$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HWME1204/hLcSq8HlQtveh7vopyIxc0F-WGA.roa File: hLcSq8HlQtveh7vopyIxc0F-WGA.roa (raw, json) Hash identifier: OQWADa/G7MGP9+n2mpXHDMZ3rAuGF+FQ1d1YjUSsQjs= Subject key identifier: 84:B7:12:AB:C1:E5:42:DB:DE:87:BB:E8:A7:22:31:73:41:7E:58:60 Certificate issuer: /CN=E95973EB86F597CAE612C67929ED9352E70B5528 Certificate serial: 1127 Authority key identifier: E9:59:73:EB:86:F5:97:CA:E6:12:C6:79:29:ED:93:52:E7:0B:55:28 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/6Vlz64b1l8rmEsZ5Ke2TUucLVSg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HWME1204/hLcSq8HlQtveh7vopyIxc0F-WGA.roa Signing time: Mon 26 Aug 2024 05:18:49 +0000 ROA not before: Mon 26 Aug 2024 05:18:49 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18046 IP address blocks: 103.126.180.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HWME1204/6Vlz64b1l8rmEsZ5Ke2TUucLVSg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HWME1204/6Vlz64b1l8rmEsZ5Ke2TUucLVSg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/6Vlz64b1l8rmEsZ5Ke2TUucLVSg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4391 (0x1127) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E95973EB86F597CAE612C67929ED9352E70B5528 Validity Not Before: Aug 26 05:18:49 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=84B712ABC1E542DBDE87BBE8A7223173417E5860 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:36:5a:b7:aa:d3:4d:53:42:a9:4d:af:8b:0c: 05:05:4b:6f:a1:72:c6:cb:92:5b:42:76:de:cf:77: af:af:f3:92:21:70:bd:5d:9f:05:02:05:2c:5e:8e: 89:10:d0:01:e1:55:41:31:36:1d:91:9c:0d:5d:f3: 07:12:13:df:ed:98:7e:c8:3a:7a:a2:e6:64:14:a0: 36:6d:d0:89:1e:bf:63:d7:ef:d2:83:54:de:a8:7f: 73:06:55:ae:73:2d:ec:ca:6f:8e:86:6b:37:99:c9: f4:ac:85:bd:7d:de:42:ce:29:15:64:02:71:17:3a: c9:de:7f:d8:f0:54:3f:7c:22:f4:91:ec:5c:88:07: 9f:15:1b:fb:0b:e6:b3:fc:e8:33:7e:6e:ba:a2:0d: a4:ef:ef:66:55:26:4e:12:9b:b9:34:90:76:89:cb: c7:09:69:5e:62:a5:bb:84:b9:aa:8e:3b:ef:30:e6: 10:c7:0b:b4:bd:64:f0:3c:92:c4:ef:a0:b6:e5:c0: c6:da:57:ff:7f:9c:dd:92:9d:2a:46:49:99:c9:82: 40:37:49:e4:f2:ff:b9:64:77:29:33:52:11:50:f6: 9e:ed:4a:3c:57:4a:30:4e:43:1d:c8:ed:76:2e:fe: 43:b9:53:67:79:d7:68:88:1f:09:06:cb:ed:aa:99: df:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:B7:12:AB:C1:E5:42:DB:DE:87:BB:E8:A7:22:31:73:41:7E:58:60 X509v3 Authority Key Identifier: keyid:E9:59:73:EB:86:F5:97:CA:E6:12:C6:79:29:ED:93:52:E7:0B:55:28 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HWME1204/6Vlz64b1l8rmEsZ5Ke2TUucLVSg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/6Vlz64b1l8rmEsZ5Ke2TUucLVSg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HWME1204/hLcSq8HlQtveh7vopyIxc0F-WGA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.126.180.0/22 Signature Algorithm: sha256WithRSAEncryption 8b:f7:32:55:71:54:7b:d2:5b:96:05:c8:a5:6e:27:a5:92:7e: 19:3b:42:80:d8:31:ae:dc:63:13:46:c3:d8:5a:e1:74:f8:30: cc:7e:6b:70:54:fd:8b:92:07:c3:37:fa:92:0d:8f:79:ea:96: 4c:86:e1:62:10:4c:08:56:9b:0d:79:01:8f:95:88:5d:c7:df: 76:9f:04:f5:d5:14:54:09:53:04:00:4c:74:00:f4:2c:7f:ad: 9e:a1:e1:85:97:87:a6:43:88:7e:fb:52:6e:40:07:32:18:6e: de:70:ad:97:1f:a3:0a:a5:a0:02:49:f6:d7:bb:1b:62:9b:5e: 3f:31:29:80:79:be:c9:2f:62:6f:58:ef:c2:2b:fd:36:39:9a: ea:f0:ee:f7:c8:ad:51:c9:43:ab:20:e2:ec:0a:7a:3d:71:a3: 0d:05:f0:d1:5d:b9:de:89:5e:62:63:45:35:ed:03:39:3e:de: 07:10:28:19:fc:b4:c6:cb:35:89:d4:cc:3f:c9:37:fc:8d:7f: 43:0a:fb:91:23:1e:3d:c5:cd:e7:63:8a:1e:b8:56:62:d7:30: 26:c9:36:ac:8d:0f:aa:0d:a5:17:9e:e7:cc:84:5e:aa:13:2d: 4f:12:e6:91:bc:26:01:62:f0:76:8e:02:b3:e6:6d:e3:84:f2: fb:c5:d5:6a -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEScwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTk1 OTczRUI4NkY1OTdDQUU2MTJDNjc5MjlFRDkzNTJFNzBCNTUyODAeFw0yNDA4MjYw NTE4NDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg0QjcxMkFCQzFFNTQy REJERTg3QkJFOEE3MjIzMTczNDE3RTU4NjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDgNlq3qtNNU0KpTa+LDAUFS2+hcsbLkltCdt7Pd6+v85IhcL1d nwUCBSxejokQ0AHhVUExNh2RnA1d8wcSE9/tmH7IOnqi5mQUoDZt0Ikev2PX79KD VN6of3MGVa5zLezKb46GazeZyfSshb193kLOKRVkAnEXOsnef9jwVD98IvSR7FyI B58VG/sL5rP86DN+brqiDaTv72ZVJk4Sm7k0kHaJy8cJaV5ipbuEuaqOO+8w5hDH C7S9ZPA8ksTvoLblwMbaV/9/nN2SnSpGSZnJgkA3SeTy/7lkdykzUhFQ9p7tSjxX SjBOQx3I7XYu/kO5U2d512iIHwkGy+2qmd/zAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUhLcSq8HlQtveh7vopyIxc0F+WGAwHwYDVR0jBBgwFoAU6Vlz64b1l8rmEsZ5 Ke2TUucLVSgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSFdNRTEy MDQvNlZsejY0YjFsOHJtRXNaNUtlMlRVdWNMVlNnLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS82Vmx6NjRiMWw4cm1Fc1o1S2UyVFV1Y0xWU2cuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9IV01FMTIwNC9oTGNTcThIbFF0dmVo N3ZvcHlJeGMwRi1XR0Eucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCZ360MA0GCSqGSIb3DQEBCwUAA4IBAQCL9zJVcVR70luWBcilbielkn4ZO0KA 2DGu3GMTRsPYWuF0+DDMfmtwVP2LkgfDN/qSDY956pZMhuFiEEwIVpsNeQGPlYhd x992nwT11RRUCVMEAEx0APQsf62eoeGFl4emQ4h++1JuQAcyGG7ecK2XH6MKpaAC SfbXuxtim14/MSmAeb7JL2JvWO/CK/02OZrq8O73yK1RyUOrIOLsCno9caMNBfDR XbneiV5iY0U17QM5Pt4HECgZ/LTGyzWJ1Mw/yTf8jX9DCvuRIx49xc3nY4oeuFZi 1zAmyTasjQ+qDaUXnufMhF6qEy1PEuaRvCYBYvB2jgKz5m3jhPL7xdVq -----END CERTIFICATE-----Generated at Fri Nov 22 06:41:33 2024 by rpki-client on console-ams.rpki-client.org