$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/r04ainz34YIlF3xJUAq31Xh30i4.roa File: r04ainz34YIlF3xJUAq31Xh30i4.roa (raw, json) Hash identifier: YwM6JrAPanslH+aKHqOrVGyFNRqsETCUwrjrsEXcWaw= Subject key identifier: AF:4E:1A:8A:7C:F7:E1:82:25:17:7C:49:50:0A:B7:D5:78:77:D2:2E Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 11E7 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/r04ainz34YIlF3xJUAq31Xh30i4.roa Signing time: Mon 26 Aug 2024 05:18:03 +0000 ROA not before: Mon 26 Aug 2024 05:18:03 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131621 IP address blocks: 203.75.51.0/27 maxlen: 27 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4583 (0x11e7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 26 05:18:03 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=AF4E1A8A7CF7E18225177C49500AB7D57877D22E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:64:a1:14:33:0d:ec:68:e3:46:a0:cd:92:23: b2:ea:04:6e:08:a0:9b:e4:05:f2:1b:d9:96:db:6e: fe:09:eb:52:a3:a9:67:4a:6c:c9:1e:f8:e5:78:7f: b1:91:16:ae:5a:89:8c:09:1d:8d:7d:a9:4a:10:ea: c3:68:c4:e5:1f:f3:7a:5c:9f:2c:f6:c9:e9:55:f1: 0e:1f:ab:29:f8:fd:c4:c7:05:0a:a8:0a:bf:d2:9d: de:57:ee:c5:d2:0a:7e:70:a7:6a:cc:d2:d4:9d:2c: a8:21:69:54:9c:60:ec:85:d0:db:4d:3b:0c:f5:90: 96:4d:9e:31:74:47:7d:b5:be:43:0d:16:7f:79:3b: 98:f3:8b:66:04:81:08:fc:1b:51:e1:bf:40:6f:2e: d8:39:c1:f5:46:8e:16:1b:8c:37:f9:1c:93:c3:9e: 7f:b6:8e:24:2e:f7:dc:43:d7:d0:cb:c8:a7:fc:bd: b3:db:da:48:d8:06:78:f4:49:5c:fc:2e:a7:f1:07: 69:34:58:bd:62:ad:2d:ed:24:c8:2a:37:c1:cb:e9: f8:8e:ea:b5:5f:31:36:5e:6f:43:fa:07:75:7c:4d: 72:a2:59:87:f5:e8:8a:7b:6c:d2:28:ad:f3:5d:dd: 85:2f:91:9e:5e:4e:dc:0a:c9:19:41:51:5f:88:df: 5b:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:4E:1A:8A:7C:F7:E1:82:25:17:7C:49:50:0A:B7:D5:78:77:D2:2E X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/r04ainz34YIlF3xJUAq31Xh30i4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.75.51.0/27 Signature Algorithm: sha256WithRSAEncryption 19:ad:ff:66:03:19:b4:aa:cc:16:a3:94:e8:e1:56:2d:85:bf: 4d:8f:e3:e3:f2:f4:7f:30:40:37:54:17:8a:95:bb:4d:85:27: 1a:73:9e:a9:bb:f5:ea:b1:da:5e:57:7b:18:9e:20:a5:e7:12: 1f:06:c6:12:e1:2e:64:45:5f:50:68:fa:54:0f:08:49:b9:3a: 22:95:df:6b:36:82:16:ab:79:ba:98:d8:ef:32:60:ca:da:bc: 34:1e:97:6f:ec:11:a1:76:e9:54:f1:a0:7a:61:29:3b:f4:fe: 24:6c:4c:24:d9:85:7e:ed:5f:8e:cd:df:0d:01:ec:47:ed:97: 33:21:05:13:3d:f4:0f:5f:93:8a:ad:80:6e:3c:45:e4:3c:3a: d8:73:50:6a:2e:74:79:63:60:9e:8e:34:a7:2b:83:99:cf:ed: b4:97:58:0c:9b:74:98:fa:f3:f9:e8:87:eb:27:33:c3:27:7d: c2:0b:0e:3b:e2:43:56:e7:6f:34:9a:85:aa:c8:02:ec:46:cb: 17:d9:b3:64:f7:14:2a:0e:25:c5:a6:aa:34:df:77:67:93:ce: 4c:97:b9:4c:f1:3b:09:af:f9:38:de:13:37:2e:c4:f2:a0:60: 66:49:a4:b6:47:ea:09:bc:b6:31:98:24:8e:26:30:45:27:d0: af:da:a6:c7 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICEecwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDA4MjYw NTE4MDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEFGNEUxQThBN0NGN0Ux ODIyNTE3N0M0OTUwMEFCN0Q1Nzg3N0QyMkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8ZKEUMw3saONGoM2SI7LqBG4IoJvkBfIb2Zbbbv4J61KjqWdK bMke+OV4f7GRFq5aiYwJHY19qUoQ6sNoxOUf83pcnyz2yelV8Q4fqyn4/cTHBQqo Cr/Snd5X7sXSCn5wp2rM0tSdLKghaVScYOyF0NtNOwz1kJZNnjF0R321vkMNFn95 O5jzi2YEgQj8G1Hhv0BvLtg5wfVGjhYbjDf5HJPDnn+2jiQu99xD19DLyKf8vbPb 2kjYBnj0SVz8LqfxB2k0WL1irS3tJMgqN8HL6fiO6rVfMTZeb0P6B3V8TXKiWYf1 6Ip7bNIorfNd3YUvkZ5eTtwKyRlBUV+I31vxAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUr04ainz34YIlF3xJUAq31Xh30i4wHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9yMDRhaW56MzRZSWxGM3hKVUFx MzFYaDMwaTQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAATAHAwUFy0sz ADANBgkqhkiG9w0BAQsFAAOCAQEAGa3/ZgMZtKrMFqOU6OFWLYW/TY/j4/L0fzBA N1QXipW7TYUnGnOeqbv16rHaXld7GJ4gpecSHwbGEuEuZEVfUGj6VA8ISbk6IpXf azaCFqt5upjY7zJgytq8NB6Xb+wRoXbpVPGgemEpO/T+JGxMJNmFfu1fjs3fDQHs R+2XMyEFEz30D1+Tiq2AbjxF5Dw62HNQai50eWNgno40pyuDmc/ttJdYDJt0mPrz +eiH6yczwyd9wgsOO+JDVudvNJqFqsgC7EbLF9mzZPcUKg4lxaaqNN93Z5POTJe5 TPE7Ca/5ON4TNy7E8qBgZkmktkfqCby2MZgkjiYwRSfQr9qmxw== -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:39 2024 by rpki-client on console-fra.rpki-client.org