$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/b879hwCCetQsEpCroW6u_cZw5qA.roa File: b879hwCCetQsEpCroW6u_cZw5qA.roa (raw, json) Hash identifier: T6HLlWmkFl4l9vhqJVIr8qDzQXH9iRHnT+XCJaIuxjk= Subject key identifier: 6F:CE:FD:87:00:82:7A:D4:2C:12:90:AB:A1:6E:AE:FD:C6:70:E6:A0 Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 06BD Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/b879hwCCetQsEpCroW6u_cZw5qA.roa Signing time: Mon 26 Aug 2024 05:18:25 +0000 ROA not before: Mon 26 Aug 2024 05:18:25 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131657 IP address blocks: 2406:48c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1725 (0x6bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Aug 26 05:18:25 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6FCEFD8700827AD42C1290ABA16EAEFDC670E6A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:0c:b6:85:ad:52:fb:f8:53:c3:3f:0e:b4:eb: be:9a:c4:9d:70:1e:46:27:a4:fc:f8:09:4f:e2:13: ab:e6:a7:64:0c:2a:d9:0b:d3:90:e2:fb:c5:ff:6c: b6:58:6f:08:3c:80:ec:53:58:5e:0f:1e:b4:3c:7e: 77:43:72:a3:7f:ec:45:77:23:6d:21:53:53:a2:33: 14:5e:1f:47:cb:31:66:0e:13:2c:7e:93:27:cd:4c: a1:47:da:ba:c3:6c:b9:15:42:73:aa:97:1f:a0:21: 0f:48:60:cd:ea:d9:c1:89:80:00:5d:42:2e:7e:6a: 97:f6:cf:87:82:94:03:d2:35:73:6a:85:9b:87:3f: ca:cc:1b:b8:6b:df:10:9a:fc:c5:d4:0e:14:a0:11: 6c:21:ed:94:d7:0f:f9:0d:6a:03:e1:4d:6d:ac:b4: d6:4d:e9:5b:1f:56:93:b3:bc:81:58:ca:6e:21:5e: 64:c2:46:3d:a1:a1:57:f8:cf:0b:64:bd:b7:fb:9d: ec:01:4b:4c:73:0d:5e:ae:a0:68:9c:60:8b:6c:27: 1d:95:d7:08:91:cb:e0:2b:c3:ad:4e:19:3d:0c:48: 16:22:d6:89:81:af:2c:f5:26:f4:ff:6e:03:68:62: e3:df:c6:ff:d2:92:c1:54:e1:19:81:79:ef:3f:72: d9:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:CE:FD:87:00:82:7A:D4:2C:12:90:AB:A1:6E:AE:FD:C6:70:E6:A0 X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/b879hwCCetQsEpCroW6u_cZw5qA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2406:48c0::/32 Signature Algorithm: sha256WithRSAEncryption 6c:b9:21:c3:f8:7d:08:05:34:eb:c0:0e:7c:92:53:13:69:e2: 73:0a:22:2b:44:b0:f9:9f:2a:fe:f2:6c:aa:d3:37:e5:28:96: 00:9c:f4:79:b9:37:ac:f7:e1:d9:ca:28:78:9f:6a:9e:c9:8f: 5c:cf:77:d6:c2:0c:58:b7:b7:a5:25:c9:b7:16:72:79:cc:10: 98:af:f1:69:6e:32:3b:c0:fc:af:f4:26:d5:65:61:dd:0b:59: 4d:9b:0f:8d:a0:fb:cb:ea:ac:4c:5d:35:b6:60:af:a8:cc:b7: 3c:bd:01:88:73:0d:1e:1f:16:3e:51:97:80:7f:97:c6:62:2d: 65:26:61:ef:f4:e5:e5:25:0a:d2:36:59:27:ea:5b:66:0b:b6: 0c:e9:33:cd:79:02:4f:a8:30:45:af:86:95:8e:65:3c:47:f0: 83:da:91:44:24:0d:d9:b4:0a:40:f9:7e:7f:9b:60:0a:bc:9c: 9d:ff:44:82:de:e2:50:30:49:7a:81:2e:d3:e4:de:13:a3:4d: 17:08:81:fe:23:8d:55:af:d5:4e:d7:61:d8:31:e9:4b:23:b0: 2f:07:52:c2:14:11:fe:68:d0:c5:f4:39:0a:69:22:4a:6d:d3: 6c:95:54:c3:58:87:c1:88:97:4c:a5:cc:b6:99:32:5b:6a:53: 70:7c:33:23 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICBr0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yNDA4MjYw NTE4MjVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZGQ0VGRDg3MDA4MjdB RDQyQzEyOTBBQkExNkVBRUZEQzY3MEU2QTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCVDLaFrVL7+FPDPw60676axJ1wHkYnpPz4CU/iE6vmp2QMKtkL 05Di+8X/bLZYbwg8gOxTWF4PHrQ8fndDcqN/7EV3I20hU1OiMxReH0fLMWYOEyx+ kyfNTKFH2rrDbLkVQnOqlx+gIQ9IYM3q2cGJgABdQi5+apf2z4eClAPSNXNqhZuH P8rMG7hr3xCa/MXUDhSgEWwh7ZTXD/kNagPhTW2stNZN6VsfVpOzvIFYym4hXmTC Rj2hoVf4zwtkvbf7newBS0xzDV6uoGicYItsJx2V1wiRy+Arw61OGT0MSBYi1omB ryz1JvT/bgNoYuPfxv/SksFU4RmBee8/ctkfAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUb879hwCCetQsEpCroW6u/cZw5qAwHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL2I4Nzlod0NDZXRRc0VwQ3Jv VzZ1X2NadzVxQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcDBQAk BkjAMA0GCSqGSIb3DQEBCwUAA4IBAQBsuSHD+H0IBTTrwA58klMTaeJzCiIrRLD5 nyr+8myq0zflKJYAnPR5uTes9+HZyih4n2qeyY9cz3fWwgxYt7elJcm3FnJ5zBCY r/FpbjI7wPyv9CbVZWHdC1lNmw+NoPvL6qxMXTW2YK+ozLc8vQGIcw0eHxY+UZeA f5fGYi1lJmHv9OXlJQrSNlkn6ltmC7YM6TPNeQJPqDBFr4aVjmU8R/CD2pFEJA3Z tApA+X5/m2AKvJyd/0SC3uJQMEl6gS7T5N4To00XCIH+I41Vr9VO12HYMelLI7Av B1LCFBH+aNDF9DkKaSJKbdNslVTDWIfBiJdMpcy2mTJbalNwfDMj -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:51 2024 by rpki-client on console-fra.rpki-client.org