$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/mHTxnAOqKc2VPtqy_FXlhzSMffQ.roa File: mHTxnAOqKc2VPtqy_FXlhzSMffQ.roa (raw, json) Hash identifier: KcIAQhtxwxP6jk7yp58tMhQuZex7E2hTFQIItymEz/8= Subject key identifier: 98:74:F1:9C:03:AA:29:CD:95:3E:DA:B2:FC:55:E5:87:34:8C:7D:F4 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 0F87 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/mHTxnAOqKc2VPtqy_FXlhzSMffQ.roa Signing time: Fri 01 Sep 2023 08:57:10 +0000 ROA not before: Fri 01 Sep 2023 08:57:10 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 10126 IP address blocks: 175.111.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 03:55:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3975 (0xf87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Sep 1 08:57:10 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=9874F19C03AA29CD953EDAB2FC55E587348C7DF4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:1b:5e:d8:20:fb:1b:08:cf:c1:a5:7f:ba:c9: 1c:a7:0c:db:12:6f:e3:b2:57:cf:ec:1d:91:dc:93: db:54:c8:29:f1:14:b8:85:c4:c6:32:c3:6b:0c:d3: 4a:f1:b0:6b:19:f2:a2:b0:2b:c9:f8:c4:71:d4:6b: 5a:30:f8:4d:be:c8:df:d2:e7:a1:7c:9a:50:b5:62: 45:29:d0:e9:eb:1b:66:af:25:68:fb:a9:91:8b:b9: fd:55:b0:a7:13:c4:a1:18:db:69:eb:3c:1c:46:f3: a7:a9:b9:2a:93:ff:72:e1:f9:32:f3:6a:80:18:3c: e0:d7:d0:8d:0f:ee:50:91:5f:22:73:fe:b1:02:84: a6:6b:69:b0:2a:ea:48:1c:f8:a2:82:cd:10:71:22: 4f:72:cb:57:cc:c5:c7:25:a6:19:83:96:3d:f4:ab: 24:19:57:ca:af:e0:ac:aa:0d:6b:33:18:88:9d:65: 9e:c4:93:b1:58:20:cd:22:cb:28:70:6b:02:cd:da: 3c:35:76:7d:92:ac:30:74:ed:61:30:74:65:c6:bf: 6a:cb:8e:23:c2:a1:42:85:79:af:bd:26:db:1f:62: e3:bb:3c:82:dc:db:4e:38:5f:58:11:de:62:f5:3b: 89:49:4a:f9:1b:23:3c:1b:3f:7e:64:9b:77:83:1d: 71:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:74:F1:9C:03:AA:29:CD:95:3E:DA:B2:FC:55:E5:87:34:8C:7D:F4 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/mHTxnAOqKc2VPtqy_FXlhzSMffQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 175.111.192.0/18 Signature Algorithm: sha256WithRSAEncryption a0:78:2c:df:52:1d:c8:6c:93:a4:1d:34:f4:4e:95:91:55:09: 2c:54:ff:5e:f5:5c:ca:26:8d:49:c4:4b:79:f3:b1:1f:30:2e: be:59:93:9e:51:0e:28:84:92:d5:9a:7e:8c:e7:ec:39:82:23: 0f:a8:38:2d:16:e2:12:00:00:9d:40:36:fb:84:21:99:af:3c: 9e:d7:c4:08:6f:23:7a:8e:e9:32:4a:69:fc:de:db:d2:d8:e1: 18:66:e1:c8:85:2b:ce:fb:7b:8d:5b:c8:26:a1:b8:5c:73:5f: 43:23:4c:49:ba:de:87:9d:69:87:56:6a:89:6a:e5:87:b8:a1: 5f:b2:8f:f3:f9:26:1c:5a:9e:2c:fe:9c:55:87:16:13:6c:53: 11:73:5e:34:dd:a1:ec:93:62:60:c4:21:c2:d3:47:60:8d:f9: ab:e4:de:c5:8d:83:ae:67:5b:20:3b:d3:f5:d5:1e:8a:c5:03: 33:d5:ab:1d:37:e9:9d:c5:b7:10:7a:55:4b:21:1b:ce:20:bf: b0:48:62:7f:22:69:f9:00:c3:1d:89:b3:45:ec:c3:91:9b:2a: f8:fa:78:af:60:9a:90:00:e5:02:c8:12:ea:d9:6e:db:66:a4: 43:26:5d:18:67:fb:42:49:b6:b0:b9:b0:d2:77:ef:8b:e4:1f: 6e:e9:d2:61 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICD4cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMzA5MDEw ODU3MTBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDk4NzRGMTlDMDNBQTI5 Q0Q5NTNFREFCMkZDNTVFNTg3MzQ4QzdERjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxG17YIPsbCM/BpX+6yRynDNsSb+OyV8/sHZHck9tUyCnxFLiF xMYyw2sM00rxsGsZ8qKwK8n4xHHUa1ow+E2+yN/S56F8mlC1YkUp0OnrG2avJWj7 qZGLuf1VsKcTxKEY22nrPBxG86epuSqT/3Lh+TLzaoAYPODX0I0P7lCRXyJz/rEC hKZrabAq6kgc+KKCzRBxIk9yy1fMxcclphmDlj30qyQZV8qv4KyqDWszGIidZZ7E k7FYIM0iyyhwawLN2jw1dn2SrDB07WEwdGXGv2rLjiPCoUKFea+9JtsfYuO7PILc 2044X1gR3mL1O4lJSvkbIzwbP35km3eDHXGLAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUmHTxnAOqKc2VPtqy/FXlhzSMffQwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9tSFR4bkFPcUtjMlZQdHF5X0ZY bGh6U01mZlEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQGr2/A MA0GCSqGSIb3DQEBCwUAA4IBAQCgeCzfUh3IbJOkHTT0TpWRVQksVP9e9VzKJo1J xEt587EfMC6+WZOeUQ4ohJLVmn6M5+w5giMPqDgtFuISAACdQDb7hCGZrzye18QI byN6jukySmn83tvS2OEYZuHIhSvO+3uNW8gmobhcc19DI0xJut6HnWmHVmqJauWH uKFfso/z+SYcWp4s/pxVhxYTbFMRc1403aHsk2JgxCHC00dgjfmr5N7FjYOuZ1sg O9P11R6KxQMz1asdN+mdxbcQelVLIRvOIL+wSGJ/Imn5AMMdibNF7MORmyr4+niv YJqQAOUCyBLq2W7bZqRDJl0YZ/tCSbawubDSd++L5B9u6dJh -----END CERTIFICATE-----Generated at Tue Jun 18 13:13:37 2024 by rpki-client on console-fra.rpki-client.org