$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/lwwhPmyq6gLB1al-NCHZ5kj5DZA.roa File: lwwhPmyq6gLB1al-NCHZ5kj5DZA.roa (raw, json) Hash identifier: lAOd/wDQ1QQBtnwbVppbRdEzFmgqO7buHCxlr8LBCBM= Subject key identifier: 97:0C:21:3E:6C:AA:EA:02:C1:D5:A9:7E:34:21:D9:E6:48:F9:0D:90 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 17A1 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/lwwhPmyq6gLB1al-NCHZ5kj5DZA.roa Signing time: Wed 12 Feb 2025 01:36:54 +0000 ROA not before: Wed 12 Feb 2025 01:36:54 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 3462 IP address blocks: 36.224.0.0/12 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6049 (0x17a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Feb 12 01:36:54 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=970C213E6CAAEA02C1D5A97E3421D9E648F90D90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:b2:e4:f4:3b:74:63:cd:99:58:d4:fc:db:3d: ed:93:d5:2c:50:2f:ae:3f:7b:04:4d:7b:0a:9b:33: d4:4e:ed:db:74:f5:1d:d4:a0:b0:61:3c:32:ca:62: c5:c9:fa:8f:39:bc:a1:f1:d9:4d:36:08:f0:53:e2: d0:8a:0c:e2:e3:04:ec:00:d4:51:1e:09:34:94:d2: b9:fc:bb:ff:9e:79:a1:61:dc:de:1e:0b:2c:ed:ec: 71:da:d8:e4:03:90:6f:4f:62:7c:94:07:33:e5:86: 97:dd:30:70:bb:35:80:24:f5:40:0c:55:f7:5e:16: 05:5e:d4:b1:f6:77:56:3d:87:6a:ba:b9:b1:87:21: aa:e3:d6:4a:61:13:d1:9e:14:8d:25:15:b0:d1:06: 57:05:92:00:23:37:1f:2c:08:29:64:b4:c4:cc:ce: 0b:f3:a4:28:3b:cd:2d:27:10:33:55:5a:9c:11:18: e6:85:a8:d1:1f:44:4d:6e:35:ff:e8:b6:a8:85:56: 56:ef:4c:f3:0c:1e:72:6f:b6:ff:e1:fc:94:d1:31: 9f:49:ec:f1:5a:95:cc:fc:3d:97:e7:67:01:72:ba: 01:86:0f:0f:ff:fa:f4:37:b5:83:9b:52:c7:6e:be: 99:5c:67:e5:c0:59:91:d6:67:1f:e0:7a:95:c5:13: f1:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:0C:21:3E:6C:AA:EA:02:C1:D5:A9:7E:34:21:D9:E6:48:F9:0D:90 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/lwwhPmyq6gLB1al-NCHZ5kj5DZA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 36.224.0.0/12 Signature Algorithm: sha256WithRSAEncryption 59:f7:89:32:40:7c:4c:78:7a:52:99:fb:58:cc:6b:03:15:74: 40:63:58:0e:69:32:aa:e4:2e:d5:77:d3:e6:5f:84:c5:99:1c: c7:09:bf:0f:ee:38:38:51:14:84:3f:5d:8e:55:22:fe:d4:c5: e0:11:4e:d4:a4:4e:5e:b7:d3:e1:55:0d:f1:53:b1:a8:cf:57: be:b4:1c:f9:2e:ee:ab:26:8a:89:9b:4b:e8:f3:b2:cc:28:86: a4:28:1c:93:09:02:37:00:a5:08:3c:f0:44:6d:b8:d6:77:a6: dd:95:d6:8f:c2:36:bf:61:a5:8b:6e:9b:36:36:6d:33:2a:68: d0:f6:5e:e0:b5:eb:ac:16:5e:08:c1:ea:9b:74:0b:e0:dc:4c: e4:dc:06:c9:75:c2:f8:19:f9:53:d3:4c:52:c9:81:46:b2:6e: 8e:c3:b2:14:09:d6:96:7f:ef:65:9c:d6:d8:c9:31:17:34:27: e2:9b:28:dc:dc:c3:2e:94:05:79:35:eb:97:28:d7:a4:2d:ad: e8:d8:1b:a6:9b:9c:f4:ee:71:0e:28:e1:0a:3c:b4:c3:1b:26: c1:ff:5b:3d:9a:c0:76:53:ed:e9:c7:35:ff:db:64:ff:71:d7: d3:f3:39:90:5a:8d:1c:08:d1:49:6a:15:2d:ae:e7:f1:84:a4: 8d:16:c8:b5 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICF6EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNTAyMTIw MTM2NTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDk3MEMyMTNFNkNBQUVB MDJDMUQ1QTk3RTM0MjFEOUU2NDhGOTBEOTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqsuT0O3RjzZlY1PzbPe2T1SxQL64/ewRNewqbM9RO7dt09R3U oLBhPDLKYsXJ+o85vKHx2U02CPBT4tCKDOLjBOwA1FEeCTSU0rn8u/+eeaFh3N4e Cyzt7HHa2OQDkG9PYnyUBzPlhpfdMHC7NYAk9UAMVfdeFgVe1LH2d1Y9h2q6ubGH Iarj1kphE9GeFI0lFbDRBlcFkgAjNx8sCClktMTMzgvzpCg7zS0nEDNVWpwRGOaF qNEfRE1uNf/otqiFVlbvTPMMHnJvtv/h/JTRMZ9J7PFalcz8PZfnZwFyugGGDw// +vQ3tYObUsduvplcZ+XAWZHWZx/gepXFE/ETAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUlwwhPmyq6gLB1al+NCHZ5kj5DZAwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9sd3doUG15cTZnTEIxYWwtTkNI WjVrajVEWkEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMEJOAw DQYJKoZIhvcNAQELBQADggEBAFn3iTJAfEx4elKZ+1jMawMVdEBjWA5pMqrkLtV3 0+ZfhMWZHMcJvw/uODhRFIQ/XY5VIv7UxeARTtSkTl630+FVDfFTsajPV760HPku 7qsmiombS+jzsswohqQoHJMJAjcApQg88ERtuNZ3pt2V1o/CNr9hpYtumzY2bTMq aND2XuC166wWXgjB6pt0C+DcTOTcBsl1wvgZ+VPTTFLJgUaybo7DshQJ1pZ/72Wc 1tjJMRc0J+KbKNzcwy6UBXk165co16QtrejYG6abnPTucQ4o4Qo8tMMbJsH/Wz2a wHZT7enHNf/bZP9x19PzOZBajRwI0UlqFS2u5/GEpI0WyLU= -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:38 2025 by rpki-client on console.sobornost.net