$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/fOh3kCihpNq-9bpkzWIlxtPfdcc.roa File: fOh3kCihpNq-9bpkzWIlxtPfdcc.roa (raw, json) Hash identifier: sk/KCpy/69mklM8ngPCRVf0i4fcsEBMG+DmiKH9/+xA= Subject key identifier: 7C:E8:77:90:28:A1:A4:DA:BE:F5:BA:64:CD:62:25:C6:D3:DF:75:C7 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 1755 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/fOh3kCihpNq-9bpkzWIlxtPfdcc.roa Signing time: Wed 12 Feb 2025 01:36:35 +0000 ROA not before: Wed 12 Feb 2025 01:36:35 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 3462 IP address blocks: 220.128.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 02:06:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5973 (0x1755) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Feb 12 01:36:35 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=7CE8779028A1A4DABEF5BA64CD6225C6D3DF75C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:54:63:0b:7a:28:d7:3d:c8:7a:24:5b:55:1f: 93:64:9a:6d:4b:ba:21:09:f3:7a:f2:68:c0:5c:f1: af:72:dd:c8:d9:c5:71:19:e5:da:6b:fb:e4:ef:07: 3c:67:94:cf:0f:d6:fe:bf:d1:e8:3b:53:03:08:4d: c2:df:be:87:b9:5c:92:eb:de:c3:27:f0:62:c2:83: ef:11:37:53:26:6b:ac:bd:18:6a:fb:95:a1:f6:31: ee:98:6d:19:fa:a4:60:ad:b1:91:71:32:5b:10:6f: 79:d1:61:aa:ba:f3:28:5f:72:0c:d3:c0:61:15:3b: a4:8a:bf:a4:f5:91:23:df:bc:f8:9e:39:43:36:bb: 69:24:74:bd:24:6b:f1:6c:19:f9:37:ea:f0:71:69: af:20:af:de:94:6a:8f:82:d2:88:bb:29:e8:49:f9: 55:de:11:f8:9a:97:a1:38:e1:49:aa:df:3d:b9:59: 70:7b:00:bf:27:9f:3a:0c:43:34:f7:17:48:e4:4d: b9:c2:00:64:26:4b:b1:42:7a:61:b1:73:b6:43:cb: 3f:f5:a3:7a:16:16:92:2a:9c:19:53:58:56:65:14: 65:8b:e3:fc:d4:da:d7:32:95:78:ff:d4:40:87:2c: e0:2a:c5:16:a6:61:25:bf:2a:d4:c3:86:51:98:b5: f7:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:E8:77:90:28:A1:A4:DA:BE:F5:BA:64:CD:62:25:C6:D3:DF:75:C7 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/fOh3kCihpNq-9bpkzWIlxtPfdcc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 220.128.61.0/24 Signature Algorithm: sha256WithRSAEncryption b2:d7:3c:e0:fa:15:55:cf:d4:24:0f:a1:74:79:41:db:e3:6b: 8d:03:de:35:52:fd:6b:41:cc:08:c9:40:44:9c:94:63:d6:08: 05:77:e6:5d:84:2e:42:07:30:e4:a5:3b:ae:39:d3:dc:66:2e: a0:e1:de:54:90:4b:0c:b9:44:9c:02:02:ac:ba:a5:83:53:10: d4:4f:65:b9:cf:7b:64:90:bc:3a:cf:3a:75:28:2b:ae:21:a2: 60:dc:8e:fd:36:07:ed:6f:a3:36:58:44:b6:4d:4b:21:4f:41: bf:4b:c2:fe:3f:f8:04:54:4d:9d:eb:20:0b:fc:0a:42:46:e9: 34:36:8b:2c:b6:81:15:c5:f8:7a:10:ff:a0:92:2f:78:8b:5b: 74:73:d5:5d:ec:cd:42:d9:96:8d:26:e1:f1:19:28:f2:93:dc: ad:d1:1b:fd:af:f5:e1:af:f1:7f:38:ea:cd:e3:22:2f:f9:43: 62:a4:e6:99:62:59:4a:ae:3f:12:7d:9a:1a:45:18:28:ae:ea: 06:9c:b5:1d:47:b8:ac:9f:35:38:49:b9:94:8e:31:2f:eb:5b: 9c:5a:00:56:c6:2f:be:25:81:ad:07:f3:eb:4c:bd:f0:19:81: 61:06:58:ad:26:0c:d9:92:d8:f9:24:20:c0:2b:46:0a:bd:bd: db:4d:26:e7 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICF1UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTIw MTM2MzVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDdDRTg3NzkwMjhBMUE0 REFCRUY1QkE2NENENjIyNUM2RDNERjc1QzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQChVGMLeijXPch6JFtVH5Nkmm1LuiEJ83ryaMBc8a9y3cjZxXEZ 5dpr++TvBzxnlM8P1v6/0eg7UwMITcLfvoe5XJLr3sMn8GLCg+8RN1Mma6y9GGr7 laH2Me6YbRn6pGCtsZFxMlsQb3nRYaq68yhfcgzTwGEVO6SKv6T1kSPfvPieOUM2 u2kkdL0ka/FsGfk36vBxaa8gr96Uao+C0oi7KehJ+VXeEfial6E44Umq3z25WXB7 AL8nnzoMQzT3F0jkTbnCAGQmS7FCemGxc7ZDyz/1o3oWFpIqnBlTWFZlFGWL4/zU 2tcylXj/1ECHLOAqxRamYSW/KtTDhlGYtfdRAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUfOh3kCihpNq+9bpkzWIlxtPfdccwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9mT2gza0NpaHBOcS05YnBreldJ bHh0UGZkY2Mucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA3IA9 MA0GCSqGSIb3DQEBCwUAA4IBAQCy1zzg+hVVz9QkD6F0eUHb42uNA941Uv1rQcwI yUBEnJRj1ggFd+ZdhC5CBzDkpTuuOdPcZi6g4d5UkEsMuUScAgKsuqWDUxDUT2W5 z3tkkLw6zzp1KCuuIaJg3I79Ngftb6M2WES2TUshT0G/S8L+P/gEVE2d6yAL/ApC Ruk0NosstoEVxfh6EP+gki94i1t0c9Vd7M1C2ZaNJuHxGSjyk9yt0Rv9r/Xhr/F/ OOrN4yIv+UNipOaZYllKrj8SfZoaRRgoruoGnLUdR7isnzU4SbmUjjEv61ucWgBW xi++JYGtB/PrTL3wGYFhBlitJgzZktj5JCDAK0YKvb3bTSbn -----END CERTIFICATE-----Generated at Mon Apr 7 02:00:18 2025 by rpki-client