$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/g6xu73F0hOKNJoeOuXQNThP-ilY.roa File: g6xu73F0hOKNJoeOuXQNThP-ilY.roa (raw, json) Hash identifier: 0MT+VPU4ExS0+N1xPv60oE9J5fDWykfwGET8qLHOFcI= Subject key identifier: 83:AC:6E:EF:71:74:84:E2:8D:26:87:8E:B9:74:0D:4E:13:FE:8A:56 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 0F91 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/g6xu73F0hOKNJoeOuXQNThP-ilY.roa Signing time: Fri 01 Sep 2023 08:57:14 +0000 ROA not before: Fri 01 Sep 2023 08:57:14 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 3462 IP address blocks: 218.166.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 03:55:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3985 (0xf91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Sep 1 08:57:14 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=83AC6EEF717484E28D26878EB9740D4E13FE8A56 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:84:3e:78:19:fb:c5:3c:c7:f8:fa:70:bb:1b: cc:02:19:ac:b3:05:f3:7c:5b:fa:9b:88:7f:e7:01: 4b:7c:19:fa:21:74:c9:3d:4f:9a:80:22:ed:05:91: 15:dd:1f:da:c2:d2:95:85:2f:9a:42:c0:0a:b1:e5: 00:c2:8b:60:5c:87:cb:60:06:df:ed:23:da:96:89: 23:c7:16:fd:e0:16:e6:e0:5a:de:59:6b:19:8c:91: da:f7:77:20:08:e3:22:56:7a:ae:a9:53:73:2e:4a: 7a:f6:b3:a9:2e:a7:86:f5:76:2f:d3:78:c4:f2:91: 41:2c:b9:40:0e:13:55:85:84:8f:d9:13:c6:5a:3f: 6d:2c:c3:63:6e:6f:06:cf:71:fd:53:79:14:9d:cf: a6:c9:fd:9f:78:af:dc:6d:50:77:3e:ca:31:b7:84: d4:ca:5c:30:f0:80:54:7d:45:63:24:46:0d:69:a7: af:5f:d0:ca:df:0d:23:4c:6e:08:76:21:c8:c2:06: ca:6f:71:7b:d9:f1:48:80:05:f7:72:16:46:41:ad: b3:60:70:e1:fa:e5:5a:60:f6:4c:b4:8b:57:f2:73: 12:07:06:bd:36:37:30:27:0c:f6:b2:71:a1:bc:9b: bf:5b:46:68:f8:30:72:1c:d8:81:70:78:3b:26:8f: ea:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:AC:6E:EF:71:74:84:E2:8D:26:87:8E:B9:74:0D:4E:13:FE:8A:56 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/g6xu73F0hOKNJoeOuXQNThP-ilY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 218.166.0.0/15 Signature Algorithm: sha256WithRSAEncryption d0:44:68:d2:d0:d4:c3:11:a8:c4:dd:c3:2e:ed:78:0b:1b:11: 7a:fc:3f:28:11:6e:52:fa:23:2c:34:e1:f6:f6:e6:f1:9c:96: 6f:72:1a:f2:1a:6c:a9:92:20:a6:bd:fd:0e:50:7a:84:0c:d8: 8b:ca:0c:3f:a4:26:1a:4c:a3:4d:df:87:fe:dd:37:aa:af:51: f9:c1:31:42:67:a2:b0:cf:ef:b0:7b:b7:e9:76:30:8a:f9:fb: b6:d5:14:d3:95:4e:4a:c2:43:43:69:83:e3:d4:11:4b:53:68: 4f:6c:73:a7:69:66:39:a8:d6:a2:cb:1e:b4:7c:17:49:45:f0: a2:6b:27:68:e2:d2:7b:ea:2f:70:f1:33:9f:a6:86:69:fb:d3: 6c:d2:46:32:58:56:da:2d:f8:99:8a:0c:f7:99:01:20:e1:e9: 97:bb:45:25:c7:be:3a:33:03:ee:de:da:91:b9:1c:31:b3:7d: a4:b0:1b:29:9e:53:fc:15:1e:c0:c9:89:bd:08:00:0c:a8:66: a3:01:9a:c5:2c:df:a8:b7:1b:f0:94:83:ac:2e:0f:94:b4:8e: 94:47:85:ff:d5:f0:9a:7a:bc:d8:88:3b:b4:69:f5:57:68:6e: 06:f0:5a:b0:cf:ce:fa:53:b1:b4:5c:d5:ba:f8:7f:3b:d0:48: 4d:3b:a9:c6 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICD5EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMzA5MDEw ODU3MTRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDgzQUM2RUVGNzE3NDg0 RTI4RDI2ODc4RUI5NzQwRDRFMTNGRThBNTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCfhD54GfvFPMf4+nC7G8wCGayzBfN8W/qbiH/nAUt8GfohdMk9 T5qAIu0FkRXdH9rC0pWFL5pCwAqx5QDCi2Bch8tgBt/tI9qWiSPHFv3gFubgWt5Z axmMkdr3dyAI4yJWeq6pU3MuSnr2s6kup4b1di/TeMTykUEsuUAOE1WFhI/ZE8Za P20sw2NubwbPcf1TeRSdz6bJ/Z94r9xtUHc+yjG3hNTKXDDwgFR9RWMkRg1pp69f 0MrfDSNMbgh2IcjCBspvcXvZ8UiABfdyFkZBrbNgcOH65Vpg9ky0i1fycxIHBr02 NzAnDPaycaG8m79bRmj4MHIc2IFweDsmj+ojAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUg6xu73F0hOKNJoeOuXQNThP+ilYwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9nNnh1NzNGMGhPS05Kb2VPdVhR TlRoUC1pbFkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMB2qYw DQYJKoZIhvcNAQELBQADggEBANBEaNLQ1MMRqMTdwy7teAsbEXr8PygRblL6Iyw0 4fb25vGclm9yGvIabKmSIKa9/Q5QeoQM2IvKDD+kJhpMo03fh/7dN6qvUfnBMUJn orDP77B7t+l2MIr5+7bVFNOVTkrCQ0Npg+PUEUtTaE9sc6dpZjmo1qLLHrR8F0lF 8KJrJ2ji0nvqL3DxM5+mhmn702zSRjJYVtot+JmKDPeZASDh6Ze7RSXHvjozA+7e 2pG5HDGzfaSwGymeU/wVHsDJib0IAAyoZqMBmsUs36i3G/CUg6wuD5S0jpRHhf/V 8Jp6vNiIO7Rp9VdobgbwWrDPzvpTsbRc1br4fzvQSE07qcY= -----END CERTIFICATE-----Generated at Tue Jun 18 12:54:03 2024 by rpki-client on console-ams.rpki-client.org