$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/t32WfpwHZJMob4p5nAt-7aJeRPQ.roa File: t32WfpwHZJMob4p5nAt-7aJeRPQ.roa (raw, json) Hash identifier: OUBMHNQuHo1bVqOMLvdAWUs10Od8Jn90CBpql6OssiQ= Subject key identifier: B7:7D:96:7E:9C:07:64:93:28:6F:8A:79:9C:0B:7E:ED:A2:5E:44:F4 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 0FC0 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/t32WfpwHZJMob4p5nAt-7aJeRPQ.roa Signing time: Fri 01 Sep 2023 08:57:27 +0000 ROA not before: Fri 01 Sep 2023 08:57:27 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 7500 IP address blocks: 2001:b000:19e::/64 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 03:55:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4032 (0xfc0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Sep 1 08:57:27 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=B77D967E9C076493286F8A799C0B7EEDA25E44F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:11:2b:31:87:7a:c5:d7:54:5d:2b:05:bd:63: 25:9b:2f:48:2a:68:25:2c:d0:6e:83:62:f5:ba:c4: 21:ca:60:92:dd:ef:89:2e:0e:c6:6a:c0:6c:24:07: 0b:ca:82:71:f5:3e:be:a4:a7:4f:6c:29:54:9a:b0: b0:71:34:9f:26:b4:e0:f8:70:1e:a9:87:9b:75:8c: 2b:db:d0:ca:fd:5c:72:2b:e5:86:07:4a:fb:3a:2c: f0:fd:82:85:87:0e:f3:d8:e5:8e:a2:a8:37:07:a8: 45:07:3c:bd:fd:af:76:a8:a2:5e:e5:40:77:92:f6: c9:f7:f8:0f:5b:9a:86:17:02:1c:ae:c7:5d:61:a9: 35:fa:1a:10:59:80:f1:43:11:3b:04:ed:24:0f:00: 27:02:a8:1b:3a:ef:95:dc:8f:63:7b:dd:50:88:e4: 09:d7:e0:47:0d:87:41:bf:03:a5:b8:ee:d3:39:01: e9:d3:a4:a0:77:ed:ff:3a:1f:85:2c:a4:49:3d:47: ff:9b:b6:d4:7f:f7:bb:12:77:50:5f:97:69:65:a3: 21:2e:52:d0:98:8d:88:21:f0:80:86:df:bd:48:ad: 37:43:fe:bc:90:03:d5:63:0b:ea:15:a7:bf:31:7a: 64:cc:22:8a:2e:aa:52:6c:d1:a2:9f:24:e7:f0:c2: cc:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:7D:96:7E:9C:07:64:93:28:6F:8A:79:9C:0B:7E:ED:A2:5E:44:F4 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/t32WfpwHZJMob4p5nAt-7aJeRPQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:b000:19e::/64 Signature Algorithm: sha256WithRSAEncryption 0e:e0:f0:88:87:4d:50:b9:70:2d:76:5f:48:93:86:2d:d0:64: 5d:0f:28:f1:24:f6:39:8b:0b:eb:9e:3d:21:5b:ed:bf:84:4a: d5:46:12:5f:19:72:32:dd:04:a0:0b:f1:5f:20:d1:ff:31:05: 40:26:90:0a:6e:88:b5:6c:b2:83:1d:7a:e3:22:20:fa:07:39: 35:c1:5d:77:ba:6d:9a:52:28:93:06:d3:e5:bf:9a:67:9b:de: 76:76:c3:37:7d:70:71:e8:1d:c2:aa:f0:15:67:c8:4e:33:9b: 67:02:8a:7f:d3:ba:ba:1b:13:c3:32:51:b7:bb:25:8e:b7:13: 4d:64:38:f2:a7:de:2e:4b:3e:24:4c:d5:e7:83:54:4e:c5:1b: 47:47:48:41:90:56:fe:b4:e1:4d:98:3f:84:6b:1e:8f:3d:ec: 19:72:e5:e9:58:99:a5:5f:e9:e7:ae:f2:a2:00:f6:1c:a9:6e: 7d:4a:47:d8:2b:84:21:5b:d7:6c:9b:58:59:01:eb:3b:e9:55: fc:ae:93:64:5c:be:71:86:c5:44:58:eb:92:e5:99:5b:fc:ed: f5:c6:5b:bb:5c:17:ed:6f:bb:a8:7b:9d:eb:6a:43:b3:2c:24: cf:f2:e2:fa:1a:d7:f2:24:3c:c2:63:0b:a4:41:28:11:cf:2c: d1:8b:0e:d3 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICD8AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMzA5MDEw ODU3MjdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEI3N0Q5NjdFOUMwNzY0 OTMyODZGOEE3OTlDMEI3RUVEQTI1RTQ0RjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNESsxh3rF11RdKwW9YyWbL0gqaCUs0G6DYvW6xCHKYJLd74ku DsZqwGwkBwvKgnH1Pr6kp09sKVSasLBxNJ8mtOD4cB6ph5t1jCvb0Mr9XHIr5YYH Svs6LPD9goWHDvPY5Y6iqDcHqEUHPL39r3aool7lQHeS9sn3+A9bmoYXAhyux11h qTX6GhBZgPFDETsE7SQPACcCqBs675Xcj2N73VCI5AnX4EcNh0G/A6W47tM5AenT pKB37f86H4UspEk9R/+bttR/97sSd1Bfl2lloyEuUtCYjYgh8ICG371IrTdD/ryQ A9VjC+oVp78xemTMIoouqlJs0aKfJOfwwsyNAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUt32WfpwHZJMob4p5nAt+7aJeRPQwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC90MzJXZnB3SFpKTW9iNHA1bkF0 LTdhSmVSUFEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCQGCCsGAQUFBwEHAQH/BBUwEzARBAIAAjALAwkAIAGw AAGeAAAwDQYJKoZIhvcNAQELBQADggEBAA7g8IiHTVC5cC12X0iThi3QZF0PKPEk 9jmLC+uePSFb7b+EStVGEl8ZcjLdBKAL8V8g0f8xBUAmkApuiLVssoMdeuMiIPoH OTXBXXe6bZpSKJMG0+W/mmeb3nZ2wzd9cHHoHcKq8BVnyE4zm2cCin/TurobE8My Ube7JY63E01kOPKn3i5LPiRM1eeDVE7FG0dHSEGQVv604U2YP4RrHo897Bly5elY maVf6eeu8qIA9hypbn1KR9grhCFb12ybWFkB6zvpVfyuk2RcvnGGxURY65LlmVv8 7fXGW7tcF+1vu6h7netqQ7MsJM/y4voa1/IkPMJjC6RBKBHPLNGLDtM= -----END CERTIFICATE-----Generated at Tue Jun 18 13:13:38 2024 by rpki-client on console-fra.rpki-client.org