$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/bOedjl7Ib5eGXX2eAlbCbmmp-FY.roa File: bOedjl7Ib5eGXX2eAlbCbmmp-FY.roa (raw, json) Hash identifier: lCsV6VB3I1X4zk9ngNGZYaw6GYwR2d52zboeZci/hoU= Subject key identifier: 6C:E7:9D:8E:5E:C8:6F:97:86:5D:7D:9E:02:56:C2:6E:69:A9:F8:56 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 0FC4 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/bOedjl7Ib5eGXX2eAlbCbmmp-FY.roa Signing time: Fri 01 Sep 2023 08:57:28 +0000 ROA not before: Fri 01 Sep 2023 08:57:28 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 23675 IP address blocks: 203.66.102.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 03:55:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4036 (0xfc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Sep 1 08:57:28 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=6CE79D8E5EC86F97865D7D9E0256C26E69A9F856 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:09:2e:2a:f8:d1:80:5f:4f:2c:36:2e:b9:f9: eb:05:3a:c9:37:7b:83:8c:e7:7f:ba:35:2c:2b:38: c7:c6:9b:40:25:1d:76:fa:ce:fe:5b:7b:f2:6c:5b: eb:97:d8:66:70:48:18:da:cd:8e:3e:82:45:71:67: b4:ff:2d:32:b3:f6:a1:ab:d0:f4:08:b5:95:a1:fc: a7:b6:54:79:37:7d:81:09:68:e3:3a:40:2a:b0:90: f1:10:e1:bb:7d:65:0b:86:f0:08:43:44:b7:69:e1: 76:95:cb:bb:7e:5f:34:be:c5:51:45:94:5e:fb:33: 24:c9:98:45:24:aa:a2:ff:51:07:aa:b4:03:e5:c7: 31:bd:bb:9b:3e:72:31:79:b2:51:eb:63:9e:39:0a: 4e:66:b3:7d:9c:67:6d:1c:2d:2c:04:f4:39:64:a9: 8f:1f:ad:96:5e:ab:96:88:fa:c7:7f:6c:f9:64:ff: 58:9e:11:1a:c9:8f:0c:06:03:4f:7e:a9:aa:8c:30: 8a:4b:b6:fc:dd:4e:4d:d6:a6:14:5b:ac:db:aa:0c: 34:c7:f9:ed:00:2b:06:54:45:8b:2b:81:de:84:61: 9f:29:fe:18:ea:c6:4b:9d:86:18:24:6b:5c:1f:05: e5:aa:ae:23:36:ba:98:61:2d:b1:9f:77:e6:d7:e6: 72:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:E7:9D:8E:5E:C8:6F:97:86:5D:7D:9E:02:56:C2:6E:69:A9:F8:56 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/bOedjl7Ib5eGXX2eAlbCbmmp-FY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.66.102.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:7a:87:97:15:f9:47:ba:ff:f5:8f:f1:bf:18:ab:73:97:49: a7:51:1e:85:0e:de:49:d6:eb:e5:4b:62:15:03:52:7e:bb:4a: 64:c4:6f:8f:dc:67:ff:5c:96:c1:cd:98:23:65:84:55:5a:85: 67:93:77:11:c9:bd:a5:d1:3e:6a:90:da:b2:00:61:5f:db:d7: 8b:35:2c:81:e2:72:9c:e8:c0:69:35:e5:18:7a:16:9a:78:96: ea:0d:e8:8b:3f:2a:02:4b:28:05:8c:18:70:91:f6:a8:8e:23: 5b:35:c7:0d:7f:f2:08:b0:6b:08:bf:92:c3:c5:bd:f6:95:ea: 1d:8a:79:36:d3:7a:2f:0b:56:8b:76:f8:40:f6:40:8f:d4:c8: a3:87:35:a5:88:ca:da:ee:9b:ce:34:32:0c:c7:46:c6:48:9c: f0:16:c9:e5:94:b3:df:60:59:e3:42:0e:90:d5:1c:8a:3e:47: bc:cc:41:3f:b9:67:b5:7d:06:6d:9c:60:ce:ae:be:de:cc:18: 5f:17:06:8a:0a:d7:75:dc:1e:b9:5a:cd:23:e0:8a:ac:ae:73: 8e:02:2a:a9:2f:cd:7b:34:98:df:4c:ab:f1:b1:ea:ba:52:9e: 16:ba:e7:92:f7:6f:47:ea:b3:9c:78:d8:cb:20:f4:7a:8c:56: ad:9b:0e:b7 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICD8QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMzA5MDEw ODU3MjhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDZDRTc5RDhFNUVDODZG OTc4NjVEN0Q5RTAyNTZDMjZFNjlBOUY4NTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCiCS4q+NGAX08sNi65+esFOsk3e4OM53+6NSwrOMfGm0AlHXb6 zv5be/JsW+uX2GZwSBjazY4+gkVxZ7T/LTKz9qGr0PQItZWh/Ke2VHk3fYEJaOM6 QCqwkPEQ4bt9ZQuG8AhDRLdp4XaVy7t+XzS+xVFFlF77MyTJmEUkqqL/UQeqtAPl xzG9u5s+cjF5slHrY545Ck5ms32cZ20cLSwE9DlkqY8frZZeq5aI+sd/bPlk/1ie ERrJjwwGA09+qaqMMIpLtvzdTk3WphRbrNuqDDTH+e0AKwZURYsrgd6EYZ8p/hjq xkudhhgka1wfBeWqriM2uphhLbGfd+bX5nLXAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUbOedjl7Ib5eGXX2eAlbCbmmp+FYwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9iT2Vkamw3SWI1ZUdYWDJlQWxi Q2JtbXAtRlkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy0Jm MA0GCSqGSIb3DQEBCwUAA4IBAQBseoeXFflHuv/1j/G/GKtzl0mnUR6FDt5J1uvl S2IVA1J+u0pkxG+P3Gf/XJbBzZgjZYRVWoVnk3cRyb2l0T5qkNqyAGFf29eLNSyB 4nKc6MBpNeUYehaaeJbqDeiLPyoCSygFjBhwkfaojiNbNccNf/IIsGsIv5LDxb32 leodink203ovC1aLdvhA9kCP1MijhzWliMra7pvONDIMx0bGSJzwFsnllLPfYFnj Qg6Q1RyKPke8zEE/uWe1fQZtnGDOrr7ezBhfFwaKCtd13B65Ws0j4IqsrnOOAiqp L817NJjfTKvxseq6Up4WuueS929H6rOceNjLIPR6jFatmw63 -----END CERTIFICATE-----Generated at Tue Jun 18 12:54:03 2024 by rpki-client on console-ams.rpki-client.org