$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/m-HKWQGXRPzw8__DiG8yEXO4MJo.roa File: m-HKWQGXRPzw8__DiG8yEXO4MJo.roa (raw, json) Hash identifier: pUBtJezApPCFMuP4ioWP9U5XxxvIuo8LG8L/NJAM58Y= Subject key identifier: 9B:E1:CA:59:01:97:44:FC:F0:F3:FF:C3:88:6F:32:11:73:B8:30:9A Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 11E6 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/m-HKWQGXRPzw8__DiG8yEXO4MJo.roa Signing time: Mon 26 Aug 2024 05:18:03 +0000 ROA not before: Mon 26 Aug 2024 05:18:03 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 3462 IP address blocks: 59.124.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4582 (0x11e6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 26 05:18:03 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=9BE1CA59019744FCF0F3FFC3886F321173B8309A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:78:27:aa:3e:da:fb:f5:5e:5e:81:73:00:4c: 82:46:7c:24:3a:8a:ca:1c:c3:b2:89:e3:cd:91:16: 29:b7:3e:29:db:6d:e3:21:8e:a4:37:97:31:5a:7f: 7f:7c:e4:35:e7:98:69:28:40:95:27:c9:0e:4e:b9: b6:02:48:2a:c2:26:e8:a2:c0:31:a6:3b:2a:06:44: dc:a4:fa:2f:00:5a:f0:08:65:aa:55:13:18:03:9b: 73:7e:a7:fb:81:c5:3f:c4:8e:04:b4:70:98:0c:89: 33:35:0c:62:67:43:a6:9c:6a:69:d2:99:21:91:72: 00:28:f5:84:f3:05:a2:12:b3:97:25:dc:0f:2e:17: 3b:39:04:7b:3c:d3:78:00:47:5d:fb:6c:52:4f:9f: e5:56:dd:16:46:fc:9b:91:5b:71:a1:c5:04:ec:ab: 94:8e:be:70:82:e9:27:62:21:9b:03:aa:e5:36:27: 98:8d:49:0b:f8:c0:90:27:02:44:02:af:4e:1c:88: d7:a1:99:e8:9f:ce:73:22:1d:69:a5:97:c8:de:b0: 94:5f:3c:17:83:16:11:4a:04:cd:68:60:b3:81:d2: 98:5d:06:a5:39:08:44:0e:bd:6c:7d:11:13:58:a0: 5f:33:20:6f:19:c7:ff:13:af:77:af:5d:da:c5:18: 71:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:E1:CA:59:01:97:44:FC:F0:F3:FF:C3:88:6F:32:11:73:B8:30:9A X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/m-HKWQGXRPzw8__DiG8yEXO4MJo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 59.124.0.0/14 Signature Algorithm: sha256WithRSAEncryption 44:57:4f:22:c8:0e:a9:25:1b:36:7b:5a:00:20:8f:ad:d8:4d: d5:3f:98:1c:25:20:9d:ed:08:5a:74:2d:b3:5d:ef:cc:75:14: b7:5f:22:3a:6a:6d:cb:1b:8b:d3:ba:e3:d4:60:b6:83:be:7b: 52:1f:13:b7:3f:3e:ee:20:07:05:93:5c:1c:59:76:5b:cb:f0: 30:05:a5:ab:5a:89:6a:1f:40:b4:2e:d3:1e:7a:f6:75:79:94: ac:dc:8b:bb:fb:93:1c:54:67:af:68:7f:45:a4:3f:71:2b:bb: ce:d1:84:82:a2:77:30:2a:5c:b5:cf:cc:48:34:e4:4d:ba:65: 74:ae:41:e5:b9:76:ee:91:72:22:12:b8:1e:9b:b0:7d:3d:d2: 3b:dc:1d:98:7c:ae:8d:fb:5a:87:69:79:7c:c1:99:c6:62:51: 55:18:68:49:21:40:aa:7b:dd:62:7e:32:01:8b:33:5a:3d:27: 10:68:39:2b:70:31:6a:42:10:bb:b7:63:09:de:96:93:8d:b4: 2e:31:66:b2:68:12:f9:04:0f:89:ab:a5:64:4a:99:b7:71:19: 45:d8:11:c7:b5:57:da:a9:61:7b:03:1b:9c:f0:67:0b:6d:28: ec:d1:11:7b:89:56:14:08:be:f1:70:3d:d2:c4:fc:a0:3f:e5: 06:21:a6:4e -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICEeYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDA4MjYw NTE4MDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDlCRTFDQTU5MDE5NzQ0 RkNGMEYzRkZDMzg4NkYzMjExNzNCODMwOUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEeCeqPtr79V5egXMATIJGfCQ6isocw7KJ482RFim3PinbbeMh jqQ3lzFaf3985DXnmGkoQJUnyQ5OubYCSCrCJuiiwDGmOyoGRNyk+i8AWvAIZapV ExgDm3N+p/uBxT/EjgS0cJgMiTM1DGJnQ6acamnSmSGRcgAo9YTzBaISs5cl3A8u Fzs5BHs803gAR137bFJPn+VW3RZG/JuRW3GhxQTsq5SOvnCC6SdiIZsDquU2J5iN SQv4wJAnAkQCr04ciNehmeifznMiHWmll8jesJRfPBeDFhFKBM1oYLOB0phdBqU5 CEQOvWx9ERNYoF8zIG8Zx/8Tr3evXdrFGHEPAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUm+HKWQGXRPzw8//DiG8yEXO4MJowHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9tLUhLV1FHWFJQenc4X19EaUc4 eUVYTzRNSm8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMCO3ww DQYJKoZIhvcNAQELBQADggEBAERXTyLIDqklGzZ7WgAgj63YTdU/mBwlIJ3tCFp0 LbNd78x1FLdfIjpqbcsbi9O649RgtoO+e1IfE7c/Pu4gBwWTXBxZdlvL8DAFpata iWofQLQu0x569nV5lKzci7v7kxxUZ69of0WkP3Eru87RhIKidzAqXLXPzEg05E26 ZXSuQeW5du6RciISuB6bsH090jvcHZh8ro37WodpeXzBmcZiUVUYaEkhQKp73WJ+ MgGLM1o9JxBoOStwMWpCELu3YwnelpONtC4xZrJoEvkED4mrpWRKmbdxGUXYEce1 V9qpYXsDG5zwZwttKOzREXuJVhQIvvFwPdLE/KA/5QYhpk4= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:07 2024 by rpki-client on console-ams.rpki-client.org