$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/Uon3EaAiTdzcBPbe_68WlLetTf0.roa File: Uon3EaAiTdzcBPbe_68WlLetTf0.roa (raw, json) Hash identifier: gBSHESaYNuB64JblmA8VaoBa6qPsfJlJQz63GGQrcYI= Subject key identifier: 52:89:F7:11:A0:22:4D:DC:DC:04:F6:DE:FF:AF:16:94:B7:AD:4D:FD Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 0F68 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Uon3EaAiTdzcBPbe_68WlLetTf0.roa Signing time: Fri 01 Sep 2023 08:57:02 +0000 ROA not before: Fri 01 Sep 2023 08:57:02 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 10126 IP address blocks: 220.128.56.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 03:55:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3944 (0xf68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Sep 1 08:57:02 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=5289F711A0224DDCDC04F6DEFFAF1694B7AD4DFD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:76:62:f3:8b:98:b2:23:e4:b6:5c:9b:01:4a: 67:bf:15:53:ee:c9:10:35:35:5b:79:fc:68:c7:6c: e4:ae:95:06:b9:5d:2d:50:17:80:29:2b:03:fb:83: 5d:d9:ed:e1:6a:22:32:d8:ba:f7:0a:c5:7a:ea:2e: 5d:15:b3:66:91:e9:77:3c:99:b1:63:05:f4:87:a9: 54:2c:fb:c4:51:ef:7d:c8:8e:7d:be:36:e4:5a:62: d7:cd:0c:9a:98:a5:fc:74:0f:cd:dc:24:34:76:6b: 2c:57:1e:d5:9b:4d:e6:96:18:4a:30:f9:1d:1a:a1: 87:2b:64:30:d1:f4:7a:b6:cc:a0:dd:03:7b:ab:fa: e4:41:23:96:f6:3a:a4:3a:a2:59:04:05:2c:1e:ba: 7b:fd:f0:2f:ef:28:f0:66:34:10:79:e2:e3:27:fa: 86:33:d8:fc:f6:c3:23:c8:f2:85:a3:74:67:d4:90: e2:1f:1f:dd:1e:78:f8:ab:12:c8:69:4c:6d:61:0b: 85:51:53:93:64:a1:34:41:96:83:7e:b2:97:af:7a: 8d:99:b6:ec:b8:39:39:f4:13:8b:76:f8:16:ac:53: ca:4b:8f:0a:f9:fc:97:07:af:0d:d5:d6:d5:7e:01: 30:93:45:32:f1:0e:ec:f8:c5:2f:e3:f3:8f:2c:b0: 50:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:89:F7:11:A0:22:4D:DC:DC:04:F6:DE:FF:AF:16:94:B7:AD:4D:FD X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Uon3EaAiTdzcBPbe_68WlLetTf0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 220.128.56.0/21 Signature Algorithm: sha256WithRSAEncryption 76:6f:12:44:a8:65:2b:78:b7:90:8e:06:fb:fe:fd:60:6d:aa: 1f:88:ab:49:13:47:4a:73:0a:4c:04:b5:d2:ec:c6:83:44:b3: 70:05:eb:2e:5c:99:79:d7:0e:67:a8:1c:f9:0e:78:b1:04:db: 36:93:d4:0f:28:6d:ad:27:aa:c8:0b:8b:22:5d:d7:cc:0b:7d: ca:14:25:96:a1:c0:88:c8:5d:87:23:ea:e7:98:64:d4:6c:08: d9:54:78:97:cf:02:5b:1b:32:1b:37:35:11:c3:66:d7:83:04: 4f:0c:cb:0b:33:f1:7c:eb:88:d7:a8:01:78:d6:bd:95:7b:96: ae:4f:37:65:0c:9a:41:0b:66:1a:28:d0:01:4f:2f:00:4e:b1: ea:83:8e:63:8b:8a:f3:81:87:1f:65:64:7b:ad:ff:8c:df:35: c1:19:be:fe:dd:c4:32:59:37:55:5a:f7:50:cf:3e:85:a2:97: a0:46:24:23:c8:64:6a:19:05:4d:18:c6:5d:ff:32:56:20:2f: 40:42:0f:ca:e3:1e:7e:c4:87:76:f5:87:4d:a1:ea:54:b1:c7: c5:81:21:64:b6:90:ae:c6:35:37:b3:c1:cd:7f:d7:ba:82:10: 96:97:b2:ff:c7:8b:81:03:14:0f:56:a2:81:38:b6:91:07:a7: 36:d1:f7:51 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICD2gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMzA5MDEw ODU3MDJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDUyODlGNzExQTAyMjRE RENEQzA0RjZERUZGQUYxNjk0QjdBRDRERkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCgdmLzi5iyI+S2XJsBSme/FVPuyRA1NVt5/GjHbOSulQa5XS1Q F4ApKwP7g13Z7eFqIjLYuvcKxXrqLl0Vs2aR6Xc8mbFjBfSHqVQs+8RR733Ijn2+ NuRaYtfNDJqYpfx0D83cJDR2ayxXHtWbTeaWGEow+R0aoYcrZDDR9Hq2zKDdA3ur +uRBI5b2OqQ6olkEBSweunv98C/vKPBmNBB54uMn+oYz2Pz2wyPI8oWjdGfUkOIf H90eePirEshpTG1hC4VRU5NkoTRBloN+speveo2Ztuy4OTn0E4t2+BasU8pLjwr5 /JcHrw3V1tV+ATCTRTLxDuz4xS/j848ssFDJAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUUon3EaAiTdzcBPbe/68WlLetTf0wHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9Vb24zRWFBaVRkemNCUGJlXzY4 V2xMZXRUZjAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQD3IA4 MA0GCSqGSIb3DQEBCwUAA4IBAQB2bxJEqGUreLeQjgb7/v1gbaofiKtJE0dKcwpM BLXS7MaDRLNwBesuXJl51w5nqBz5DnixBNs2k9QPKG2tJ6rIC4siXdfMC33KFCWW ocCIyF2HI+rnmGTUbAjZVHiXzwJbGzIbNzURw2bXgwRPDMsLM/F864jXqAF41r2V e5auTzdlDJpBC2YaKNABTy8ATrHqg45ji4rzgYcfZWR7rf+M3zXBGb7+3cQyWTdV WvdQzz6FopegRiQjyGRqGQVNGMZd/zJWIC9AQg/K4x5+xId29YdNoepUscfFgSFk tpCuxjU3s8HNf9e6ghCWl7L/x4uBAxQPVqKBOLaRB6c20fdR -----END CERTIFICATE-----Generated at Tue Jun 18 12:54:03 2024 by rpki-client on console-ams.rpki-client.org