$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/pFO04zYW-l6sSuEpZC9EuA5uso4.roa File: pFO04zYW-l6sSuEpZC9EuA5uso4.roa (raw, json) Hash identifier: xcctJctUQsC4r4Qg8L5yKbJajWJbJtZUiDm12MMgfrM= Subject key identifier: A4:53:B4:E3:36:16:FA:5E:AC:4A:E1:29:64:2F:44:B8:0E:6E:B2:8E Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 0F57 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/pFO04zYW-l6sSuEpZC9EuA5uso4.roa Signing time: Fri 01 Sep 2023 08:56:58 +0000 ROA not before: Fri 01 Sep 2023 08:56:58 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 137280 IP address blocks: 203.69.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 03:55:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3927 (0xf57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Sep 1 08:56:58 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=A453B4E33616FA5EAC4AE129642F44B80E6EB28E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:4d:fa:de:04:59:ef:b5:50:ad:b5:c5:f0:54: 80:4d:1c:a3:55:31:7e:24:f8:86:81:c7:b3:81:a5: 77:bb:a8:fa:5b:b8:04:68:ac:11:c8:18:56:1e:af: 5b:a5:3c:1d:de:40:ea:13:8f:da:b3:b9:8e:bd:4f: fb:9f:33:e7:4a:81:cf:b2:db:d3:db:00:94:32:78: 5e:eb:10:87:e3:18:73:cf:39:d8:86:4a:d3:aa:04: 5b:d5:d0:88:c7:73:52:33:cf:e2:3c:52:d1:27:ab: 0c:da:70:ec:3c:b1:bd:e9:ce:38:9b:56:28:21:9f: 52:16:15:38:d2:ce:5f:59:72:c8:8c:b1:5a:db:d2: 3a:54:78:9a:63:6f:45:a6:24:c4:aa:dd:eb:ad:ad: 57:d3:da:d2:b6:6b:ad:c3:7f:72:15:d9:8d:54:27: d1:35:7d:07:c4:2d:fe:a9:b3:17:da:2f:e6:42:01: 25:bb:08:15:83:b7:ca:67:a6:36:f3:b7:d1:7c:bb: 8f:2b:80:5d:18:f0:ce:96:80:1c:55:7f:65:fd:d6: 3d:79:81:da:02:d4:70:d4:15:b9:b0:c4:77:49:51: 2a:f3:28:07:1c:a4:37:af:d5:a0:08:1d:9d:80:ac: dd:7e:bb:48:0f:12:ad:40:fa:c2:e8:00:6a:72:a1: cc:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:53:B4:E3:36:16:FA:5E:AC:4A:E1:29:64:2F:44:B8:0E:6E:B2:8E X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/pFO04zYW-l6sSuEpZC9EuA5uso4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.69.33.0/24 Signature Algorithm: sha256WithRSAEncryption 58:2e:ff:48:53:c4:39:41:13:4c:3f:21:c2:6e:c7:0f:c4:01: cb:dc:3f:89:75:a3:3a:a7:63:e4:9f:ca:8d:5a:27:29:fd:34: ed:39:d3:a0:b2:0a:4c:45:5e:d4:fe:45:d7:b0:aa:a2:87:07: d9:6b:a5:3e:78:b0:c7:44:fe:f8:a8:5e:ea:67:30:45:f0:11: 5e:fb:e5:27:36:3d:47:7c:a3:54:f8:6d:53:ad:c1:06:18:aa: 45:a0:30:5b:1a:c4:67:87:d8:9c:55:c5:97:3f:32:41:6e:94: 38:f6:60:86:6a:6f:08:09:ca:d5:f3:da:f3:88:9d:a7:52:e3: 4c:9f:fc:1b:39:6f:da:5b:b5:0d:86:b5:5f:11:1d:93:c2:6e: 60:a8:36:54:e8:c2:3a:34:cd:7c:cf:bc:66:a4:e2:ae:8d:96: 16:87:51:b5:e6:32:7d:df:93:ce:16:a3:04:6f:a7:7c:7e:92: 3f:45:a0:13:9f:ed:ea:9f:c2:ee:ab:f7:52:27:e0:b1:62:05: c3:36:59:46:f1:1e:ba:f6:15:fa:fe:2f:55:b2:08:82:42:9a: 97:93:0b:79:46:86:39:d1:dd:11:40:a2:b5:26:54:f2:ba:fa: 92:46:44:6c:88:ab:c0:02:e8:50:16:db:2a:3b:b1:d3:f5:58: d1:2c:10:ef -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICD1cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMzA5MDEw ODU2NThaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEE0NTNCNEUzMzYxNkZB NUVBQzRBRTEyOTY0MkY0NEI4MEU2RUIyOEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9TfreBFnvtVCttcXwVIBNHKNVMX4k+IaBx7OBpXe7qPpbuARo rBHIGFYer1ulPB3eQOoTj9qzuY69T/ufM+dKgc+y29PbAJQyeF7rEIfjGHPPOdiG StOqBFvV0IjHc1Izz+I8UtEnqwzacOw8sb3pzjibVighn1IWFTjSzl9ZcsiMsVrb 0jpUeJpjb0WmJMSq3eutrVfT2tK2a63Df3IV2Y1UJ9E1fQfELf6psxfaL+ZCASW7 CBWDt8pnpjbzt9F8u48rgF0Y8M6WgBxVf2X91j15gdoC1HDUFbmwxHdJUSrzKAcc pDev1aAIHZ2ArN1+u0gPEq1A+sLoAGpyoczHAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUpFO04zYW+l6sSuEpZC9EuA5uso4wHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9wRk8wNHpZVy1sNnNTdUVwWkM5 RXVBNXVzbzQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy0Uh MA0GCSqGSIb3DQEBCwUAA4IBAQBYLv9IU8Q5QRNMPyHCbscPxAHL3D+JdaM6p2Pk n8qNWicp/TTtOdOgsgpMRV7U/kXXsKqihwfZa6U+eLDHRP74qF7qZzBF8BFe++Un Nj1HfKNU+G1TrcEGGKpFoDBbGsRnh9icVcWXPzJBbpQ49mCGam8ICcrV89rziJ2n UuNMn/wbOW/aW7UNhrVfER2Twm5gqDZU6MI6NM18z7xmpOKujZYWh1G15jJ935PO FqMEb6d8fpI/RaATn+3qn8Luq/dSJ+CxYgXDNllG8R669hX6/i9VsgiCQpqXkwt5 RoY50d0RQKK1JlTyuvqSRkRsiKvAAuhQFtsqO7HT9VjRLBDv -----END CERTIFICATE-----Generated at Tue Jun 18 13:13:38 2024 by rpki-client on console-fra.rpki-client.org