$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/nWy-Lmk-ItyCdlHk3q7UWVu9WN0.roa File: nWy-Lmk-ItyCdlHk3q7UWVu9WN0.roa (raw, json) Hash identifier: iN0b/HT5ACyHDHzBpVxZi8F93C/sptZruruPZdI0fXI= Subject key identifier: 9D:6C:BE:2E:69:3E:22:DC:82:76:51:E4:DE:AE:D4:59:5B:BD:58:DD Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 11AE Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/nWy-Lmk-ItyCdlHk3q7UWVu9WN0.roa Signing time: Mon 26 Aug 2024 05:17:48 +0000 ROA not before: Mon 26 Aug 2024 05:17:48 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 3462 IP address blocks: 220.128.80.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4526 (0x11ae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 26 05:17:48 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=9D6CBE2E693E22DC827651E4DEAED4595BBD58DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:a1:4e:8c:0d:4e:74:97:c4:da:07:22:83:a6: d2:5d:78:f8:3e:19:36:3d:54:e2:16:4c:d9:54:51: 10:06:bf:4f:f8:2e:47:c5:87:e8:15:d1:db:8b:6a: 37:8b:d4:38:e3:99:23:64:f6:39:b4:a0:47:21:f9: 3c:cc:97:62:30:51:3c:4b:8b:ce:e4:9b:d6:d4:e6: 38:58:06:e2:40:c1:05:6e:2a:96:d2:8a:ba:34:ad: 9a:0e:1f:43:f2:3c:27:12:04:4e:78:c9:21:dd:af: 5f:a1:2f:f0:cd:59:96:73:39:c3:7d:59:73:84:db: 67:c5:d9:cb:d9:85:4c:51:5d:c3:5a:be:4e:51:ec: fe:f4:45:43:a0:eb:4f:d1:69:48:9f:ac:ff:3f:34: 27:d7:d7:b9:ee:7e:92:1f:26:42:48:d9:8b:bb:e5: f2:a4:74:02:6a:e6:5d:ab:2b:91:b8:ea:60:08:2e: 32:8a:88:d4:d2:c6:77:97:7f:83:77:26:61:65:be: 08:12:2b:45:67:12:80:fa:81:47:65:49:e1:a9:47: 3d:a4:2c:ee:d4:45:62:92:c0:4c:0d:8c:29:82:89: 54:07:2c:a3:33:d2:ac:ea:d8:31:6b:ed:5d:d8:f7: 08:fb:a4:03:fe:13:fa:be:e4:f7:8d:24:07:59:0f: 9b:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:6C:BE:2E:69:3E:22:DC:82:76:51:E4:DE:AE:D4:59:5B:BD:58:DD X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/nWy-Lmk-ItyCdlHk3q7UWVu9WN0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 220.128.80.0/24 Signature Algorithm: sha256WithRSAEncryption 9b:20:30:61:a5:ee:ca:f9:69:e5:5f:49:50:85:43:ca:12:f2: bc:6e:20:eb:70:3e:ff:5a:cc:af:6a:6d:d8:fa:bb:e9:d5:6e: 02:f6:ea:80:f0:9f:f6:d0:2f:a9:cf:cb:04:67:d5:ff:52:28: 97:bd:4f:36:6a:a0:de:14:00:08:6c:70:32:b1:0f:21:93:3f: 84:93:a7:5d:f8:8d:dc:3a:e8:24:d9:80:29:7a:0e:81:49:e5: 2f:58:f0:cd:a2:09:f6:4c:a4:7d:3e:b0:5d:99:7d:b6:40:2c: 95:9e:0c:23:43:d3:18:d3:d1:fd:44:ef:b2:b6:0d:06:5b:6e: e6:92:e3:7e:ad:74:64:b9:5c:0b:54:85:ac:98:c7:35:4d:2c: 48:d3:7e:e6:07:58:94:0f:61:db:45:22:f2:97:03:67:bb:9c: 64:d3:6d:c9:7d:d2:61:82:98:50:ab:bf:de:38:6d:48:a2:2e: d2:32:4a:3c:60:9f:ce:2a:24:e2:90:04:ed:24:db:e3:01:92: 7f:09:df:71:2f:d1:e4:61:ce:08:95:d0:5a:08:05:b8:65:2e: 8d:06:66:cb:20:e6:32:07:df:8e:c1:1d:92:52:79:f5:fb:6b: 95:08:7d:20:82:93:57:e7:1d:2f:30:06:3c:bd:2d:2e:74:bf: 41:39:3c:93 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICEa4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDA4MjYw NTE3NDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDlENkNCRTJFNjkzRTIy REM4Mjc2NTFFNERFQUVENDU5NUJCRDU4REQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFoU6MDU50l8TaByKDptJdePg+GTY9VOIWTNlUURAGv0/4LkfF h+gV0duLajeL1DjjmSNk9jm0oEch+TzMl2IwUTxLi87km9bU5jhYBuJAwQVuKpbS iro0rZoOH0PyPCcSBE54ySHdr1+hL/DNWZZzOcN9WXOE22fF2cvZhUxRXcNavk5R 7P70RUOg60/RaUifrP8/NCfX17nufpIfJkJI2Yu75fKkdAJq5l2rK5G46mAILjKK iNTSxneXf4N3JmFlvggSK0VnEoD6gUdlSeGpRz2kLO7URWKSwEwNjCmCiVQHLKMz 0qzq2DFr7V3Y9wj7pAP+E/q+5PeNJAdZD5uBAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUnWy+Lmk+ItyCdlHk3q7UWVu9WN0wHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9uV3ktTG1rLUl0eUNkbEhrM3E3 VVdWdTlXTjAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA3IBQ MA0GCSqGSIb3DQEBCwUAA4IBAQCbIDBhpe7K+WnlX0lQhUPKEvK8biDrcD7/Wsyv am3Y+rvp1W4C9uqA8J/20C+pz8sEZ9X/UiiXvU82aqDeFAAIbHAysQ8hkz+Ek6dd +I3cOugk2YApeg6BSeUvWPDNogn2TKR9PrBdmX22QCyVngwjQ9MY09H9RO+ytg0G W27mkuN+rXRkuVwLVIWsmMc1TSxI037mB1iUD2HbRSLylwNnu5xk023JfdJhgphQ q7/eOG1Ioi7SMko8YJ/OKiTikATtJNvjAZJ/Cd9xL9HkYc4IldBaCAW4ZS6NBmbL IOYyB9+OwR2SUnn1+2uVCH0ggpNX5x0vMAY8vS0udL9BOTyT -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:32 2024 by rpki-client on console-ams.rpki-client.org