$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/fZxYcRU3R0pWrsATiIc6t19NbhA.roa File: fZxYcRU3R0pWrsATiIc6t19NbhA.roa (raw, json) Hash identifier: mSYGoo096SVk3f2590I1tGyvTvA2V9VyH0i3YvjTk+g= Subject key identifier: 7D:9C:58:71:15:37:47:4A:56:AE:C0:13:88:87:3A:B7:5F:4D:6E:10 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 11DB Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/fZxYcRU3R0pWrsATiIc6t19NbhA.roa Signing time: Mon 26 Aug 2024 05:18:00 +0000 ROA not before: Mon 26 Aug 2024 05:18:00 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 36040 IP address blocks: 202.39.67.128/27 maxlen: 27 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 06:54:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4571 (0x11db) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 26 05:18:00 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=7D9C58711537474A56AEC01388873AB75F4D6E10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:e3:3e:8d:82:80:28:96:a7:a6:db:3c:df:92: 19:53:95:70:15:b4:2e:fb:14:fb:01:d0:c5:0b:e9: c1:e0:0c:fe:60:57:50:2f:4f:cf:a4:9e:0b:bb:68: 82:39:55:a3:d4:19:52:56:eb:c7:f3:9c:cd:c4:a4: 0e:09:b8:94:a4:ad:02:ac:64:e2:0e:77:45:d4:17: e1:a1:95:15:56:b7:39:09:f7:dd:d4:d7:96:86:93: c8:6c:f6:8c:53:3c:07:85:60:8b:e5:cd:e4:e4:e4: 19:5d:6d:a1:be:20:78:d6:77:3d:e8:ee:07:11:24: 14:cb:6f:04:fb:8f:79:4f:b9:f2:1b:9e:a1:8b:c1: e5:8f:56:12:0a:4e:2f:5d:45:63:2c:50:1a:16:b3: c1:e1:ed:09:b5:89:57:0a:05:17:c1:f8:a0:e7:52: 89:d4:33:28:8d:78:6d:bb:e5:31:34:51:18:73:a6: fd:50:4e:56:e6:8b:55:98:70:7d:d8:10:2c:d5:18: a5:55:b7:db:c3:27:cc:6d:3c:ec:33:5f:62:c7:76: a4:5b:de:14:d6:97:de:84:45:21:a3:c4:5e:1c:a4: 50:8b:a2:3c:ae:01:09:f0:5d:b4:3b:f7:1c:2a:68: 3f:29:6b:70:78:2e:a8:b3:1e:e8:a6:71:84:a8:76: e4:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:9C:58:71:15:37:47:4A:56:AE:C0:13:88:87:3A:B7:5F:4D:6E:10 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/fZxYcRU3R0pWrsATiIc6t19NbhA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.39.67.128/27 Signature Algorithm: sha256WithRSAEncryption 06:4c:87:39:20:86:b4:81:d6:25:8d:c7:7f:02:18:d5:76:46: 7f:a6:d9:9c:78:8a:e4:1a:06:63:7e:a5:6d:89:6e:c2:89:92: 60:cd:55:b5:c4:2f:0e:54:1c:48:1a:47:88:0b:ba:51:81:24: ff:35:60:0e:df:5c:c0:72:ca:1b:05:26:0f:6e:b8:2e:9d:22: 63:87:90:51:54:18:a0:83:c6:2e:94:98:ef:34:f9:8f:e9:f2: f5:c0:87:23:93:06:32:e9:ad:cc:fe:f0:79:63:2f:39:0a:72: 1e:1f:71:75:ff:d6:e0:c0:2b:7c:ed:7b:4e:b2:f9:3e:ae:18: 6c:69:26:33:51:14:52:1f:a9:01:ed:4a:64:76:9d:71:f0:8e: 0e:cd:ca:b7:17:00:cc:b1:08:93:78:15:ac:72:f1:b6:c6:98: 7f:b1:b9:0f:88:63:b2:34:7d:7e:05:44:67:31:e2:57:d0:68: 4f:37:e0:04:e9:fb:e3:de:8f:ac:a8:f9:77:14:db:a7:4a:88: b7:28:bf:48:57:df:3a:6f:36:07:4c:7e:c9:3a:c0:f4:d3:02: 54:87:c3:d3:89:a6:a9:91:ba:6b:46:fc:7b:4a:45:14:09:ab: 04:31:b6:be:1a:68:5f:df:cb:bf:1e:7f:a0:0c:c7:8b:ab:ee: 94:80:dd:1b -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICEdswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDA4MjYw NTE4MDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDdEOUM1ODcxMTUzNzQ3 NEE1NkFFQzAxMzg4ODczQUI3NUY0RDZFMTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCn4z6NgoAolqem2zzfkhlTlXAVtC77FPsB0MUL6cHgDP5gV1Av T8+kngu7aII5VaPUGVJW68fznM3EpA4JuJSkrQKsZOIOd0XUF+GhlRVWtzkJ993U 15aGk8hs9oxTPAeFYIvlzeTk5BldbaG+IHjWdz3o7gcRJBTLbwT7j3lPufIbnqGL weWPVhIKTi9dRWMsUBoWs8Hh7Qm1iVcKBRfB+KDnUonUMyiNeG275TE0URhzpv1Q Tlbmi1WYcH3YECzVGKVVt9vDJ8xtPOwzX2LHdqRb3hTWl96ERSGjxF4cpFCLojyu AQnwXbQ79xwqaD8pa3B4LqizHuimcYSoduTHAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUfZxYcRU3R0pWrsATiIc6t19NbhAwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9mWnhZY1JVM1IwcFdyc0FUaUlj NnQxOU5iaEEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAATAHAwUFyidD gDANBgkqhkiG9w0BAQsFAAOCAQEABkyHOSCGtIHWJY3HfwIY1XZGf6bZnHiK5BoG Y36lbYluwomSYM1VtcQvDlQcSBpHiAu6UYEk/zVgDt9cwHLKGwUmD264Lp0iY4eQ UVQYoIPGLpSY7zT5j+ny9cCHI5MGMumtzP7weWMvOQpyHh9xdf/W4MArfO17TrL5 Pq4YbGkmM1EUUh+pAe1KZHadcfCODs3KtxcAzLEIk3gVrHLxtsaYf7G5D4hjsjR9 fgVEZzHiV9BoTzfgBOn7496PrKj5dxTbp0qItyi/SFffOm82B0x+yTrA9NMCVIfD 04mmqZG6a0b8e0pFFAmrBDG2vhpoX9/Lvx5/oAzHi6vulIDdGw== -----END CERTIFICATE-----Generated at Fri Nov 22 04:36:58 2024 by rpki-client on console-fra.rpki-client.org