$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/r_vdBt7gESTvuhh9gdydKscvyWw.roa File: r_vdBt7gESTvuhh9gdydKscvyWw.roa (raw, json) Hash identifier: cEHX8PfRGpI4woyorN/eEXydGooqH5kkCBs+d6Zslk0= Subject key identifier: AF:FB:DD:06:DE:E0:11:24:EF:BA:18:7D:81:DC:9D:2A:C7:2F:C9:6C Certificate issuer: /CN=5876E4B8DFAA224C019D246931FC3CD7A4FEED2A Certificate serial: 0D2A Authority key identifier: 58:76:E4:B8:DF:AA:22:4C:01:9D:24:69:31:FC:3C:D7:A4:FE:ED:2A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WHbkuN-qIkwBnSRpMfw816T-7So.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/r_vdBt7gESTvuhh9gdydKscvyWw.roa Signing time: Mon 26 Aug 2024 05:17:55 +0000 ROA not before: Mon 26 Aug 2024 05:17:55 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9680 IP address blocks: 168.95.246.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WHbkuN-qIkwBnSRpMfw816T-7So.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WHbkuN-qIkwBnSRpMfw816T-7So.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/WHbkuN-qIkwBnSRpMfw816T-7So.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3370 (0xd2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5876E4B8DFAA224C019D246931FC3CD7A4FEED2A Validity Not Before: Aug 26 05:17:55 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=AFFBDD06DEE01124EFBA187D81DC9D2AC72FC96C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:7c:39:a2:d6:59:12:e0:ff:dd:42:32:2e:60: cf:49:13:07:59:4e:3f:d0:b8:6d:33:4c:af:85:fe: 8d:e8:32:3e:ef:7c:6a:ec:f4:70:26:72:a6:71:74: 99:4b:dc:a2:99:bb:b0:52:c5:16:3f:73:c2:17:1d: 76:bd:41:9c:f2:b6:42:96:3b:94:f0:1e:6b:73:e1: cd:25:bd:ca:44:7f:9b:91:24:ba:61:9a:33:c4:6d: 47:3e:c0:21:0e:d7:db:1d:31:dc:5d:0d:15:13:91: 58:b6:0d:13:33:a8:cb:40:03:15:03:dd:be:7f:92: ca:cb:3c:6b:2b:5e:83:88:68:1c:18:34:e4:c9:1d: 7c:a6:34:a5:e3:bf:c0:c8:85:c0:eb:21:dc:d3:d3: c3:93:dc:0b:f3:d7:f9:83:16:37:f4:ed:25:29:8c: d0:fa:6b:31:75:bb:3b:da:56:a2:29:28:38:62:ca: 19:ed:14:d3:b1:6d:b4:0f:98:fc:8a:b7:66:42:dd: 36:22:2f:ae:18:5e:9f:f1:de:62:2c:24:8f:22:8b: 33:18:38:e2:ff:6f:ca:ef:c6:1e:41:9c:70:d2:e4: 4d:e7:df:a8:c1:06:65:ca:34:79:6c:72:4e:11:6c: 3a:41:60:e8:7b:08:eb:9a:9d:c4:49:55:fe:f8:59: a9:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:FB:DD:06:DE:E0:11:24:EF:BA:18:7D:81:DC:9D:2A:C7:2F:C9:6C X509v3 Authority Key Identifier: keyid:58:76:E4:B8:DF:AA:22:4C:01:9D:24:69:31:FC:3C:D7:A4:FE:ED:2A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/WHbkuN-qIkwBnSRpMfw816T-7So.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WHbkuN-qIkwBnSRpMfw816T-7So.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/r_vdBt7gESTvuhh9gdydKscvyWw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 168.95.246.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:b0:54:9d:e7:69:b1:0d:a3:47:62:1d:43:fb:ea:a5:0a:08: e0:c3:f0:26:c1:6b:20:92:76:4b:8f:6e:f3:02:3b:14:fa:8a: bb:14:f4:b9:22:2b:5f:fe:3d:c1:b9:ed:3e:b9:17:58:b7:df: 4c:3a:a5:fc:ab:f2:79:f1:cc:70:ae:e7:b2:6c:fe:0b:26:f0: 02:b4:fe:94:92:03:16:61:07:ae:78:8a:13:d5:99:c5:6a:20: 3c:6a:c6:ba:f1:fc:c8:b6:9c:8a:13:75:d7:2b:5f:e6:ec:65: a6:42:b0:d4:c6:16:86:2f:21:95:30:b0:f9:e3:96:d7:0a:93: f6:86:a3:79:14:f3:25:38:fe:37:5d:2d:2b:59:ff:68:0a:2b: bf:da:e6:e6:d4:e0:6a:fa:8b:41:40:5c:0a:6c:8b:a7:f5:1e: ba:ba:e4:89:6a:02:ff:92:e1:3e:1d:a1:90:e2:e0:c6:fc:c0: 29:df:9c:ce:ea:93:f2:91:74:1b:3f:5a:7d:9b:bd:d1:a6:b2: 14:20:54:42:fb:0f:01:7a:ff:e9:ef:07:54:ec:25:3a:75:f2: d2:e9:35:1a:62:4c:4a:b4:e1:bb:67:46:da:3c:86:88:08:8a: 08:0a:36:59:19:ca:83:b1:96:fb:07:c8:b7:17:54:c4:90:b4: b0:f8:56:79 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDSowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTg3 NkU0QjhERkFBMjI0QzAxOUQyNDY5MzFGQzNDRDdBNEZFRUQyQTAeFw0yNDA4MjYw NTE3NTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEFGRkJERDA2REVFMDEx MjRFRkJBMTg3RDgxREM5RDJBQzcyRkM5NkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9fDmi1lkS4P/dQjIuYM9JEwdZTj/QuG0zTK+F/o3oMj7vfGrs 9HAmcqZxdJlL3KKZu7BSxRY/c8IXHXa9QZzytkKWO5TwHmtz4c0lvcpEf5uRJLph mjPEbUc+wCEO19sdMdxdDRUTkVi2DRMzqMtAAxUD3b5/ksrLPGsrXoOIaBwYNOTJ HXymNKXjv8DIhcDrIdzT08OT3Avz1/mDFjf07SUpjND6azF1uzvaVqIpKDhiyhnt FNOxbbQPmPyKt2ZC3TYiL64YXp/x3mIsJI8iizMYOOL/b8rvxh5BnHDS5E3n36jB BmXKNHlsck4RbDpBYOh7COuancRJVf74WanlAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUr/vdBt7gESTvuhh9gdydKscvyWwwHwYDVR0jBBgwFoAUWHbkuN+qIkwBnSRp Mfw816T+7SowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv V0hia3VOLXFJa3dCblNScE1mdzgxNlQtN1NvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9XSGJrdU4tcUlrd0JuU1JwTWZ3ODE2VC03U28uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9yX3ZkQnQ3Z0VTVHZ1aGg5Z2R5 ZEtzY3Z5V3cucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAqF/2 MA0GCSqGSIb3DQEBCwUAA4IBAQB+sFSd52mxDaNHYh1D++qlCgjgw/AmwWsgknZL j27zAjsU+oq7FPS5Iitf/j3Bue0+uRdYt99MOqX8q/J58cxwrueybP4LJvACtP6U kgMWYQeueIoT1ZnFaiA8asa68fzItpyKE3XXK1/m7GWmQrDUxhaGLyGVMLD545bX CpP2hqN5FPMlOP43XS0rWf9oCiu/2ubm1OBq+otBQFwKbIun9R66uuSJagL/kuE+ HaGQ4uDG/MAp35zO6pPykXQbP1p9m73RprIUIFRC+w8Bev/p7wdU7CU6dfLS6TUa YkxKtOG7Z0baPIaICIoICjZZGcqDsZb7B8i3F1TEkLSw+FZ5 -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:32 2024 by rpki-client on console-ams.rpki-client.org