$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/HeJwZbTKXzN9ueA__VMV7y-GlwM.roa File: HeJwZbTKXzN9ueA__VMV7y-GlwM.roa (raw, json) Hash identifier: Zn0QNqz6gTxhAwTUfVPTCJwHKccXcTLl0QgPuI9w0MA= Subject key identifier: 1D:E2:70:65:B4:CA:5F:33:7D:B9:E0:3F:FD:53:15:EF:2F:86:97:03 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 0FA6 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/HeJwZbTKXzN9ueA__VMV7y-GlwM.roa Signing time: Fri 01 Sep 2023 08:57:20 +0000 ROA not before: Fri 01 Sep 2023 08:57:20 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 20940 IP address blocks: 203.69.141.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 13:38:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4006 (0xfa6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Sep 1 08:57:20 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=1DE27065B4CA5F337DB9E03FFD5315EF2F869703 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:d7:8e:87:2b:79:27:c7:6b:c2:63:47:d4:a9: d6:44:5e:cd:27:4a:92:30:37:93:a7:55:04:65:04: 52:43:8e:3a:1b:7e:af:23:dc:0d:5a:d5:68:6c:4e: 9a:95:d2:96:e2:03:06:30:13:27:81:58:47:ed:70: 59:66:05:33:63:2a:ce:49:52:7a:09:b2:d9:f1:47: 18:00:11:26:e4:d8:f2:87:9b:01:45:cb:30:5a:48: 9d:c4:d5:bc:16:49:98:fb:5f:32:50:17:a8:e9:fe: fa:30:1e:1a:bb:43:d9:53:b7:f5:59:43:ce:b6:d6: 0a:6e:8a:a6:f0:a5:7d:e9:ca:77:25:86:c0:9c:08: 86:94:e6:71:93:a7:fc:f3:f6:36:10:1b:8b:e0:41: d0:0d:5f:60:a9:31:86:fe:1b:1b:84:ef:49:57:9b: 65:78:58:11:64:e5:43:cf:22:d4:a4:ec:2b:b0:35: f1:c2:21:7d:16:4c:c1:d2:e9:2c:c0:d4:e2:2c:bc: 4f:cf:c8:94:96:31:d8:8a:3f:43:78:f5:f7:ad:b2: 2d:66:98:7a:e9:14:9c:fa:be:26:eb:16:04:e5:16: 13:5b:39:c5:f4:21:fa:d4:d2:3f:d1:63:ca:a3:e7: f1:60:15:85:cd:94:ef:d1:58:69:c6:7c:9e:41:94: e1:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:E2:70:65:B4:CA:5F:33:7D:B9:E0:3F:FD:53:15:EF:2F:86:97:03 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/HeJwZbTKXzN9ueA__VMV7y-GlwM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.69.141.0/24 Signature Algorithm: sha256WithRSAEncryption 1d:b5:74:44:7b:d9:df:97:2b:c4:a3:98:23:62:9d:45:bd:82: 0c:d7:0d:74:a1:0d:95:18:92:fb:db:93:0f:ca:27:23:45:ca: 09:73:04:62:06:ab:1b:79:93:92:ed:aa:5c:66:cd:0f:0f:36: 51:b3:74:08:34:96:d4:30:29:09:2e:cc:e7:de:68:ac:53:e1: 57:78:c4:26:9b:dd:00:30:21:14:4b:95:da:e2:64:80:e3:d5: c0:b2:5f:7f:9e:84:ba:22:f1:43:6c:13:f2:10:f1:88:a4:e5: 8b:1b:5f:8a:b9:da:f0:b8:03:c6:28:1c:73:da:ef:0c:39:27: 15:6e:7b:82:0c:e6:5e:ca:f1:0c:17:66:bd:08:dd:ea:33:3a: 53:d5:0a:42:2b:14:ea:9f:ed:d8:58:8a:c2:b9:b2:74:ca:a9: a8:ea:18:e4:5e:42:a2:7f:81:4b:23:c4:c7:92:43:18:8b:68: 71:1c:c0:c4:6a:25:de:88:06:c4:43:ca:63:77:a9:af:51:07: db:8c:70:a6:3d:92:98:44:cf:f9:e4:d0:9f:3f:85:8e:f6:55: 77:31:94:6f:36:e6:96:cb:eb:5a:c7:94:09:7b:ae:4f:c4:75: 8a:f4:d6:91:ef:39:24:b2:68:62:b1:2e:a9:91:8a:bb:73:b7: 63:d2:20:53 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICD6YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMzA5MDEw ODU3MjBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDFERTI3MDY1QjRDQTVG MzM3REI5RTAzRkZENTMxNUVGMkY4Njk3MDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCu146HK3knx2vCY0fUqdZEXs0nSpIwN5OnVQRlBFJDjjobfq8j 3A1a1WhsTpqV0pbiAwYwEyeBWEftcFlmBTNjKs5JUnoJstnxRxgAESbk2PKHmwFF yzBaSJ3E1bwWSZj7XzJQF6jp/vowHhq7Q9lTt/VZQ8621gpuiqbwpX3pynclhsCc CIaU5nGTp/zz9jYQG4vgQdANX2CpMYb+GxuE70lXm2V4WBFk5UPPItSk7CuwNfHC IX0WTMHS6SzA1OIsvE/PyJSWMdiKP0N49fetsi1mmHrpFJz6vibrFgTlFhNbOcX0 IfrU0j/RY8qj5/FgFYXNlO/RWGnGfJ5BlOEhAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUHeJwZbTKXzN9ueA//VMV7y+GlwMwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9IZUp3WmJUS1h6Tjl1ZUFfX1ZN Vjd5LUdsd00ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy0WN MA0GCSqGSIb3DQEBCwUAA4IBAQAdtXREe9nflyvEo5gjYp1FvYIM1w10oQ2VGJL7 25MPyicjRcoJcwRiBqsbeZOS7apcZs0PDzZRs3QINJbUMCkJLszn3misU+FXeMQm m90AMCEUS5Xa4mSA49XAsl9/noS6IvFDbBPyEPGIpOWLG1+KudrwuAPGKBxz2u8M OScVbnuCDOZeyvEMF2a9CN3qMzpT1QpCKxTqn+3YWIrCubJ0yqmo6hjkXkKif4FL I8THkkMYi2hxHMDEaiXeiAbEQ8pjd6mvUQfbjHCmPZKYRM/55NCfP4WO9lV3MZRv NuaWy+tax5QJe65PxHWK9NaR7zkksmhisS6pkYq7c7dj0iBT -----END CERTIFICATE-----Generated at Sun Jun 2 09:37:09 2024 by rpki-client on console-ams.rpki-client.org