$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/ptBaWinFVWTDkEsj1KkMaNw-ZXU.roa File: ptBaWinFVWTDkEsj1KkMaNw-ZXU.roa (raw, json) Hash identifier: Y6kHvytFGlGGC6xJmP4HdoDeipMyHJQQe3liUNJxeAY= Subject key identifier: A6:D0:5A:5A:29:C5:55:64:C3:90:4B:23:D4:A9:0C:68:DC:3E:65:75 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 0F7D Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ptBaWinFVWTDkEsj1KkMaNw-ZXU.roa Signing time: Fri 01 Sep 2023 08:57:08 +0000 ROA not before: Fri 01 Sep 2023 08:57:08 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9505 IP address blocks: 175.111.240.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 03:55:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3965 (0xf7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Sep 1 08:57:08 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=A6D05A5A29C55564C3904B23D4A90C68DC3E6575 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:42:88:ec:a3:c3:23:af:eb:25:c7:d4:35:89: bf:33:a3:6c:81:d1:b4:e5:0e:e7:81:13:54:0e:16: b7:fc:36:f5:0c:15:3d:22:93:51:1a:46:fa:32:2f: 85:5c:7d:1b:f7:4a:27:40:e9:d9:9d:e8:0c:d7:d5: e3:af:bb:61:c1:64:78:b3:2d:f3:61:a8:d8:94:f0: 33:3b:3e:2b:99:0d:ac:e2:0c:a9:55:e9:8c:7c:d4: 59:df:82:50:25:6f:eb:5c:f7:2a:4b:aa:da:1c:20: 9e:c6:6b:7a:d7:9b:a2:15:cf:37:23:52:36:79:d4: 6e:27:cb:c5:ff:88:cf:f4:fc:dd:e4:c0:07:c9:2e: 44:07:36:47:60:72:12:f5:ea:cf:68:41:22:00:64: 61:1a:2e:ac:68:be:dc:1b:29:93:cd:81:7c:12:62: 03:93:6e:35:3f:61:43:bf:fa:67:09:18:d3:c0:b3: 0f:43:94:3e:2d:f0:00:10:f8:ef:16:02:00:43:8b: 3a:b6:77:b1:e2:3d:2c:8a:69:9d:c4:fa:c6:32:32: f5:ae:01:23:b9:a1:5d:db:18:09:64:5f:5b:0f:32: 2b:3b:09:9d:06:20:ee:3d:9c:1c:31:0a:63:56:85: b9:ca:ad:f2:e6:9b:83:48:ca:71:77:d7:e0:a9:36: 2c:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:D0:5A:5A:29:C5:55:64:C3:90:4B:23:D4:A9:0C:68:DC:3E:65:75 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ptBaWinFVWTDkEsj1KkMaNw-ZXU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 175.111.240.0/21 Signature Algorithm: sha256WithRSAEncryption 64:07:ff:6b:29:68:09:45:e5:26:00:9e:51:16:31:c8:47:e2: 06:62:ff:13:34:0e:97:02:61:0b:4c:a2:8f:25:32:65:f1:97: 3e:70:98:0d:f9:26:9f:41:5d:e6:f7:19:52:f3:18:68:55:a1: 56:1b:92:7e:77:95:88:a8:f3:73:33:39:f4:e6:3b:36:32:81: 91:09:0c:56:00:4b:81:2a:7d:a4:80:c8:fa:25:23:30:8e:6c: bc:34:0e:2f:05:e2:49:58:3f:5a:96:0b:c4:69:42:40:21:33: 01:5b:3a:b6:5b:e4:90:ca:5f:4c:f4:51:9c:f3:28:9b:d4:6e: be:e5:f5:86:6c:e5:5b:35:b6:55:38:be:27:d3:65:91:bf:af: 36:f4:6b:45:b7:f8:c4:6a:34:a7:c3:62:ff:2c:7b:fc:34:15: b9:11:01:dd:22:3c:c6:71:5f:14:9a:d9:8a:b2:6e:24:62:d8: c0:05:71:4e:77:89:01:8d:6f:90:fd:f7:38:e1:8a:3b:37:2f: b0:fb:b6:b6:38:cf:b8:7c:65:6e:94:60:6b:02:a0:ff:98:06: d6:34:9f:bb:d5:a7:51:18:74:00:78:95:b0:5e:c4:85:f0:f2: 72:ad:7a:34:71:e5:e2:57:b3:43:9e:cb:4c:39:7a:ce:8a:fc: 1b:88:42:de -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICD30wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMzA5MDEw ODU3MDhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEE2RDA1QTVBMjlDNTU1 NjRDMzkwNEIyM0Q0QTkwQzY4REMzRTY1NzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCnQojso8Mjr+slx9Q1ib8zo2yB0bTlDueBE1QOFrf8NvUMFT0i k1EaRvoyL4VcfRv3SidA6dmd6AzX1eOvu2HBZHizLfNhqNiU8DM7PiuZDaziDKlV 6Yx81FnfglAlb+tc9ypLqtocIJ7Ga3rXm6IVzzcjUjZ51G4ny8X/iM/0/N3kwAfJ LkQHNkdgchL16s9oQSIAZGEaLqxovtwbKZPNgXwSYgOTbjU/YUO/+mcJGNPAsw9D lD4t8AAQ+O8WAgBDizq2d7HiPSyKaZ3E+sYyMvWuASO5oV3bGAlkX1sPMis7CZ0G IO49nBwxCmNWhbnKrfLmm4NIynF31+CpNixDAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUptBaWinFVWTDkEsj1KkMaNw+ZXUwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9wdEJhV2luRlZXVERrRXNqMUtr TWFOdy1aWFUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDr2/w MA0GCSqGSIb3DQEBCwUAA4IBAQBkB/9rKWgJReUmAJ5RFjHIR+IGYv8TNA6XAmEL TKKPJTJl8Zc+cJgN+SafQV3m9xlS8xhoVaFWG5J+d5WIqPNzMzn05js2MoGRCQxW AEuBKn2kgMj6JSMwjmy8NA4vBeJJWD9algvEaUJAITMBWzq2W+SQyl9M9FGc8yib 1G6+5fWGbOVbNbZVOL4n02WRv6829GtFt/jEajSnw2L/LHv8NBW5EQHdIjzGcV8U mtmKsm4kYtjABXFOd4kBjW+Q/fc44Yo7Ny+w+7a2OM+4fGVulGBrAqD/mAbWNJ+7 1adRGHQAeJWwXsSF8PJyrXo0ceXiV7NDnstMOXrOivwbiELe -----END CERTIFICATE-----Generated at Tue Jun 18 13:13:38 2024 by rpki-client on console-fra.rpki-client.org