$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/hC3FIOjlWbcQK8UO-SyG0EEvK8E.roa File: hC3FIOjlWbcQK8UO-SyG0EEvK8E.roa (raw, json) Hash identifier: CW1o6S25Q1/S6NY91LZmsW0sg2aUmSCZ589Xe3fSdik= Subject key identifier: 84:2D:C5:20:E8:E5:59:B7:10:2B:C5:0E:F9:2C:86:D0:41:2F:2B:C1 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 1747 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/hC3FIOjlWbcQK8UO-SyG0EEvK8E.roa Signing time: Wed 12 Feb 2025 01:36:33 +0000 ROA not before: Wed 12 Feb 2025 01:36:33 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 3462 IP address blocks: 210.61.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5959 (0x1747) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Feb 12 01:36:33 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=842DC520E8E559B7102BC50EF92C86D0412F2BC1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:67:b7:76:01:b9:d7:3e:45:f2:2e:7a:a5:ee: d9:d4:3a:ef:51:f7:e8:86:18:65:8f:e6:6c:d4:42: e8:32:36:a8:27:c4:5e:67:c0:cc:17:8a:e0:aa:aa: 31:63:01:2a:b9:08:2b:ce:d6:9b:23:43:0d:4c:f1: 76:fe:65:59:b7:29:fc:0a:3f:12:54:60:aa:ee:a6: a9:4c:15:c7:9f:88:7a:b8:a3:93:3c:1a:34:5d:0e: 71:ff:24:d2:2a:21:e0:98:31:3f:c5:d5:04:77:f2: f0:68:fa:f2:d9:36:7d:07:87:22:aa:d7:10:85:3f: d7:58:58:02:5a:08:5a:5c:e1:1c:ec:ec:12:c1:8f: 91:11:b9:7c:9c:74:97:af:5a:c7:6b:f4:ab:cd:6c: 6a:f0:df:91:fb:97:89:84:fc:31:45:01:56:8c:93: 98:50:62:88:a3:19:c6:f7:b7:d7:e9:0b:b3:12:46: e8:ed:d8:aa:9a:61:6d:65:d2:4d:31:fd:4a:4e:b0: 71:19:e9:b6:d0:7b:72:b1:7a:e0:a3:94:b4:a0:40: bf:51:1a:40:89:a6:5d:65:22:8b:16:92:51:ac:53: a4:72:c2:23:a1:da:f7:2e:4e:18:9b:4d:34:d9:8a: d9:49:ef:30:f8:e7:94:c9:cb:c3:5b:d3:5f:83:f9: c3:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:2D:C5:20:E8:E5:59:B7:10:2B:C5:0E:F9:2C:86:D0:41:2F:2B:C1 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/hC3FIOjlWbcQK8UO-SyG0EEvK8E.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.61.0.0/16 Signature Algorithm: sha256WithRSAEncryption be:64:ff:c0:0b:45:ad:5c:21:d3:e9:8b:99:57:7d:06:16:46: fb:f6:a0:e6:39:ee:e9:d9:51:69:e9:8b:e5:71:d2:ce:76:63: 4d:98:68:b1:5b:5e:90:53:33:6a:af:43:56:52:f8:dc:46:d8: 40:10:f8:cc:64:d4:de:ae:08:77:c0:5e:6c:1b:fd:88:91:71: e2:67:17:4d:8a:45:7d:80:e3:cd:aa:3d:61:ae:3c:d9:ab:23: ec:53:20:cd:e3:cc:60:2f:f1:25:23:3a:e4:06:f2:91:02:34: 82:af:f2:92:7f:ed:bd:0b:09:da:28:5d:3a:71:26:9d:86:67: 3d:fd:b9:d1:13:ec:79:24:62:29:8b:60:2a:2a:09:bc:7b:0f: 5f:1d:f0:ff:9a:d2:84:03:b1:1d:fb:8a:52:0e:9c:43:8a:9f: 6c:24:17:f5:93:c1:c4:bc:91:87:a3:a9:b7:69:cb:ab:dc:f1: 36:93:d9:69:d5:2d:92:0a:35:6f:3b:86:2a:33:6e:30:1c:39: b5:38:2c:57:4b:4b:65:df:02:25:1f:21:6e:ff:62:15:28:0d: 15:f2:0b:7f:6e:06:73:85:98:e8:89:69:f2:77:0b:7e:62:5a: 40:f2:84:11:3b:2d:a7:83:45:ff:be:01:0e:cd:96:7b:fc:21: a0:a7:0d:22 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICF0cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTIw MTM2MzNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg0MkRDNTIwRThFNTU5 QjcxMDJCQzUwRUY5MkM4NkQwNDEyRjJCQzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQChZ7d2AbnXPkXyLnql7tnUOu9R9+iGGGWP5mzUQugyNqgnxF5n wMwXiuCqqjFjASq5CCvO1psjQw1M8Xb+ZVm3KfwKPxJUYKrupqlMFcefiHq4o5M8 GjRdDnH/JNIqIeCYMT/F1QR38vBo+vLZNn0HhyKq1xCFP9dYWAJaCFpc4Rzs7BLB j5ERuXycdJevWsdr9KvNbGrw35H7l4mE/DFFAVaMk5hQYoijGcb3t9fpC7MSRujt 2KqaYW1l0k0x/UpOsHEZ6bbQe3KxeuCjlLSgQL9RGkCJpl1lIosWklGsU6RywiOh 2vcuThibTTTZitlJ7zD455TJy8Nb01+D+cPfAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUhC3FIOjlWbcQK8UO+SyG0EEvK8EwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9oQzNGSU9qbFdiY1FLOFVPLVN5 RzBFRXZLOEUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMA0j0w DQYJKoZIhvcNAQELBQADggEBAL5k/8ALRa1cIdPpi5lXfQYWRvv2oOY57unZUWnp i+Vx0s52Y02YaLFbXpBTM2qvQ1ZS+NxG2EAQ+Mxk1N6uCHfAXmwb/YiRceJnF02K RX2A482qPWGuPNmrI+xTIM3jzGAv8SUjOuQG8pECNIKv8pJ/7b0LCdooXTpxJp2G Zz39udET7HkkYimLYCoqCbx7D18d8P+a0oQDsR37ilIOnEOKn2wkF/WTwcS8kYej qbdpy6vc8TaT2WnVLZIKNW87hiozbjAcObU4LFdLS2XfAiUfIW7/YhUoDRXyC39u BnOFmOiJafJ3C35iWkDyhBE7LaeDRf++AQ7Nlnv8IaCnDSI= -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:38 2025 by rpki-client on console.sobornost.net