$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/nq4ryikXtqfd77xy7hgrSdHzmMA.roa File: nq4ryikXtqfd77xy7hgrSdHzmMA.roa (raw, json) Hash identifier: Z5evWug9+kD+a0wZVFpV917ZW9okyoJSZ3x1RKUsrzc= Subject key identifier: 9E:AE:2B:CA:29:17:B6:A7:DD:EF:BC:72:EE:18:2B:49:D1:F3:98:C0 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 179F Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/nq4ryikXtqfd77xy7hgrSdHzmMA.roa Signing time: Wed 12 Feb 2025 01:36:53 +0000 ROA not before: Wed 12 Feb 2025 01:36:53 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 3462 IP address blocks: 211.22.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 02:06:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6047 (0x179f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Feb 12 01:36:53 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=9EAE2BCA2917B6A7DDEFBC72EE182B49D1F398C0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:ce:cd:f9:c6:56:b0:9a:35:46:4e:3b:13:91: 48:d3:35:3d:59:a9:80:65:fe:cf:39:d1:ba:9a:03: 88:51:56:22:07:f5:ca:e6:18:6a:6c:f4:cc:86:f1: 3a:1f:b7:e7:a5:7a:32:08:b2:02:e6:8f:76:03:65: 5b:2e:28:3c:06:5e:e2:34:44:b7:77:a2:bd:f7:9d: cd:42:db:fa:a0:18:31:16:16:10:cb:f5:ad:f3:12: 5d:fb:8e:94:f0:11:ee:a8:c2:08:db:48:71:59:c1: 57:be:8c:3f:3e:18:61:16:0c:4a:7f:2a:45:bc:d5: 14:f3:26:1f:7f:c8:c7:6e:81:9a:32:26:20:95:61: 07:f6:23:e4:d6:cf:34:ae:19:2f:d7:a4:4a:4e:89: 1a:ef:f2:a5:b6:5f:d0:30:7a:fb:90:ce:69:e0:5c: 14:9d:19:3c:74:1f:c9:9b:80:aa:a2:8d:f0:e3:32: ad:26:c4:f8:56:5b:61:9e:3b:49:00:01:88:b4:bb: 94:22:a0:b7:5b:33:42:52:73:67:8b:05:6a:47:25: 48:41:fe:c2:6c:6b:a6:84:a6:51:e5:47:15:fb:fe: 12:03:54:86:f7:be:2b:bc:77:fd:9d:3c:be:6f:c6: 6f:f7:dd:86:0a:9f:c9:20:57:e8:ae:6e:e1:42:62: a4:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:AE:2B:CA:29:17:B6:A7:DD:EF:BC:72:EE:18:2B:49:D1:F3:98:C0 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/nq4ryikXtqfd77xy7hgrSdHzmMA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.22.0.0/16 Signature Algorithm: sha256WithRSAEncryption b6:00:f8:d4:12:f0:aa:60:b8:63:8b:51:e2:35:30:d2:32:04: 50:f4:72:3e:f9:48:e1:c3:d6:60:46:39:de:5f:97:29:2a:69: 96:96:30:91:85:7c:7e:58:9d:d5:2e:e3:c3:c2:ce:d6:aa:60: 39:b3:18:56:90:a2:1a:e5:9a:88:17:cb:56:5b:50:32:a3:57: 6b:f9:b6:55:b5:66:1a:bb:9c:b5:98:68:22:7f:1b:a8:9b:f0: d8:b0:10:b2:7c:fe:a5:49:29:49:c4:61:63:fb:71:09:a0:de: 72:ac:79:7e:0a:27:e7:47:cb:a7:85:1d:f4:87:0f:29:96:bd: 53:44:9d:f2:3b:48:65:bc:00:fb:93:74:e0:3b:6b:d6:4d:f9: c5:e0:ba:0b:89:50:ad:e1:2a:f4:ed:67:c4:8c:89:52:33:7a: 52:17:d5:4e:be:e7:da:52:ed:64:cc:02:a9:fd:9d:b8:ee:86: 9b:c0:f1:06:89:25:f9:bf:c6:86:c1:88:27:15:b6:f6:84:70: 91:f2:0c:46:25:31:c5:1a:23:5c:19:f5:46:97:62:72:a1:1e: 22:02:73:f9:0b:aa:56:0f:0f:79:8d:28:56:fa:f1:08:5f:0f: be:6d:d6:7c:6a:c3:6a:d6:cc:ce:f8:c1:60:09:23:15:98:25: 6b:6b:5b:57 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICF58wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTIw MTM2NTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDlFQUUyQkNBMjkxN0I2 QTdEREVGQkM3MkVFMTgyQjQ5RDFGMzk4QzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDUzs35xlawmjVGTjsTkUjTNT1ZqYBl/s850bqaA4hRViIH9crm GGps9MyG8Toft+elejIIsgLmj3YDZVsuKDwGXuI0RLd3or33nc1C2/qgGDEWFhDL 9a3zEl37jpTwEe6owgjbSHFZwVe+jD8+GGEWDEp/KkW81RTzJh9/yMdugZoyJiCV YQf2I+TWzzSuGS/XpEpOiRrv8qW2X9AwevuQzmngXBSdGTx0H8mbgKqijfDjMq0m xPhWW2GeO0kAAYi0u5QioLdbM0JSc2eLBWpHJUhB/sJsa6aEplHlRxX7/hIDVIb3 viu8d/2dPL5vxm/33YYKn8kgV+iubuFCYqSfAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUnq4ryikXtqfd77xy7hgrSdHzmMAwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9ucTRyeWlrWHRxZmQ3N3h5N2hn clNkSHptTUEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMA0xYw DQYJKoZIhvcNAQELBQADggEBALYA+NQS8KpguGOLUeI1MNIyBFD0cj75SOHD1mBG Od5flykqaZaWMJGFfH5YndUu48PCztaqYDmzGFaQohrlmogXy1ZbUDKjV2v5tlW1 Zhq7nLWYaCJ/G6ib8NiwELJ8/qVJKUnEYWP7cQmg3nKseX4KJ+dHy6eFHfSHDymW vVNEnfI7SGW8APuTdOA7a9ZN+cXguguJUK3hKvTtZ8SMiVIzelIX1U6+59pS7WTM Aqn9nbjuhpvA8QaJJfm/xobBiCcVtvaEcJHyDEYlMcUaI1wZ9UaXYnKhHiICc/kL qlYPD3mNKFb68QhfD75t1nxqw2rWzM74wWAJIxWYJWtrW1c= -----END CERTIFICATE-----Generated at Mon Apr 7 02:00:13 2025 by rpki-client