$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/qMwn_MbXF7EO-3SDB8XnJpKVRrU.roa File: qMwn_MbXF7EO-3SDB8XnJpKVRrU.roa (raw, json) Hash identifier: s5W8cCLxs0MPOi0Y/omwLbTBWxjAQiQnJuKHlXZLttg= Subject key identifier: A8:CC:27:FC:C6:D7:17:B1:0E:FB:74:83:07:C5:E7:26:92:95:46:B5 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 11D8 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/qMwn_MbXF7EO-3SDB8XnJpKVRrU.roa Signing time: Mon 26 Aug 2024 05:17:59 +0000 ROA not before: Mon 26 Aug 2024 05:17:59 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 3462 IP address blocks: 2001:b400:e9f0::/44 maxlen: 44 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4568 (0x11d8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 26 05:17:59 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A8CC27FCC6D717B10EFB748307C5E726929546B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:ab:01:5d:3e:69:67:4d:8f:49:6e:d1:ac:35: 10:29:86:32:91:8a:72:f0:70:cb:b1:b9:d3:ad:ee: 19:32:4d:c0:ff:0a:9e:a8:fe:79:8c:1c:0d:b7:2c: 36:1c:4f:a1:30:2c:4b:3f:7c:23:a1:e0:e5:4c:a6: 9b:30:1e:b3:4c:0e:99:77:82:e3:29:78:0e:5f:0a: 95:85:97:03:2c:24:ef:59:70:3f:b0:b3:2a:32:21: 95:58:8b:7f:dd:fb:2b:72:bc:eb:2c:7e:ed:59:9d: eb:be:ae:18:77:49:28:a1:3c:f0:50:dc:c4:76:d9: 35:3e:7c:3d:93:91:c0:20:61:02:3c:73:c1:db:c6: ec:f1:95:53:a5:85:42:9f:15:bb:71:d7:e4:d7:e5: be:f2:51:04:93:6d:83:08:e6:a7:0b:d0:d9:80:09: b7:51:e2:07:7b:c0:8e:a2:30:f2:0c:f2:10:f7:ac: 5d:25:ae:8d:58:c2:37:3d:33:41:05:16:06:39:35: 2c:2f:2a:fa:70:75:3e:8a:a9:63:67:65:45:0b:ea: 24:fe:80:19:6a:ab:d8:85:e3:a4:94:c7:95:13:ed: 85:95:86:fb:18:6a:5d:33:bd:99:4b:b9:6e:61:44: 3b:56:7b:d3:49:b1:e9:4c:4e:99:78:fa:d8:20:34: 0e:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:CC:27:FC:C6:D7:17:B1:0E:FB:74:83:07:C5:E7:26:92:95:46:B5 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/qMwn_MbXF7EO-3SDB8XnJpKVRrU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:b400:e9f0::/44 Signature Algorithm: sha256WithRSAEncryption 2a:5d:77:1c:d0:02:c5:c2:ad:ff:14:f9:c5:49:56:4c:95:de: 6e:d3:42:8b:d0:65:e3:5b:05:f2:75:15:48:d6:4e:24:b7:10: d9:57:4d:b1:cc:8c:b0:43:df:bd:c6:e5:d8:30:77:fa:3f:f0: ad:ab:ff:31:d9:dd:3a:0c:b9:6a:e4:a5:ea:09:bc:7b:85:ba: e5:d5:ef:74:63:86:79:54:f4:ec:d1:aa:66:b3:53:8c:78:6c: f7:0f:8e:bb:72:40:4c:96:d9:51:24:bd:2b:05:e4:b7:cd:67: 23:a3:7f:e1:a8:26:ec:b1:9e:a6:34:0a:da:d6:a1:e7:7c:ba: f5:b2:74:1c:28:94:ae:08:9a:3f:18:d3:9a:e4:83:8b:1c:1b: 66:6e:7c:af:53:e1:4e:19:87:bf:35:2e:49:1e:3e:29:e6:08: 72:46:85:01:47:87:93:9c:a4:14:1e:93:36:88:56:8a:09:1d: 10:36:00:ef:2c:e4:b0:9a:1e:98:c4:8d:44:36:e5:1a:fb:7b: 52:33:38:74:3a:46:20:64:08:b6:0a:16:fe:cf:ec:1c:e4:82: 10:83:62:b6:04:60:11:cb:db:2c:2d:e4:24:c8:b0:d8:59:4c: 17:92:a4:b9:74:ce:ab:fd:1a:74:91:c8:9a:a7:f6:4d:d8:4e: 8c:f9:c1:c7 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICEdgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDA4MjYw NTE3NTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE4Q0MyN0ZDQzZENzE3 QjEwRUZCNzQ4MzA3QzVFNzI2OTI5NTQ2QjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDlqwFdPmlnTY9JbtGsNRAphjKRinLwcMuxudOt7hkyTcD/Cp6o /nmMHA23LDYcT6EwLEs/fCOh4OVMppswHrNMDpl3guMpeA5fCpWFlwMsJO9ZcD+w syoyIZVYi3/d+ytyvOssfu1Zneu+rhh3SSihPPBQ3MR22TU+fD2TkcAgYQI8c8Hb xuzxlVOlhUKfFbtx1+TX5b7yUQSTbYMI5qcL0NmACbdR4gd7wI6iMPIM8hD3rF0l ro1Ywjc9M0EFFgY5NSwvKvpwdT6KqWNnZUUL6iT+gBlqq9iF46SUx5UT7YWVhvsY al0zvZlLuW5hRDtWe9NJselMTpl4+tggNA7BAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUqMwn/MbXF7EO+3SDB8XnJpKVRrUwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9xTXduX01iWEY3RU8tM1NEQjhY bkpwS1ZSclUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEIAG0 AOnwMA0GCSqGSIb3DQEBCwUAA4IBAQAqXXcc0ALFwq3/FPnFSVZMld5u00KL0GXj WwXydRVI1k4ktxDZV02xzIywQ9+9xuXYMHf6P/Ctq/8x2d06DLlq5KXqCbx7hbrl 1e90Y4Z5VPTs0apms1OMeGz3D467ckBMltlRJL0rBeS3zWcjo3/hqCbssZ6mNAra 1qHnfLr1snQcKJSuCJo/GNOa5IOLHBtmbnyvU+FOGYe/NS5JHj4p5ghyRoUBR4eT nKQUHpM2iFaKCR0QNgDvLOSwmh6YxI1ENuUa+3tSMzh0OkYgZAi2Chb+z+wc5IIQ g2K2BGARy9ssLeQkyLDYWUwXkqS5dM6r/Rp0kciap/ZN2E6M+cHH -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:07 2024 by rpki-client on console-ams.rpki-client.org