$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/_y29YPVWQRlReOBUruI5QARXJj0.roa File: _y29YPVWQRlReOBUruI5QARXJj0.roa (raw, json) Hash identifier: q1gQb8C/veq9gNETdqu0IQa1oG6h5QsoQz3XbeqQg7M= Subject key identifier: FF:2D:BD:60:F5:56:41:19:51:78:E0:54:AE:E2:39:40:04:57:26:3D Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 0FD4 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/_y29YPVWQRlReOBUruI5QARXJj0.roa Signing time: Fri 01 Sep 2023 08:57:32 +0000 ROA not before: Fri 01 Sep 2023 08:57:32 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 54994 IP address blocks: 203.74.117.128/27 maxlen: 27 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 03:55:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4052 (0xfd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Sep 1 08:57:32 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=FF2DBD60F55641195178E054AEE239400457263D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:6d:d4:7f:28:e9:8a:db:49:b5:08:57:0c:c7: ed:5b:1d:a3:5c:74:1a:dc:c6:d7:0b:b2:bd:df:97: 94:fe:89:8a:0b:3a:e4:92:58:d8:33:e6:08:4d:ba: 4e:62:1f:1f:b6:e8:63:84:fb:2d:77:9e:bd:1d:3f: cc:6c:21:88:d7:10:9b:69:5a:34:40:d0:08:73:7d: 9b:9d:37:61:1e:db:70:79:9a:74:8f:cf:d1:43:56: 36:4e:e7:60:c0:69:48:68:74:73:55:f3:3b:f8:8a: e6:c3:3d:f7:17:8b:c1:59:97:af:ae:59:fa:8c:b9: 70:4b:af:c1:da:02:14:f8:25:3c:cf:9a:df:05:48: ef:ab:de:0d:82:31:19:9d:6d:bb:59:1f:13:d1:f3: 83:50:e8:20:46:67:41:c9:c4:cd:ea:86:87:5c:ab: 5e:74:b9:55:ab:01:5a:e2:ac:5f:64:5e:26:14:b7: eb:d0:2d:6f:97:c8:5f:a8:84:f6:df:77:98:24:ee: 6c:9b:e1:08:09:69:92:2f:bc:20:9b:83:ab:c3:a9: 46:6f:c6:9f:c5:77:c0:fb:6d:cb:c6:cf:71:05:cb: 03:6f:0d:8f:8c:79:8a:61:3d:1e:36:0c:89:f3:b7: 6a:57:cb:0b:2f:84:89:d9:f4:bf:ea:c4:09:bc:05: d9:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:2D:BD:60:F5:56:41:19:51:78:E0:54:AE:E2:39:40:04:57:26:3D X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/_y29YPVWQRlReOBUruI5QARXJj0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.74.117.128/27 Signature Algorithm: sha256WithRSAEncryption 52:30:ae:ff:f0:c0:37:6b:ca:b2:a1:72:60:91:ca:17:ab:8a: c9:06:62:7d:39:bb:bf:bc:be:26:72:86:fb:05:1d:b2:d3:22: 74:c0:08:03:e3:6c:39:98:cc:47:3e:de:5b:36:55:bf:79:f4: 3d:a0:f0:1b:5b:99:2f:e3:8e:62:ba:58:4e:f0:38:1f:a8:7d: 71:7e:0a:4a:f9:7c:38:98:14:84:5b:ed:97:e7:95:51:87:e5: 8b:54:b7:c7:86:85:3a:dc:cc:e0:49:86:74:ce:af:1d:f7:e8: 01:18:b1:11:13:6a:bb:72:49:e7:83:49:15:f1:42:2c:74:c5: 3f:34:d2:4e:26:2d:38:ee:99:83:69:67:a2:0f:a9:d9:84:09: fb:e6:72:f2:ca:93:1f:71:2a:6b:96:bc:6e:9a:d0:15:30:8c: 64:8c:7a:0a:46:bf:45:52:65:2d:6e:d0:2f:5c:c6:c1:46:4f: 88:83:c8:d6:b0:7d:7d:97:4a:d5:4c:23:1c:80:3d:55:55:59: fb:36:6a:f6:be:88:0a:06:f3:0b:18:1e:ba:2a:c6:94:1a:bc: fe:07:6b:a6:74:7f:72:2e:32:69:c6:b6:bd:6c:7e:ff:e6:6b: 31:90:a8:cb:c4:4b:0c:2e:85:a1:44:39:bc:b0:e4:57:fc:c2: e1:13:82:59 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICD9QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMzA5MDEw ODU3MzJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEZGMkRCRDYwRjU1NjQx MTk1MTc4RTA1NEFFRTIzOTQwMDQ1NzI2M0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCebdR/KOmK20m1CFcMx+1bHaNcdBrcxtcLsr3fl5T+iYoLOuSS WNgz5ghNuk5iHx+26GOE+y13nr0dP8xsIYjXEJtpWjRA0AhzfZudN2Ee23B5mnSP z9FDVjZO52DAaUhodHNV8zv4iubDPfcXi8FZl6+uWfqMuXBLr8HaAhT4JTzPmt8F SO+r3g2CMRmdbbtZHxPR84NQ6CBGZ0HJxM3qhodcq150uVWrAVrirF9kXiYUt+vQ LW+XyF+ohPbfd5gk7myb4QgJaZIvvCCbg6vDqUZvxp/Fd8D7bcvGz3EFywNvDY+M eYphPR42DInzt2pXywsvhInZ9L/qxAm8BdlbAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQU/y29YPVWQRlReOBUruI5QARXJj0wHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9feTI5WVBWV1FSbFJlT0JVcnVJ NVFBUlhKajAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAATAHAwUFy0p1 gDANBgkqhkiG9w0BAQsFAAOCAQEAUjCu//DAN2vKsqFyYJHKF6uKyQZifTm7v7y+ JnKG+wUdstMidMAIA+NsOZjMRz7eWzZVv3n0PaDwG1uZL+OOYrpYTvA4H6h9cX4K Svl8OJgUhFvtl+eVUYfli1S3x4aFOtzM4EmGdM6vHffoARixERNqu3JJ54NJFfFC LHTFPzTSTiYtOO6Zg2lnog+p2YQJ++Zy8sqTH3Eqa5a8bprQFTCMZIx6Cka/RVJl LW7QL1zGwUZPiIPI1rB9fZdK1UwjHIA9VVVZ+zZq9r6ICgbzCxgeuirGlBq8/gdr pnR/ci4yaca2vWx+/+ZrMZCoy8RLDC6FoUQ5vLDkV/zC4ROCWQ== -----END CERTIFICATE-----Generated at Tue Jun 18 13:13:37 2024 by rpki-client on console-fra.rpki-client.org