$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/spzfv8kyIjHZuRKRj6eutsKiq34.roa File: spzfv8kyIjHZuRKRj6eutsKiq34.roa (raw, json) Hash identifier: P4zVqrLZLT1TkY41tcij4wPKzVtcqLdnMyeTaLybxv0= Subject key identifier: B2:9C:DF:BF:C9:32:22:31:D9:B9:12:91:8F:A7:AE:B6:C2:A2:AB:7E Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 11D0 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/spzfv8kyIjHZuRKRj6eutsKiq34.roa Signing time: Mon 26 Aug 2024 05:17:58 +0000 ROA not before: Mon 26 Aug 2024 05:17:58 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9505 IP address blocks: 175.111.240.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4560 (0x11d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 26 05:17:58 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B29CDFBFC9322231D9B912918FA7AEB6C2A2AB7E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:3d:17:18:85:12:4f:c3:ec:22:83:f0:e8:3d: 7b:6c:4c:c6:d7:55:53:3e:c3:ac:06:ce:88:28:e6: 3c:1e:8c:6d:a0:43:61:08:9e:ef:0d:6d:ca:41:03: e4:b9:fd:2d:6c:3a:af:74:87:9b:d3:94:fe:4e:91: e5:0a:7a:66:c4:16:43:e7:e6:47:f6:57:d6:29:31: b4:0e:ad:85:cf:6e:4e:7d:ef:ab:d5:86:d4:5b:60: fd:be:c3:0c:37:0c:d3:34:f6:b3:b9:92:ea:95:01: dd:72:39:72:cc:f5:b0:8b:b5:32:78:aa:87:6a:7f: b7:36:eb:b0:f3:fe:84:21:77:45:6d:9b:8e:6a:b6: bb:97:29:8b:dc:4b:92:2f:37:af:b4:eb:4a:8d:1c: 89:0f:bb:75:70:b4:0a:4e:05:5f:b8:33:4b:86:f1: 6b:83:b1:f5:51:b9:7a:50:12:85:89:1c:e4:e0:b5: ee:0b:1b:4e:25:4a:8d:ff:5d:8f:3f:bb:94:f4:77: 10:71:09:e4:71:8e:3d:e4:13:db:43:68:93:a4:d9: 19:07:7a:2d:86:7e:36:19:b3:66:c7:e0:72:ea:78: a7:23:4a:2e:1b:74:18:e4:07:ea:65:24:ad:3b:13: 3c:1e:f9:21:bc:29:ec:fe:b6:91:39:8e:4b:8d:c5: 6c:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:9C:DF:BF:C9:32:22:31:D9:B9:12:91:8F:A7:AE:B6:C2:A2:AB:7E X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/spzfv8kyIjHZuRKRj6eutsKiq34.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 175.111.240.0/21 Signature Algorithm: sha256WithRSAEncryption 7e:06:97:c0:66:af:90:92:97:8e:1c:4e:78:a9:1a:07:c6:43: 6a:ff:00:bf:0a:1e:c5:bd:1e:0b:ac:56:72:d3:10:77:ec:4c: 22:49:e5:e3:a2:28:63:21:dc:68:cd:d7:df:dc:e8:29:32:2f: d8:bb:a0:1e:f3:ca:16:a5:18:0d:fa:4c:92:5f:d1:27:8c:11: 7a:0c:ac:c7:7b:40:07:16:e2:c9:88:b7:52:0e:4d:f2:6e:59: 1d:d7:06:7e:73:cf:9b:d3:93:67:e9:c1:c1:da:a4:aa:b3:74: 13:2b:5a:f9:e6:47:70:3b:fe:98:f7:79:d1:43:9f:fe:47:fa: 18:b7:c7:1b:bb:5a:db:1e:db:7f:d1:07:6b:72:ed:29:d4:9d: 19:7d:89:cf:2b:c7:20:e5:d7:40:e0:d1:62:0e:6c:f8:3e:74: 97:49:71:f1:69:1b:48:4d:bb:a8:8f:4b:2a:cf:8d:e9:2b:5f: 04:89:38:fd:43:9f:a6:1a:46:f4:9b:80:09:43:00:ea:cc:c9: 60:88:17:69:29:e6:4c:14:2e:98:93:4b:d2:06:5e:78:89:78: 51:b4:c8:cd:9d:4c:7e:42:e1:01:9a:75:f9:c8:e1:ab:fb:58: 52:55:c8:25:4e:27:6e:89:9f:23:e7:e4:7f:ba:ef:33:80:41: d2:75:38:75 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICEdAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDA4MjYw NTE3NThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEIyOUNERkJGQzkzMjIy MzFEOUI5MTI5MThGQTdBRUI2QzJBMkFCN0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDtPRcYhRJPw+wig/DoPXtsTMbXVVM+w6wGzogo5jwejG2gQ2EI nu8NbcpBA+S5/S1sOq90h5vTlP5OkeUKembEFkPn5kf2V9YpMbQOrYXPbk5976vV htRbYP2+www3DNM09rO5kuqVAd1yOXLM9bCLtTJ4qodqf7c267Dz/oQhd0Vtm45q truXKYvcS5IvN6+060qNHIkPu3VwtApOBV+4M0uG8WuDsfVRuXpQEoWJHOTgte4L G04lSo3/XY8/u5T0dxBxCeRxjj3kE9tDaJOk2RkHei2GfjYZs2bH4HLqeKcjSi4b dBjkB+plJK07Ezwe+SG8Kez+tpE5jkuNxWwrAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUspzfv8kyIjHZuRKRj6eutsKiq34wHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9zcHpmdjhreUlqSFp1UktSajZl dXRzS2lxMzQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDr2/w MA0GCSqGSIb3DQEBCwUAA4IBAQB+BpfAZq+QkpeOHE54qRoHxkNq/wC/Ch7FvR4L rFZy0xB37EwiSeXjoihjIdxozdff3OgpMi/Yu6Ae88oWpRgN+kySX9EnjBF6DKzH e0AHFuLJiLdSDk3yblkd1wZ+c8+b05Nn6cHB2qSqs3QTK1r55kdwO/6Y93nRQ5/+ R/oYt8cbu1rbHtt/0Qdrcu0p1J0ZfYnPK8cg5ddA4NFiDmz4PnSXSXHxaRtITbuo j0sqz43pK18EiTj9Q5+mGkb0m4AJQwDqzMlgiBdpKeZMFC6Yk0vSBl54iXhRtMjN nUx+QuEBmnX5yOGr+1hSVcglTiduiZ8j5+R/uu8zgEHSdTh1 -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:51 2024 by rpki-client on console-fra.rpki-client.org