$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HLCATV/01zSfZ5Pi7Na4qQqxDwypmiilOA.roa File: 01zSfZ5Pi7Na4qQqxDwypmiilOA.roa (raw, json) Hash identifier: N7u2Sjp7nh6w4f05hlVBXrVhC16732B95//SWR+VgOY= Subject key identifier: D3:5C:D2:7D:9E:4F:8B:B3:5A:E2:A4:2A:C4:3C:32:A6:68:A2:94:E0 Certificate issuer: /CN=28CB5CCFC90738D224CAEAC15E1C251000446BAA Certificate serial: 0BB8 Authority key identifier: 28:CB:5C:CF:C9:07:38:D2:24:CA:EA:C1:5E:1C:25:10:00:44:6B:AA Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KMtcz8kHONIkyurBXhwlEABEa6o.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HLCATV/01zSfZ5Pi7Na4qQqxDwypmiilOA.roa Signing time: Mon 26 Aug 2024 05:18:21 +0000 ROA not before: Mon 26 Aug 2024 05:18:21 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9676 IP address blocks: 211.76.80.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HLCATV/KMtcz8kHONIkyurBXhwlEABEa6o.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HLCATV/KMtcz8kHONIkyurBXhwlEABEa6o.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KMtcz8kHONIkyurBXhwlEABEa6o.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3000 (0xbb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28CB5CCFC90738D224CAEAC15E1C251000446BAA Validity Not Before: Aug 26 05:18:21 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D35CD27D9E4F8BB35AE2A42AC43C32A668A294E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:bd:98:65:81:3d:c5:51:3d:c0:14:a7:53:9f: eb:d0:f5:46:bc:e9:25:d4:b9:bf:b5:e8:e4:a4:55: 91:e0:80:83:ba:a8:4e:e6:d2:af:67:b5:fc:1f:85: 6f:76:0b:ca:0d:80:65:a4:97:7c:9b:66:54:31:f1: f5:ce:c7:aa:49:ed:8d:fc:1a:7c:d4:81:95:4b:4d: ec:3c:86:69:e4:e0:ce:41:11:ff:86:01:a7:53:9b: 59:1a:f9:07:f7:79:a2:5c:f3:5f:a8:31:e1:3e:9a: d5:7d:e9:8b:15:e2:5e:bd:b8:68:62:87:74:c1:6b: 9e:2c:4d:b4:f7:ce:af:13:2f:76:4e:7f:05:d4:84: f1:6c:d3:8c:81:60:b3:8b:d9:d8:ab:99:01:ae:77: b5:6b:c7:4a:29:73:6a:fd:73:47:87:77:b2:6b:27: f5:9b:e9:51:ba:32:fe:36:ff:61:70:ac:41:58:5c: 6d:fd:94:4f:d9:a9:cc:3c:4b:6d:dc:1f:ba:aa:f3: c4:4a:28:07:5a:a0:9c:fb:cb:3c:44:b2:ab:57:74: a0:a6:82:aa:f1:17:d5:30:3c:f2:81:5d:a9:b3:a5: 03:9c:83:56:af:4c:d2:81:25:30:5e:d7:98:e0:9a: 0b:f3:20:74:80:7c:40:a4:91:4b:e4:98:66:1e:39: d8:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:5C:D2:7D:9E:4F:8B:B3:5A:E2:A4:2A:C4:3C:32:A6:68:A2:94:E0 X509v3 Authority Key Identifier: keyid:28:CB:5C:CF:C9:07:38:D2:24:CA:EA:C1:5E:1C:25:10:00:44:6B:AA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HLCATV/KMtcz8kHONIkyurBXhwlEABEa6o.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KMtcz8kHONIkyurBXhwlEABEa6o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HLCATV/01zSfZ5Pi7Na4qQqxDwypmiilOA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.80.0/20 Signature Algorithm: sha256WithRSAEncryption 42:07:32:1b:d7:69:b7:ed:16:71:49:21:cd:d5:4a:10:38:90: 15:52:ea:7e:c1:96:04:20:33:74:e2:f2:1f:9e:ab:8c:8a:89: 25:3d:42:4d:56:81:58:c0:3a:8b:61:7a:ee:09:15:51:79:c7: 0a:95:47:00:34:ca:5c:14:be:3f:6c:d8:cc:37:48:00:b4:1a: dc:8e:10:45:e2:22:8c:54:5a:86:00:c0:bb:0a:9c:30:35:2f: 53:cf:af:fb:0b:b7:85:29:37:ec:9e:fa:13:17:28:7a:ee:0c: 5b:bd:c1:b3:da:da:7f:bb:9d:9d:a5:66:58:1c:fb:f2:9e:de: 7f:44:ac:ac:e8:e7:95:ec:7f:b9:90:84:5a:73:a7:96:c6:74: 08:d4:95:58:a1:13:7c:80:58:f2:da:9b:50:9d:28:33:5f:56: 1c:bb:80:96:41:a5:f1:f5:d4:ca:ca:f1:fb:1c:a4:62:f2:2d: e5:9d:24:39:e0:5c:f6:4f:5e:48:c9:15:32:e9:9d:17:a8:44: 51:91:3c:0b:3b:fe:f0:7f:0c:26:53:3d:f5:e0:9d:bb:fd:0b: d7:d3:f5:56:5c:b9:e0:3e:59:58:f0:4e:f7:57:a7:80:ed:39: 37:29:0f:b4:15:8a:b5:87:79:3f:f9:d7:9c:26:ee:1f:80:34: 47:f6:d0:c0 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICC7gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjhD QjVDQ0ZDOTA3MzhEMjI0Q0FFQUMxNUUxQzI1MTAwMDQ0NkJBQTAeFw0yNDA4MjYw NTE4MjFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQzNUNEMjdEOUU0RjhC QjM1QUUyQTQyQUM0M0MzMkE2NjhBMjk0RTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9vZhlgT3FUT3AFKdTn+vQ9Ua86SXUub+16OSkVZHggIO6qE7m 0q9ntfwfhW92C8oNgGWkl3ybZlQx8fXOx6pJ7Y38GnzUgZVLTew8hmnk4M5BEf+G AadTm1ka+Qf3eaJc81+oMeE+mtV96YsV4l69uGhih3TBa54sTbT3zq8TL3ZOfwXU hPFs04yBYLOL2dirmQGud7Vrx0opc2r9c0eHd7JrJ/Wb6VG6Mv42/2FwrEFYXG39 lE/Zqcw8S23cH7qq88RKKAdaoJz7yzxEsqtXdKCmgqrxF9UwPPKBXamzpQOcg1av TNKBJTBe15jgmgvzIHSAfECkkUvkmGYeOdh3AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU01zSfZ5Pi7Na4qQqxDwypmiilOAwHwYDVR0jBBgwFoAUKMtcz8kHONIkyurB XhwlEABEa6owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSExDQVRW L0tNdGN6OGtIT05Ja3l1ckJYaHdsRUFCRWE2by5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvS010Y3o4a0hPTklreXVyQlhod2xFQUJFYTZvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSExDQVRWLzAxelNmWjVQaTdOYTRxUXF4 RHd5cG1paWxPQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBATT TFAwDQYJKoZIhvcNAQELBQADggEBAEIHMhvXabftFnFJIc3VShA4kBVS6n7BlgQg M3Ti8h+eq4yKiSU9Qk1WgVjAOotheu4JFVF5xwqVRwA0ylwUvj9s2Mw3SAC0GtyO EEXiIoxUWoYAwLsKnDA1L1PPr/sLt4UpN+ye+hMXKHruDFu9wbPa2n+7nZ2lZlgc +/Ke3n9ErKzo55Xsf7mQhFpzp5bGdAjUlVihE3yAWPLam1CdKDNfVhy7gJZBpfH1 1MrK8fscpGLyLeWdJDngXPZPXkjJFTLpnReoRFGRPAs7/vB/DCZTPfXgnbv9C9fT 9VZcueA+WVjwTvdXp4DtOTcpD7QVirWHeT/515wm7h+ANEf20MA= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:39 2024 by rpki-client on console-fra.rpki-client.org