$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/NOrY3Arp9l7q3ltLa21XH-r0dB8.roa File: NOrY3Arp9l7q3ltLa21XH-r0dB8.roa (raw, json) Hash identifier: t7gPGLIFW1dLXiXzcZwOVW9yk1yFpZg5iw8Qmbq2fkE= Subject key identifier: 34:EA:D8:DC:0A:E9:F6:5E:EA:DE:5B:4B:6B:6D:57:1F:EA:F4:74:1F Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 0FC9 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/NOrY3Arp9l7q3ltLa21XH-r0dB8.roa Signing time: Fri 01 Sep 2023 08:57:29 +0000 ROA not before: Fri 01 Sep 2023 08:57:29 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 17421 IP address blocks: 221.120.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 03:55:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4041 (0xfc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Sep 1 08:57:29 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=34EAD8DC0AE9F65EEADE5B4B6B6D571FEAF4741F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:39:2e:fa:c7:65:46:91:e9:c1:f9:85:10:a5: cd:86:81:98:47:8a:da:80:51:45:12:63:da:b6:7e: 54:2e:f3:a6:43:17:97:02:42:be:d5:e3:ba:82:fc: e0:c6:ca:94:fd:bf:be:f1:96:89:67:2e:4a:da:e3: 70:92:0b:77:b1:54:d8:09:76:eb:e5:cc:05:09:dd: 30:3f:5a:a7:c8:c4:b0:cf:9a:b1:25:97:8d:90:41: 74:f4:1a:3c:be:82:8b:c8:1b:ad:c0:fb:b0:49:d7: 2d:1f:1f:0e:71:f8:ba:08:23:6c:d9:e7:43:8c:d5: 11:33:83:3d:c2:c2:33:6d:92:52:c8:10:d4:ba:17: d1:6a:16:78:5e:95:71:c6:fe:cb:ea:ec:00:38:d6: cf:98:e0:07:21:bd:c0:7f:99:cd:e0:f5:68:9d:91: 76:0a:23:5a:8d:91:a0:cb:09:80:29:27:d6:b1:e6: 6c:ff:e9:95:d8:ee:14:25:3d:f2:f6:05:cf:6c:1d: 96:45:b2:6c:c6:4c:fa:35:83:86:26:f3:e8:ae:4f: bb:5a:0b:4e:a7:39:f4:85:7b:03:e0:2c:64:f2:41: 30:26:07:c0:45:02:e8:4d:43:6c:88:7c:5d:d2:1e: a4:ba:39:41:28:f9:96:bd:35:d1:09:7f:5b:42:00: d5:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:EA:D8:DC:0A:E9:F6:5E:EA:DE:5B:4B:6B:6D:57:1F:EA:F4:74:1F X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/NOrY3Arp9l7q3ltLa21XH-r0dB8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 221.120.0.0/18 Signature Algorithm: sha256WithRSAEncryption 8a:14:c4:47:39:8a:31:13:f2:c5:74:bf:be:75:d0:e3:90:5f: 91:34:2b:c4:e6:9b:56:6e:84:a9:52:32:64:9b:23:a4:ae:32: 32:20:f3:53:8d:4f:55:8e:d2:bd:2a:11:fe:f8:62:0d:83:6a: bf:60:ef:26:47:e2:bd:41:4a:b6:5c:0c:8b:ce:d6:b2:eb:8f: d9:81:4a:3c:1d:46:da:37:75:8b:7d:60:ab:ff:28:a4:24:9c: b4:1c:47:9d:57:f8:4a:84:a0:22:60:d7:1d:22:b4:99:57:5a: fc:84:ae:fd:39:03:d9:6a:43:2f:ae:02:b3:cb:14:a5:cf:62: 97:5a:1f:8b:7b:61:58:49:28:88:22:4e:f9:3f:93:6d:cf:02: c1:a4:73:3c:d6:ce:b0:e2:b1:d6:de:0c:c8:83:3a:79:bc:7b: 66:8f:d6:61:cd:40:6f:56:7f:c3:50:59:f9:07:b7:48:88:8a: 14:81:22:67:99:44:92:d4:5b:cd:18:43:d4:2a:1b:a9:3f:d7: 58:96:a9:42:66:63:9e:6b:a9:0a:cf:d5:27:56:eb:d5:1b:05: e9:2d:2b:b0:af:34:18:40:1a:7f:f9:03:f3:56:55:6b:d6:49: f1:8b:01:30:cf:ae:2a:5e:ec:9d:ff:0a:ff:75:3b:bd:42:68: 89:d8:2d:c4 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICD8kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMzA5MDEw ODU3MjlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDM0RUFEOERDMEFFOUY2 NUVFQURFNUI0QjZCNkQ1NzFGRUFGNDc0MUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCrOS76x2VGkenB+YUQpc2GgZhHitqAUUUSY9q2flQu86ZDF5cC Qr7V47qC/ODGypT9v77xlolnLkra43CSC3exVNgJduvlzAUJ3TA/WqfIxLDPmrEl l42QQXT0Gjy+govIG63A+7BJ1y0fHw5x+LoII2zZ50OM1REzgz3CwjNtklLIENS6 F9FqFnhelXHG/svq7AA41s+Y4AchvcB/mc3g9WidkXYKI1qNkaDLCYApJ9ax5mz/ 6ZXY7hQlPfL2Bc9sHZZFsmzGTPo1g4Ym8+iuT7taC06nOfSFewPgLGTyQTAmB8BF AuhNQ2yIfF3SHqS6OUEo+Za9NdEJf1tCANUnAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUNOrY3Arp9l7q3ltLa21XH+r0dB8wHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9OT3JZM0FycDlsN3EzbHRMYTIx WEgtcjBkQjgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQG3XgA MA0GCSqGSIb3DQEBCwUAA4IBAQCKFMRHOYoxE/LFdL++ddDjkF+RNCvE5ptWboSp UjJkmyOkrjIyIPNTjU9VjtK9KhH++GINg2q/YO8mR+K9QUq2XAyLztay64/ZgUo8 HUbaN3WLfWCr/yikJJy0HEedV/hKhKAiYNcdIrSZV1r8hK79OQPZakMvrgKzyxSl z2KXWh+Le2FYSSiIIk75P5NtzwLBpHM81s6w4rHW3gzIgzp5vHtmj9ZhzUBvVn/D UFn5B7dIiIoUgSJnmUSS1FvNGEPUKhupP9dYlqlCZmOea6kKz9UnVuvVGwXpLSuw rzQYQBp/+QPzVlVr1knxiwEwz64qXuyd/wr/dTu9QmiJ2C3E -----END CERTIFICATE-----Generated at Tue Jun 18 13:13:37 2024 by rpki-client on console-fra.rpki-client.org