$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/6qW6gJ190bGj8yvTYfpbQqRSQNw.roa File: 6qW6gJ190bGj8yvTYfpbQqRSQNw.roa (raw, json) Hash identifier: ZXfjbU71W2MaZBHSL3fNjxJxWECEkLcQbWnfRDO6hwA= Subject key identifier: EA:A5:BA:80:9D:7D:D1:B1:A3:F3:2B:D3:61:FA:5B:42:A4:52:40:DC Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 0F75 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/6qW6gJ190bGj8yvTYfpbQqRSQNw.roa Signing time: Fri 01 Sep 2023 08:57:06 +0000 ROA not before: Fri 01 Sep 2023 08:57:06 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 3462 IP address blocks: 2001:b400:e9f0::/44 maxlen: 44 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 03:55:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3957 (0xf75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Sep 1 08:57:06 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=EAA5BA809D7DD1B1A3F32BD361FA5B42A45240DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:9e:03:e2:56:01:39:6c:8c:5e:12:20:82:04: e2:3d:14:e7:b3:d6:ca:9d:25:02:4e:3e:f7:ae:73: de:8e:4f:9c:b9:ff:61:9b:65:8e:2b:61:0d:69:63: d9:fc:97:90:d3:0e:8b:40:40:0d:de:da:f5:3a:2b: 47:59:2a:a1:e3:27:e0:e8:fc:44:90:e9:f4:54:2d: 42:a8:c2:25:88:15:46:f1:6f:02:5a:22:b1:92:95: 03:e2:9d:3f:49:b6:55:3b:9a:c7:94:d7:74:83:20: 89:64:5e:9d:f3:71:6c:a6:0b:18:11:17:ef:ca:8a: 64:27:cc:e3:38:52:65:77:18:27:cd:11:fb:51:a0: 20:7f:5b:bf:b0:01:f7:a5:2d:a9:66:1d:32:bd:07: f2:1e:db:da:42:1f:b0:0d:89:98:87:69:01:fd:d3: 6f:9c:e5:8b:3a:df:ec:b2:c2:81:4b:40:3f:74:06: a8:3a:b3:a2:6e:c6:cd:31:8a:19:74:db:37:62:9d: ae:f6:aa:c1:e3:ca:10:ff:dd:5c:1f:9c:d6:93:1d: b1:64:b3:31:28:91:a8:ba:88:15:39:89:9a:84:6f: 9b:37:8b:a1:d6:5f:94:55:25:78:a9:34:61:8f:17: 50:f5:89:f2:e5:de:fd:3c:26:88:32:7c:ac:d3:ce: 6d:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:A5:BA:80:9D:7D:D1:B1:A3:F3:2B:D3:61:FA:5B:42:A4:52:40:DC X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/6qW6gJ190bGj8yvTYfpbQqRSQNw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:b400:e9f0::/44 Signature Algorithm: sha256WithRSAEncryption 2c:fe:28:34:50:33:38:77:b7:0a:41:3e:20:cb:ae:6e:1c:77: 1d:c5:6f:31:2b:e7:63:b8:46:79:b5:f8:b9:c0:67:a5:39:13: 9e:bd:b0:4a:2b:d4:ea:a6:70:94:f6:69:02:8f:3d:53:36:30: 59:0f:b8:b2:f1:c9:14:b2:01:1b:e5:d1:a8:7c:5b:6a:7f:43: f1:b9:eb:55:c0:15:be:5b:4e:66:4a:16:9c:80:c3:6f:88:b3: b7:6b:b3:94:bc:40:fb:a9:65:c1:ec:55:e5:f3:11:2a:e7:28: f7:3d:1b:c7:3d:84:19:e8:81:12:1f:d6:75:12:22:10:57:86: 6f:fd:59:f4:2f:7e:17:06:d9:8f:fc:1f:fc:c4:ea:b8:f7:79: e3:29:6f:18:f2:29:ef:fd:d3:cb:1b:f2:74:d7:85:27:de:57: 8a:d7:de:c7:a3:82:ce:57:e1:41:17:f3:1b:ab:f7:4b:ad:6a: a6:55:b0:96:c5:5c:6f:64:8d:16:c1:b1:74:c0:ed:3f:14:af: 0f:ef:44:3e:f1:c8:ad:d0:8a:a9:ba:72:09:d5:c3:0b:66:a2: 8e:c2:6c:a6:54:95:7c:93:59:9b:14:c9:29:35:9f:4b:89:29: 1c:b4:21:e5:cc:d3:a1:a6:ba:45:c6:1c:fb:ac:50:f6:9b:e5: fc:45:78:cb -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICD3UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMzA5MDEw ODU3MDZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEVBQTVCQTgwOUQ3REQx QjFBM0YzMkJEMzYxRkE1QjQyQTQ1MjQwREMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNngPiVgE5bIxeEiCCBOI9FOez1sqdJQJOPveuc96OT5y5/2Gb ZY4rYQ1pY9n8l5DTDotAQA3e2vU6K0dZKqHjJ+Do/ESQ6fRULUKowiWIFUbxbwJa IrGSlQPinT9JtlU7mseU13SDIIlkXp3zcWymCxgRF+/KimQnzOM4UmV3GCfNEftR oCB/W7+wAfelLalmHTK9B/Ie29pCH7ANiZiHaQH902+c5Ys63+yywoFLQD90Bqg6 s6Juxs0xihl02zdina72qsHjyhD/3VwfnNaTHbFkszEokai6iBU5iZqEb5s3i6HW X5RVJXipNGGPF1D1ifLl3v08JogyfKzTzm1/AgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQU6qW6gJ190bGj8yvTYfpbQqRSQNwwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC82cVc2Z0oxOTBiR2o4eXZUWWZw YlFxUlNRTncucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcEIAG0 AOnwMA0GCSqGSIb3DQEBCwUAA4IBAQAs/ig0UDM4d7cKQT4gy65uHHcdxW8xK+dj uEZ5tfi5wGelOROevbBKK9TqpnCU9mkCjz1TNjBZD7iy8ckUsgEb5dGofFtqf0Px uetVwBW+W05mShacgMNviLO3a7OUvED7qWXB7FXl8xEq5yj3PRvHPYQZ6IESH9Z1 EiIQV4Zv/Vn0L34XBtmP/B/8xOq493njKW8Y8inv/dPLG/J014Un3leK197Ho4LO V+FBF/Mbq/dLrWqmVbCWxVxvZI0WwbF0wO0/FK8P70Q+8cit0IqpunIJ1cMLZqKO wmymVJV8k1mbFMkpNZ9LiSkctCHlzNOhprpFxhz7rFD2m+X8RXjL -----END CERTIFICATE-----Generated at Tue Jun 18 12:54:03 2024 by rpki-client on console-ams.rpki-client.org