$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/nVV5OMUnXq-RDHgH48X0vuHkfzo.roa File: nVV5OMUnXq-RDHgH48X0vuHkfzo.roa (raw, json) Hash identifier: 4bwtxRqjIzHsvuZzJUpg+VS6Oqrr+fgx08FE+9OhuXc= Subject key identifier: 9D:55:79:38:C5:27:5E:AF:91:0C:78:07:E3:C5:F4:BE:E1:E4:7F:3A Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 11ED Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/nVV5OMUnXq-RDHgH48X0vuHkfzo.roa Signing time: Mon 26 Aug 2024 05:18:04 +0000 ROA not before: Mon 26 Aug 2024 05:18:04 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17714 IP address blocks: 203.160.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4589 (0x11ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 26 05:18:04 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=9D557938C5275EAF910C7807E3C5F4BEE1E47F3A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:30:1f:6f:f0:0c:72:18:80:4a:21:ca:c7:49: 09:1b:ba:c8:a1:8e:e1:31:c2:bc:89:d4:49:b3:93: 26:9a:d9:b3:b9:a3:f8:b5:88:8a:c5:a2:fb:7d:dc: 2c:50:2b:d8:8c:5a:c8:3b:20:69:39:ad:07:00:15: 0d:9a:e7:20:5d:80:df:ca:dc:e9:e7:75:22:51:4e: 00:48:05:98:40:2c:64:c2:48:06:fe:59:70:25:c4: e6:87:3f:d1:5f:7a:20:b3:ea:03:cd:b5:13:f5:df: 78:34:ef:6b:22:85:29:20:0b:74:a9:d6:d6:21:c4: be:fc:ba:d7:c3:61:d7:b1:66:82:ae:e8:31:e5:8e: 57:5c:e5:8e:b3:62:bb:9c:62:07:d4:33:9f:72:eb: 37:67:02:17:71:5c:e7:e8:d6:51:00:70:ec:d1:4b: ea:c5:c1:bf:a4:a1:ed:58:6e:c8:ff:48:ee:2a:dd: 7f:6a:4b:63:e7:3c:dc:ac:22:9f:0d:57:55:12:38: 42:0f:2f:ea:74:6d:f7:95:a1:47:f1:f1:e3:9f:f8: e8:32:23:3d:b8:e3:aa:c2:dc:7e:04:93:47:55:49: 01:1d:b9:d4:fa:f4:5b:6d:2a:2d:41:b6:40:50:af: 57:7b:99:ef:76:e4:a9:14:f1:cf:2f:41:de:51:32: 8e:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:55:79:38:C5:27:5E:AF:91:0C:78:07:E3:C5:F4:BE:E1:E4:7F:3A X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/nVV5OMUnXq-RDHgH48X0vuHkfzo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.160.237.0/24 Signature Algorithm: sha256WithRSAEncryption 47:d5:d7:4c:47:6b:50:64:07:0a:ff:93:73:77:a0:04:b8:1b: 78:af:35:b1:48:d6:d4:09:37:97:db:bf:29:cc:c8:1a:a4:5c: f8:52:78:a7:37:aa:4a:e8:55:35:87:0d:9d:42:86:aa:92:6f: 17:22:0b:fc:e6:6e:3c:0c:f8:67:52:88:dc:b3:96:61:7a:df: 51:e2:c2:b4:5c:6a:ea:f1:61:a3:54:9c:91:84:5a:fd:8a:bd: 1f:62:97:75:44:40:4a:4d:fb:e7:39:ee:51:a4:aa:f0:98:c9: 00:db:b8:12:5d:16:5e:6f:72:14:de:e0:70:2d:3d:84:7f:e1: ee:f0:04:6d:4f:8c:a1:54:04:2d:6a:a4:82:d0:0d:a4:d8:3f: 70:a7:78:1e:2f:11:f3:c1:6a:94:41:99:dd:da:7f:ec:01:ac: ae:5c:fc:6c:d1:9d:3a:bd:44:ff:6b:c4:66:3c:53:ac:5b:fe: d7:98:aa:b0:78:76:33:96:12:15:09:39:18:ce:80:32:ed:05: 63:ec:6d:0f:e2:65:b3:0b:2c:35:a9:d3:75:d8:1a:9a:f3:cb: b1:a6:55:87:c6:28:5f:6e:1a:04:48:bb:fc:cb:46:5e:7b:c9: 3f:bd:8d:60:b4:34:a9:0a:fb:2b:fc:0d:42:38:35:1f:a2:00: bf:24:4e:67 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICEe0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDA4MjYw NTE4MDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDlENTU3OTM4QzUyNzVF QUY5MTBDNzgwN0UzQzVGNEJFRTFFNDdGM0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDfMB9v8AxyGIBKIcrHSQkbusihjuExwryJ1Emzkyaa2bO5o/i1 iIrFovt93CxQK9iMWsg7IGk5rQcAFQ2a5yBdgN/K3OnndSJRTgBIBZhALGTCSAb+ WXAlxOaHP9FfeiCz6gPNtRP133g072sihSkgC3Sp1tYhxL78utfDYdexZoKu6DHl jldc5Y6zYrucYgfUM59y6zdnAhdxXOfo1lEAcOzRS+rFwb+koe1Ybsj/SO4q3X9q S2PnPNysIp8NV1USOEIPL+p0bfeVoUfx8eOf+OgyIz2446rC3H4Ek0dVSQEdudT6 9FttKi1BtkBQr1d7me925KkU8c8vQd5RMo4NAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUnVV5OMUnXq+RDHgH48X0vuHkfzowHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9uVlY1T01VblhxLVJESGdINDhY MHZ1SGtmem8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy6Dt MA0GCSqGSIb3DQEBCwUAA4IBAQBH1ddMR2tQZAcK/5Nzd6AEuBt4rzWxSNbUCTeX 278pzMgapFz4UninN6pK6FU1hw2dQoaqkm8XIgv85m48DPhnUojcs5Zhet9R4sK0 XGrq8WGjVJyRhFr9ir0fYpd1REBKTfvnOe5RpKrwmMkA27gSXRZeb3IU3uBwLT2E f+Hu8ARtT4yhVAQtaqSC0A2k2D9wp3geLxHzwWqUQZnd2n/sAayuXPxs0Z06vUT/ a8RmPFOsW/7XmKqweHYzlhIVCTkYzoAy7QVj7G0P4mWzCyw1qdN12Bqa88uxplWH xihfbhoESLv8y0Zee8k/vY1gtDSpCvsr/A1CODUfogC/JE5n -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:51 2024 by rpki-client on console-fra.rpki-client.org