$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/mQtR3AiLEtbleI0Y8NFsfzi1Ppk.roa File: mQtR3AiLEtbleI0Y8NFsfzi1Ppk.roa (raw, json) Hash identifier: MUbZSt5xS4GSmOW5ITVPQ7TxwNug5cVQEolA5mr/ypA= Subject key identifier: 99:0B:51:DC:08:8B:12:D6:E5:78:8D:18:F0:D1:6C:7F:38:B5:3E:99 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 1780 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/mQtR3AiLEtbleI0Y8NFsfzi1Ppk.roa Signing time: Wed 12 Feb 2025 01:36:46 +0000 ROA not before: Wed 12 Feb 2025 01:36:46 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 3462 IP address blocks: 218.166.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 02:06:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6016 (0x1780) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Feb 12 01:36:46 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=990B51DC088B12D6E5788D18F0D16C7F38B53E99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:65:2c:41:2d:f5:e0:59:97:ea:6c:c3:e8:f5: 91:72:f6:31:ff:ba:0b:9d:d3:df:3d:32:14:49:9a: d4:0e:a8:a1:06:64:c2:2a:be:88:7e:e0:59:ed:7d: ee:51:81:41:95:17:fb:50:70:ec:8a:90:de:7d:7e: 29:89:f2:a1:00:e5:5b:f2:59:83:a8:1e:e2:2e:d0: a0:46:39:75:e5:51:b1:84:76:c6:e5:5f:4c:9d:d6: a9:26:b1:c6:1d:64:ac:34:a5:3d:99:01:83:fd:fc: ee:6e:a8:cb:4b:c0:44:eb:87:c3:8b:fe:62:bd:8c: bc:db:0a:1c:9a:79:16:7d:d2:41:dd:5e:08:6e:1c: 09:ab:a6:18:49:c4:0b:13:aa:47:ba:99:75:bc:72: a5:75:e5:90:d7:71:b2:cc:b8:92:6b:b3:35:1d:28: d5:a7:09:e4:51:e8:ce:bd:7d:72:85:3d:4a:f7:b9: 42:bc:d1:73:8b:6a:a1:39:ac:fb:dc:79:2e:c4:27: 1e:da:7d:9a:2b:a0:4c:59:1a:e5:62:a8:86:9f:54: 76:d1:30:bb:25:89:86:73:c6:01:a4:45:ec:38:cf: c7:a8:a1:10:4f:3a:9e:66:a3:8b:ce:f0:c3:af:fe: 35:c6:4b:6c:d4:d5:2e:07:92:50:27:37:34:d6:ab: e5:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:0B:51:DC:08:8B:12:D6:E5:78:8D:18:F0:D1:6C:7F:38:B5:3E:99 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/mQtR3AiLEtbleI0Y8NFsfzi1Ppk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 218.166.0.0/15 Signature Algorithm: sha256WithRSAEncryption ae:2d:1c:80:fb:fb:b9:78:c0:72:10:5c:91:71:48:b1:78:36: c2:9a:8a:00:e4:3f:a5:cb:43:f4:2a:87:05:97:37:18:c7:ab: 53:75:79:6a:3d:cd:a2:48:5a:f8:a5:f3:fb:48:8d:90:81:b4: 3f:f3:99:a3:84:bc:bf:2c:eb:32:c6:9b:f1:0e:da:a7:14:87: b0:3d:d3:aa:39:34:02:ed:c6:36:50:c7:5e:67:14:17:94:33: 5d:9a:46:72:0f:8f:d8:37:90:4e:56:5a:33:f9:0e:3e:a4:85: 96:2d:ad:18:a0:0f:1b:31:ea:ce:f9:52:e6:18:bf:e7:cc:80: ae:0d:f3:03:11:19:34:ca:d8:6f:20:3a:67:54:90:68:cf:19: 9a:07:5c:68:a2:f8:27:67:c0:a4:89:27:02:35:93:34:a9:b6: c4:4e:ef:49:ec:9b:5e:c5:4f:d2:0f:6d:5e:d6:cc:fc:f2:4a: fd:ad:18:c1:b4:ce:43:35:70:92:0b:63:dd:ca:4f:41:38:d1: 52:b0:ca:69:82:bf:a5:47:55:d2:48:34:99:b4:6d:62:c6:02: 97:c1:b7:53:f9:5d:5e:16:68:5d:69:f3:19:49:37:ac:20:9c: 5e:72:8d:aa:13:d0:82:c2:60:37:8f:21:0f:99:00:1e:ab:fe: db:d4:5a:88 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICF4AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTIw MTM2NDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDk5MEI1MURDMDg4QjEy RDZFNTc4OEQxOEYwRDE2QzdGMzhCNTNFOTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCZSxBLfXgWZfqbMPo9ZFy9jH/ugud0989MhRJmtQOqKEGZMIq voh+4Fntfe5RgUGVF/tQcOyKkN59fimJ8qEA5VvyWYOoHuIu0KBGOXXlUbGEdsbl X0yd1qkmscYdZKw0pT2ZAYP9/O5uqMtLwETrh8OL/mK9jLzbChyaeRZ90kHdXghu HAmrphhJxAsTqke6mXW8cqV15ZDXcbLMuJJrszUdKNWnCeRR6M69fXKFPUr3uUK8 0XOLaqE5rPvceS7EJx7afZoroExZGuViqIafVHbRMLsliYZzxgGkRew4z8eooRBP Op5mo4vO8MOv/jXGS2zU1S4HklAnNzTWq+UTAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUmQtR3AiLEtbleI0Y8NFsfzi1PpkwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9tUXRSM0FpTEV0YmxlSTBZOE5G c2Z6aTFQcGsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMB2qYw DQYJKoZIhvcNAQELBQADggEBAK4tHID7+7l4wHIQXJFxSLF4NsKaigDkP6XLQ/Qq hwWXNxjHq1N1eWo9zaJIWvil8/tIjZCBtD/zmaOEvL8s6zLGm/EO2qcUh7A906o5 NALtxjZQx15nFBeUM12aRnIPj9g3kE5WWjP5Dj6khZYtrRigDxsx6s75UuYYv+fM gK4N8wMRGTTK2G8gOmdUkGjPGZoHXGii+CdnwKSJJwI1kzSptsRO70nsm17FT9IP bV7WzPzySv2tGMG0zkM1cJILY93KT0E40VKwymmCv6VHVdJINJm0bWLGApfBt1P5 XV4WaF1p8xlJN6wgnF5yjaoT0ILCYDePIQ+ZAB6r/tvUWog= -----END CERTIFICATE-----Generated at Mon Apr 7 01:57:41 2025 by rpki-client