$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/m3qAQ8z2Cd39LSihgJIbZXGr2C4.roa File: m3qAQ8z2Cd39LSihgJIbZXGr2C4.roa (raw, json) Hash identifier: 50z8uFmCkNECDLZXZJogNuuD7A8iAAJXziXbbFFGtOU= Subject key identifier: 9B:7A:80:43:CC:F6:09:DD:FD:2D:28:A1:80:92:1B:65:71:AB:D8:2E Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 0F42 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/m3qAQ8z2Cd39LSihgJIbZXGr2C4.roa Signing time: Fri 01 Sep 2023 08:56:49 +0000 ROA not before: Fri 01 Sep 2023 08:56:49 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 3462 IP address blocks: 218.164.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 03:55:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3906 (0xf42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Sep 1 08:56:49 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=9B7A8043CCF609DDFD2D28A180921B6571ABD82E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:4b:55:39:1c:49:2a:cd:a0:e0:71:59:89:07: 4a:3a:91:1c:7a:af:79:c5:db:bb:fb:3d:77:fe:dd: 36:30:45:c0:32:aa:58:01:ea:30:f2:73:50:df:6b: 76:81:37:ba:81:ca:e9:2e:72:f4:27:f5:60:c6:8d: e1:91:98:f1:c1:a1:b6:57:5b:48:03:1e:02:53:06: 89:55:eb:7b:5a:07:67:2c:2e:43:1f:2b:c7:11:47: 3f:82:55:47:5c:a1:83:22:81:86:44:f4:54:37:d8: 4c:c1:09:ae:18:fb:a0:04:69:f2:1a:b1:60:37:ec: 5e:38:a7:75:3a:06:7b:e0:e8:ea:71:5d:44:13:ce: 82:83:84:39:c4:10:81:f5:3a:41:ff:72:e8:e7:4d: 27:67:06:14:3a:92:a9:28:00:08:58:fb:f4:df:f9: 72:d5:f6:b8:24:87:a3:27:fb:8f:76:ec:82:c4:0c: d2:20:f6:3a:2a:94:2b:11:aa:b8:af:64:40:0f:87: c2:86:db:f3:6b:c0:d0:a3:fc:4d:0d:39:18:1d:1c: f4:f8:c4:5c:5f:05:64:31:87:7d:32:b3:57:ea:42: fc:69:32:97:60:08:c6:0f:8b:8f:c7:9e:5b:d7:36: dd:2a:5a:00:8d:e8:25:25:fb:7e:52:ea:d1:16:4a: 18:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:7A:80:43:CC:F6:09:DD:FD:2D:28:A1:80:92:1B:65:71:AB:D8:2E X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/m3qAQ8z2Cd39LSihgJIbZXGr2C4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 218.164.0.0/15 Signature Algorithm: sha256WithRSAEncryption d3:92:aa:94:87:f5:69:33:bc:90:23:ed:65:fb:0a:5d:f7:9a: 65:ab:21:4d:de:4c:cd:13:d8:e5:8b:07:ad:08:e3:0f:e2:49: e6:d2:ab:5b:4c:1a:79:42:63:d4:fa:6d:c3:cf:31:b9:9e:c6: 7c:c0:83:60:f2:27:0f:a4:4f:1c:88:19:e6:0e:6a:d9:c5:20: 00:3c:9d:93:c8:f9:f7:40:f7:6c:db:18:d1:33:50:6f:7c:ba: 74:5a:a4:97:4f:12:f1:21:e3:35:46:51:e8:ff:cf:23:bc:cd: 94:fd:7c:9a:31:e0:58:62:17:49:2f:57:46:a8:45:3e:a0:06: 03:17:7a:6f:60:0a:ba:6a:25:b0:c4:6f:47:7d:18:70:3e:74: 4c:de:f3:df:42:2c:b3:73:22:29:35:4e:2c:22:0f:1b:e3:6f: 75:69:06:4b:be:4d:a2:12:8f:99:c7:39:40:3f:a1:7a:8b:58: 9e:a2:5d:7c:87:24:be:3e:b5:c2:7e:89:9c:4d:f2:76:af:56: ae:89:fb:37:53:db:93:d5:5e:cc:2d:cc:85:04:39:bb:0a:fe: 77:12:96:4f:43:25:a2:11:f5:a0:2d:e8:39:af:cf:93:8b:4c: a3:9c:e4:ec:d4:3f:28:70:56:00:cf:0d:31:5f:97:44:9d:e6: ee:f7:a0:d5 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICD0IwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMzA5MDEw ODU2NDlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDlCN0E4MDQzQ0NGNjA5 RERGRDJEMjhBMTgwOTIxQjY1NzFBQkQ4MkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCdS1U5HEkqzaDgcVmJB0o6kRx6r3nF27v7PXf+3TYwRcAyqlgB 6jDyc1Dfa3aBN7qByukucvQn9WDGjeGRmPHBobZXW0gDHgJTBolV63taB2csLkMf K8cRRz+CVUdcoYMigYZE9FQ32EzBCa4Y+6AEafIasWA37F44p3U6Bnvg6OpxXUQT zoKDhDnEEIH1OkH/cujnTSdnBhQ6kqkoAAhY+/Tf+XLV9rgkh6Mn+4927ILEDNIg 9joqlCsRqrivZEAPh8KG2/NrwNCj/E0NORgdHPT4xFxfBWQxh30ys1fqQvxpMpdg CMYPi4/HnlvXNt0qWgCN6CUl+35S6tEWShjVAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUm3qAQ8z2Cd39LSihgJIbZXGr2C4wHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9tM3FBUTh6MkNkMzlMU2loZ0pJ YlpYR3IyQzQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMB2qQw DQYJKoZIhvcNAQELBQADggEBANOSqpSH9WkzvJAj7WX7Cl33mmWrIU3eTM0T2OWL B60I4w/iSebSq1tMGnlCY9T6bcPPMbmexnzAg2DyJw+kTxyIGeYOatnFIAA8nZPI +fdA92zbGNEzUG98unRapJdPEvEh4zVGUej/zyO8zZT9fJox4FhiF0kvV0aoRT6g BgMXem9gCrpqJbDEb0d9GHA+dEze899CLLNzIik1TiwiDxvjb3VpBku+TaISj5nH OUA/oXqLWJ6iXXyHJL4+tcJ+iZxN8navVq6J+zdT25PVXswtzIUEObsK/ncSlk9D JaIR9aAt6Dmvz5OLTKOc5OzUPyhwVgDPDTFfl0Sd5u73oNU= -----END CERTIFICATE-----Generated at Tue Jun 18 13:13:37 2024 by rpki-client on console-fra.rpki-client.org