$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/o8WGDqS9UYPabG-pYeJt4n_LrAI.roa File: o8WGDqS9UYPabG-pYeJt4n_LrAI.roa (raw, json) Hash identifier: r4cpkVoundpM75AN+BuGSm2wUL35lRyZpRuq3RTbuks= Subject key identifier: A3:C5:86:0E:A4:BD:51:83:DA:6C:6F:A9:61:E2:6D:E2:7F:CB:AC:02 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 122A Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/o8WGDqS9UYPabG-pYeJt4n_LrAI.roa Signing time: Wed 28 Aug 2024 03:01:16 +0000 ROA not before: Wed 28 Aug 2024 03:01:16 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9680 IP address blocks: 2001:b000:92::/48 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4650 (0x122a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 28 03:01:16 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A3C5860EA4BD5183DA6C6FA961E26DE27FCBAC02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:6f:cb:f2:b6:27:82:3a:fe:1e:cf:fe:e6:af: 0a:76:ef:d8:6e:0e:d4:1d:22:6f:78:e7:43:bd:85: 40:7b:7b:f8:f5:cc:7c:fd:ff:9c:63:bf:19:3d:ae: 49:37:99:4f:65:37:41:f1:ca:40:b6:d2:fe:49:88: ec:0f:b8:50:0e:f1:c1:2c:aa:6d:6d:ca:27:cf:c2: b3:b9:f7:58:26:6a:d3:39:88:fb:1b:26:7a:40:bb: 7d:f2:29:1a:88:de:01:c9:25:bd:db:f1:af:a8:e1: b1:12:db:2d:63:5b:9b:aa:82:9e:01:9b:16:01:d4: 3d:2c:b7:49:e8:4c:65:0e:df:37:00:ed:27:1a:31: 5f:4f:0c:7a:e2:ff:3e:42:4b:b1:14:67:9b:7b:bc: d7:b6:af:dd:75:d6:24:9b:15:5f:2b:d7:85:c0:95: 04:15:3c:cc:ed:47:93:ed:83:f2:48:d6:e6:7a:07: 59:39:10:8e:af:ca:e9:bb:6d:58:b0:07:8c:f2:67: 17:88:bd:fa:9d:14:b5:2a:9c:4d:af:f6:0c:30:59: 54:9a:ef:18:66:79:43:cf:12:c6:ce:53:1f:36:a0: 2e:9c:18:a0:82:1a:9c:a1:c1:fa:ea:c0:35:e6:a3: cb:a0:97:37:76:46:3e:db:f1:b6:a9:6e:dc:4b:84: bf:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:C5:86:0E:A4:BD:51:83:DA:6C:6F:A9:61:E2:6D:E2:7F:CB:AC:02 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/o8WGDqS9UYPabG-pYeJt4n_LrAI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:b000:92::/48 Signature Algorithm: sha256WithRSAEncryption 52:6e:70:5a:ab:6f:31:06:d8:ba:1d:4b:21:ea:1e:9e:a0:ed: 3e:b1:16:c7:c8:22:29:59:1f:4a:03:75:21:5d:9c:cf:7f:5f: 23:0d:92:76:5b:eb:be:ab:c0:20:55:21:3a:ca:62:d2:d4:68: 92:04:47:4b:14:9a:4c:9b:53:c2:24:61:80:7a:2d:3e:75:d8: f7:1f:ea:1a:75:3b:4f:ea:79:18:a4:71:32:d5:5e:af:8a:40: af:49:aa:81:eb:c0:c3:cb:c9:9a:67:47:a0:b0:93:44:58:21: f9:5a:9b:da:f4:5d:11:ea:56:8b:ef:db:83:5d:fa:1c:ce:ee: 98:eb:d8:a6:d5:fb:03:70:10:d1:6a:ec:b9:27:a5:a2:bf:a5: ad:bb:ad:ea:00:26:a2:d5:14:f2:26:7c:55:6c:7c:f7:1d:e8: 76:51:a3:62:d4:30:ac:d8:a5:bd:ee:06:03:5f:0e:ea:33:4a: dc:e2:43:53:cf:4f:82:65:23:c2:a1:91:a6:35:64:10:aa:a2: da:26:c1:22:f0:35:68:8b:0c:82:75:20:00:f7:57:93:31:81: 1c:8c:34:3a:1c:79:ac:3a:6d:29:2d:0e:1d:a1:5a:c8:9e:73: 2a:5d:15:59:97:8f:3a:3a:d9:05:23:a0:3c:63:01:42:8e:2d: 90:e4:99:49 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICEiowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDA4Mjgw MzAxMTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEEzQzU4NjBFQTRCRDUx ODNEQTZDNkZBOTYxRTI2REUyN0ZDQkFDMDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGb8vytieCOv4ez/7mrwp279huDtQdIm9450O9hUB7e/j1zHz9 /5xjvxk9rkk3mU9lN0HxykC20v5JiOwPuFAO8cEsqm1tyifPwrO591gmatM5iPsb JnpAu33yKRqI3gHJJb3b8a+o4bES2y1jW5uqgp4BmxYB1D0st0noTGUO3zcA7Sca MV9PDHri/z5CS7EUZ5t7vNe2r9111iSbFV8r14XAlQQVPMztR5Ptg/JI1uZ6B1k5 EI6vyum7bViwB4zyZxeIvfqdFLUqnE2v9gwwWVSa7xhmeUPPEsbOUx82oC6cGKCC GpyhwfrqwDXmo8uglzd2Rj7b8bapbtxLhL8hAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUo8WGDqS9UYPabG+pYeJt4n/LrAIwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9vOFdHRHFTOVVZUGFiRy1wWWVK dDRuX0xyQUkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAGw AACSMA0GCSqGSIb3DQEBCwUAA4IBAQBSbnBaq28xBti6HUsh6h6eoO0+sRbHyCIp WR9KA3UhXZzPf18jDZJ2W+u+q8AgVSE6ymLS1GiSBEdLFJpMm1PCJGGAei0+ddj3 H+oadTtP6nkYpHEy1V6vikCvSaqB68DDy8maZ0egsJNEWCH5Wpva9F0R6laL79uD Xfoczu6Y69im1fsDcBDRauy5J6Wiv6Wtu63qACai1RTyJnxVbHz3Heh2UaNi1DCs 2KW97gYDXw7qM0rc4kNTz0+CZSPCoZGmNWQQqqLaJsEi8DVoiwyCdSAA91eTMYEc jDQ6HHmsOm0pLQ4doVrInnMqXRVZl486OtkFI6A8YwFCji2Q5JlJ -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:32 2024 by rpki-client on console-ams.rpki-client.org