$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/wYoEO9nM7tUJqomuF-bXtAg048U.roa File: wYoEO9nM7tUJqomuF-bXtAg048U.roa (raw, json) Hash identifier: vSXNNhRk3nUhZxhurxGzPCaWyZ0+HODm/Rvd7i4QLrg= Subject key identifier: C1:8A:04:3B:D9:CC:EE:D5:09:AA:89:AE:17:E6:D7:B4:08:34:E3:C5 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 11BC Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/wYoEO9nM7tUJqomuF-bXtAg048U.roa Signing time: Mon 26 Aug 2024 05:17:53 +0000 ROA not before: Mon 26 Aug 2024 05:17:53 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 3462 IP address blocks: 218.166.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4540 (0x11bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Aug 26 05:17:53 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C18A043BD9CCEED509AA89AE17E6D7B40834E3C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:03:08:2a:e3:83:98:41:fa:8f:05:c2:ea:68: f4:e4:44:df:68:59:cb:73:4e:5a:0e:99:25:3f:1f: a3:92:ec:3d:f1:aa:63:0d:cb:fc:70:e4:ad:3c:d7: b2:c5:f0:98:2c:11:69:fb:c5:50:7b:42:d5:03:bd: 20:f2:40:3d:a4:ed:78:8b:06:93:59:c3:28:77:3c: 29:86:17:ff:d2:e8:6e:f8:80:7f:88:73:f3:21:07: 82:34:8c:b3:82:b2:2c:08:8a:ba:03:4e:86:ef:d6: 55:d2:e3:74:1e:f6:b8:01:98:50:36:23:3b:92:1e: 65:fc:5e:c6:88:07:7f:38:be:dd:a2:aa:17:e4:1c: 2f:ea:ca:76:16:bb:02:8f:eb:bb:91:b2:bb:84:1e: cc:95:2a:2a:20:c8:42:43:bf:dd:d1:ea:c5:8b:a7: b6:27:00:a1:49:ac:b9:c2:b6:f6:d7:9c:75:48:e5: b0:53:37:9c:1d:40:bf:71:a7:2b:4d:48:5d:f9:a6: 58:58:2e:d2:2d:0c:71:92:7a:9a:18:62:58:02:c3: 8d:5b:53:ac:c7:d1:e2:ca:9c:cd:37:94:ce:e9:28: 9a:da:12:e6:3d:96:f5:ec:ed:a4:ae:dd:ef:3d:63: e7:b3:33:4c:ee:f5:0e:cc:c7:36:f7:72:ac:fd:72: b6:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:8A:04:3B:D9:CC:EE:D5:09:AA:89:AE:17:E6:D7:B4:08:34:E3:C5 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/wYoEO9nM7tUJqomuF-bXtAg048U.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 218.166.0.0/15 Signature Algorithm: sha256WithRSAEncryption 54:61:b1:96:f6:66:59:18:bd:b6:30:4f:87:e7:f2:ce:81:cf: 03:34:d4:7e:6f:73:f0:66:88:f2:5a:94:09:3b:61:ee:09:84: bd:03:f8:b4:dc:aa:8c:6c:77:fe:b2:45:e7:a1:84:70:cd:d3: 4f:4a:a7:17:9b:72:f1:f8:7a:0d:6a:00:b8:46:fd:cf:44:f7: 1e:bd:6b:65:91:db:55:c4:3c:d9:25:1b:56:e0:e3:1b:e3:ba: fe:a1:7a:89:69:20:77:a3:42:de:26:9e:50:33:f7:ae:af:26: 91:cf:01:1c:d2:d3:6e:c1:d9:69:83:4c:29:d5:f4:3c:da:ce: 10:d4:51:1a:c3:d7:16:fc:57:d3:88:30:8c:7e:d9:d6:8c:d9: 50:e7:8b:70:5d:ff:d8:db:c8:d2:a7:97:80:a6:2f:92:e3:6d: 34:ec:01:8d:15:91:2d:e2:e7:42:29:09:8d:f8:15:74:2b:cb: 0e:db:1d:1d:6a:a2:fa:e6:d7:79:1c:98:2a:4a:87:a5:87:94: b8:f8:7a:12:86:88:86:3b:08:e9:a1:7b:5a:2c:a0:10:0c:a9: 89:fa:fb:ab:8a:33:fc:40:01:dc:ec:dd:ec:1c:4c:90:07:d1: 31:c5:72:54:02:cf:04:37:6f:23:7d:2f:53:3d:a4:69:b3:fe: 29:b1:d1:85 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICEbwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDA4MjYw NTE3NTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEMxOEEwNDNCRDlDQ0VF RDUwOUFBODlBRTE3RTZEN0I0MDgzNEUzQzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEAwgq44OYQfqPBcLqaPTkRN9oWctzTloOmSU/H6OS7D3xqmMN y/xw5K0817LF8JgsEWn7xVB7QtUDvSDyQD2k7XiLBpNZwyh3PCmGF//S6G74gH+I c/MhB4I0jLOCsiwIiroDTobv1lXS43Qe9rgBmFA2IzuSHmX8XsaIB384vt2iqhfk HC/qynYWuwKP67uRsruEHsyVKiogyEJDv93R6sWLp7YnAKFJrLnCtvbXnHVI5bBT N5wdQL9xpytNSF35plhYLtItDHGSepoYYlgCw41bU6zH0eLKnM03lM7pKJraEuY9 lvXs7aSu3e89Y+ezM0zu9Q7Mxzb3cqz9crYJAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUwYoEO9nM7tUJqomuF+bXtAg048UwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC93WW9FTzluTTd0VUpxb211Ri1i WHRBZzA0OFUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMB2qYw DQYJKoZIhvcNAQELBQADggEBAFRhsZb2ZlkYvbYwT4fn8s6BzwM01H5vc/BmiPJa lAk7Ye4JhL0D+LTcqoxsd/6yReehhHDN009KpxebcvH4eg1qALhG/c9E9x69a2WR 21XEPNklG1bg4xvjuv6heolpIHejQt4mnlAz966vJpHPARzS027B2WmDTCnV9Dza zhDUURrD1xb8V9OIMIx+2daM2VDni3Bd/9jbyNKnl4CmL5LjbTTsAY0VkS3i50Ip CY34FXQryw7bHR1qovrm13kcmCpKh6WHlLj4ehKGiIY7COmhe1osoBAMqYn6+6uK M/xAAdzs3ewcTJAH0THFclQCzwQ3byN9L1M9pGmz/imx0YU= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:07 2024 by rpki-client on console-ams.rpki-client.org