$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/ia1jcLBQ1JHa7tpUlLN9b9xSyo4.roa File: ia1jcLBQ1JHa7tpUlLN9b9xSyo4.roa (raw, json) Hash identifier: 5v1nRk44pzk8+M7+zWOPpRPYkG3DBpjYNGozOB6RK4c= Subject key identifier: 89:AD:63:70:B0:50:D4:91:DA:EE:DA:54:94:B3:7D:6F:DC:52:CA:8E Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 0F62 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ia1jcLBQ1JHa7tpUlLN9b9xSyo4.roa Signing time: Fri 01 Sep 2023 08:57:00 +0000 ROA not before: Fri 01 Sep 2023 08:57:00 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 23675 IP address blocks: 203.66.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 03:55:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3938 (0xf62) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Sep 1 08:57:00 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=89AD6370B050D491DAEEDA5494B37D6FDC52CA8E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:09:86:74:1c:8b:a0:9c:4d:e1:9a:0c:77:ae: 2b:e1:d7:ac:1a:5c:49:d3:33:e6:46:53:07:ae:79: 5c:f6:a0:8f:41:af:e8:dc:7d:28:f4:77:0e:96:20: aa:6c:c9:db:58:9e:08:fb:16:c2:6c:a8:04:01:87: 27:d7:1d:8f:90:d7:ad:43:69:ec:71:0e:42:28:d7: 00:b7:20:6f:4b:c4:a2:6c:2d:5c:22:3b:46:c4:c8: d1:fc:cf:e4:a9:9c:86:2d:41:80:af:3e:53:78:99: c8:5e:23:d0:fa:89:3b:3a:d2:63:69:a2:ef:32:15: b2:46:a4:f0:bc:1d:9b:78:7a:28:50:9e:3c:68:67: d4:de:ee:71:05:31:6c:73:93:ee:95:fb:08:91:49: 79:18:d5:50:f8:7d:fe:48:76:98:72:1b:39:b0:a5: 87:fd:7d:47:a3:9c:17:f5:d9:67:2c:c9:05:2a:f5: b9:65:15:01:ab:d4:c4:fc:29:3a:73:6b:5a:cd:02: 08:7f:7d:c0:59:2d:be:ec:d1:54:7d:d9:92:86:6d: 2a:c1:61:0d:e9:53:31:7b:d1:b7:c2:71:ac:d5:63: 22:bd:08:4f:33:02:17:64:ad:d6:89:63:bb:ac:95: 28:b0:dd:a9:ef:28:da:1b:54:61:d3:0a:d0:0f:ab: cd:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:AD:63:70:B0:50:D4:91:DA:EE:DA:54:94:B3:7D:6F:DC:52:CA:8E X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ia1jcLBQ1JHa7tpUlLN9b9xSyo4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.66.100.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:34:4b:49:1f:5f:a6:87:51:d6:5f:09:de:8e:a0:52:0c:b4: 75:57:5d:9c:49:2f:85:1f:4a:94:86:4d:ca:9f:eb:ea:45:df: 0a:1a:95:47:40:89:16:00:98:5f:cc:98:a2:74:4d:78:8f:38: 29:fa:00:76:70:13:24:80:7f:b0:f6:0b:4f:b4:76:d1:6e:6e: 54:ef:0e:fd:57:21:7a:16:ae:76:aa:89:35:6f:59:75:93:f5: af:ff:a8:c7:f4:db:1e:02:dc:ff:bc:ef:99:2f:70:c0:33:60: 68:ed:d6:13:8a:aa:83:85:2c:54:18:97:26:69:64:d3:8d:76: 91:bd:a8:f9:6e:87:80:75:f6:cf:d4:1c:ff:48:77:23:ec:20: 2e:ed:30:ce:2f:f3:7a:4a:4a:d6:27:90:bf:89:a2:37:0c:b1: 06:a0:c8:cc:e3:2f:82:5e:c2:77:e9:c5:5e:88:a1:cb:6a:13: d6:71:9a:35:cc:6b:4e:8e:e4:c7:15:e2:a9:ac:42:e3:9a:7f: 31:d9:48:22:ba:13:4d:a6:c6:ac:be:90:1e:7a:53:fb:2c:74: 4c:c6:b6:e1:7a:67:cd:f2:c9:2b:49:36:19:fa:55:47:43:47: d1:c7:43:5e:0f:b6:3a:09:16:7c:07:8a:7f:39:bd:c8:c0:f7: b9:51:8b:b6 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICD2IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMzA5MDEw ODU3MDBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDg5QUQ2MzcwQjA1MEQ0 OTFEQUVFREE1NDk0QjM3RDZGREM1MkNBOEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQChCYZ0HIugnE3hmgx3rivh16waXEnTM+ZGUweueVz2oI9Br+jc fSj0dw6WIKpsydtYngj7FsJsqAQBhyfXHY+Q161DaexxDkIo1wC3IG9LxKJsLVwi O0bEyNH8z+SpnIYtQYCvPlN4mcheI9D6iTs60mNpou8yFbJGpPC8HZt4eihQnjxo Z9Te7nEFMWxzk+6V+wiRSXkY1VD4ff5IdphyGzmwpYf9fUejnBf12WcsyQUq9bll FQGr1MT8KTpza1rNAgh/fcBZLb7s0VR92ZKGbSrBYQ3pUzF70bfCcazVYyK9CE8z AhdkrdaJY7uslSiw3anvKNobVGHTCtAPq83zAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUia1jcLBQ1JHa7tpUlLN9b9xSyo4wHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9pYTFqY0xCUTFKSGE3dHBVbExO OWI5eFN5bzQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy0Jk MA0GCSqGSIb3DQEBCwUAA4IBAQA7NEtJH1+mh1HWXwnejqBSDLR1V12cSS+FH0qU hk3Kn+vqRd8KGpVHQIkWAJhfzJiidE14jzgp+gB2cBMkgH+w9gtPtHbRbm5U7w79 VyF6Fq52qok1b1l1k/Wv/6jH9NseAtz/vO+ZL3DAM2Bo7dYTiqqDhSxUGJcmaWTT jXaRvaj5boeAdfbP1Bz/SHcj7CAu7TDOL/N6SkrWJ5C/iaI3DLEGoMjM4y+CXsJ3 6cVeiKHLahPWcZo1zGtOjuTHFeKprELjmn8x2UgiuhNNpsasvpAeelP7LHRMxrbh emfN8skrSTYZ+lVHQ0fRx0NeD7Y6CRZ8B4p/Ob3IwPe5UYu2 -----END CERTIFICATE-----Generated at Tue Jun 18 13:13:37 2024 by rpki-client on console-fra.rpki-client.org