$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/uJsprgUXZYmdRfqZahAOienO9hM.roa File: uJsprgUXZYmdRfqZahAOienO9hM.roa (raw, json) Hash identifier: qdJufn3ajYT7lXS8Sj55y1zA/4sFNrKmOazz4rEsYvY= Subject key identifier: B8:9B:29:AE:05:17:65:89:9D:45:FA:99:6A:10:0E:89:E9:CE:F6:13 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 0F7E Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/uJsprgUXZYmdRfqZahAOienO9hM.roa Signing time: Fri 01 Sep 2023 08:57:08 +0000 ROA not before: Fri 01 Sep 2023 08:57:08 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 33717 IP address blocks: 220.128.51.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 03:55:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3966 (0xf7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Sep 1 08:57:08 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=B89B29AE051765899D45FA996A100E89E9CEF613 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:2b:e5:06:99:b4:45:56:22:4c:b5:d4:94:7a: fb:45:94:17:aa:fe:cb:47:db:49:a0:4a:83:26:5e: 7d:94:4c:9d:07:03:ff:a3:0a:9f:dd:2a:dd:6a:a7: 78:34:01:89:07:b0:ae:9e:39:8c:09:fa:bd:1d:3d: 83:c6:3f:91:9f:72:9f:b3:0e:eb:0f:70:5f:20:92: 88:43:44:64:4b:fd:8e:0a:b1:0c:d5:80:33:11:45: e3:2b:cc:bb:42:a7:87:44:e2:16:39:d0:9f:bd:29: cc:fa:4c:aa:5b:51:39:4b:91:df:54:e3:bb:59:f3: 96:0d:e5:cd:76:81:1c:ef:48:ec:71:50:88:a3:23: d3:a6:ca:be:08:57:49:b0:22:5d:51:fe:73:80:ac: 6a:6a:3a:dc:cf:e0:f8:82:e2:47:c1:4c:ad:eb:4b: 5d:d7:39:0f:1c:52:36:77:34:ce:71:92:63:97:7e: 26:b7:57:b8:a4:08:06:0f:84:51:06:a7:45:94:09: 53:b6:dd:3d:d5:76:15:72:87:32:79:d4:ad:cf:40: b5:8c:6d:58:04:b2:b5:fb:1c:43:81:09:d2:5e:cd: 6c:f5:85:29:83:45:0e:32:3c:ae:4f:f2:53:6c:c7: e7:c2:a1:15:1a:88:8e:e8:b6:cf:d0:a3:c8:8f:48: fc:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:9B:29:AE:05:17:65:89:9D:45:FA:99:6A:10:0E:89:E9:CE:F6:13 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/uJsprgUXZYmdRfqZahAOienO9hM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 220.128.51.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:39:98:1a:aa:5b:b0:26:f8:24:e6:28:30:a6:f8:39:ed:91: 95:be:15:b9:8f:28:55:88:28:36:7f:fc:57:bb:ed:f7:09:a7: a7:55:2b:ca:58:8b:30:55:ff:d7:61:ed:79:dd:b3:4b:39:08: 6e:fd:b7:30:f9:3d:6e:c2:d7:f1:46:46:ee:ae:79:cb:f6:af: af:87:98:4d:87:b8:87:61:ca:41:32:56:69:c9:0e:e7:89:1a: 97:46:47:80:82:54:4b:ff:ed:f5:2c:7c:b4:2d:c5:64:2b:02: ed:b9:33:3f:e4:32:79:db:0b:4b:00:67:1a:33:38:6d:26:cb: 89:0b:c0:1d:80:e3:7f:ad:af:58:de:83:e9:19:59:1e:86:11: cd:f7:1e:34:6f:08:57:47:80:60:fc:4a:5a:c9:64:4f:ac:7d: 42:bf:2c:2b:25:52:09:a8:17:a9:1e:7c:03:2a:0b:e2:51:5c: 0b:45:f7:9b:a7:c9:67:2e:fc:0c:18:fa:a2:ab:47:04:e4:dd: a4:78:86:e6:69:e4:d4:05:b6:b8:62:13:63:f4:13:2d:5b:c2: 7f:74:ef:46:46:33:a8:0a:91:f5:2f:02:bf:10:9d:0d:2c:1a: 04:2b:b0:c2:47:47:9f:3d:2e:60:1e:d6:ea:7b:b5:47:c2:f1: a3:a1:46:f2 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICD34wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMzA5MDEw ODU3MDhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEI4OUIyOUFFMDUxNzY1 ODk5RDQ1RkE5OTZBMTAwRTg5RTlDRUY2MTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDlK+UGmbRFViJMtdSUevtFlBeq/stH20mgSoMmXn2UTJ0HA/+j Cp/dKt1qp3g0AYkHsK6eOYwJ+r0dPYPGP5Gfcp+zDusPcF8gkohDRGRL/Y4KsQzV gDMRReMrzLtCp4dE4hY50J+9Kcz6TKpbUTlLkd9U47tZ85YN5c12gRzvSOxxUIij I9Omyr4IV0mwIl1R/nOArGpqOtzP4PiC4kfBTK3rS13XOQ8cUjZ3NM5xkmOXfia3 V7ikCAYPhFEGp0WUCVO23T3VdhVyhzJ51K3PQLWMbVgEsrX7HEOBCdJezWz1hSmD RQ4yPK5P8lNsx+fCoRUaiI7ots/Qo8iPSPxhAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUuJsprgUXZYmdRfqZahAOienO9hMwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC91SnNwcmdVWFpZbWRSZnFaYWhB T2llbk85aE0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA3IAz MA0GCSqGSIb3DQEBCwUAA4IBAQB9OZgaqluwJvgk5igwpvg57ZGVvhW5jyhViCg2 f/xXu+33CaenVSvKWIswVf/XYe153bNLOQhu/bcw+T1uwtfxRkburnnL9q+vh5hN h7iHYcpBMlZpyQ7niRqXRkeAglRL/+31LHy0LcVkKwLtuTM/5DJ52wtLAGcaMzht JsuJC8AdgON/ra9Y3oPpGVkehhHN9x40bwhXR4Bg/EpayWRPrH1CvywrJVIJqBep HnwDKgviUVwLRfebp8lnLvwMGPqiq0cE5N2keIbmaeTUBba4YhNj9BMtW8J/dO9G RjOoCpH1LwK/EJ0NLBoEK7DCR0efPS5gHtbqe7VHwvGjoUby -----END CERTIFICATE-----Generated at Tue Jun 18 13:13:38 2024 by rpki-client on console-fra.rpki-client.org