$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/t876Z6VAGNF99bh2i4TmpSSamHI.roa File: t876Z6VAGNF99bh2i4TmpSSamHI.roa (raw, json) Hash identifier: 2DZCtDEsq3XGPsra1vaD/wS6x6mNfSi9K2xGjdja6Rs= Subject key identifier: B7:CE:FA:67:A5:40:18:D1:7D:F5:B8:76:8B:84:E6:A5:24:9A:98:72 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 11A5 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/t876Z6VAGNF99bh2i4TmpSSamHI.roa Signing time: Mon 26 Aug 2024 05:17:46 +0000 ROA not before: Mon 26 Aug 2024 05:17:46 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 20940 IP address blocks: 210.61.248.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 02:24:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4517 (0x11a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 26 05:17:46 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B7CEFA67A54018D17DF5B8768B84E6A5249A9872 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:d8:12:77:98:35:6d:aa:ca:ca:f5:26:d2:63: 85:e7:f3:6a:be:89:fa:35:ca:a9:7f:fb:11:48:f6: d4:8b:2e:54:3b:c1:c4:29:40:80:99:ea:17:f3:60: 87:b3:40:b6:82:a1:b8:75:29:55:f4:26:5b:e5:fe: 7d:cf:6a:24:26:e0:75:0e:90:97:1a:1b:f7:eb:9b: c7:8a:ce:82:4b:5f:fa:0b:93:a8:8b:fa:8e:c9:c3: 4c:b8:c1:05:89:b9:70:15:77:42:31:20:bf:4f:6d: e0:76:0a:ed:37:37:52:a3:b6:97:f5:4f:41:1d:2e: 59:95:9e:d7:1b:28:1a:47:ab:04:b1:73:b9:44:45: bc:59:31:3c:10:a7:90:13:5b:d8:c1:7c:68:7a:8c: 36:19:59:e9:b9:fc:f7:15:c1:63:4d:6f:ca:14:79: 0e:ea:7e:1e:4f:ad:f4:a5:b7:7e:a4:f3:23:37:a9: 77:7a:60:28:57:6c:2b:6d:04:3d:c7:01:67:67:3c: a3:c7:dc:08:64:35:0b:51:0a:ad:33:1a:6a:b9:b4: 70:ea:b5:ba:c4:68:5e:f5:b5:65:f2:1f:95:75:1a: 91:5b:2d:f6:8c:16:a1:54:c6:2e:81:cf:1a:54:b1: 8b:b1:7b:84:5f:6e:44:91:14:ae:73:3d:32:93:13: 56:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:CE:FA:67:A5:40:18:D1:7D:F5:B8:76:8B:84:E6:A5:24:9A:98:72 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/t876Z6VAGNF99bh2i4TmpSSamHI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.61.248.0/23 Signature Algorithm: sha256WithRSAEncryption 98:a9:31:9b:32:81:29:0c:d9:d4:11:20:fb:3c:c3:af:3b:1f: cc:cd:cf:d8:ca:6a:e2:95:8d:e7:71:e8:bf:ca:06:cb:06:16: 94:ce:f0:18:35:9c:92:e2:0d:af:de:2a:ed:8d:96:df:70:2d: 43:45:e7:16:1e:2a:3b:08:7c:09:48:08:b0:f9:79:f4:00:bf: 45:b8:41:e0:39:56:2c:39:ca:b4:29:6a:dd:3b:43:f1:48:89: 88:19:b1:b8:7b:11:68:aa:1b:93:b0:5d:07:45:ce:4b:2b:be: 93:6d:ea:f9:b5:47:69:fb:bd:9e:5d:72:84:80:f3:3f:57:85: d7:72:70:6d:5d:f8:b1:6e:5f:56:01:f8:ed:d4:a6:93:28:6d: 9e:35:59:b3:6d:9d:5d:0f:04:14:ef:20:44:79:ff:b6:b7:fb: db:08:70:d1:47:5a:b1:e0:cd:2a:a2:a9:63:e7:8a:3b:74:7d: 7a:ee:2b:d6:f6:12:55:2c:d1:c8:ef:fa:c9:12:36:d1:86:95: 33:8f:25:d4:75:26:f0:c0:b6:ec:97:c2:65:fb:31:f1:1f:60: a6:cc:08:00:ce:95:90:57:55:9c:18:ef:14:f9:27:d0:8b:2b: 55:15:7d:95:1c:4d:7a:07:ab:67:42:27:08:61:75:98:78:4a: e3:c3:b5:24 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICEaUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDA4MjYw NTE3NDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI3Q0VGQTY3QTU0MDE4 RDE3REY1Qjg3NjhCODRFNkE1MjQ5QTk4NzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDF2BJ3mDVtqsrK9SbSY4Xn82q+ifo1yql/+xFI9tSLLlQ7wcQp QICZ6hfzYIezQLaCobh1KVX0Jlvl/n3PaiQm4HUOkJcaG/frm8eKzoJLX/oLk6iL +o7Jw0y4wQWJuXAVd0IxIL9PbeB2Cu03N1Kjtpf1T0EdLlmVntcbKBpHqwSxc7lE RbxZMTwQp5ATW9jBfGh6jDYZWem5/PcVwWNNb8oUeQ7qfh5PrfSlt36k8yM3qXd6 YChXbCttBD3HAWdnPKPH3AhkNQtRCq0zGmq5tHDqtbrEaF71tWXyH5V1GpFbLfaM FqFUxi6BzxpUsYuxe4RfbkSRFK5zPTKTE1YjAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUt876Z6VAGNF99bh2i4TmpSSamHIwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC90ODc2WjZWQUdORjk5YmgyaTRU bXBTU2FtSEkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQB0j34 MA0GCSqGSIb3DQEBCwUAA4IBAQCYqTGbMoEpDNnUESD7PMOvOx/Mzc/YymrilY3n cei/ygbLBhaUzvAYNZyS4g2v3irtjZbfcC1DRecWHio7CHwJSAiw+Xn0AL9FuEHg OVYsOcq0KWrdO0PxSImIGbG4exFoqhuTsF0HRc5LK76Tber5tUdp+72eXXKEgPM/ V4XXcnBtXfixbl9WAfjt1KaTKG2eNVmzbZ1dDwQU7yBEef+2t/vbCHDRR1qx4M0q oqlj54o7dH167ivW9hJVLNHI7/rJEjbRhpUzjyXUdSbwwLbsl8Jl+zHxH2CmzAgA zpWQV1WcGO8U+SfQiytVFX2VHE16B6tnQicIYXWYeErjw7Uk -----END CERTIFICATE-----Generated at Fri Nov 22 00:15:15 2024 by rpki-client on console-ams.rpki-client.org