$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/TGwL9ImD2NKhsNRMCAODCM8knTc.roa File: TGwL9ImD2NKhsNRMCAODCM8knTc.roa (raw, json) Hash identifier: PDsdqKC7+G8gCYqlc4Q+axDc2Xjk1ur0aQ5+DbzfeYA= Subject key identifier: 4C:6C:0B:F4:89:83:D8:D2:A1:B0:D4:4C:08:03:83:08:CF:24:9D:37 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 1776 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/TGwL9ImD2NKhsNRMCAODCM8knTc.roa Signing time: Wed 12 Feb 2025 01:36:44 +0000 ROA not before: Wed 12 Feb 2025 01:36:44 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 800 IP address blocks: 175.111.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6006 (0x1776) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Feb 12 01:36:44 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4C6C0BF48983D8D2A1B0D44C08038308CF249D37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:5d:de:8d:58:3c:df:c8:e2:91:de:0b:a5:7d: c8:f1:93:ec:75:a6:d9:22:3e:b5:67:77:7f:ce:d1: c7:b9:12:95:cb:dc:e3:ac:61:fc:7f:78:52:7a:90: dd:c0:a7:16:66:ec:e1:63:a6:65:a8:5e:e8:f5:90: b1:ad:c7:49:3a:4c:81:c6:18:9f:01:d7:ba:da:3c: 63:33:52:5f:5f:4e:20:e5:cc:d7:fe:56:88:29:46: 95:c7:34:65:b6:68:d7:71:53:39:4e:7b:d8:ee:ce: 46:61:de:40:99:0f:bf:23:40:bb:4d:70:10:3f:f9: f6:83:22:49:e8:99:55:30:ee:4a:1f:ab:91:a5:6b: f3:11:44:35:db:e7:24:dd:77:91:9e:0c:1b:fe:85: 16:9b:2f:cd:91:85:24:ce:c5:bd:f1:98:b9:77:07: dd:79:44:1c:8c:c3:0c:67:fa:2e:8f:06:d9:b4:01: 11:ea:e3:c0:95:b9:de:30:24:ea:4b:b8:23:3f:d0: cb:82:95:ea:63:bd:19:35:0b:5f:ba:e4:2d:d0:cc: dc:af:af:f8:d7:1b:d4:6b:1d:7e:d9:9e:8c:f1:96: 8f:a0:e1:31:c1:bf:3e:57:a0:1c:60:87:03:c1:0d: 04:16:32:5f:a3:86:d5:7b:7d:c0:e6:33:9b:a5:5c: 6d:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:6C:0B:F4:89:83:D8:D2:A1:B0:D4:4C:08:03:83:08:CF:24:9D:37 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/TGwL9ImD2NKhsNRMCAODCM8knTc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 175.111.239.0/24 Signature Algorithm: sha256WithRSAEncryption 87:f5:8f:a4:c1:0f:5f:d3:53:81:97:ba:6d:9b:cf:20:b9:fd: 03:e1:1f:ce:b9:40:13:d9:d3:41:6d:75:43:11:c8:e4:09:dc: cc:6a:1e:43:e6:1c:73:16:95:53:54:41:f3:7b:f8:44:73:59: 7d:99:fa:4c:95:68:ac:27:df:a4:56:53:5c:67:4f:99:6a:4a: e6:98:da:99:51:b5:f6:23:74:3c:66:be:e5:ce:55:f1:33:0c: 49:6a:bc:ae:42:74:66:b3:79:ca:30:53:64:22:73:f4:14:77: 57:b4:9b:6a:00:0b:78:24:45:a6:c3:7a:44:c9:df:6a:aa:6b: cd:24:e6:e6:0e:5a:c8:ee:27:f6:3d:6c:5b:02:44:d6:c8:97: 03:2e:5d:57:45:b1:8c:60:70:ec:7f:85:ea:9b:89:6c:a1:4e: 82:a8:32:13:4c:c1:93:01:1b:81:91:bb:2b:ab:8b:16:e7:64: e7:97:e9:81:00:c3:99:07:ca:bb:d3:e9:46:1a:d1:bc:fc:25: d2:de:ff:c1:01:e2:5c:d6:22:ff:52:e3:19:5c:3c:d1:ca:b1: 3e:25:c5:66:2d:0c:e5:49:d8:7c:dd:4c:7d:69:5c:99:85:c0: d6:9f:20:ca:a4:af:bd:e6:06:94:64:ce:2f:c6:39:12:c9:fd: 5a:2d:b2:82 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICF3YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTIw MTM2NDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDRDNkMwQkY0ODk4M0Q4 RDJBMUIwRDQ0QzA4MDM4MzA4Q0YyNDlEMzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCdXd6NWDzfyOKR3gulfcjxk+x1ptkiPrVnd3/O0ce5EpXL3OOs Yfx/eFJ6kN3ApxZm7OFjpmWoXuj1kLGtx0k6TIHGGJ8B17raPGMzUl9fTiDlzNf+ VogpRpXHNGW2aNdxUzlOe9juzkZh3kCZD78jQLtNcBA/+faDIknomVUw7kofq5Gl a/MRRDXb5yTdd5GeDBv+hRabL82RhSTOxb3xmLl3B915RByMwwxn+i6PBtm0ARHq 48CVud4wJOpLuCM/0MuClepjvRk1C1+65C3QzNyvr/jXG9RrHX7Znozxlo+g4THB vz5XoBxghwPBDQQWMl+jhtV7fcDmM5ulXG2nAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUTGwL9ImD2NKhsNRMCAODCM8knTcwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9UR3dMOUltRDJOS2hzTlJNQ0FP RENNOGtuVGMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAr2/v MA0GCSqGSIb3DQEBCwUAA4IBAQCH9Y+kwQ9f01OBl7ptm88guf0D4R/OuUAT2dNB bXVDEcjkCdzMah5D5hxzFpVTVEHze/hEc1l9mfpMlWisJ9+kVlNcZ0+ZakrmmNqZ UbX2I3Q8Zr7lzlXxMwxJaryuQnRms3nKMFNkInP0FHdXtJtqAAt4JEWmw3pEyd9q qmvNJObmDlrI7if2PWxbAkTWyJcDLl1XRbGMYHDsf4Xqm4lsoU6CqDITTMGTARuB kbsrq4sW52Tnl+mBAMOZB8q70+lGGtG8/CXS3v/BAeJc1iL/UuMZXDzRyrE+JcVm LQzlSdh83Ux9aVyZhcDWnyDKpK+95gaUZM4vxjkSyf1aLbKC -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:38 2025 by rpki-client on console.sobornost.net