$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/lZISaXBPHssL4F_6viJFxVFYoYw.roa File: lZISaXBPHssL4F_6viJFxVFYoYw.roa (raw, json) Hash identifier: 5grKMGQZsEQstEVgCFrauyphc5alFrdWLG8ofOZRqc8= Subject key identifier: 95:92:12:69:70:4F:1E:CB:0B:E0:5F:FA:BE:22:45:C5:51:58:A1:8C Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 11C1 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/lZISaXBPHssL4F_6viJFxVFYoYw.roa Signing time: Mon 26 Aug 2024 05:17:54 +0000 ROA not before: Mon 26 Aug 2024 05:17:54 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 3462 IP address blocks: 220.136.0.0/13 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4545 (0x11c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 26 05:17:54 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=95921269704F1ECB0BE05FFABE2245C55158A18C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:7f:f0:41:b3:66:d1:25:5b:23:a1:cf:88:1b: c0:0d:99:31:73:40:76:b3:8b:8b:cf:9f:70:73:45: 7f:9c:f4:36:36:ed:a0:e5:d0:97:70:82:05:8a:5e: 61:27:2c:9f:99:49:52:61:ff:dd:28:a1:f5:65:14: 87:f1:f1:5a:08:9a:7f:eb:a3:80:52:76:50:a5:2f: 57:9d:cd:a5:e5:21:58:7a:58:08:e3:dc:26:a9:e1: 3f:4a:96:f4:9e:83:6c:61:37:7a:cd:94:21:e2:77: e2:82:fd:dd:1b:04:c4:b3:20:79:c9:3a:94:00:3e: ea:7e:7b:fd:67:88:37:59:cd:2d:cc:af:c1:ad:9c: 45:c6:f2:8b:40:ea:8a:eb:a1:6d:5c:59:a6:bf:b3: 01:c0:00:c0:f3:28:54:a8:0e:cd:ab:d4:c1:d6:46: 28:30:f4:7b:e4:13:b8:bc:93:e4:9f:13:e8:8f:1d: 03:47:b8:fa:e1:6c:7a:c0:b3:01:2f:26:a2:60:d4: 99:5c:e5:d2:36:76:0d:e2:fb:fe:85:4d:96:66:a6: cd:9a:05:90:00:09:98:9d:8e:2f:d2:ab:f0:1e:94: 4e:c3:77:29:06:40:bc:36:16:73:95:b6:f0:34:48: 0c:5b:51:b7:70:47:dd:59:3d:f9:97:23:76:e0:02: 7e:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:92:12:69:70:4F:1E:CB:0B:E0:5F:FA:BE:22:45:C5:51:58:A1:8C X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/lZISaXBPHssL4F_6viJFxVFYoYw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 220.136.0.0/13 Signature Algorithm: sha256WithRSAEncryption 26:6d:74:66:9c:57:9b:2f:35:70:ce:40:7a:68:c1:d6:f1:99: 3b:26:7a:93:91:ec:a8:e9:36:43:6b:63:68:f6:34:95:85:a2: ad:ce:3b:4e:d8:f1:43:36:15:59:7d:18:d8:f5:e0:85:9e:81: f3:16:28:5a:01:bf:1e:da:6d:77:04:3c:ad:c6:b2:90:74:29: a0:a5:42:6d:eb:42:91:7f:f7:c6:2f:ea:09:ff:d2:3c:ec:41: c8:4b:dc:c4:6f:aa:4c:fa:3d:61:be:f1:92:f0:41:08:97:7c: 6e:04:f9:12:12:cf:6c:f1:7b:74:26:13:6c:65:fe:bc:e9:ed: 81:d4:ab:43:74:27:52:55:97:cd:5a:66:dd:60:6a:c5:1f:70: 70:61:c0:1c:bc:ae:78:9d:48:a7:c2:1c:df:b1:bb:51:f1:9e: 28:76:d5:76:a0:b6:22:d3:6c:85:ea:a5:42:a6:64:bf:e9:05: af:15:ca:78:2b:c8:74:f9:42:fb:26:ed:46:68:56:f5:d7:19: 4b:e4:94:00:f2:0c:1b:19:67:6b:33:a1:7a:af:f0:64:e9:5d: 27:01:a9:c3:2d:39:c9:00:58:25:ea:47:c6:e3:83:ef:04:8e: af:5c:d8:6f:e4:ee:fe:6a:fd:36:87:1d:27:1f:f1:f5:be:0c: 14:b6:e5:22 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICEcEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDA4MjYw NTE3NTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDk1OTIxMjY5NzA0RjFF Q0IwQkUwNUZGQUJFMjI0NUM1NTE1OEExOEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/f/BBs2bRJVsjoc+IG8ANmTFzQHazi4vPn3BzRX+c9DY27aDl 0JdwggWKXmEnLJ+ZSVJh/90oofVlFIfx8VoImn/ro4BSdlClL1edzaXlIVh6WAjj 3Cap4T9KlvSeg2xhN3rNlCHid+KC/d0bBMSzIHnJOpQAPup+e/1niDdZzS3Mr8Gt nEXG8otA6orroW1cWaa/swHAAMDzKFSoDs2r1MHWRigw9HvkE7i8k+SfE+iPHQNH uPrhbHrAswEvJqJg1Jlc5dI2dg3i+/6FTZZmps2aBZAACZidji/Sq/AelE7DdykG QLw2FnOVtvA0SAxbUbdwR91ZPfmXI3bgAn4FAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUlZISaXBPHssL4F/6viJFxVFYoYwwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9sWklTYVhCUEhzc0w0Rl82dmlK RnhWRllvWXcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMD3Igw DQYJKoZIhvcNAQELBQADggEBACZtdGacV5svNXDOQHpowdbxmTsmepOR7KjpNkNr Y2j2NJWFoq3OO07Y8UM2FVl9GNj14IWegfMWKFoBvx7abXcEPK3GspB0KaClQm3r QpF/98Yv6gn/0jzsQchL3MRvqkz6PWG+8ZLwQQiXfG4E+RISz2zxe3QmE2xl/rzp 7YHUq0N0J1JVl81aZt1gasUfcHBhwBy8rnidSKfCHN+xu1Hxnih21XagtiLTbIXq pUKmZL/pBa8VyngryHT5Qvsm7UZoVvXXGUvklADyDBsZZ2szoXqv8GTpXScBqcMt OckAWCXqR8bjg+8Ejq9c2G/k7v5q/TaHHScf8fW+DBS25SI= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:51 2024 by rpki-client on console-fra.rpki-client.org