$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/q6tq65zal2QhNwNVtevXwTyEJG8.roa File: q6tq65zal2QhNwNVtevXwTyEJG8.roa (raw, json) Hash identifier: 2kdNzWssAcnqfy+SsfbuXQKiiUylZGKDhVk0zPQMP4E= Subject key identifier: AB:AB:6A:EB:9C:DA:97:64:21:37:03:55:B5:EB:D7:C1:3C:84:24:6F Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 0FC6 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/q6tq65zal2QhNwNVtevXwTyEJG8.roa Signing time: Fri 01 Sep 2023 08:57:28 +0000 ROA not before: Fri 01 Sep 2023 08:57:28 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 3462 IP address blocks: 111.240.0.0/12 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 03:55:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4038 (0xfc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Sep 1 08:57:28 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=ABAB6AEB9CDA976421370355B5EBD7C13C84246F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:57:08:60:0e:d1:47:08:ad:55:cf:c9:30:b4: 16:c9:88:cb:57:7b:5f:6e:55:bf:b8:32:0b:5a:cc: e2:15:5f:53:81:d9:84:0d:02:86:8e:62:b2:e5:72: 96:df:fe:69:a8:7e:01:a2:1a:fc:38:ef:26:d0:3b: 83:e8:b8:21:6d:12:20:6f:ed:5b:4d:54:ca:fc:ca: 39:dc:3a:02:ba:fd:63:d3:d1:0e:65:54:87:1d:fd: fd:d9:34:dc:eb:08:77:c7:82:5d:10:0b:23:7d:88: 32:86:f4:03:62:29:d7:99:08:8f:74:ee:f9:0c:13: b1:65:46:87:5f:2e:0c:c8:9d:14:46:79:fb:41:e9: 0c:9b:ae:25:2f:49:3d:40:d6:d0:aa:c8:ee:a8:a4: 05:39:91:96:d0:58:64:f6:f1:23:0b:ac:cc:75:8b: 16:2a:12:f2:47:c5:1a:85:37:11:65:1a:54:ba:d1: d9:69:17:cd:45:dd:b8:4c:c6:71:45:d3:81:a7:24: 42:2d:05:74:70:bd:28:64:95:a6:28:7e:34:2b:90: 99:d0:49:1d:49:45:2f:70:b0:36:87:c1:58:24:c2: 1e:01:5e:46:51:89:d9:62:37:2e:ae:f5:a3:99:da: 50:a1:7d:3f:23:29:f2:78:ee:93:ec:00:20:c3:dd: a3:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:AB:6A:EB:9C:DA:97:64:21:37:03:55:B5:EB:D7:C1:3C:84:24:6F X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/q6tq65zal2QhNwNVtevXwTyEJG8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 111.240.0.0/12 Signature Algorithm: sha256WithRSAEncryption cc:43:8e:e2:af:2e:ec:c4:d5:2e:cc:c0:75:c9:33:d2:71:61: 0b:17:75:91:0e:44:a4:05:7b:86:dc:bf:6e:ed:ad:7d:ec:64: 85:f7:a7:1a:73:9c:2c:6f:0c:55:61:08:20:16:e2:4a:17:9f: e7:47:59:3a:92:f9:d8:95:1d:ed:95:da:06:ff:cb:48:d8:09: dd:d0:89:df:8f:df:ef:56:ca:85:2d:fc:4b:56:60:87:a9:67: 59:c7:81:99:0c:05:c2:73:cd:f0:8a:77:c7:07:ee:e3:9d:19: 91:48:ef:2f:eb:41:37:64:3b:a7:92:6a:9a:92:91:bd:d5:ae: 24:05:72:84:b1:89:5a:9b:b9:1e:9e:64:ab:67:7f:a1:c5:24: 46:da:d6:d4:8a:f5:47:b6:44:de:3e:6c:a4:34:c7:91:1b:33: a6:43:ef:5d:23:86:ff:49:93:28:f9:0f:e0:e4:3e:8a:21:90: 12:f2:c6:bd:df:09:ac:15:eb:cb:d7:e9:73:f1:0e:91:37:07: 0e:09:38:a1:bb:8c:77:c8:79:44:8c:c5:0f:44:4e:72:ba:dd: 36:37:01:b2:1a:ba:ba:06:9d:ac:52:e1:1b:33:a1:dc:3a:68: 8f:b0:ba:f9:bc:88:15:a8:3a:5c:df:91:19:a9:93:3c:c1:c1: b0:c7:ab:9f -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICD8YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMzA5MDEw ODU3MjhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEFCQUI2QUVCOUNEQTk3 NjQyMTM3MDM1NUI1RUJEN0MxM0M4NDI0NkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCaVwhgDtFHCK1Vz8kwtBbJiMtXe19uVb+4MgtazOIVX1OB2YQN AoaOYrLlcpbf/mmofgGiGvw47ybQO4PouCFtEiBv7VtNVMr8yjncOgK6/WPT0Q5l VIcd/f3ZNNzrCHfHgl0QCyN9iDKG9ANiKdeZCI907vkME7FlRodfLgzInRRGeftB 6QybriUvST1A1tCqyO6opAU5kZbQWGT28SMLrMx1ixYqEvJHxRqFNxFlGlS60dlp F81F3bhMxnFF04GnJEItBXRwvShklaYofjQrkJnQSR1JRS9wsDaHwVgkwh4BXkZR idliNy6u9aOZ2lChfT8jKfJ47pPsACDD3aOtAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUq6tq65zal2QhNwNVtevXwTyEJG8wHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9xNnRxNjV6YWwyUWhOd05WdGV2 WHdUeUVKRzgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMEb/Aw DQYJKoZIhvcNAQELBQADggEBAMxDjuKvLuzE1S7MwHXJM9JxYQsXdZEORKQFe4bc v27trX3sZIX3pxpznCxvDFVhCCAW4koXn+dHWTqS+diVHe2V2gb/y0jYCd3Qid+P 3+9WyoUt/EtWYIepZ1nHgZkMBcJzzfCKd8cH7uOdGZFI7y/rQTdkO6eSapqSkb3V riQFcoSxiVqbuR6eZKtnf6HFJEba1tSK9Ue2RN4+bKQ0x5EbM6ZD710jhv9Jkyj5 D+DkPoohkBLyxr3fCawV68vX6XPxDpE3Bw4JOKG7jHfIeUSMxQ9ETnK63TY3AbIa uroGnaxS4Rszodw6aI+wuvm8iBWoOlzfkRmpkzzBwbDHq58= -----END CERTIFICATE-----Generated at Tue Jun 18 12:54:04 2024 by rpki-client on console-ams.rpki-client.org