$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HUANGDEXIA/hEgysvn-vXLV-B8WbXs4lOb7jog.roa File: hEgysvn-vXLV-B8WbXs4lOb7jog.roa (raw, json) Hash identifier: Ovj1cJhlnw4y/6i12zklvP/B9fo2HM1/K4T+LpG23nA= Subject key identifier: 84:48:32:B2:F9:FE:BD:72:D5:F8:1F:16:6D:7B:38:94:E6:FB:8E:88 Certificate issuer: /CN=CAA8405CBD8CE6AE1EA3A9DAA6779756EC6EDC42 Certificate serial: F0 Authority key identifier: CA:A8:40:5C:BD:8C:E6:AE:1E:A3:A9:DA:A6:77:97:56:EC:6E:DC:42 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/yqhAXL2M5q4eo6napneXVuxu3EI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HUANGDEXIA/hEgysvn-vXLV-B8WbXs4lOb7jog.roa Signing time: Wed 04 Sep 2024 09:16:38 +0000 ROA not before: Wed 04 Sep 2024 09:16:38 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131642 IP address blocks: 2401:39a0::/32 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HUANGDEXIA/yqhAXL2M5q4eo6napneXVuxu3EI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HUANGDEXIA/yqhAXL2M5q4eo6napneXVuxu3EI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/yqhAXL2M5q4eo6napneXVuxu3EI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Sep 2024 11:19:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 240 (0xf0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CAA8405CBD8CE6AE1EA3A9DAA6779756EC6EDC42 Validity Not Before: Sep 4 09:16:38 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=844832B2F9FEBD72D5F81F166D7B3894E6FB8E88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:3b:26:89:67:37:c9:d4:58:c0:d8:88:15:7e: ca:0a:c3:ca:54:0c:b8:99:d0:e7:0c:b6:c0:72:9c: 03:57:a7:0d:3b:91:b7:27:3a:27:bc:87:b3:d7:d7: fe:43:1b:3e:25:6f:32:96:00:88:26:21:59:31:1c: 3c:2b:01:53:66:24:d5:c9:98:9b:97:ac:31:18:ba: 95:31:14:c0:9d:71:83:11:c9:ab:43:99:e4:06:39: a5:db:9c:19:3e:95:ac:70:57:71:4b:22:11:e8:c1: f5:c7:80:a1:38:90:42:ec:0f:50:39:5a:7e:ca:d2: 94:68:c4:d6:83:a0:76:33:be:23:b6:26:7e:d2:ad: e4:b1:29:ca:bf:a4:fa:74:c6:4a:9b:48:13:2d:6b: 4c:81:c1:4c:ee:98:ff:95:5d:f3:20:2f:63:00:77: b2:2e:43:51:ab:46:37:6f:50:64:53:1d:74:c1:bc: 47:71:5e:23:d4:ae:1c:2c:52:42:45:51:f1:1f:66: 21:df:b4:89:02:f3:0e:56:25:4e:d9:25:c4:da:87: 0c:c8:be:8d:fc:ae:84:fc:51:c9:93:67:ac:fd:7f: 9e:96:e7:08:be:04:69:7a:49:85:bf:0d:18:56:97: b2:7b:de:fb:5c:b1:c4:ea:34:72:a4:5b:ec:8a:aa: 69:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:48:32:B2:F9:FE:BD:72:D5:F8:1F:16:6D:7B:38:94:E6:FB:8E:88 X509v3 Authority Key Identifier: keyid:CA:A8:40:5C:BD:8C:E6:AE:1E:A3:A9:DA:A6:77:97:56:EC:6E:DC:42 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HUANGDEXIA/yqhAXL2M5q4eo6napneXVuxu3EI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/yqhAXL2M5q4eo6napneXVuxu3EI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HUANGDEXIA/hEgysvn-vXLV-B8WbXs4lOb7jog.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2401:39a0::/32 Signature Algorithm: sha256WithRSAEncryption 46:0f:1f:43:04:a0:28:f8:98:31:b5:8e:a8:97:8f:70:ac:1b: 62:53:77:6d:48:5e:1d:17:2d:e8:5b:56:e4:84:bf:c7:d7:5c: 3e:57:f0:b1:a6:55:6d:68:9c:f1:2c:d8:1e:fe:e9:14:ee:df: a5:50:59:cd:c4:57:c7:16:b4:5b:9b:cf:e1:50:5c:2f:1d:72: ec:cf:c5:b9:82:f0:76:28:0c:37:0e:81:d6:53:2a:dd:b4:de: d0:95:89:47:66:2c:82:b5:78:57:cf:c3:1f:fa:c7:f7:7b:5c: c6:26:e5:43:45:22:83:b8:2f:42:81:0c:fb:65:9c:31:47:32: e6:cc:89:38:82:80:60:ee:62:bc:7d:71:74:e4:52:d8:57:61: 22:82:8a:ab:e0:08:38:60:ce:b8:00:a1:4c:b0:fd:55:5c:6d: f6:88:b8:bd:db:fc:9b:bb:69:bb:82:c6:0c:db:00:b4:4e:7d: b5:6b:9c:01:47:10:8e:8a:5c:9d:d3:d9:62:3e:b9:c9:15:04: 69:b5:62:4f:00:7f:16:67:61:7a:32:e5:dc:33:41:8f:f3:b0: 31:01:14:74:99:96:c5:dc:ff:5a:3b:7f:3c:13:1b:c0:90:78: d0:29:b2:4f:e9:20:7c:37:d3:75:e6:fe:17:ba:06:d1:df:7b: 99:21:ff:67 -----BEGIN CERTIFICATE----- MIIE2zCCA8OgAwIBAgICAPAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0FB ODQwNUNCRDhDRTZBRTFFQTNBOURBQTY3Nzk3NTZFQzZFREM0MjAeFw0yNDA5MDQw OTE2MzhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg0NDgzMkIyRjlGRUJE NzJENUY4MUYxNjZEN0IzODk0RTZGQjhFODgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6OyaJZzfJ1FjA2IgVfsoKw8pUDLiZ0OcMtsBynANXpw07kbcn Oie8h7PX1/5DGz4lbzKWAIgmIVkxHDwrAVNmJNXJmJuXrDEYupUxFMCdcYMRyatD meQGOaXbnBk+laxwV3FLIhHowfXHgKE4kELsD1A5Wn7K0pRoxNaDoHYzviO2Jn7S reSxKcq/pPp0xkqbSBMta0yBwUzumP+VXfMgL2MAd7IuQ1GrRjdvUGRTHXTBvEdx XiPUrhwsUkJFUfEfZiHftIkC8w5WJU7ZJcTahwzIvo38roT8UcmTZ6z9f56W5wi+ BGl6SYW/DRhWl7J73vtcscTqNHKkW+yKqmnTAgMBAAGjggH3MIIB8zAdBgNVHQ4E FgQUhEgysvn+vXLV+B8WbXs4lOb7jogwHwYDVR0jBBgwFoAUyqhAXL2M5q4eo6na pneXVuxu3EIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSFVBTkdE RVhJQS95cWhBWEwyTTVxNGVvNm5hcG5lWFZ1eHUzRUkuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL3lxaEFYTDJNNXE0ZW82bmFwbmVYVnV4dTNFSS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0hVQU5HREVYSUEvaEVneXN2bi12 WExWLUI4V2JYczRsT2I3am9nLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQC AAIwBwMFACQBOaAwDQYJKoZIhvcNAQELBQADggEBAEYPH0MEoCj4mDG1jqiXj3Cs G2JTd21IXh0XLehbVuSEv8fXXD5X8LGmVW1onPEs2B7+6RTu36VQWc3EV8cWtFub z+FQXC8dcuzPxbmC8HYoDDcOgdZTKt203tCViUdmLIK1eFfPwx/6x/d7XMYm5UNF IoO4L0KBDPtlnDFHMubMiTiCgGDuYrx9cXTkUthXYSKCiqvgCDhgzrgAoUyw/VVc bfaIuL3b/Ju7abuCxgzbALROfbVrnAFHEI6KXJ3T2WI+uckVBGm1Yk8AfxZnYXoy 5dwzQY/zsDEBFHSZlsXc/1o7fzwTG8CQeNApsk/pIHw303Xm/he6BtHfe5kh/2c= -----END CERTIFICATE-----Generated at Fri Sep 20 09:06:42 2024 by rpki-client on console-ams.rpki-client.org