$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/htQzc39aPc6j8DnCN44PZZIzETg.roa File: htQzc39aPc6j8DnCN44PZZIzETg.roa (raw, json) Hash identifier: vveLaBN0zx89oVgTL5wQqIeXDwKtfigchx01bc0JO94= Subject key identifier: 86:D4:33:73:7F:5A:3D:CE:A3:F0:39:C2:37:8E:0F:65:92:33:11:38 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 0FC8 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/htQzc39aPc6j8DnCN44PZZIzETg.roa Signing time: Fri 01 Sep 2023 08:57:29 +0000 ROA not before: Fri 01 Sep 2023 08:57:29 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 17714 IP address blocks: 175.111.252.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 03:55:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4040 (0xfc8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Sep 1 08:57:29 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=86D433737F5A3DCEA3F039C2378E0F6592331138 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:66:b2:21:e5:7a:93:f7:6e:fc:87:47:e5:dd: ab:30:5a:a8:79:47:19:dc:94:c3:44:4d:42:e0:f7: f5:f5:d0:f1:b0:a7:7a:a4:a3:92:8b:2f:83:c8:9b: 58:2c:36:3c:be:4a:4c:df:b3:ec:4d:3c:d3:44:60: c0:f4:ec:70:7a:6e:1b:34:b8:20:da:77:a8:59:1a: 23:9a:52:fb:0c:c0:de:0c:c0:88:6f:29:0d:fc:e2: 9b:c1:ca:9f:00:ce:e5:e7:03:59:91:29:68:a3:ee: 10:88:08:c5:d7:f3:ed:da:08:85:71:d6:76:9b:11: 75:87:4f:58:59:fd:5b:73:a1:31:5d:ce:ac:e0:56: dc:6e:7b:08:2e:27:a5:b3:b7:82:5e:09:ac:3e:4b: 61:7e:f4:0c:9a:05:08:16:b7:a0:6d:66:e5:66:c0: 34:af:4b:2f:1c:d6:28:ad:7a:a6:bf:1b:80:09:43: ae:54:f3:32:1e:d8:5a:ab:d1:1d:2a:67:dd:be:33: cf:fc:66:72:32:0b:ab:58:ee:d5:77:71:e7:78:39: da:13:4f:63:5a:f1:e5:c8:7e:7d:6c:78:bf:67:12: 11:16:85:c6:57:aa:de:b4:dd:2d:f4:6a:c5:fb:95: f2:5d:fe:9c:7d:b6:3e:6d:13:0c:0e:4a:a6:42:82: dd:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:D4:33:73:7F:5A:3D:CE:A3:F0:39:C2:37:8E:0F:65:92:33:11:38 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/htQzc39aPc6j8DnCN44PZZIzETg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 175.111.252.0/24 Signature Algorithm: sha256WithRSAEncryption 2b:49:66:33:ac:fd:56:a4:59:e9:e0:f1:7d:d7:6f:74:0d:bd: a0:b9:fa:e9:1e:b1:f0:60:88:47:99:c0:84:cc:26:fb:4c:50: 6d:cf:6b:37:b2:3c:47:26:27:2d:bc:17:3e:41:55:9d:46:a7: 30:5f:49:81:46:fc:7f:69:b1:e3:86:bd:5b:c7:15:e9:26:59: b6:0c:a0:d3:a9:06:96:b3:cd:34:a9:67:92:cf:58:30:64:2f: 35:3a:9e:10:97:4d:21:f5:a3:59:1c:66:e8:09:44:23:a3:ff: 17:8e:67:34:cf:6b:33:37:ee:d3:c6:ed:4a:d4:ef:d7:4e:b0: 85:64:17:79:16:2a:8e:c3:32:47:6b:e6:19:4a:6f:ea:33:6c: a6:75:19:12:d0:71:4f:23:a4:9e:7e:29:99:11:51:fe:1e:42: 1a:f7:6c:f0:33:c9:fc:1a:07:1e:14:5a:60:49:a3:7d:b5:19: 06:5e:e2:90:7f:31:c1:8c:b6:62:83:43:e2:e9:0a:5b:d2:b9: d2:d6:0b:36:64:34:b0:74:ee:0f:ef:cc:62:93:b7:9f:b8:53: d0:df:3f:7b:11:44:96:2d:09:43:b8:15:be:26:ab:62:7b:df: 60:97:0b:54:04:c6:8e:cb:03:d4:cb:bd:9a:20:c4:aa:72:0c: e2:e1:4a:e0 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICD8gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMzA5MDEw ODU3MjlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDg2RDQzMzczN0Y1QTNE Q0VBM0YwMzlDMjM3OEUwRjY1OTIzMzExMzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMZrIh5XqT9278h0fl3aswWqh5RxnclMNETULg9/X10PGwp3qk o5KLL4PIm1gsNjy+Skzfs+xNPNNEYMD07HB6bhs0uCDad6hZGiOaUvsMwN4MwIhv KQ384pvByp8AzuXnA1mRKWij7hCICMXX8+3aCIVx1nabEXWHT1hZ/VtzoTFdzqzg VtxuewguJ6Wzt4JeCaw+S2F+9AyaBQgWt6BtZuVmwDSvSy8c1iiteqa/G4AJQ65U 8zIe2Fqr0R0qZ92+M8/8ZnIyC6tY7tV3ced4OdoTT2Na8eXIfn1seL9nEhEWhcZX qt603S30asX7lfJd/px9tj5tEwwOSqZCgt3pAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUhtQzc39aPc6j8DnCN44PZZIzETgwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9odFF6YzM5YVBjNmo4RG5DTjQ0 UFpaSXpFVGcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAr2/8 MA0GCSqGSIb3DQEBCwUAA4IBAQArSWYzrP1WpFnp4PF91290Db2gufrpHrHwYIhH mcCEzCb7TFBtz2s3sjxHJictvBc+QVWdRqcwX0mBRvx/abHjhr1bxxXpJlm2DKDT qQaWs800qWeSz1gwZC81Op4Ql00h9aNZHGboCUQjo/8Xjmc0z2szN+7Txu1K1O/X TrCFZBd5FiqOwzJHa+YZSm/qM2ymdRkS0HFPI6SefimZEVH+HkIa92zwM8n8Ggce FFpgSaN9tRkGXuKQfzHBjLZig0Pi6Qpb0rnS1gs2ZDSwdO4P78xik7efuFPQ3z97 EUSWLQlDuBW+Jqtie99glwtUBMaOywPUy72aIMSqcgzi4Urg -----END CERTIFICATE-----Generated at Tue Jun 18 13:13:37 2024 by rpki-client on console-fra.rpki-client.org