$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/8oHF3GTmkOSPhbhkX4CNHemDq3s.roa File: 8oHF3GTmkOSPhbhkX4CNHemDq3s.roa (raw, json) Hash identifier: smiLZ6X8yYxaoCUedv+dqT5Mv3DbLPc1SgSc4+OiXX4= Subject key identifier: F2:81:C5:DC:64:E6:90:E4:8F:85:B8:64:5F:80:8D:1D:E9:83:AB:7B Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 0F53 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/8oHF3GTmkOSPhbhkX4CNHemDq3s.roa Signing time: Fri 01 Sep 2023 08:56:56 +0000 ROA not before: Fri 01 Sep 2023 08:56:56 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 20940 IP address blocks: 2001:b034:700:580::/64 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 03:55:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3923 (0xf53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Sep 1 08:56:56 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=F281C5DC64E690E48F85B8645F808D1DE983AB7B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:9c:ec:2f:d7:ad:eb:cf:2d:f4:37:05:8c:06: 26:3e:9a:f3:da:90:a4:20:20:df:98:dd:72:25:ff: f5:6d:bd:60:0f:2f:ed:72:ea:dd:f9:fe:9f:93:eb: 83:ab:2b:92:71:d4:7d:d6:88:15:09:d5:a1:56:fc: e1:cf:9b:89:3d:9c:49:bb:0b:a7:8a:94:c6:46:fd: 64:05:bb:a1:11:77:e3:ce:1c:e2:49:af:e0:89:89: 60:f7:72:92:bc:a1:0e:c5:be:1c:fb:8b:8f:1f:0a: 9a:cc:fa:93:a1:6c:2e:bb:bc:5a:99:09:d1:e8:bf: 34:d5:e9:cd:20:99:b8:82:9b:e2:fd:ca:25:f2:6f: 19:1a:7a:04:6e:ba:13:05:ea:58:e3:b5:20:2d:9a: 9d:f2:9f:f0:61:8e:46:b5:b6:58:d1:63:9e:82:6a: 85:c0:b1:6a:0c:c6:37:6a:9c:6e:28:14:8d:69:81: 2d:e5:b8:48:9f:68:59:82:8a:aa:88:3a:78:f2:a1: fa:32:52:77:74:52:60:e1:58:73:93:70:98:47:3b: b9:09:33:36:0f:fe:61:82:39:9d:91:ac:c1:f2:61: 4d:e1:c6:5f:33:e7:22:e9:2d:32:b4:89:f8:27:42: 3d:03:9c:c3:c5:68:63:c2:d2:4d:66:d9:e5:18:39: b2:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:81:C5:DC:64:E6:90:E4:8F:85:B8:64:5F:80:8D:1D:E9:83:AB:7B X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/8oHF3GTmkOSPhbhkX4CNHemDq3s.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:b034:700:580::/64 Signature Algorithm: sha256WithRSAEncryption 15:eb:0f:06:f2:f5:57:4b:6a:f4:9f:69:67:89:67:ec:0a:96: 0f:a0:2a:f9:29:15:1b:35:78:06:f3:58:62:d9:3b:ab:06:c1: 01:ba:97:57:45:4b:3c:47:4c:a7:fa:c9:4d:2a:9a:56:f9:81: dd:9c:8d:24:8f:7e:8c:84:46:94:a6:ca:8d:6b:49:57:fc:0a: c5:cb:5b:97:f8:f4:88:c1:c0:34:3c:d4:6a:85:46:50:8c:e7: 7c:a1:57:f7:b7:88:ea:30:0e:a2:5c:b6:a4:ce:20:5a:b5:75: f1:9d:b0:53:d0:cb:a5:48:03:8f:1f:9b:8f:81:37:bc:f9:d4: d1:ca:12:fe:6c:31:70:98:ac:99:54:7e:36:58:15:a8:01:5d: cb:28:75:f7:a8:b5:bd:4d:ec:42:67:01:47:3f:d7:d1:18:a6: 05:08:ef:37:76:3e:9e:d6:6e:d0:19:53:72:c3:6d:d7:92:6f: 35:15:98:ad:a7:a3:de:9f:92:1b:0f:b6:b4:68:ad:0a:09:94: 96:42:26:ed:da:ff:30:e6:27:0f:7f:bf:83:3a:75:3c:f3:99: e1:d6:73:af:6d:9c:91:f2:f7:72:8f:13:71:d1:77:85:e2:4a: 0e:6a:1a:08:b5:e6:91:f0:9c:5f:bc:52:fe:0c:89:b1:50:6e: 35:00:8a:a1 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICD1MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMzA5MDEw ODU2NTZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEYyODFDNURDNjRFNjkw RTQ4Rjg1Qjg2NDVGODA4RDFERTk4M0FCN0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDnnOwv163rzy30NwWMBiY+mvPakKQgIN+Y3XIl//VtvWAPL+1y 6t35/p+T64OrK5Jx1H3WiBUJ1aFW/OHPm4k9nEm7C6eKlMZG/WQFu6ERd+POHOJJ r+CJiWD3cpK8oQ7Fvhz7i48fCprM+pOhbC67vFqZCdHovzTV6c0gmbiCm+L9yiXy bxkaegRuuhMF6ljjtSAtmp3yn/Bhjka1tljRY56CaoXAsWoMxjdqnG4oFI1pgS3l uEifaFmCiqqIOnjyofoyUnd0UmDhWHOTcJhHO7kJMzYP/mGCOZ2RrMHyYU3hxl8z 5yLpLTK0ifgnQj0DnMPFaGPC0k1m2eUYObLbAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQU8oHF3GTmkOSPhbhkX4CNHemDq3swHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC84b0hGM0dUbWtPU1BoYmhrWDRD TkhlbURxM3Mucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCQGCCsGAQUFBwEHAQH/BBUwEzARBAIAAjALAwkAIAGw NAcABYAwDQYJKoZIhvcNAQELBQADggEBABXrDwby9VdLavSfaWeJZ+wKlg+gKvkp FRs1eAbzWGLZO6sGwQG6l1dFSzxHTKf6yU0qmlb5gd2cjSSPfoyERpSmyo1rSVf8 CsXLW5f49IjBwDQ81GqFRlCM53yhV/e3iOowDqJctqTOIFq1dfGdsFPQy6VIA48f m4+BN7z51NHKEv5sMXCYrJlUfjZYFagBXcsodfeotb1N7EJnAUc/19EYpgUI7zd2 Pp7WbtAZU3LDbdeSbzUVmK2no96fkhsPtrRorQoJlJZCJu3a/zDmJw9/v4M6dTzz meHWc69tnJHy93KPE3HRd4XiSg5qGgi15pHwnF+8Uv4MibFQbjUAiqE= -----END CERTIFICATE-----Generated at Tue Jun 18 13:13:37 2024 by rpki-client on console-fra.rpki-client.org