$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/rR3OPhAIkM_42h0x7g2uPiFL6Do.roa File: rR3OPhAIkM_42h0x7g2uPiFL6Do.roa (raw, json) Hash identifier: 9GDA/59cEZ7iJ2C0T1AlADajPyd6OdaLB2B9zxNP830= Subject key identifier: AD:1D:CE:3E:10:08:90:CF:F8:DA:1D:31:EE:0D:AE:3E:21:4B:E8:3A Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 0F30 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/rR3OPhAIkM_42h0x7g2uPiFL6Do.roa Signing time: Fri 01 Sep 2023 08:56:43 +0000 ROA not before: Fri 01 Sep 2023 08:56:43 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 3462 IP address blocks: 203.66.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 03:55:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3888 (0xf30) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Sep 1 08:56:43 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=AD1DCE3E100890CFF8DA1D31EE0DAE3E214BE83A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:e1:f3:d5:d2:62:e3:10:c1:56:bf:94:93:af: b3:3a:f9:fe:b8:67:70:9e:93:84:84:e4:a0:29:33: 1a:3b:69:56:76:be:65:d0:8f:da:ee:3e:50:7f:45: 9f:83:5e:80:82:4f:0c:b8:25:59:b0:18:0b:0f:01: ce:31:0a:93:19:57:64:8f:3f:00:3a:e2:13:51:10: a2:65:17:d9:d3:79:d7:2e:78:4b:90:f4:3a:a4:15: 87:ae:6e:27:69:aa:49:3b:ad:21:c7:c9:25:0e:cc: 9b:3e:e0:89:29:52:5f:58:10:62:04:ce:c1:72:b6: b3:78:e6:59:eb:31:b6:ae:bb:44:aa:9b:a3:54:55: 1a:c7:94:c2:42:4b:ee:87:cb:88:63:7b:6d:b7:a3: 32:88:15:55:2f:e4:28:0f:f9:55:9a:85:31:a6:e0: e6:f4:dd:8b:ba:26:7d:7b:40:f4:31:8a:53:08:92: 97:b5:7e:d9:f7:fe:5d:1c:d3:45:aa:ff:b0:fe:34: 5d:9b:57:a3:57:ee:38:29:0a:55:6d:15:97:99:01: 86:86:72:75:ca:e6:9d:c8:c0:0b:78:0f:53:dd:1a: 0b:6b:10:f5:fd:f8:02:e4:5b:f7:d0:cd:c1:1b:f2: 4a:95:5d:c6:27:2f:4e:c5:b7:36:86:27:fa:4b:f6: 2d:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:1D:CE:3E:10:08:90:CF:F8:DA:1D:31:EE:0D:AE:3E:21:4B:E8:3A X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/rR3OPhAIkM_42h0x7g2uPiFL6Do.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.66.0.0/16 Signature Algorithm: sha256WithRSAEncryption 6a:a3:0a:44:81:b5:2e:10:09:2e:0a:ae:02:75:ca:e4:ef:f7: a9:c4:94:d2:f0:21:22:40:6d:29:89:ec:8a:df:47:f9:ff:49: 21:89:27:e4:4d:b1:c2:e1:2d:64:4f:95:d7:61:42:ca:dd:ee: dc:84:f4:af:2f:92:e6:48:ad:42:5b:8f:22:bb:f0:e9:ff:a2: 0b:5a:21:8b:3c:b7:73:0e:61:08:bc:d9:fd:f0:10:7d:86:1a: d4:30:c5:0f:98:df:b4:63:db:71:1b:76:8f:fd:ef:b7:0d:b8: fd:a2:72:f6:4c:d9:57:f3:f1:75:2d:94:b8:be:9a:2d:86:c4: 2c:2e:2d:76:da:c6:4a:fc:67:96:dc:bf:6f:28:23:98:6f:d7: 40:0e:6f:b3:c1:cc:f2:0e:4e:9a:0d:36:a2:d3:bb:f3:0b:04: 67:54:6a:3c:2f:d0:d4:5b:05:78:fb:e0:9b:58:08:99:5a:4e: 2f:fe:89:f5:c1:45:7f:b9:c5:7d:38:d4:51:8f:8f:7d:c9:c7: 73:cc:bf:bc:5d:e0:6c:76:7a:7a:93:2d:cf:f1:5c:f7:5c:6e: 96:61:c4:e1:43:16:bb:d1:0b:d7:7a:d8:fa:69:b3:61:5f:52: cb:7c:64:db:86:94:a5:4d:16:13:0a:f2:10:39:a6:9d:29:99: 59:fd:0b:d1 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDzAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMzA5MDEw ODU2NDNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEFEMURDRTNFMTAwODkw Q0ZGOERBMUQzMUVFMERBRTNFMjE0QkU4M0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDG4fPV0mLjEMFWv5STr7M6+f64Z3Cek4SE5KApMxo7aVZ2vmXQ j9ruPlB/RZ+DXoCCTwy4JVmwGAsPAc4xCpMZV2SPPwA64hNREKJlF9nTedcueEuQ 9DqkFYeubidpqkk7rSHHySUOzJs+4IkpUl9YEGIEzsFytrN45lnrMbauu0Sqm6NU VRrHlMJCS+6Hy4hje223ozKIFVUv5CgP+VWahTGm4Ob03Yu6Jn17QPQxilMIkpe1 ftn3/l0c00Wq/7D+NF2bV6NX7jgpClVtFZeZAYaGcnXK5p3IwAt4D1PdGgtrEPX9 +ALkW/fQzcEb8kqVXcYnL07FtzaGJ/pL9i2LAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUrR3OPhAIkM/42h0x7g2uPiFL6DowHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9yUjNPUGhBSWtNXzQyaDB4N2cy dVBpRkw2RG8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAy0Iw DQYJKoZIhvcNAQELBQADggEBAGqjCkSBtS4QCS4KrgJ1yuTv96nElNLwISJAbSmJ 7IrfR/n/SSGJJ+RNscLhLWRPlddhQsrd7tyE9K8vkuZIrUJbjyK78On/ogtaIYs8 t3MOYQi82f3wEH2GGtQwxQ+Y37Rj23Ebdo/977cNuP2icvZM2Vfz8XUtlLi+mi2G xCwuLXbaxkr8Z5bcv28oI5hv10AOb7PBzPIOTpoNNqLTu/MLBGdUajwv0NRbBXj7 4JtYCJlaTi/+ifXBRX+5xX041FGPj33Jx3PMv7xd4Gx2enqTLc/xXPdcbpZhxOFD FrvRC9d62Ppps2FfUst8ZNuGlKVNFhMK8hA5pp0pmVn9C9E= -----END CERTIFICATE-----Generated at Tue Jun 18 12:54:04 2024 by rpki-client on console-ams.rpki-client.org