$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/8x7fhUsKKYtaaeLHYOOqMpaAH6I.roa File: 8x7fhUsKKYtaaeLHYOOqMpaAH6I.roa (raw, json) Hash identifier: bDuo3msAMNCQwI7e8vxztMzm0lsd1Mk4cafYGrpEeF8= Subject key identifier: F3:1E:DF:85:4B:0A:29:8B:5A:69:E2:C7:60:E3:AA:32:96:80:1F:A2 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 0FC7 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/8x7fhUsKKYtaaeLHYOOqMpaAH6I.roa Signing time: Fri 01 Sep 2023 08:57:29 +0000 ROA not before: Fri 01 Sep 2023 08:57:29 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 3462 IP address blocks: 61.224.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 03:55:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4039 (0xfc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Sep 1 08:57:29 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=F31EDF854B0A298B5A69E2C760E3AA3296801FA2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:c3:fb:0a:e5:90:02:d6:ce:59:4f:83:ba:39: 69:7b:73:a5:1e:46:96:16:02:64:f4:00:2f:34:00: 23:17:80:70:9a:7e:0e:aa:15:73:2d:d1:5c:7d:3d: 52:d4:17:9f:e1:f7:ba:98:6f:e0:cc:f8:5a:96:fb: 9a:e4:3e:36:ae:fa:b9:68:ba:56:d4:eb:21:48:43: 49:74:c2:51:e7:92:91:0b:8b:87:ef:98:19:b0:23: 30:fe:00:69:0d:03:1b:ab:69:5c:ac:b5:77:5c:3f: 83:51:4b:17:5c:19:77:7c:6b:b6:21:a7:f8:2a:68: d5:a5:6b:a5:7e:49:ad:c3:b6:25:c8:47:11:c9:ae: 0b:2e:a6:a2:ad:10:70:9c:7b:a7:42:f2:40:aa:2f: 4c:29:7b:87:fd:70:33:85:3f:42:17:b7:95:69:7a: 2d:f5:12:14:43:c8:68:0f:05:6f:a0:f7:a3:f0:be: a6:3a:59:08:31:3f:fa:38:2e:0a:8a:a3:d3:6d:3e: 17:2d:da:1a:e3:7e:23:00:ba:30:37:48:90:cc:42: a9:4f:ca:52:e4:f3:af:5f:8a:81:e6:74:c6:09:a4: cc:62:72:d1:94:77:a2:f4:ac:65:ad:60:1f:4b:9d: 55:1e:59:37:bb:b4:3c:fc:52:ee:bf:67:22:63:41: 94:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:1E:DF:85:4B:0A:29:8B:5A:69:E2:C7:60:E3:AA:32:96:80:1F:A2 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/8x7fhUsKKYtaaeLHYOOqMpaAH6I.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.224.0.0/14 Signature Algorithm: sha256WithRSAEncryption 96:a7:9c:f7:c2:27:62:9a:28:a0:41:8d:64:32:ee:18:e2:85: a3:6c:7c:5b:68:34:62:01:ea:b9:da:c8:fa:20:25:1c:10:db: 20:c3:72:01:fc:ab:23:2c:21:54:a3:83:95:33:7f:26:da:8b: 84:2d:4c:4c:f7:c5:2c:0c:8e:73:3d:4c:48:3f:3e:f1:d4:0b: 1b:31:fe:15:ee:1a:0a:e4:94:29:11:c3:1a:fc:f6:51:fe:7b: 5b:8f:37:43:61:9b:c3:e3:40:79:2b:cb:12:bb:00:28:f0:8d: 94:27:a0:5e:4f:90:12:3a:ab:c8:6d:49:3a:c6:dd:4c:cc:1b: 2d:e8:04:d6:cc:1e:cd:ef:9a:8b:5d:fd:02:7c:04:65:ba:55: c4:6e:a8:95:fe:0a:8c:25:fd:3f:33:80:8c:5c:9f:44:f7:23: 99:7d:eb:ad:ce:76:e3:fa:53:60:7a:c3:7e:23:d5:e0:6c:ae: c8:86:6c:3d:b9:c5:0a:a6:16:33:a8:49:5f:e5:fa:e7:8c:bf: f0:14:1e:0d:50:5a:af:c6:99:03:36:1c:a4:7c:af:6c:fe:64: c1:4d:43:f4:c7:90:3d:f0:56:a0:df:4f:c1:fd:8b:0f:19:4b: ca:55:0b:53:64:7a:63:b6:d8:68:aa:df:8d:83:fb:69:71:f2: ff:70:23:79 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICD8cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMzA5MDEw ODU3MjlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEYzMUVERjg1NEIwQTI5 OEI1QTY5RTJDNzYwRTNBQTMyOTY4MDFGQTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCw/sK5ZAC1s5ZT4O6OWl7c6UeRpYWAmT0AC80ACMXgHCafg6q FXMt0Vx9PVLUF5/h97qYb+DM+FqW+5rkPjau+rloulbU6yFIQ0l0wlHnkpELi4fv mBmwIzD+AGkNAxuraVystXdcP4NRSxdcGXd8a7Yhp/gqaNWla6V+Sa3DtiXIRxHJ rgsupqKtEHCce6dC8kCqL0wpe4f9cDOFP0IXt5Vpei31EhRDyGgPBW+g96PwvqY6 WQgxP/o4LgqKo9NtPhct2hrjfiMAujA3SJDMQqlPylLk869fioHmdMYJpMxictGU d6L0rGWtYB9LnVUeWTe7tDz8Uu6/ZyJjQZTnAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQU8x7fhUsKKYtaaeLHYOOqMpaAH6IwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC84eDdmaFVzS0tZdGFhZUxIWU9P cU1wYUFINkkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMCPeAw DQYJKoZIhvcNAQELBQADggEBAJannPfCJ2KaKKBBjWQy7hjihaNsfFtoNGIB6rna yPogJRwQ2yDDcgH8qyMsIVSjg5Uzfybai4QtTEz3xSwMjnM9TEg/PvHUCxsx/hXu GgrklCkRwxr89lH+e1uPN0Nhm8PjQHkryxK7ACjwjZQnoF5PkBI6q8htSTrG3UzM Gy3oBNbMHs3vmotd/QJ8BGW6VcRuqJX+Cowl/T8zgIxcn0T3I5l9663OduP6U2B6 w34j1eBsrsiGbD25xQqmFjOoSV/l+ueMv/AUHg1QWq/GmQM2HKR8r2z+ZMFNQ/TH kD3wVqDfT8H9iw8ZS8pVC1NkemO22Giq342D+2lx8v9wI3k= -----END CERTIFICATE-----Generated at Tue Jun 18 13:13:37 2024 by rpki-client on console-fra.rpki-client.org