$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/tlHfid_RA4kPwkkfo-he_Y4NIzA.roa File: tlHfid_RA4kPwkkfo-he_Y4NIzA.roa (raw, json) Hash identifier: tKO15MTGDtdO7CbYUDexx1mfAV7HrEt91++mbjJV9I4= Subject key identifier: B6:51:DF:89:DF:D1:03:89:0F:C2:49:1F:A3:E8:5E:FD:8E:0D:23:30 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 17B5 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/tlHfid_RA4kPwkkfo-he_Y4NIzA.roa Signing time: Wed 12 Feb 2025 01:36:59 +0000 ROA not before: Wed 12 Feb 2025 01:36:59 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 3462 IP address blocks: 60.249.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 06:36:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6069 (0x17b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Feb 12 01:36:59 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B651DF89DFD103890FC2491FA3E85EFD8E0D2330 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:03:20:c7:57:3f:72:5a:e4:d7:68:96:77:da: ac:b7:eb:4d:1e:a3:b9:ad:8f:ea:bd:1d:e7:86:f3: 0a:28:88:2f:59:0e:de:60:97:a3:12:3c:35:1f:39: 9d:f1:70:1e:0c:6f:0b:11:73:5e:15:a1:cf:37:17: 8c:6b:c3:9d:18:93:05:0a:d0:7e:3a:d1:b7:37:1d: 8d:74:b1:78:59:f2:bd:66:51:ca:f3:9a:87:dc:65: 65:a9:5b:77:f6:9d:8b:ed:a5:45:72:ef:25:f5:e8: 01:0a:0c:1c:01:aa:f6:d4:ae:f0:b9:d0:3c:00:61: a6:b6:42:df:b4:f8:d8:06:65:37:af:06:a1:f8:93: f4:94:56:4f:2e:4c:5a:30:f0:b4:8c:91:5f:59:da: 00:10:d6:89:8b:26:57:4f:e1:da:00:a2:1e:f0:8a: df:a9:07:1c:ac:ba:de:7e:d6:cf:24:80:c8:ce:0c: 5f:2d:ff:46:15:78:ff:73:fd:26:57:3e:6b:24:c9: 34:e3:1d:3f:b8:09:42:21:09:a3:95:77:99:50:ed: 59:a7:c2:9e:85:f5:1b:31:2e:99:43:b2:ef:eb:bb: a2:5f:c2:3c:4b:fa:0e:1a:30:8f:f5:42:c4:3e:e4: f5:8e:cb:2f:e8:46:eb:71:e5:53:a4:ec:c3:69:23: ee:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:51:DF:89:DF:D1:03:89:0F:C2:49:1F:A3:E8:5E:FD:8E:0D:23:30 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/tlHfid_RA4kPwkkfo-he_Y4NIzA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.249.0.0/16 Signature Algorithm: sha256WithRSAEncryption c0:c6:53:26:2b:eb:27:9b:50:8d:67:a7:26:24:b6:c7:a7:85: 98:3e:39:8e:6e:af:fe:95:75:8e:8c:48:78:d8:88:e6:20:e2: 74:57:85:ce:b1:20:87:44:6b:4c:8d:ad:42:2c:74:d4:72:20: 2f:0d:a6:af:ce:0e:a5:12:0c:e3:26:cb:8e:47:c3:0f:bf:b5: 9c:1d:39:ad:5e:c5:03:5b:fc:a3:f7:ca:2e:22:30:af:8f:5b: ab:80:c3:17:66:41:26:b1:18:c4:65:f5:66:dc:5d:2d:fe:42: 4b:a9:76:49:49:64:a0:2b:b2:c2:5e:69:49:9d:96:0b:d4:e8: 74:21:e4:52:e4:c1:eb:bc:72:ee:4c:bf:b1:48:51:76:02:38: 8d:b9:b1:47:8f:22:d5:13:fa:d4:55:45:0f:20:e3:6b:5e:dd: fe:4d:03:7c:60:ee:41:e0:06:de:e6:0b:d3:20:6f:c9:12:96: d4:c4:1a:46:17:1f:95:66:e2:4b:bf:45:63:cc:96:02:07:dd: 9d:c0:dd:fd:39:67:4a:ca:fd:30:3a:e9:14:d1:f2:2f:cc:cb: 31:9c:dc:87:25:8f:6b:50:70:c6:fc:b0:95:8f:ff:be:60:6e: 0d:4b:04:ba:aa:65:e0:17:ab:47:b0:b2:e1:b8:18:fc:26:6b: ad:e1:18:ad -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICF7UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTIw MTM2NTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI2NTFERjg5REZEMTAz ODkwRkMyNDkxRkEzRTg1RUZEOEUwRDIzMzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQChAyDHVz9yWuTXaJZ32qy3600eo7mtj+q9HeeG8wooiC9ZDt5g l6MSPDUfOZ3xcB4MbwsRc14Voc83F4xrw50YkwUK0H460bc3HY10sXhZ8r1mUcrz mofcZWWpW3f2nYvtpUVy7yX16AEKDBwBqvbUrvC50DwAYaa2Qt+0+NgGZTevBqH4 k/SUVk8uTFow8LSMkV9Z2gAQ1omLJldP4doAoh7wit+pBxysut5+1s8kgMjODF8t /0YVeP9z/SZXPmskyTTjHT+4CUIhCaOVd5lQ7Vmnwp6F9RsxLplDsu/ru6JfwjxL +g4aMI/1QsQ+5PWOyy/oRutx5VOk7MNpI+4PAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUtlHfid/RA4kPwkkfo+he/Y4NIzAwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC90bEhmaWRfUkE0a1B3a2tmby1o ZV9ZNE5JekEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAPPkw DQYJKoZIhvcNAQELBQADggEBAMDGUyYr6yebUI1npyYktsenhZg+OY5ur/6VdY6M SHjYiOYg4nRXhc6xIIdEa0yNrUIsdNRyIC8Npq/ODqUSDOMmy45Hww+/tZwdOa1e xQNb/KP3yi4iMK+PW6uAwxdmQSaxGMRl9WbcXS3+QkupdklJZKArssJeaUmdlgvU 6HQh5FLkweu8cu5Mv7FIUXYCOI25sUePItUT+tRVRQ8g42te3f5NA3xg7kHgBt7m C9Mgb8kSltTEGkYXH5Vm4ku/RWPMlgIH3Z3A3f05Z0rK/TA66RTR8i/MyzGc3Icl j2tQcMb8sJWP/75gbg1LBLqqZeAXq0ewsuG4GPwma63hGK0= -----END CERTIFICATE-----Generated at Mon Apr 7 02:07:58 2025 by rpki-client