$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/qRK3pTkeJpK07rMQz4jxJP4wAJQ.roa File: qRK3pTkeJpK07rMQz4jxJP4wAJQ.roa (raw, json) Hash identifier: JB41zd+KsVTB4TZOM5CUxVfaEAqQ9KuYivqldKZ3Xu0= Subject key identifier: A9:12:B7:A5:39:1E:26:92:B4:EE:B3:10:CF:88:F1:24:FE:30:00:94 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 172C Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/qRK3pTkeJpK07rMQz4jxJP4wAJQ.roa Signing time: Wed 12 Feb 2025 01:36:27 +0000 ROA not before: Wed 12 Feb 2025 01:36:27 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 3462 IP address blocks: 218.164.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 15 Apr 2025 01:08:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5932 (0x172c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Feb 12 01:36:27 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A912B7A5391E2692B4EEB310CF88F124FE300094 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:5f:8f:de:c7:d4:88:2a:b2:32:d7:f2:6c:34: 73:c8:64:db:66:08:d0:7c:16:5e:92:57:74:b8:04: 0f:9b:f4:c4:e2:e7:e8:84:2a:0e:27:72:e1:f9:cc: d4:67:62:42:c7:36:93:ce:3d:11:9a:3d:d9:ca:cb: 6a:1e:a5:35:98:d7:51:6c:cd:39:e7:c4:99:33:a8: ad:bd:e6:19:cd:fc:d2:52:fd:a2:c7:d7:4b:f6:61: 11:c8:41:97:44:11:4e:e7:66:70:b3:c4:37:9d:47: 9d:e8:8e:76:e2:08:54:71:cf:2b:e6:3c:36:bd:3a: a4:f3:08:12:1e:bf:86:45:e0:37:33:29:3a:e7:29: ea:21:23:4e:da:b1:c4:6f:d1:f5:fa:a4:b2:c5:aa: f4:e5:ca:4d:62:d9:ed:68:cb:3e:0d:33:47:1b:0f: 12:4e:7e:84:c6:d1:e1:52:60:6d:78:6a:33:c7:b1: fb:c3:e7:db:31:4c:7c:42:72:ba:40:bc:d1:08:fc: 0e:0b:82:5a:1b:56:a1:66:b3:1c:28:68:5b:1f:7a: ad:50:61:8e:58:6e:2e:a0:b6:d5:7f:bf:40:13:2a: 42:23:b8:5d:83:db:f2:86:44:cc:85:b8:5d:8f:98: a4:eb:c9:3c:48:43:28:0f:6e:ca:b9:99:3c:36:1b: 95:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:12:B7:A5:39:1E:26:92:B4:EE:B3:10:CF:88:F1:24:FE:30:00:94 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/qRK3pTkeJpK07rMQz4jxJP4wAJQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 218.164.0.0/15 Signature Algorithm: sha256WithRSAEncryption 1d:42:33:6e:fe:39:a2:41:af:da:2a:52:fa:74:63:a3:cc:75: 7a:21:2b:e5:a1:94:0d:ae:b7:a0:56:ca:5a:55:f0:04:0b:87: 83:b7:21:a2:9b:42:ef:2d:68:09:b3:a4:97:43:60:6c:86:d8: 50:59:81:9e:d8:47:b2:91:7b:1e:0b:b4:39:98:2f:8e:f4:c7: dd:76:70:93:df:e0:30:bc:ec:f0:10:26:d3:d8:1c:b8:9e:57: c4:5c:b6:ae:11:3f:60:3d:d2:80:41:6f:87:13:3e:86:5d:0a: ec:8c:8c:61:24:40:1f:3a:57:a6:69:6c:b6:26:14:11:48:03: ec:ae:79:5c:2f:a4:9b:6a:85:b3:95:1d:1f:0e:4d:11:29:fa: 6e:3d:ce:29:8f:06:a3:f9:50:c7:9a:8b:9f:97:02:3a:e4:d1: 8b:6e:f2:b4:82:76:33:dd:32:48:71:b1:6d:99:33:49:1f:f0: 02:e2:8c:05:89:65:c0:62:d0:d7:a7:08:97:17:d5:08:3d:6d: f7:bb:0c:1b:4d:4c:c4:62:e3:8c:69:37:60:c7:7d:fe:86:6e: 50:03:c2:e4:69:0c:31:75:1e:1a:b3:2c:83:f7:62:6e:70:35: 1f:d3:73:3c:c0:00:ec:61:c8:30:2f:4c:9b:c2:f3:6e:78:bf: a3:79:df:61 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICFywwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTIw MTM2MjdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE5MTJCN0E1MzkxRTI2 OTJCNEVFQjMxMENGODhGMTI0RkUzMDAwOTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+X4/ex9SIKrIy1/JsNHPIZNtmCNB8Fl6SV3S4BA+b9MTi5+iE Kg4ncuH5zNRnYkLHNpPOPRGaPdnKy2oepTWY11FszTnnxJkzqK295hnN/NJS/aLH 10v2YRHIQZdEEU7nZnCzxDedR53ojnbiCFRxzyvmPDa9OqTzCBIev4ZF4DczKTrn KeohI07ascRv0fX6pLLFqvTlyk1i2e1oyz4NM0cbDxJOfoTG0eFSYG14ajPHsfvD 59sxTHxCcrpAvNEI/A4LglobVqFmsxwoaFsfeq1QYY5Ybi6gttV/v0ATKkIjuF2D 2/KGRMyFuF2PmKTryTxIQygPbsq5mTw2G5XXAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUqRK3pTkeJpK07rMQz4jxJP4wAJQwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9xUkszcFRrZUpwSzA3ck1RejRq eEpQNHdBSlEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMB2qQw DQYJKoZIhvcNAQELBQADggEBAB1CM27+OaJBr9oqUvp0Y6PMdXohK+WhlA2ut6BW ylpV8AQLh4O3IaKbQu8taAmzpJdDYGyG2FBZgZ7YR7KRex4LtDmYL470x912cJPf 4DC87PAQJtPYHLieV8Rctq4RP2A90oBBb4cTPoZdCuyMjGEkQB86V6ZpbLYmFBFI A+yueVwvpJtqhbOVHR8OTREp+m49zimPBqP5UMeai5+XAjrk0Ytu8rSCdjPdMkhx sW2ZM0kf8ALijAWJZcBi0NenCJcX1Qg9bfe7DBtNTMRi44xpN2DHff6GblADwuRp DDF1HhqzLIP3Ym5wNR/TczzAAOxhyDAvTJvC8254v6N532E= -----END CERTIFICATE-----Generated at Tue Apr 15 00:36:52 2025 by rpki-client