$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/1c2WgRXa7kPuFUvad4bF9Hht4XQ.roa File: 1c2WgRXa7kPuFUvad4bF9Hht4XQ.roa (raw, json) Hash identifier: qvoMwc/npR4J0oyvzzCmgCZtR0vJuTo4qr2j03OjR9A= Subject key identifier: D5:CD:96:81:15:DA:EE:43:EE:15:4B:DA:77:86:C5:F4:78:6D:E1:74 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 0F95 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/1c2WgRXa7kPuFUvad4bF9Hht4XQ.roa Signing time: Fri 01 Sep 2023 08:57:15 +0000 ROA not before: Fri 01 Sep 2023 08:57:15 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 3462 IP address blocks: 118.160.0.0/13 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 03:55:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3989 (0xf95) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Sep 1 08:57:15 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=D5CD968115DAEE43EE154BDA7786C5F4786DE174 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:c2:70:ed:94:4a:bb:f3:41:b2:67:3e:bc:65: d9:33:f3:b2:5c:d8:04:bb:16:25:05:fb:0b:f2:16: d2:1c:03:56:9c:d5:59:4f:c3:2c:77:45:61:df:95: 1f:87:f8:39:46:77:15:25:ef:a6:f8:03:15:2c:4a: db:68:c7:2f:b0:e7:b8:68:22:ac:72:4d:f0:f8:b4: a4:2d:8e:23:5d:dc:4e:08:20:39:7f:3b:ad:0a:24: eb:14:94:fa:c8:ee:27:c9:ef:27:72:b0:43:67:34: f5:b7:43:c2:e1:d9:15:c0:f4:c6:65:c2:55:94:12: 17:4d:6d:ab:20:4e:e8:0d:b4:bd:72:cd:6f:bb:73: 41:b1:f5:8d:9b:cd:d5:da:7a:57:f5:1b:17:25:a4: 15:99:8a:1c:0f:44:5c:b9:90:22:34:9f:22:3b:1b: 21:db:8f:0d:ce:0c:80:ba:0a:3d:8c:9c:a7:b2:62: 69:20:5a:59:c7:52:1c:82:90:b6:34:10:27:e8:17: 37:a2:fa:10:9a:99:a2:a8:25:f1:cc:0f:1b:98:75: 4c:15:5b:56:8d:b1:47:12:05:5f:23:5c:4d:b0:ea: 9c:db:a2:d0:b8:50:79:6b:dc:a3:24:21:91:b7:5c: 0a:f9:f7:1a:3c:98:ff:a4:3b:8f:58:fb:97:a7:66: 91:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:CD:96:81:15:DA:EE:43:EE:15:4B:DA:77:86:C5:F4:78:6D:E1:74 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/1c2WgRXa7kPuFUvad4bF9Hht4XQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.160.0.0/13 Signature Algorithm: sha256WithRSAEncryption a2:e5:fa:f2:7b:6f:12:10:fa:b4:c9:06:53:1f:20:aa:ef:64: 00:eb:f3:56:0a:be:96:49:dc:45:37:14:e2:97:72:31:33:90: bf:d5:23:4f:39:a8:30:8a:53:6a:77:2b:8b:7d:37:df:aa:4b: 45:b3:98:07:7b:56:37:09:9c:45:d8:ba:27:83:fb:04:65:6e: 62:9e:e6:54:de:5a:7c:71:d9:02:f3:ca:12:64:50:7f:e8:90: f1:8e:47:ca:c7:53:a6:ed:99:b7:8b:1c:f5:09:5a:78:11:3a: 4a:2d:51:dd:51:b1:1f:31:85:4c:21:30:c4:c6:20:75:1f:61: 7e:51:f4:d4:f7:8f:61:bc:48:76:5a:e2:fb:56:f8:4d:a5:f2: ee:b8:3c:3f:44:af:9e:b8:36:18:77:f8:ea:5d:73:3b:79:fa: e6:2d:83:ad:97:1c:bb:3e:f5:fe:5f:fe:18:58:87:79:93:be: 78:19:e1:c2:4d:f7:5e:3b:6a:e3:ad:70:e6:89:dd:26:bd:cd: 2f:ae:bc:f9:8b:9d:00:e8:42:63:6a:de:43:d8:cb:fd:ef:d8: 1b:77:b9:28:bb:f3:df:31:c3:13:d6:59:50:e9:09:27:a4:03: 1f:c9:a0:8a:8f:a2:18:8c:3a:e2:77:3e:95:f9:bb:49:24:a0: f3:41:bd:ea -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICD5UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMzA5MDEw ODU3MTVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEQ1Q0Q5NjgxMTVEQUVF NDNFRTE1NEJEQTc3ODZDNUY0Nzg2REUxNzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEwnDtlEq780GyZz68Zdkz87Jc2AS7FiUF+wvyFtIcA1ac1VlP wyx3RWHflR+H+DlGdxUl76b4AxUsSttoxy+w57hoIqxyTfD4tKQtjiNd3E4IIDl/ O60KJOsUlPrI7ifJ7ydysENnNPW3Q8Lh2RXA9MZlwlWUEhdNbasgTugNtL1yzW+7 c0Gx9Y2bzdXaelf1GxclpBWZihwPRFy5kCI0nyI7GyHbjw3ODIC6Cj2MnKeyYmkg WlnHUhyCkLY0ECfoFzei+hCamaKoJfHMDxuYdUwVW1aNsUcSBV8jXE2w6pzbotC4 UHlr3KMkIZG3XAr59xo8mP+kO49Y+5enZpFbAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQU1c2WgRXa7kPuFUvad4bF9Hht4XQwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC8xYzJXZ1JYYTdrUHVGVXZhZDRi RjlIaHQ0WFEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMDdqAw DQYJKoZIhvcNAQELBQADggEBAKLl+vJ7bxIQ+rTJBlMfIKrvZADr81YKvpZJ3EU3 FOKXcjEzkL/VI085qDCKU2p3K4t9N9+qS0WzmAd7VjcJnEXYuieD+wRlbmKe5lTe Wnxx2QLzyhJkUH/okPGOR8rHU6btmbeLHPUJWngROkotUd1RsR8xhUwhMMTGIHUf YX5R9NT3j2G8SHZa4vtW+E2l8u64PD9Er564Nhh3+Opdczt5+uYtg62XHLs+9f5f /hhYh3mTvngZ4cJN9147auOtcOaJ3Sa9zS+uvPmLnQDoQmNq3kPYy/3v2Bt3uSi7 898xwxPWWVDpCSekAx/JoIqPohiMOuJ3PpX5u0kkoPNBveo= -----END CERTIFICATE-----Generated at Tue Jun 18 12:54:03 2024 by rpki-client on console-ams.rpki-client.org