$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/qkaHlN4u6CMrSG5wrTee9wMDMEA.roa File: qkaHlN4u6CMrSG5wrTee9wMDMEA.roa (raw, json) Hash identifier: Gc+o/vo+kp0EWLdPdj4U8OPwDmsNTFd4PdrbzKlOBJw= Subject key identifier: AA:46:87:94:DE:2E:E8:23:2B:48:6E:70:AD:37:9E:F7:03:03:30:40 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 0F56 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/qkaHlN4u6CMrSG5wrTee9wMDMEA.roa Signing time: Fri 01 Sep 2023 08:56:57 +0000 ROA not before: Fri 01 Sep 2023 08:56:57 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 8068 IP address blocks: 61.220.60.200/29 maxlen: 29 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 03:55:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3926 (0xf56) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Sep 1 08:56:57 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=AA468794DE2EE8232B486E70AD379EF703033040 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:3b:1b:86:ee:d2:ff:ae:20:bd:34:e9:fd:c6: 58:d5:bd:a3:89:86:45:f7:07:5a:de:45:37:99:45: 98:ed:e7:cf:65:62:2a:53:eb:bc:7a:5c:5c:a9:8f: 79:cf:1d:90:c9:49:8b:94:03:70:e0:af:04:47:f9: df:d7:5a:95:e5:db:b4:ae:71:70:b5:4b:59:23:c2: 77:39:57:3b:22:27:7b:f9:d1:1e:d8:86:04:7f:31: 1e:d6:06:36:8d:3c:8e:a4:52:70:b2:4e:aa:37:3b: 43:bf:17:de:eb:28:5f:8a:58:23:49:5c:24:86:2c: 89:a0:9c:1f:4e:64:d7:f3:6a:9f:0b:a9:c6:f6:15: 9f:f4:71:e4:01:08:6c:c6:70:1f:da:ab:24:ab:bd: ef:4f:63:c7:dd:06:a2:e8:f7:1e:3e:49:0c:48:f6: 58:0c:f6:cb:12:96:d1:b7:2c:b3:c1:37:b3:3b:b5: e7:8e:0e:6b:42:d8:0c:8e:0a:6d:c2:d6:c5:7f:a1: 57:c1:ae:68:a3:da:36:09:92:19:14:f8:3d:31:1c: ab:ac:a3:9f:c9:cc:0d:db:7c:53:32:44:87:a8:c5: 83:86:99:e2:99:2f:ed:43:89:a0:3e:d6:fa:65:89: f9:38:c2:72:b2:a1:8c:c9:4b:38:00:e0:70:01:18: 8a:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:46:87:94:DE:2E:E8:23:2B:48:6E:70:AD:37:9E:F7:03:03:30:40 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/qkaHlN4u6CMrSG5wrTee9wMDMEA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.220.60.200/29 Signature Algorithm: sha256WithRSAEncryption 46:99:c3:99:e9:ea:c4:4d:d2:01:b0:30:5a:4f:b7:23:aa:2d: 34:f4:9b:3b:97:11:3c:93:c6:38:54:23:6c:0d:75:86:70:b0: 99:d1:fd:da:a8:a7:1f:24:71:26:c7:eb:94:5d:54:cc:e9:74: 04:89:a3:ff:d3:d4:49:01:03:48:53:76:61:71:98:78:4a:9e: 6e:75:68:63:f1:cc:f5:8c:d1:e6:46:ac:2b:7b:11:15:3b:72: 67:59:6d:cf:a4:be:f3:69:46:1c:e5:78:6b:76:40:3e:39:e2: 28:39:80:56:72:81:d2:94:3d:e1:85:b2:2f:70:5b:b0:8b:d5: 50:b6:d4:25:00:4b:72:d6:f0:eb:0a:08:b7:3d:f8:1c:ab:48: 50:53:02:40:b0:09:d5:77:84:26:5b:29:8d:2d:be:12:bc:43: 9a:09:c8:a0:8f:af:9a:18:14:c8:74:dd:80:a1:e7:cb:82:79: cf:fb:b0:26:e1:04:da:69:79:f8:8a:b6:ff:79:f6:b8:d1:e6: 5d:03:6a:3d:81:9b:b1:4f:46:0f:b9:64:6b:7e:96:ed:b6:5a: 50:a2:f4:3f:18:19:4c:bd:f5:81:d5:c4:9a:17:04:df:a9:c8: 0a:ce:10:40:9a:c1:87:aa:1f:e7:e8:b0:5d:51:70:31:15:c5: d0:80:c1:55 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICD1YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMzA5MDEw ODU2NTdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEFBNDY4Nzk0REUyRUU4 MjMyQjQ4NkU3MEFEMzc5RUY3MDMwMzMwNDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCjOxuG7tL/riC9NOn9xljVvaOJhkX3B1reRTeZRZjt589lYipT 67x6XFypj3nPHZDJSYuUA3DgrwRH+d/XWpXl27SucXC1S1kjwnc5VzsiJ3v50R7Y hgR/MR7WBjaNPI6kUnCyTqo3O0O/F97rKF+KWCNJXCSGLImgnB9OZNfzap8Lqcb2 FZ/0ceQBCGzGcB/aqySrve9PY8fdBqLo9x4+SQxI9lgM9ssSltG3LLPBN7M7teeO DmtC2AyOCm3C1sV/oVfBrmij2jYJkhkU+D0xHKuso5/JzA3bfFMyRIeoxYOGmeKZ L+1DiaA+1vplifk4wnKyoYzJSzgA4HABGIpBAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUqkaHlN4u6CMrSG5wrTee9wMDMEAwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9xa2FIbE40dTZDTXJTRzV3clRl ZTl3TURNRUEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAATAHAwUDPdw8 yDANBgkqhkiG9w0BAQsFAAOCAQEARpnDmenqxE3SAbAwWk+3I6otNPSbO5cRPJPG OFQjbA11hnCwmdH92qinHyRxJsfrlF1UzOl0BImj/9PUSQEDSFN2YXGYeEqebnVo Y/HM9YzR5kasK3sRFTtyZ1ltz6S+82lGHOV4a3ZAPjniKDmAVnKB0pQ94YWyL3Bb sIvVULbUJQBLctbw6woItz34HKtIUFMCQLAJ1XeEJlspjS2+ErxDmgnIoI+vmhgU yHTdgKHny4J5z/uwJuEE2ml5+Iq2/3n2uNHmXQNqPYGbsU9GD7lka36W7bZaUKL0 PxgZTL31gdXEmhcE36nICs4QQJrBh6of5+iwXVFwMRXF0IDBVQ== -----END CERTIFICATE-----Generated at Tue Jun 18 13:13:38 2024 by rpki-client on console-fra.rpki-client.org