:f7:34:44: 4f:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:E3:C9:63:88:A7:6E:E7:22:7D:A9:59:57:93:25:7F:80:6E:9D:56 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/f-PJY4inbucifalZV5Mlf4BunVY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.69.47.224/27 Signature Algorithm: sha256WithRSAEncryption 1c:86:c4:7a:49:af:64:cb:64:70:ee:c8:47:e8:3e:e4:2f:96: 9f:48:ff:1c:fb:12:b4:11:80:8e:78:23:b5:c1:9b:35:80:34: 59:61:8c:a5:2a:d5:09:07:e7:97:6a:89:a6:bf:85:67:95:1f: ad:1f:22:17:34:e9:ee:bc:eb:db:51:44:16:0f:74:88:19:0b: 76:56:92:76:d3:14:9c:40:a7:d2:59:4d:b8:49:31:c3:0c:09: 38:78:60:4b:f4:31:ad:1a:73:25:ed:8a:f1:d6:a6:04:05:29: 82:05:8e:0a:a7:15:8e:b7:1e:c1:c1:c0:7f:76:b0:a3:b6:5a: 57:70:1f:b5:30:94:8a:2e:e8:29:c2:ff:ce:04:bf:a8:d7:b3: c8:f0:c2:5d:e4:e8:fd:af:40:b8:80:ec:87:f9:62:d6:c4:46: f0:0a:cc:83:b8:4c:69:a3:83:9d:f2:37:fd:5e:81:4e:7c:bd: 46:a6:ec:7f:04:5f:36:85:66:86:f7:61:f1:6e:26:0e:0b:09: 31:1c:1d:68:c7:43:c7:e2:86:c2:91:39:31:0a:00:3b:df:7e: 1b:d9:c8:15:9e:30:4c:6e:54:cb:b7:37:db:81:20:a0:79:e7: ca:bc:3e:e0:3f:48:d3:54:24:df:f2:fb:fc:5e:93:10:07:9d: 67:26:e5:7a -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICEhswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDA4MjYw NTE4MTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDdGRTNDOTYzODhBNzZF RTcyMjdEQTk1OTU3OTMyNTdGODA2RTlENTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEmhEyDFQhrmqFJBOYGLcNHGT5dL7kcFtADmNafFwajYJDcB8w yJ0nmOTvF17DN8s4U0peGQXMQMC/fcPPXwuuWF5arYiAPorbef6P8HyxxjCut8ZB pJT8/kTynFd11HTICd6bXn9qQYlweYoQC2kkFblOcxzWapYYc3DaQyS6TA/3e0dc 4kf9VGORT1/p4ZMO7D8g/AJefNxp29SW3Epol+spcNQCIuMVB0VSOV2F6wIfR6Eo AnAqFik8peLYU1HDskxR9/h+McIW2JqEKnsxstudOWy8q2ssWW8g8M8/qQMEcJ9A CpSFfOiPE5dQNIv/uLnmJPvMMhPF7vc0RE+zAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUf+PJY4inbucifalZV5Mlf4BunVYwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9mLVBKWTRpbmJ1Y2lmYWxaVjVN bGY0QnVuVlkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAATAHAwUFy0Uv 4DANBgkqhkiG9w0BAQsFAAOCAQEAHIbEekmvZMtkcO7IR+g+5C+Wn0j/HPsStBGA jngjtcGbNYA0WWGMpSrVCQfnl2qJpr+FZ5UfrR8iFzTp7rzr21FEFg90iBkLdlaS dtMUnECn0llNuEkxwwwJOHhgS/QxrRpzJe2K8damBAUpggWOCqcVjrcewcHAf3aw o7ZaV3AftTCUii7oKcL/zgS/qNezyPDCXeTo/a9AuIDsh/li1sRG8ArMg7hMaaOD nfI3/V6BTny9RqbsfwRfNoVmhvdh8W4mDgsJMRwdaMdDx+KGwpE5MQoAO99+G9nI FZ4wTG5Uy7c324EgoHnnyrw+4D9I01Qk3/L7/F6TEAedZybleg== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:32 2024 by rpki-client on console-ams.rpki-client.org