$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/xG7wl7k_JPcEaUcxDVO5oCj4EaI.roa File: xG7wl7k_JPcEaUcxDVO5oCj4EaI.roa (raw, json) Hash identifier: 30uKRIwas0BnCpeY5vMxCDkfvbh0o9lSwCHUQw4mXw4= Subject key identifier: C4:6E:F0:97:B9:3F:24:F7:04:69:47:31:0D:53:B9:A0:28:F8:11:A2 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 17BF Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xG7wl7k_JPcEaUcxDVO5oCj4EaI.roa Signing time: Wed 12 Feb 2025 01:37:02 +0000 ROA not before: Wed 12 Feb 2025 01:37:02 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 3462 IP address blocks: 114.32.0.0/12 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 02:06:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6079 (0x17bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Feb 12 01:37:02 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C46EF097B93F24F7046947310D53B9A028F811A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:e7:0b:69:3a:16:80:bf:db:b8:4a:4f:1f:3d: 80:3f:42:7b:9c:6d:87:38:79:25:51:e8:d2:16:42: a5:64:87:f8:17:5a:7c:72:a1:3d:92:a6:6f:e6:ba: 16:cf:6d:17:ad:52:ad:8e:74:77:43:ca:06:3c:fa: 91:fd:6e:1c:0d:57:6f:f9:76:43:ba:f9:ff:8f:9a: b0:b7:11:a4:5b:77:37:4d:41:d2:4e:1a:58:b5:c6: 99:ab:37:4c:1f:5d:26:6e:7a:19:57:a0:ae:d7:1b: e1:a0:5e:6f:57:06:72:84:3b:ea:80:52:5c:20:45: 30:d3:e4:9c:95:51:af:fa:d5:f4:22:71:a1:7a:d9: 01:5d:31:20:ec:56:d6:df:23:b4:dd:33:0f:74:2c: b0:38:17:78:46:f4:67:ce:08:30:93:8d:1e:7e:44: f9:8b:52:5d:23:a7:59:05:00:f9:62:32:cd:cd:63: af:4c:37:21:dc:9d:ab:6c:14:5a:9b:ef:c3:4d:6f: 47:a7:b7:99:93:20:90:07:82:73:b1:69:54:0f:f2: 04:d5:21:a4:a7:a0:b8:b2:8a:32:ae:c2:d3:38:38: bf:ff:fb:4d:67:02:c0:fe:8d:3f:86:7e:95:16:66: 9e:c9:94:ad:e7:fa:e8:b5:03:20:0e:e9:1b:81:50: ba:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:6E:F0:97:B9:3F:24:F7:04:69:47:31:0D:53:B9:A0:28:F8:11:A2 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xG7wl7k_JPcEaUcxDVO5oCj4EaI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 114.32.0.0/12 Signature Algorithm: sha256WithRSAEncryption 8c:38:31:ab:e2:ff:a4:5a:28:80:ab:1e:86:6a:dd:89:0b:a9: 7d:a5:7c:3f:06:d3:c8:27:12:5b:b3:6a:ba:24:dd:ef:9b:99: 21:13:15:a5:34:d4:41:4f:b7:66:74:5d:34:33:ae:96:be:43: 03:1c:c0:2d:6e:31:90:fd:9f:10:fa:a8:2d:bc:8c:8b:9b:2c: 02:dc:62:cf:be:ca:91:e9:44:c7:70:fe:9e:08:42:ca:cb:d6: 2b:59:3a:cc:5c:43:96:9a:ca:4d:31:c1:c4:2a:b0:39:dc:4f: a1:7a:45:81:34:a1:78:ff:e4:d2:3e:73:c1:1e:2b:cf:10:a7: 1d:1a:bf:e9:f1:a5:ac:2b:ac:83:ec:eb:34:21:dc:bb:60:f9: b0:53:44:91:3f:30:50:05:f8:d0:8e:ef:47:17:b4:5b:40:dc: c0:50:f2:71:2b:05:23:62:4a:3c:22:ac:e4:96:36:7d:2a:3a: 9e:41:8c:7a:7e:b8:dc:2b:5d:d7:76:bd:ba:19:a9:cd:8b:0b: c1:96:d0:9e:ab:40:1e:fb:30:2e:45:f4:b7:cd:b6:13:05:86: f5:3d:68:cb:9d:95:9e:37:9f:43:8f:a8:e1:d4:7d:29:f5:31: cc:b8:97:4f:63:ce:4b:df:e9:7f:ba:8e:5f:b2:da:8b:ec:15: b0:a6:53:47 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICF78wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTIw MTM3MDJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM0NkVGMDk3QjkzRjI0 RjcwNDY5NDczMTBENTNCOUEwMjhGODExQTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC55wtpOhaAv9u4Sk8fPYA/QnucbYc4eSVR6NIWQqVkh/gXWnxy oT2Spm/muhbPbRetUq2OdHdDygY8+pH9bhwNV2/5dkO6+f+PmrC3EaRbdzdNQdJO Gli1xpmrN0wfXSZuehlXoK7XG+GgXm9XBnKEO+qAUlwgRTDT5JyVUa/61fQicaF6 2QFdMSDsVtbfI7TdMw90LLA4F3hG9GfOCDCTjR5+RPmLUl0jp1kFAPliMs3NY69M NyHcnatsFFqb78NNb0ent5mTIJAHgnOxaVQP8gTVIaSnoLiyijKuwtM4OL//+01n AsD+jT+GfpUWZp7JlK3n+ui1AyAO6RuBULqhAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUxG7wl7k/JPcEaUcxDVO5oCj4EaIwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC94Rzd3bDdrX0pQY0VhVWN4RFZP NW9DajRFYUkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMEciAw DQYJKoZIhvcNAQELBQADggEBAIw4Mavi/6RaKICrHoZq3YkLqX2lfD8G08gnEluz arok3e+bmSETFaU01EFPt2Z0XTQzrpa+QwMcwC1uMZD9nxD6qC28jIubLALcYs++ ypHpRMdw/p4IQsrL1itZOsxcQ5aayk0xwcQqsDncT6F6RYE0oXj/5NI+c8EeK88Q px0av+nxpawrrIPs6zQh3Ltg+bBTRJE/MFAF+NCO70cXtFtA3MBQ8nErBSNiSjwi rOSWNn0qOp5BjHp+uNwrXdd2vboZqc2LC8GW0J6rQB77MC5F9LfNthMFhvU9aMud lZ43n0OPqOHUfSn1Mcy4l09jzkvf6X+6jl+y2ovsFbCmU0c= -----END CERTIFICATE-----Generated at Mon Apr 7 01:50:39 2025 by rpki-client