$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/gPjr381Jw83BMgm-zxviBWlFGSE.roa File: gPjr381Jw83BMgm-zxviBWlFGSE.roa (raw, json) Hash identifier: Kmd86R647s+VrvMYChGCWB639V0C0tDVwzMa4E5OrLA= Subject key identifier: 80:F8:EB:DF:CD:49:C3:CD:C1:32:09:BE:CF:1B:E2:05:69:45:19:21 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 0FB0 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/gPjr381Jw83BMgm-zxviBWlFGSE.roa Signing time: Fri 01 Sep 2023 08:57:23 +0000 ROA not before: Fri 01 Sep 2023 08:57:23 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 54994 IP address blocks: 203.74.117.0/25 maxlen: 25 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 03:55:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4016 (0xfb0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Sep 1 08:57:23 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=80F8EBDFCD49C3CDC13209BECF1BE20569451921 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:f9:b6:38:fe:10:a2:e7:30:0c:cb:8d:fc:3d: 20:1c:10:57:f4:42:6d:05:d0:5d:9e:5d:dd:68:d1: 18:f3:47:e9:83:a9:71:f9:ea:d0:7c:fa:6b:06:4c: d4:9e:0a:e4:7e:a1:c7:e1:86:5c:c6:e9:d0:a1:39: ce:49:1b:dc:c2:48:c8:80:a9:b1:0e:4b:78:86:d8: 0a:6a:98:b4:a7:c9:4f:6a:a9:bb:83:cb:60:9f:80: 0f:e2:4b:07:cd:0a:8e:60:d6:b8:2a:e5:aa:a8:72: 92:3f:50:09:2e:5d:5f:c3:5e:c7:46:3b:ca:87:8a: 0e:81:cb:02:4c:7b:52:cd:3d:83:8d:6e:39:20:0e: c9:35:9e:1d:af:6c:81:b8:1a:3a:d4:af:f2:d2:e4: 29:37:2b:2e:9b:a9:64:33:7e:0d:d4:ff:f1:1e:a1: 8c:fe:f3:0f:73:7c:f5:75:d6:9e:1b:4e:6c:d4:e8: fa:32:33:de:cf:09:90:8c:4a:d6:1e:92:62:7b:26: 7b:9a:e7:41:b2:95:3f:22:79:be:aa:06:40:9d:3c: 2a:65:82:7d:b1:ee:8c:af:9f:be:78:d3:1c:0b:44: 27:9a:c3:e2:57:13:b6:db:ea:4d:fa:73:2a:bb:07: e5:d4:dd:19:98:db:d8:a0:c9:1e:3f:be:2f:ef:da: 79:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:F8:EB:DF:CD:49:C3:CD:C1:32:09:BE:CF:1B:E2:05:69:45:19:21 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/gPjr381Jw83BMgm-zxviBWlFGSE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.74.117.0/25 Signature Algorithm: sha256WithRSAEncryption 26:28:f7:6d:22:e2:26:f1:40:3a:8d:31:c5:d4:90:4a:55:7e: 9d:b2:c4:1d:33:d3:ca:15:34:2c:a9:6a:e7:f3:b2:c3:92:46: 93:85:04:b5:20:69:d6:3f:a8:81:e8:b3:d9:b9:15:9a:76:d5: cf:67:de:68:81:ab:a5:56:cf:7d:0f:12:65:77:2d:df:aa:99: c5:d5:8f:78:46:0c:53:f1:bf:3f:23:39:45:8a:f4:5c:d8:0c: f0:93:ba:2c:68:2f:be:d8:06:20:41:a2:3d:1d:c4:7d:cd:71: 77:88:62:55:1a:f3:78:d1:18:b5:7b:a1:3a:5c:dc:23:fb:93: 78:c6:ac:82:35:58:a7:86:57:eb:67:9a:d6:e0:4f:2b:ec:e1: e9:c6:3a:fd:60:76:2f:a1:5c:e8:a5:65:e1:55:88:6a:a9:fc: a9:9b:cc:da:10:cc:05:96:b6:83:57:b5:13:f3:da:08:d2:25: fd:f9:db:db:9e:8b:05:e7:80:2b:68:e5:22:66:4a:80:b2:88: e3:e5:10:ea:d7:b6:ff:de:5c:10:e9:2e:80:d3:db:53:b6:46: 4a:ae:fb:00:bb:65:17:28:6b:19:24:d9:b9:7d:b2:5a:9f:83: 36:d7:d0:31:7c:8b:db:93:47:e5:d9:91:7f:88:bb:fa:25:6d: bf:d1:6b:43 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICD7AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMzA5MDEw ODU3MjNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDgwRjhFQkRGQ0Q0OUMz Q0RDMTMyMDlCRUNGMUJFMjA1Njk0NTE5MjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCw+bY4/hCi5zAMy438PSAcEFf0Qm0F0F2eXd1o0RjzR+mDqXH5 6tB8+msGTNSeCuR+ocfhhlzG6dChOc5JG9zCSMiAqbEOS3iG2ApqmLSnyU9qqbuD y2CfgA/iSwfNCo5g1rgq5aqocpI/UAkuXV/DXsdGO8qHig6BywJMe1LNPYONbjkg Dsk1nh2vbIG4GjrUr/LS5Ck3Ky6bqWQzfg3U//EeoYz+8w9zfPV11p4bTmzU6Poy M97PCZCMStYekmJ7Jnua50GylT8ieb6qBkCdPCplgn2x7oyvn7540xwLRCeaw+JX E7bb6k36cyq7B+XU3RmY29igyR4/vi/v2nlbAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUgPjr381Jw83BMgm+zxviBWlFGSEwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9nUGpyMzgxSnc4M0JNZ20tenh2 aUJXbEZHU0Uucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAATAHAwUHy0p1 ADANBgkqhkiG9w0BAQsFAAOCAQEAJij3bSLiJvFAOo0xxdSQSlV+nbLEHTPTyhU0 LKlq5/Oyw5JGk4UEtSBp1j+ogeiz2bkVmnbVz2feaIGrpVbPfQ8SZXct36qZxdWP eEYMU/G/PyM5RYr0XNgM8JO6LGgvvtgGIEGiPR3Efc1xd4hiVRrzeNEYtXuhOlzc I/uTeMasgjVYp4ZX62ea1uBPK+zh6cY6/WB2L6Fc6KVl4VWIaqn8qZvM2hDMBZa2 g1e1E/PaCNIl/fnb256LBeeAK2jlImZKgLKI4+UQ6te2/95cEOkugNPbU7ZGSq77 ALtlFyhrGSTZuX2yWp+DNtfQMXyL25NH5dmRf4i7+iVtv9FrQw== -----END CERTIFICATE-----Generated at Tue Jun 18 12:54:04 2024 by rpki-client on console-ams.rpki-client.org