$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/5Rlz-CobmgZ3hfcLcmf6bZh-uSE.roa File: 5Rlz-CobmgZ3hfcLcmf6bZh-uSE.roa (raw, json) Hash identifier: KcE8MeWAgZFzvVKVgVlx9BI7hIVYCCfETQZmcTgIyCM= Subject key identifier: E5:19:73:F8:2A:1B:9A:06:77:85:F7:0B:72:67:FA:6D:98:7E:B9:21 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 0F44 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/5Rlz-CobmgZ3hfcLcmf6bZh-uSE.roa Signing time: Fri 01 Sep 2023 08:56:49 +0000 ROA not before: Fri 01 Sep 2023 08:56:49 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 3462 IP address blocks: 202.39.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 03:55:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3908 (0xf44) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Sep 1 08:56:49 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=E51973F82A1B9A067785F70B7267FA6D987EB921 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:d5:65:3d:f0:bc:14:79:c8:5c:51:c0:13:81: 94:28:3e:71:1f:07:5f:62:9f:60:05:4a:18:c2:a9: d8:81:6c:c0:ca:df:3b:31:9f:f0:47:1e:04:ad:75: ae:7c:f8:f0:ba:25:b6:50:43:d5:7b:45:10:97:cf: 1a:62:12:39:6f:a9:5e:d2:5a:e8:5c:81:f2:6a:41: a9:c9:0d:cb:c6:c7:9b:b9:d1:84:53:6a:28:7c:bc: 8e:ce:0b:db:d0:41:f6:10:e1:7a:e2:c3:64:2d:fa: d8:73:1a:2f:73:ef:e3:c9:2e:ca:92:d3:56:25:bd: 05:89:6e:2e:1c:1e:b0:31:c0:89:e5:00:c2:31:71: fa:59:c8:1b:f9:01:de:bc:cb:51:fa:76:93:1f:2e: 4f:50:31:51:df:66:5e:e1:13:73:a0:27:0d:e1:96: 4e:bf:85:fd:a8:4a:fe:31:02:60:b6:de:2f:58:94: f7:e0:f2:07:ea:1e:fe:bb:4f:24:36:7a:37:5f:11: b2:63:a0:6c:c2:d7:6e:fa:79:e1:a6:17:fc:fc:24: 0b:d8:ac:38:1a:53:d3:41:40:c4:b9:95:a3:24:75: 2b:f6:d9:71:9e:71:d2:a2:c2:d7:fc:51:e4:e1:f0: dc:91:52:08:1f:ac:98:0c:16:b6:ec:f9:b8:a4:c6: c2:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:19:73:F8:2A:1B:9A:06:77:85:F7:0B:72:67:FA:6D:98:7E:B9:21 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/5Rlz-CobmgZ3hfcLcmf6bZh-uSE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.39.64.0/19 Signature Algorithm: sha256WithRSAEncryption ae:db:fc:ed:07:01:e9:3e:15:9c:45:d9:5c:cb:70:83:37:c1: 12:8c:58:90:5b:c1:51:7c:20:74:d2:c6:29:36:0f:bb:7b:f3: 46:c1:67:23:45:df:bb:af:d4:57:74:65:fb:a5:07:23:f9:96: ac:c5:60:00:63:f2:96:cb:c7:22:13:9b:9e:1d:49:12:e0:57: 23:14:3d:19:e5:3a:50:fa:3f:80:ce:4d:7e:af:f7:1a:0e:17: 92:07:f6:bd:5f:c9:5e:28:f9:a1:07:1c:d6:40:db:a9:33:77: ad:ef:3c:3e:c4:f4:f3:a9:b0:f7:d0:9a:c6:6c:05:95:ef:c7: ef:c8:19:bf:e2:49:1b:e5:52:b6:4f:a9:ea:d5:d3:82:2e:63: bd:21:63:58:7b:2f:2d:b4:fa:91:c1:0c:9a:77:f2:64:ed:63: 06:a3:e1:c8:46:8f:b0:6f:a4:38:98:92:6a:39:90:b2:68:c8: 45:84:44:e0:4a:10:ad:36:1c:20:f5:5d:c7:f0:65:15:aa:ff: a1:2f:1f:ad:f3:cd:72:d5:f7:9d:2b:be:71:68:41:98:0b:ac: 37:f9:77:13:9e:5b:06:9f:9f:7f:31:c6:b6:40:10:cd:1b:77: 2f:ba:f3:f3:9b:03:a2:0f:3f:c3:28:de:47:7e:31:28:6e:e3: 90:e3:54:36 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICD0QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMzA5MDEw ODU2NDlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEU1MTk3M0Y4MkExQjlB MDY3Nzg1RjcwQjcyNjdGQTZEOTg3RUI5MjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCo1WU98LwUechcUcATgZQoPnEfB19in2AFShjCqdiBbMDK3zsx n/BHHgStda58+PC6JbZQQ9V7RRCXzxpiEjlvqV7SWuhcgfJqQanJDcvGx5u50YRT aih8vI7OC9vQQfYQ4Xriw2Qt+thzGi9z7+PJLsqS01YlvQWJbi4cHrAxwInlAMIx cfpZyBv5Ad68y1H6dpMfLk9QMVHfZl7hE3OgJw3hlk6/hf2oSv4xAmC23i9YlPfg 8gfqHv67TyQ2ejdfEbJjoGzC1276eeGmF/z8JAvYrDgaU9NBQMS5laMkdSv22XGe cdKiwtf8UeTh8NyRUggfrJgMFrbs+bikxsIXAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU5Rlz+CobmgZ3hfcLcmf6bZh+uSEwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC81Umx6LUNvYm1nWjNoZmNMY21m NmJaaC11U0Uucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFyidA MA0GCSqGSIb3DQEBCwUAA4IBAQCu2/ztBwHpPhWcRdlcy3CDN8ESjFiQW8FRfCB0 0sYpNg+7e/NGwWcjRd+7r9RXdGX7pQcj+ZasxWAAY/KWy8ciE5ueHUkS4FcjFD0Z 5TpQ+j+Azk1+r/caDheSB/a9X8leKPmhBxzWQNupM3et7zw+xPTzqbD30JrGbAWV 78fvyBm/4kkb5VK2T6nq1dOCLmO9IWNYey8ttPqRwQyad/Jk7WMGo+HIRo+wb6Q4 mJJqOZCyaMhFhETgShCtNhwg9V3H8GUVqv+hLx+t881y1fedK75xaEGYC6w3+XcT nlsGn59/Mca2QBDNG3cvuvPzmwOiDz/DKN5HfjEobuOQ41Q2 -----END CERTIFICATE-----Generated at Tue Jun 18 13:13:37 2024 by rpki-client on console-fra.rpki-client.org