$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/hPuzK3UVB7nCse6-JEy-WNJZYKY.roa File: hPuzK3UVB7nCse6-JEy-WNJZYKY.roa (raw, json) Hash identifier: 7JoaOwe0RqYKtc/Jb1Zn8JIMRLJ/l2HACwe0bjryWA0= Subject key identifier: 84:FB:B3:2B:75:15:07:B9:C2:B1:EE:BE:24:4C:BE:58:D2:59:60:A6 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 0F3E Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/hPuzK3UVB7nCse6-JEy-WNJZYKY.roa Signing time: Fri 01 Sep 2023 08:56:48 +0000 ROA not before: Fri 01 Sep 2023 08:56:48 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 3462 IP address blocks: 210.65.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 01:23:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3902 (0xf3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Sep 1 08:56:48 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=84FBB32B751507B9C2B1EEBE244CBE58D25960A6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:a8:06:5d:e2:ec:92:69:09:b4:e1:fa:4b:b5: d8:f1:c1:9c:0d:d9:5d:4c:5a:d6:86:3f:fd:66:18: 80:47:ea:5a:6b:5d:11:d0:6b:65:fe:66:a1:0a:b3: c2:fb:0b:2c:c2:50:cd:2f:3c:8e:a2:da:0b:e2:88: 62:41:a0:da:ba:26:71:9d:5b:0a:40:a2:d2:9a:17: 34:83:5d:2d:56:c1:47:f1:8e:6d:37:24:3f:d3:f7: b0:ec:eb:73:a7:63:6b:de:7c:46:b5:90:77:0c:5e: 58:1f:09:d9:80:31:4a:eb:1e:3a:f9:ae:1c:72:89: 90:13:77:f2:70:42:77:6b:f2:d0:22:b2:0f:a0:aa: 3c:1b:2a:c7:2b:e1:41:96:16:6f:83:19:a8:81:df: 2f:84:db:35:dc:3a:de:04:c4:cd:f2:0b:a2:24:19: d9:22:13:78:70:93:19:a1:ad:dd:1a:82:71:0e:4f: 9e:40:f1:7c:bf:1e:4b:cd:0a:be:fa:d5:ea:62:41: 62:66:55:55:7e:29:14:c8:90:01:98:b2:b5:e4:7a: 5a:66:dc:a2:ca:da:0b:73:c0:16:79:92:a4:83:32: ed:1e:de:c8:44:ed:d1:20:12:ff:f7:31:37:a3:20: f6:12:9e:04:ce:14:01:dd:c1:b0:40:01:43:13:5d: ad:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:FB:B3:2B:75:15:07:B9:C2:B1:EE:BE:24:4C:BE:58:D2:59:60:A6 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/hPuzK3UVB7nCse6-JEy-WNJZYKY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.65.0.0/16 Signature Algorithm: sha256WithRSAEncryption 20:ae:4b:3b:60:98:3c:7c:cd:97:d7:e4:80:3b:7f:d2:cb:8d: 93:38:c6:2c:0c:ac:4f:94:62:0a:8e:cc:74:06:34:75:f0:d2: aa:f6:4b:c2:fa:6b:4f:68:9b:5b:0d:19:c5:15:dd:bd:40:d7: 98:02:35:49:e3:dc:79:9d:c7:5c:5f:76:0b:8f:6c:37:e2:3d: 31:14:98:5b:ef:a9:a0:22:de:30:df:18:cb:4f:93:8b:dc:f2: b6:4a:e0:53:ef:db:ef:00:74:c9:33:a9:2f:f7:73:bd:20:4a: cd:84:4b:f8:9d:20:46:ba:19:46:3f:7e:83:e4:6b:a4:17:df: a4:29:09:8b:d9:a4:6c:1f:40:fc:04:d1:ab:3f:df:00:e1:61: a4:85:23:bc:ff:2a:94:9a:30:cd:4e:16:9f:aa:f8:4c:66:71: 87:29:99:ac:dd:67:51:05:13:8c:03:50:fd:43:e5:47:82:64: f3:94:32:80:1b:cd:0f:8d:a4:23:48:a1:67:f3:a6:45:4d:2c: cf:d9:75:29:0c:26:8d:5e:c9:c8:00:0e:a8:c2:76:93:6b:8a: fe:45:05:8e:10:7f:86:fa:7d:9f:65:2b:31:5d:bb:90:70:f5: 3d:1c:47:a8:7d:7b:a5:b7:b4:fa:04:c0:2b:a1:14:d1:f1:b3: 45:23:1a:37 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDz4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMzA5MDEw ODU2NDhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDg0RkJCMzJCNzUxNTA3 QjlDMkIxRUVCRTI0NENCRTU4RDI1OTYwQTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHqAZd4uySaQm04fpLtdjxwZwN2V1MWtaGP/1mGIBH6lprXRHQ a2X+ZqEKs8L7CyzCUM0vPI6i2gviiGJBoNq6JnGdWwpAotKaFzSDXS1WwUfxjm03 JD/T97Ds63OnY2vefEa1kHcMXlgfCdmAMUrrHjr5rhxyiZATd/JwQndr8tAisg+g qjwbKscr4UGWFm+DGaiB3y+E2zXcOt4ExM3yC6IkGdkiE3hwkxmhrd0agnEOT55A 8Xy/HkvNCr761epiQWJmVVV+KRTIkAGYsrXkelpm3KLK2gtzwBZ5kqSDMu0e3shE 7dEgEv/3MTejIPYSngTOFAHdwbBAAUMTXa0tAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUhPuzK3UVB7nCse6+JEy+WNJZYKYwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9oUHV6SzNVVkI3bkNzZTYtSkV5 LVdOSlpZS1kucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMA0kEw DQYJKoZIhvcNAQELBQADggEBACCuSztgmDx8zZfX5IA7f9LLjZM4xiwMrE+UYgqO zHQGNHXw0qr2S8L6a09om1sNGcUV3b1A15gCNUnj3Hmdx1xfdguPbDfiPTEUmFvv qaAi3jDfGMtPk4vc8rZK4FPv2+8AdMkzqS/3c70gSs2ES/idIEa6GUY/foPka6QX 36QpCYvZpGwfQPwE0as/3wDhYaSFI7z/KpSaMM1OFp+q+ExmcYcpmazdZ1EFE4wD UP1D5UeCZPOUMoAbzQ+NpCNIoWfzpkVNLM/ZdSkMJo1eycgADqjCdpNriv5FBY4Q f4b6fZ9lKzFdu5Bw9T0cR6h9e6W3tPoEwCuhFNHxs0UjGjc= -----END CERTIFICATE-----Generated at Thu May 23 03:15:02 2024 by rpki-client on console-fra.rpki-client.org