$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/mtAFccnuU-AYpbYVoWT3LVS2H8k.roa File: mtAFccnuU-AYpbYVoWT3LVS2H8k.roa (raw, json) Hash identifier: VIKsDJLWTjiupV6rs/Ybmk0Hyghcvbb8rV5gfyJw23Y= Subject key identifier: 9A:D0:05:71:C9:EE:53:E0:18:A5:B6:15:A1:64:F7:2D:54:B6:1F:C9 Certificate issuer: /CN=5876E4B8DFAA224C019D246931FC3CD7A4FEED2A Certificate serial: 0D2B Authority key identifier: 58:76:E4:B8:DF:AA:22:4C:01:9D:24:69:31:FC:3C:D7:A4:FE:ED:2A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WHbkuN-qIkwBnSRpMfw816T-7So.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/mtAFccnuU-AYpbYVoWT3LVS2H8k.roa Signing time: Mon 26 Aug 2024 05:18:17 +0000 ROA not before: Mon 26 Aug 2024 05:18:17 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 3462 IP address blocks: 168.95.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WHbkuN-qIkwBnSRpMfw816T-7So.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WHbkuN-qIkwBnSRpMfw816T-7So.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/WHbkuN-qIkwBnSRpMfw816T-7So.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3371 (0xd2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5876E4B8DFAA224C019D246931FC3CD7A4FEED2A Validity Not Before: Aug 26 05:18:17 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=9AD00571C9EE53E018A5B615A164F72D54B61FC9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:de:0f:3e:cd:e6:3f:a6:f5:db:f2:3a:b0:50: ee:ca:1e:33:26:36:26:d5:89:69:d8:16:55:4e:bf: 52:27:fe:bd:74:9f:99:ee:12:9c:24:3a:4e:a9:b0: a1:c6:cd:ab:16:61:1f:97:dc:0c:27:83:3b:d9:00: d5:0d:d8:85:f9:10:27:07:76:4c:be:66:f5:69:21: 0c:fb:c2:82:ca:10:03:16:4b:47:da:c2:9b:dc:90: ac:15:ba:0d:c5:8f:d8:f1:d2:81:1f:6e:7a:75:b8: f1:e2:54:cb:13:4e:46:27:81:b9:57:87:41:27:5b: f5:53:84:30:61:c8:16:a4:fb:a9:4a:fb:e0:63:60: 42:11:7d:d3:28:8f:ef:70:b9:8c:2c:61:8b:e9:c6: 27:ba:ef:fe:9f:06:67:b9:6c:21:d7:e4:ea:34:37: 3a:1a:f5:e3:a8:72:97:dd:68:7e:e5:e4:db:da:ce: bf:3c:16:88:27:76:2b:eb:bf:ad:a8:c1:41:18:cb: 9d:0c:61:17:76:de:32:50:bc:cf:2d:b0:c3:9d:14: 04:44:10:6b:e8:b4:c7:2d:17:e4:e0:25:1f:d7:86: 8a:fb:4f:62:83:3b:9a:49:5e:23:90:52:36:04:1d: 81:3b:0d:ab:df:cc:00:eb:6c:c3:55:74:79:5b:16: df:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:D0:05:71:C9:EE:53:E0:18:A5:B6:15:A1:64:F7:2D:54:B6:1F:C9 X509v3 Authority Key Identifier: keyid:58:76:E4:B8:DF:AA:22:4C:01:9D:24:69:31:FC:3C:D7:A4:FE:ED:2A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WHbkuN-qIkwBnSRpMfw816T-7So.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WHbkuN-qIkwBnSRpMfw816T-7So.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/mtAFccnuU-AYpbYVoWT3LVS2H8k.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 168.95.0.0/16 Signature Algorithm: sha256WithRSAEncryption 38:7d:df:7e:4a:ec:33:6a:70:05:af:67:c6:85:19:cc:2d:89: f5:77:1d:8e:e0:03:3a:27:3a:d9:34:de:72:92:ca:a9:23:9c: 68:2e:55:af:02:8a:f1:0f:82:b2:a2:5e:64:49:0a:89:88:17: ba:c8:9d:94:7d:30:df:09:c2:c1:6c:fc:45:e3:42:15:55:6f: bb:53:c2:bb:4c:a0:aa:09:66:8e:9a:4d:9e:f8:4b:a2:0d:67: e9:b5:b0:71:14:5e:6d:e2:10:dd:38:9c:ec:7a:13:c9:1e:19: 3e:87:a3:02:07:9f:aa:ee:af:51:37:24:08:a9:3b:d4:b8:d7: 72:9f:f5:25:c8:0b:07:83:26:14:7c:b2:da:cc:f4:cb:05:10: b8:70:30:6f:98:dd:75:c0:c7:43:01:cb:16:9e:c1:bc:ae:9c: 46:ad:1c:fe:2f:db:04:51:15:c6:ed:86:44:af:85:48:6b:f2: 5e:9c:25:be:e5:46:a7:92:e4:5c:d3:a0:a7:b1:84:c3:ca:e2: c8:2d:da:67:b4:23:dd:bf:64:b7:c1:fe:e1:2b:da:08:ea:96: 0c:a1:7e:5d:95:88:70:e8:ac:21:9d:b6:1a:9d:ce:26:05:82: 64:98:86:98:e9:cc:0a:d8:3f:b4:e7:b8:89:22:f8:39:dc:3c: b7:e5:88:9c -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDSswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTg3 NkU0QjhERkFBMjI0QzAxOUQyNDY5MzFGQzNDRDdBNEZFRUQyQTAeFw0yNDA4MjYw NTE4MTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDlBRDAwNTcxQzlFRTUz RTAxOEE1QjYxNUExNjRGNzJENTRCNjFGQzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDx3g8+zeY/pvXb8jqwUO7KHjMmNibViWnYFlVOv1In/r10n5nu EpwkOk6psKHGzasWYR+X3AwngzvZANUN2IX5ECcHdky+ZvVpIQz7woLKEAMWS0fa wpvckKwVug3Fj9jx0oEfbnp1uPHiVMsTTkYngblXh0EnW/VThDBhyBak+6lK++Bj YEIRfdMoj+9wuYwsYYvpxie67/6fBme5bCHX5Oo0Nzoa9eOocpfdaH7l5Nvazr88 Fogndivrv62owUEYy50MYRd23jJQvM8tsMOdFAREEGvotMctF+TgJR/Xhor7T2KD O5pJXiOQUjYEHYE7DavfzADrbMNVdHlbFt8rAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUmtAFccnuU+AYpbYVoWT3LVS2H8kwHwYDVR0jBBgwFoAUWHbkuN+qIkwBnSRp Mfw816T+7SowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv V0hia3VOLXFJa3dCblNScE1mdzgxNlQtN1NvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9XSGJrdU4tcUlrd0JuU1JwTWZ3ODE2VC03U28uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9tdEFGY2NudVUtQVlwYllWb1dU M0xWUzJIOGsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAqF8w DQYJKoZIhvcNAQELBQADggEBADh9335K7DNqcAWvZ8aFGcwtifV3HY7gAzonOtk0 3nKSyqkjnGguVa8CivEPgrKiXmRJComIF7rInZR9MN8JwsFs/EXjQhVVb7tTwrtM oKoJZo6aTZ74S6INZ+m1sHEUXm3iEN04nOx6E8keGT6HowIHn6rur1E3JAipO9S4 13Kf9SXICweDJhR8strM9MsFELhwMG+Y3XXAx0MByxaewbyunEatHP4v2wRRFcbt hkSvhUhr8l6cJb7lRqeS5FzToKexhMPK4sgt2me0I92/ZLfB/uEr2gjqlgyhfl2V iHDorCGdthqdziYFgmSYhpjpzArYP7TnuIki+DncPLfliJw= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:32 2024 by rpki-client on console-ams.rpki-client.org