$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/rztD6KUoX5iLzKylpbPK-Y_9ykw.roa File: rztD6KUoX5iLzKylpbPK-Y_9ykw.roa (raw, json) Hash identifier: jyhQ3l4O2hElilgDaYZiWyfGkEWtYik+K/1tUOKagD8= Subject key identifier: AF:3B:43:E8:A5:28:5F:98:8B:CC:AC:A5:A5:B3:CA:F9:8F:FD:CA:4C Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 11C3 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/rztD6KUoX5iLzKylpbPK-Y_9ykw.roa Signing time: Mon 26 Aug 2024 05:17:54 +0000 ROA not before: Mon 26 Aug 2024 05:17:54 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 3462 IP address blocks: 60.248.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4547 (0x11c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 26 05:17:54 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=AF3B43E8A5285F988BCCACA5A5B3CAF98FFDCA4C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:7f:0f:c5:f6:f2:b9:5f:5d:08:8e:d6:92:c8: 11:b1:c2:e1:42:cb:ed:cd:14:b5:a3:d2:9a:c1:33: 6d:d0:28:0f:6c:e6:47:2a:e4:49:0f:54:79:d1:6e: ea:bd:29:bd:de:c3:85:07:0b:ca:7d:97:6b:01:4b: 63:41:84:18:69:fe:c7:99:18:31:56:79:82:8e:c0: df:9e:aa:f4:b3:51:22:70:d6:3d:c8:b2:28:49:fb: 93:e2:1b:9e:dd:5e:82:a2:a8:19:5d:03:43:ea:c4: bf:a7:4f:f0:88:0d:4f:e1:07:cd:24:17:3a:35:92: c2:33:2d:11:de:7f:0a:a0:77:e3:7b:89:77:2e:0f: cb:1e:3f:1c:a4:b7:11:2b:55:04:6c:b5:a4:16:af: 62:89:e3:db:aa:1f:13:60:f4:b9:3f:38:eb:95:23: f9:81:f3:2e:10:f8:b6:14:55:82:10:40:a5:d7:78: 24:31:4c:9e:c5:5e:04:da:64:a1:e9:3e:88:67:66: 58:22:d6:b3:a4:4a:3b:28:2d:4c:aa:cc:bd:62:51: 49:37:5e:d9:27:3b:e6:7c:ac:a2:82:7a:c6:9c:cd: 21:1e:51:cc:fd:18:b4:bb:86:e2:1f:15:e2:d7:22: ae:d4:8f:16:9e:8c:64:2f:60:01:9c:52:63:52:b4: 6c:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:3B:43:E8:A5:28:5F:98:8B:CC:AC:A5:A5:B3:CA:F9:8F:FD:CA:4C X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/rztD6KUoX5iLzKylpbPK-Y_9ykw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.248.0.0/16 Signature Algorithm: sha256WithRSAEncryption c0:e0:fa:5c:25:b5:ab:65:d6:b8:b4:5f:53:5d:80:1a:6c:3f: 99:66:e2:03:78:1b:f9:15:c0:b5:4e:52:6d:cc:aa:33:6c:77: 53:c7:95:6c:b6:d3:01:e7:3e:2c:88:66:39:d6:c9:b8:ee:3d: 31:90:30:f9:9e:80:9d:fe:32:5d:50:b5:80:af:ed:a7:68:75: ed:32:ca:86:86:e1:64:f3:e6:b0:29:09:4c:a6:8b:fc:1d:89: b0:bc:2b:80:5c:ce:73:83:1f:e8:cc:e9:44:f9:5a:2e:47:c8: e0:d2:0f:61:7c:4a:b3:16:ac:b2:e8:c1:33:d1:b6:fc:7f:df: 0c:cc:7c:a5:67:2d:4c:89:0f:6f:5b:fb:fb:68:6f:26:4d:57: c3:d9:90:16:2f:89:13:c0:43:9d:a5:3f:14:15:5c:1a:f6:1b: 98:99:51:b8:6a:b9:17:c0:fe:25:5e:c9:86:bd:54:85:85:51: d7:53:36:1c:57:14:bf:73:96:4e:88:7d:18:e4:6a:24:0b:2b: cc:48:9e:5d:eb:a3:cc:4d:fb:7b:44:28:28:c9:c3:85:9c:e3: 15:7f:07:77:13:cb:ba:bd:5a:4c:5c:a2:e2:39:d3:4e:50:85: a0:80:0e:91:d9:ce:dd:68:3b:5b:30:0d:47:1e:7d:03:97:17: d3:f7:ca:18 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICEcMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDA4MjYw NTE3NTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEFGM0I0M0U4QTUyODVG OTg4QkNDQUNBNUE1QjNDQUY5OEZGRENBNEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDUfw/F9vK5X10IjtaSyBGxwuFCy+3NFLWj0prBM23QKA9s5kcq 5EkPVHnRbuq9Kb3ew4UHC8p9l2sBS2NBhBhp/seZGDFWeYKOwN+eqvSzUSJw1j3I sihJ+5PiG57dXoKiqBldA0PqxL+nT/CIDU/hB80kFzo1ksIzLRHefwqgd+N7iXcu D8sePxyktxErVQRstaQWr2KJ49uqHxNg9Lk/OOuVI/mB8y4Q+LYUVYIQQKXXeCQx TJ7FXgTaZKHpPohnZlgi1rOkSjsoLUyqzL1iUUk3XtknO+Z8rKKCesaczSEeUcz9 GLS7huIfFeLXIq7UjxaejGQvYAGcUmNStGwBAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUrztD6KUoX5iLzKylpbPK+Y/9ykwwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9yenRENktVb1g1aUx6S3lscGJQ Sy1ZXzl5a3cucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAPPgw DQYJKoZIhvcNAQELBQADggEBAMDg+lwltatl1ri0X1NdgBpsP5lm4gN4G/kVwLVO Um3MqjNsd1PHlWy20wHnPiyIZjnWybjuPTGQMPmegJ3+Ml1QtYCv7adode0yyoaG 4WTz5rApCUymi/wdibC8K4BcznODH+jM6UT5Wi5HyODSD2F8SrMWrLLowTPRtvx/ 3wzMfKVnLUyJD29b+/tobyZNV8PZkBYviRPAQ52lPxQVXBr2G5iZUbhquRfA/iVe yYa9VIWFUddTNhxXFL9zlk6IfRjkaiQLK8xInl3ro8xN+3tEKCjJw4Wc4xV/B3cT y7q9WkxcouI5005QhaCADpHZzt1oO1swDUcefQOXF9P3yhg= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:32 2024 by rpki-client on console-ams.rpki-client.org