$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHINENET/HLpWhGoEmGpBIlJUjq4dTAerOpk.roa File: HLpWhGoEmGpBIlJUjq4dTAerOpk.roa (raw, json) Hash identifier: MwB/+c5WWFXcBMzaqdDlJAjxT3SPA9njwdxq1pqFvMc= Subject key identifier: 1C:BA:56:84:6A:04:98:6A:41:22:52:54:8E:AE:1D:4C:07:AB:3A:99 Certificate issuer: /CN=45542320685E62421C114DBA65B8F5705A774845 Certificate serial: 01A8 Authority key identifier: 45:54:23:20:68:5E:62:42:1C:11:4D:BA:65:B8:F5:70:5A:77:48:45 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RVQjIGheYkIcEU26Zbj1cFp3SEU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINENET/HLpWhGoEmGpBIlJUjq4dTAerOpk.roa Signing time: Mon 10 Feb 2025 14:30:15 +0000 ROA not before: Mon 10 Feb 2025 14:30:15 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 150770 IP address blocks: 2400:fe60::/32 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINENET/RVQjIGheYkIcEU26Zbj1cFp3SEU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINENET/RVQjIGheYkIcEU26Zbj1cFp3SEU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RVQjIGheYkIcEU26Zbj1cFp3SEU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 28 Apr 2025 22:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 424 (0x1a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=45542320685E62421C114DBA65B8F5705A774845 Validity Not Before: Feb 10 14:30:15 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1CBA56846A04986A412252548EAE1D4C07AB3A99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:86:b8:d6:cf:36:d7:96:36:e4:9e:42:20:f5: 7b:d5:80:ef:63:89:50:f0:2c:4e:ca:b8:f6:20:45: 37:91:90:51:b6:17:45:d8:19:b7:16:4f:1e:c9:e8: 68:77:62:5a:25:79:cf:fd:ed:78:9b:aa:40:97:9e: 55:0c:02:35:fd:c7:d7:14:df:c5:dd:c5:af:53:93: a5:4d:cb:3e:fb:c5:79:1f:ec:23:a9:cc:81:61:24: 6c:26:2d:bb:f4:df:32:99:39:3e:27:74:51:ad:6a: 6b:ba:bf:7c:6f:cd:4c:2d:a8:e6:a6:f3:09:1e:64: 10:d0:3b:a4:18:d4:18:92:61:8d:c7:9b:4d:b9:02: c1:50:73:e5:47:89:01:8a:5a:ca:ab:39:14:57:5a: 4a:ef:ea:46:0d:c0:73:bc:29:dc:7c:de:b6:52:91: 23:40:bd:63:7c:2c:18:ca:1f:06:cd:b1:e3:41:fa: 96:d8:04:9a:7a:5f:e7:1c:5c:0d:df:25:7a:80:53: 5b:6c:db:5d:b0:ff:da:9d:60:48:40:95:67:6a:bd: c2:54:44:57:7c:65:4e:57:eb:33:6b:23:fb:65:80: 5a:79:9b:eb:1e:c2:74:37:f2:d2:a7:84:97:66:1f: cb:e0:87:04:54:a9:54:57:41:2f:2a:08:e4:1f:c3: a7:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:BA:56:84:6A:04:98:6A:41:22:52:54:8E:AE:1D:4C:07:AB:3A:99 X509v3 Authority Key Identifier: keyid:45:54:23:20:68:5E:62:42:1C:11:4D:BA:65:B8:F5:70:5A:77:48:45 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINENET/RVQjIGheYkIcEU26Zbj1cFp3SEU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RVQjIGheYkIcEU26Zbj1cFp3SEU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHINENET/HLpWhGoEmGpBIlJUjq4dTAerOpk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2400:fe60::/32 Signature Algorithm: sha256WithRSAEncryption 55:65:cf:6a:0b:5d:1e:77:84:c7:b7:eb:e1:bf:f8:c5:5a:20: 97:6d:d2:48:f6:0c:63:47:e0:fb:98:52:3e:72:b9:d1:5f:e9: 58:16:49:76:19:0f:03:52:89:5b:22:36:fc:e1:d7:70:ce:52: 94:61:5f:87:98:9b:1e:e5:0a:5d:c2:95:ac:0d:c5:b4:74:a7: e6:0a:72:83:7a:ed:be:ee:e3:6e:3a:d5:cb:4a:16:92:ce:06: 9c:01:4a:03:b4:3d:9c:b3:11:0b:ab:a1:62:f7:12:8d:aa:35: f3:9d:f8:b0:90:96:47:58:d4:59:8b:26:29:d9:43:5d:61:48: 00:31:7c:c1:e4:72:6e:67:93:74:64:ff:0c:06:95:6f:28:40: 59:6a:51:83:66:27:02:2e:d6:15:06:32:05:79:77:a3:f2:cb: c1:6d:e1:cc:f7:b3:53:7d:53:75:8a:71:76:cc:9b:28:24:6b: 8f:04:09:0c:02:90:16:e0:c2:b2:8f:b4:a8:4f:95:06:a5:b2: 1e:1f:1d:24:ee:ed:39:c0:13:74:73:d9:be:91:27:f3:96:7b: c4:a1:5e:c8:e7:52:43:18:66:fc:6c:ca:c9:0b:69:40:d2:05: ab:fa:30:1c:86:84:f4:e5:34:0b:5d:15:d2:65:ed:36:0f:d8: 38:51:0c:4d -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICAagwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDU1 NDIzMjA2ODVFNjI0MjFDMTE0REJBNjVCOEY1NzA1QTc3NDg0NTAeFw0yNTAyMTAx NDMwMTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDFDQkE1Njg0NkEwNDk4 NkE0MTIyNTI1NDhFQUUxRDRDMDdBQjNBOTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqhrjWzzbXljbknkIg9XvVgO9jiVDwLE7KuPYgRTeRkFG2F0XY GbcWTx7J6Gh3Ylolec/97XibqkCXnlUMAjX9x9cU38Xdxa9Tk6VNyz77xXkf7COp zIFhJGwmLbv03zKZOT4ndFGtamu6v3xvzUwtqOam8wkeZBDQO6QY1BiSYY3Hm025 AsFQc+VHiQGKWsqrORRXWkrv6kYNwHO8Kdx83rZSkSNAvWN8LBjKHwbNseNB+pbY BJp6X+ccXA3fJXqAU1ts212w/9qdYEhAlWdqvcJURFd8ZU5X6zNrI/tlgFp5m+se wnQ38tKnhJdmH8vghwRUqVRXQS8qCOQfw6fFAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQUHLpWhGoEmGpBIlJUjq4dTAerOpkwHwYDVR0jBBgwFoAURVQjIGheYkIcEU26 Zbj1cFp3SEUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hJTkVO RVQvUlZRaklHaGVZa0ljRVUyNlpiajFjRnAzU0VVLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9SVlFqSUdoZVlrSWNFVTI2WmJqMWNGcDNTRVUuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSElORU5FVC9ITHBXaEdvRW1HcEJJ bEpVanE0ZFRBZXJPcGsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAH AwUAJAD+YDANBgkqhkiG9w0BAQsFAAOCAQEAVWXPagtdHneEx7fr4b/4xVogl23S SPYMY0fg+5hSPnK50V/pWBZJdhkPA1KJWyI2/OHXcM5SlGFfh5ibHuUKXcKVrA3F tHSn5gpyg3rtvu7jbjrVy0oWks4GnAFKA7Q9nLMRC6uhYvcSjao18534sJCWR1jU WYsmKdlDXWFIADF8weRybmeTdGT/DAaVbyhAWWpRg2YnAi7WFQYyBXl3o/LLwW3h zPezU31TdYpxdsybKCRrjwQJDAKQFuDCso+0qE+VBqWyHh8dJO7tOcATdHPZvpEn 85Z7xKFeyOdSQxhm/GzKyQtpQNIFq/owHIaE9OU0C10V0mXtNg/YOFEMTQ== -----END CERTIFICATE-----Generated at Mon Apr 28 20:12:43 2025 by rpki-client on console.sobornost.net