$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/hpL3ZtIGVoo_FHSmUAYlC787dMU.roa File: hpL3ZtIGVoo_FHSmUAYlC787dMU.roa (raw, json) Hash identifier: hybdDFD6bQpJPYX+tKBTCyV6FVJmTgwP22bXWIjVsxM= Subject key identifier: 86:92:F7:66:D2:06:56:8A:3F:14:74:A6:50:06:25:0B:BF:3B:74:C5 Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Certificate serial: 12D2 Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/hpL3ZtIGVoo_FHSmUAYlC787dMU.roa Signing time: Mon 26 Aug 2024 05:32:35 +0000 ROA not before: Mon 26 Aug 2024 05:32:35 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131644 IP address blocks: 119.75.240.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4818 (0x12d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Validity Not Before: Aug 26 05:32:35 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8692F766D206568A3F1474A65006250BBF3B74C5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:f8:0d:23:e4:9d:4f:2e:75:91:5f:cf:55:82: 69:71:8d:d5:8c:ed:8f:4f:ed:61:d7:0c:df:c4:c6: 13:95:ad:7d:60:49:62:a9:c1:bb:37:c3:ac:d6:3f: e0:a0:fb:d4:84:56:ff:68:09:27:7a:d2:86:0d:a4: 6b:9f:ab:f2:f2:4f:9d:66:d1:2e:db:b8:97:32:97: 5a:de:0f:34:58:7b:24:89:ed:08:60:88:73:c8:f0: 6b:eb:1d:03:29:28:eb:21:9b:53:61:ed:37:7d:6b: 8a:41:e6:ae:81:e0:9f:05:d9:05:05:b5:12:7b:04: 57:6b:7c:f1:9e:77:ba:9e:08:ad:b6:f6:c8:c8:ef: e1:60:3e:46:9c:10:b1:eb:09:9f:cf:f9:a1:44:4b: 20:d5:7a:07:64:a7:78:66:82:ef:db:ab:21:96:f8: cc:75:63:0b:23:3a:3e:07:15:7d:72:16:84:a0:7f: 75:7c:24:c2:66:69:f5:c9:39:b2:a1:9b:73:6c:88: 85:6f:8c:6b:71:d0:d0:cc:36:82:65:f8:46:bd:d2: bf:b3:fd:09:89:53:90:9e:e5:b8:0a:05:c0:5f:1e: e7:ca:41:ec:55:52:bc:b0:9f:39:fd:5e:a8:dc:79: af:20:50:2e:70:69:41:03:d5:5f:c6:10:2e:b5:d3: 20:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:92:F7:66:D2:06:56:8A:3F:14:74:A6:50:06:25:0B:BF:3B:74:C5 X509v3 Authority Key Identifier: keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/hpL3ZtIGVoo_FHSmUAYlC787dMU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 119.75.240.0/22 Signature Algorithm: sha256WithRSAEncryption 0f:f1:37:4d:f1:bb:eb:3b:13:21:16:f4:cc:eb:0e:5e:83:b6: b1:40:54:18:b7:17:8a:6f:41:5a:36:d8:66:83:91:2b:d3:33: fa:0b:7e:f7:cf:cb:4d:4f:be:9d:b5:25:fe:d8:3a:b7:60:ed: 69:ef:13:89:37:f1:46:db:fb:9b:22:4b:93:12:15:43:28:d9: a5:32:d7:60:0e:cf:34:12:1e:b6:1c:04:90:be:f0:a9:fb:df: 8b:8b:a8:63:b8:aa:3a:ca:59:42:09:a6:7d:b2:ba:65:ac:c1: c5:ea:30:0f:54:54:61:1f:07:ee:c3:44:27:21:19:d1:1c:43: 48:54:b6:27:21:62:5c:cc:22:07:12:9c:2a:8c:b8:fa:dc:f8: 85:69:d6:73:b7:7e:51:01:92:fc:c8:80:7e:86:ec:53:d5:af: 17:f0:37:79:bf:ad:62:f4:7c:cc:72:9e:4f:0f:b6:20:98:b4: b0:d6:02:40:7b:a8:eb:67:c0:48:08:0d:7b:15:db:23:73:9b: 12:0f:21:eb:df:31:1e:03:96:3a:7e:01:6c:56:63:86:90:61: 23:27:ef:d4:bb:be:04:65:3e:3e:55:86:33:04:4b:aa:95:1f: 98:31:ee:de:03:58:5a:a5:03:cd:33:66:b3:08:f6:b3:27:76: 0a:61:d6:e7 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICEtIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yNDA4MjYw NTMyMzVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg2OTJGNzY2RDIwNjU2 OEEzRjE0NzRBNjUwMDYyNTBCQkYzQjc0QzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDA+A0j5J1PLnWRX89VgmlxjdWM7Y9P7WHXDN/ExhOVrX1gSWKp wbs3w6zWP+Cg+9SEVv9oCSd60oYNpGufq/LyT51m0S7buJcyl1reDzRYeySJ7Qhg iHPI8GvrHQMpKOshm1Nh7Td9a4pB5q6B4J8F2QUFtRJ7BFdrfPGed7qeCK229sjI 7+FgPkacELHrCZ/P+aFESyDVegdkp3hmgu/bqyGW+Mx1YwsjOj4HFX1yFoSgf3V8 JMJmafXJObKhm3NsiIVvjGtx0NDMNoJl+Ea90r+z/QmJU5Ce5bgKBcBfHufKQexV Urywnzn9Xqjcea8gUC5waUED1V/GEC610yAPAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUhpL3ZtIGVoo/FHSmUAYlC787dMUwHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0 p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy9ocEwzWnRJR1Zvb19GSFNtVUFZ bEM3ODdkTVUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCd0vw MA0GCSqGSIb3DQEBCwUAA4IBAQAP8TdN8bvrOxMhFvTM6w5eg7axQFQYtxeKb0Fa Nthmg5Er0zP6C373z8tNT76dtSX+2Dq3YO1p7xOJN/FG2/ubIkuTEhVDKNmlMtdg Ds80Eh62HASQvvCp+9+Li6hjuKo6yllCCaZ9srplrMHF6jAPVFRhHwfuw0QnIRnR HENIVLYnIWJczCIHEpwqjLj63PiFadZzt35RAZL8yIB+huxT1a8X8Dd5v61i9HzM cp5PD7YgmLSw1gJAe6jrZ8BICA17Fdsjc5sSDyHr3zEeA5Y6fgFsVmOGkGEjJ+/U u74EZT4+VYYzBEuqlR+YMe7eA1hapQPNM2azCPazJ3YKYdbn -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:53 2024 by rpki-client on console-fra.rpki-client.org