$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/ZWI42ayxft0X3eRezqdTPekzbHg.roa File: ZWI42ayxft0X3eRezqdTPekzbHg.roa (raw, json) Hash identifier: HANpCe9gaH5j49shVsy4+j/MEV0ldaZdzD//iU3xnCk= Subject key identifier: 65:62:38:D9:AC:B1:7E:DD:17:DD:E4:5E:CE:A7:53:3D:E9:33:6C:78 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 0F84 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ZWI42ayxft0X3eRezqdTPekzbHg.roa Signing time: Fri 01 Sep 2023 08:57:10 +0000 ROA not before: Fri 01 Sep 2023 08:57:10 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 7500 IP address blocks: 202.39.32.0/28 maxlen: 28 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 03:55:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3972 (0xf84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Sep 1 08:57:10 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=656238D9ACB17EDD17DDE45ECEA7533DE9336C78 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:e8:20:3c:49:9f:65:95:d3:9d:fc:97:61:54: a5:00:ea:57:01:d9:f0:68:ab:bf:82:5f:bd:60:80: 87:9d:64:72:cc:d6:ab:8b:d4:55:e1:fa:a9:fb:ad: 1b:4f:02:d3:b5:5a:fa:00:9b:0d:62:08:58:7f:b5: ea:fb:e3:33:82:ae:f1:65:a8:64:27:af:04:a4:f8: 07:64:78:dc:a4:2e:9c:4a:3e:4d:6b:44:e7:94:55: af:8a:00:4d:79:e0:2f:5b:bb:75:dc:c6:ed:4e:60: d7:50:2e:4f:f2:ba:58:6a:41:76:45:6a:ac:61:c4: 66:de:a3:14:7f:30:48:1e:0d:d8:ae:a7:42:40:66: e0:d3:95:43:8e:7e:84:a9:93:8a:96:34:6e:aa:83: 36:0e:70:d0:fb:52:cc:5a:e4:5a:2c:1a:ad:54:c5: fb:aa:34:21:22:d2:c4:51:e5:84:70:c2:19:9a:95: d8:88:06:eb:30:b6:7f:50:7a:84:fe:bd:ff:0a:f4: 19:b6:f6:67:7c:24:f5:df:dd:de:e6:16:e0:0f:6c: dd:52:84:46:29:52:10:ba:63:7d:1a:f1:6a:ac:47: e1:e7:b0:a9:a9:d3:6d:12:38:ff:b7:b1:ee:7e:a2: 6c:69:90:ae:2f:ec:f3:c3:95:ec:77:fc:81:f3:60: d7:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:62:38:D9:AC:B1:7E:DD:17:DD:E4:5E:CE:A7:53:3D:E9:33:6C:78 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ZWI42ayxft0X3eRezqdTPekzbHg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.39.32.0/28 Signature Algorithm: sha256WithRSAEncryption c7:aa:ff:5f:5d:0b:cc:4a:f5:9d:04:0e:ca:7d:f5:33:7b:f3: 93:77:26:31:88:f1:68:d8:52:27:44:e1:50:b9:dd:40:7d:6e: c9:65:8d:13:bc:bb:9b:c8:6e:66:87:6f:1a:c5:21:a0:bc:84: 78:58:22:74:f6:40:f2:59:48:5f:08:09:61:b8:49:21:02:2c: b1:0b:7f:12:fb:a4:b1:24:20:27:3a:88:7a:b2:1d:e9:cc:92: 38:58:44:2d:7b:66:cb:f0:bb:6b:c1:3a:8f:dd:85:43:b4:37: e0:e6:98:59:60:e9:96:da:59:bf:92:03:e4:23:ed:7f:8e:f0: 27:fd:d3:0c:aa:79:65:bb:3f:1f:7f:88:e3:ef:d8:a2:ab:88: 49:2f:8e:63:f8:6a:98:08:8f:61:ce:40:7f:f0:2e:94:d4:43: 0f:ac:11:cd:4e:f4:dc:be:a0:96:45:0d:3b:6b:12:61:d0:9b: 47:c8:79:2f:12:fe:4f:32:1c:ef:e0:25:74:21:76:2c:1d:71: 5d:d7:3c:86:dd:dc:67:f9:79:3e:6e:85:c9:e7:7e:2c:0f:96: fc:af:91:b2:b1:24:c5:28:f6:d0:50:6d:39:39:6d:ad:21:a2: 5d:36:03:de:4c:df:24:6d:32:e5:ac:75:8e:90:7f:20:71:81: 8a:6f:f4:5b -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICD4QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMzA5MDEw ODU3MTBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDY1NjIzOEQ5QUNCMTdF REQxN0RERTQ1RUNFQTc1MzNERTkzMzZDNzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDE6CA8SZ9lldOd/JdhVKUA6lcB2fBoq7+CX71ggIedZHLM1quL 1FXh+qn7rRtPAtO1WvoAmw1iCFh/ter74zOCrvFlqGQnrwSk+AdkeNykLpxKPk1r ROeUVa+KAE154C9bu3Xcxu1OYNdQLk/yulhqQXZFaqxhxGbeoxR/MEgeDdiup0JA ZuDTlUOOfoSpk4qWNG6qgzYOcND7Usxa5FosGq1UxfuqNCEi0sRR5YRwwhmaldiI Buswtn9QeoT+vf8K9Bm29md8JPXf3d7mFuAPbN1ShEYpUhC6Y30a8WqsR+HnsKmp 020SOP+3se5+omxpkK4v7PPDlex3/IHzYNfjAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUZWI42ayxft0X3eRezqdTPekzbHgwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9aV0k0MmF5eGZ0MFgzZVJlenFk VFBla3piSGcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAATAHAwUEyicg ADANBgkqhkiG9w0BAQsFAAOCAQEAx6r/X10LzEr1nQQOyn31M3vzk3cmMYjxaNhS J0ThULndQH1uyWWNE7y7m8huZodvGsUhoLyEeFgidPZA8llIXwgJYbhJIQIssQt/ EvuksSQgJzqIerId6cySOFhELXtmy/C7a8E6j92FQ7Q34OaYWWDpltpZv5ID5CPt f47wJ/3TDKp5Zbs/H3+I4+/YoquISS+OY/hqmAiPYc5Af/AulNRDD6wRzU703L6g lkUNO2sSYdCbR8h5LxL+TzIc7+AldCF2LB1xXdc8ht3cZ/l5Pm6Fyed+LA+W/K+R srEkxSj20FBtOTltrSGiXTYD3kzfJG0y5ax1jpB/IHGBim/0Ww== -----END CERTIFICATE-----Generated at Tue Jun 18 13:13:37 2024 by rpki-client on console-fra.rpki-client.org