$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/YYh4rBIEXXqi5FUi9QpgKa1eaEQ.roa File: YYh4rBIEXXqi5FUi9QpgKa1eaEQ.roa (raw, json) Hash identifier: 7UCvR2KnM7ecEkhJ1MoMpgEgiPUxGDXDlB+ZUV2gpyY= Subject key identifier: 61:88:78:AC:12:04:5D:7A:A2:E4:55:22:F5:0A:60:29:AD:5E:68:44 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 0F51 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/YYh4rBIEXXqi5FUi9QpgKa1eaEQ.roa Signing time: Fri 01 Sep 2023 08:56:56 +0000 ROA not before: Fri 01 Sep 2023 08:56:56 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 3462 IP address blocks: 61.220.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 03:55:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3921 (0xf51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Sep 1 08:56:56 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=618878AC12045D7AA2E45522F50A6029AD5E6844 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f3:d5:6e:42:df:81:82:a7:cd:2e:b2:62:09: 04:67:01:82:a9:64:f8:c0:01:09:bd:53:b8:ca:53: a6:00:44:d8:09:2b:f6:f9:97:71:ce:91:d2:68:3f: cb:7e:ee:15:ed:64:aa:fd:a8:23:c0:ac:1b:f1:1d: 30:14:a6:cf:24:72:05:ee:46:99:c6:64:24:2d:30: b6:ea:c8:aa:90:45:5c:cc:f0:f2:c9:3a:fc:f4:0c: c8:1a:38:ae:3a:1d:97:1f:56:61:93:04:5d:cb:72: 13:2f:1a:79:73:cc:a0:1d:c6:e2:db:06:f6:0d:86: 1d:61:d1:ae:6a:df:09:cc:39:26:1e:1d:6f:fc:72: 59:49:84:ad:a4:a4:df:67:34:4a:01:f9:6d:37:b7: 2b:46:15:ff:aa:24:32:64:85:8d:c4:7c:0c:5e:ee: 5e:15:03:63:24:97:bc:4a:e9:00:8e:e1:a3:da:81: 1c:a3:34:03:88:00:49:34:6d:b0:03:12:cb:96:9a: 27:1a:fe:ea:4e:53:1c:34:a5:97:09:a6:35:69:8a: 02:4e:5a:19:93:3b:b9:a6:b0:55:98:46:ad:64:38: 56:be:30:06:4c:9e:73:de:46:2c:1d:97:41:f1:fd: 7f:25:bc:49:eb:be:03:c6:33:6a:bd:dd:21:34:47: 3a:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:88:78:AC:12:04:5D:7A:A2:E4:55:22:F5:0A:60:29:AD:5E:68:44 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/YYh4rBIEXXqi5FUi9QpgKa1eaEQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.220.0.0/14 Signature Algorithm: sha256WithRSAEncryption 0f:cd:22:98:d2:4c:b5:d5:b2:ea:1c:66:b0:d6:55:af:11:04: 69:73:cf:80:ce:35:df:39:3e:96:ea:ae:8f:49:10:05:dd:31: 0b:48:63:a7:b5:00:c0:d5:92:6d:2b:a5:75:78:79:4b:ec:24: f6:28:be:e2:9d:da:be:e8:0f:bc:cb:cc:67:f9:37:8c:11:c6: 90:d9:c8:8f:27:ad:87:ea:8c:6c:f0:19:68:55:3a:12:44:b6: 90:ef:80:2e:d5:5f:47:6b:e9:3e:c5:95:04:c7:42:f6:58:39: 69:2a:b5:b9:6c:98:2a:c9:7d:d7:7a:1e:11:7f:19:c0:95:fb: f8:9a:a6:fb:01:56:3c:32:bf:9e:37:6d:08:d8:64:4a:d9:27: b1:07:82:08:96:c7:93:28:90:0d:ed:14:03:15:e4:52:dc:bc: e6:1d:73:43:29:66:14:53:89:5b:19:86:a2:d1:ec:10:98:a0: 30:52:40:2c:a5:ce:77:58:27:1b:5f:12:2a:b6:73:e4:22:5e: 18:69:9a:c3:27:4a:f5:04:e0:e3:18:f0:45:5b:6e:35:fa:58: 36:c7:11:0c:89:cf:0e:1c:cd:a8:f0:a7:30:c5:f2:5f:a8:18: 3f:f9:56:f2:56:48:2d:43:27:6c:12:22:8f:02:c8:d3:74:e9: b7:79:7a:09 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICD1EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMzA5MDEw ODU2NTZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDYxODg3OEFDMTIwNDVE N0FBMkU0NTUyMkY1MEE2MDI5QUQ1RTY4NDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCx89VuQt+BgqfNLrJiCQRnAYKpZPjAAQm9U7jKU6YARNgJK/b5 l3HOkdJoP8t+7hXtZKr9qCPArBvxHTAUps8kcgXuRpnGZCQtMLbqyKqQRVzM8PLJ Ovz0DMgaOK46HZcfVmGTBF3LchMvGnlzzKAdxuLbBvYNhh1h0a5q3wnMOSYeHW/8 cllJhK2kpN9nNEoB+W03tytGFf+qJDJkhY3EfAxe7l4VA2Mkl7xK6QCO4aPagRyj NAOIAEk0bbADEsuWmica/upOUxw0pZcJpjVpigJOWhmTO7mmsFWYRq1kOFa+MAZM nnPeRiwdl0Hx/X8lvEnrvgPGM2q93SE0Rzq7AgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUYYh4rBIEXXqi5FUi9QpgKa1eaEQwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9ZWWg0ckJJRVhYcWk1RlVpOVFw Z0thMWVhRVEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMCPdww DQYJKoZIhvcNAQELBQADggEBAA/NIpjSTLXVsuocZrDWVa8RBGlzz4DONd85Ppbq ro9JEAXdMQtIY6e1AMDVkm0rpXV4eUvsJPYovuKd2r7oD7zLzGf5N4wRxpDZyI8n rYfqjGzwGWhVOhJEtpDvgC7VX0dr6T7FlQTHQvZYOWkqtblsmCrJfdd6HhF/GcCV +/iapvsBVjwyv543bQjYZErZJ7EHggiWx5MokA3tFAMV5FLcvOYdc0MpZhRTiVsZ hqLR7BCYoDBSQCylzndYJxtfEiq2c+QiXhhpmsMnSvUE4OMY8EVbbjX6WDbHEQyJ zw4czajwpzDF8l+oGD/5VvJWSC1DJ2wSIo8CyNN06bd5egk= -----END CERTIFICATE-----Generated at Tue Jun 18 12:54:03 2024 by rpki-client on console-ams.rpki-client.org