$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/x3ArSJgOqII8OhfD9_7cID8NdG0.roa File: x3ArSJgOqII8OhfD9_7cID8NdG0.roa (raw, json) Hash identifier: YtRukbHplvwhCgZTZVSrpx78TfaNMzh0N0ZAGe8KNZk= Subject key identifier: C7:70:2B:48:98:0E:A8:82:3C:3A:17:C3:F7:FE:DC:20:3F:0D:74:6D Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 0F3C Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/x3ArSJgOqII8OhfD9_7cID8NdG0.roa Signing time: Fri 01 Sep 2023 08:56:48 +0000 ROA not before: Fri 01 Sep 2023 08:56:48 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 54994 IP address blocks: 202.39.156.0/26 maxlen: 26 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 03:55:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3900 (0xf3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Sep 1 08:56:48 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=C7702B48980EA8823C3A17C3F7FEDC203F0D746D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:e4:b1:ce:b7:13:e6:b3:04:7a:69:b3:40:c5: 07:ca:81:aa:90:c3:58:2c:db:2d:92:bd:e2:53:e7: 11:70:ea:45:67:f6:5e:3c:07:f9:1d:b3:8e:ba:5d: bd:9f:c4:b4:52:5d:ed:a7:43:65:e3:8b:f3:5f:c9: ef:d4:91:91:11:e5:71:4c:1a:6e:92:82:53:86:1e: ac:c8:da:40:69:0a:fd:34:d1:94:4a:0e:37:a1:24: 3b:1b:9b:dd:69:97:96:e8:66:bf:dd:cc:74:ad:96: 9a:7c:45:9f:e8:06:1b:9a:d4:48:76:29:9f:28:f6: dc:03:0a:de:43:38:d8:5c:05:28:5a:3f:d3:5a:4d: 4c:e4:fd:d2:cc:83:15:08:d7:fb:81:00:05:75:8b: 20:be:44:8a:6c:a9:b4:33:f2:eb:41:33:2f:a2:5c: 87:f6:0b:eb:69:e7:67:13:32:df:1e:65:d7:63:42: 1c:53:b6:26:71:a6:6c:f1:62:0c:56:38:cb:90:3f: d6:e0:1f:60:a7:a4:67:5b:75:e5:4b:10:cf:09:9d: c9:d1:d3:2e:15:1c:74:fa:bf:1e:e5:d4:ea:ce:4d: b9:76:7d:2c:e1:e4:1d:93:f9:8f:04:39:2b:05:3d: b6:29:7f:36:93:0b:46:02:cf:42:32:fd:58:ba:43: e6:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:70:2B:48:98:0E:A8:82:3C:3A:17:C3:F7:FE:DC:20:3F:0D:74:6D X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/x3ArSJgOqII8OhfD9_7cID8NdG0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.39.156.0/26 Signature Algorithm: sha256WithRSAEncryption 8a:33:92:99:b6:d9:e0:ce:45:c0:53:d7:67:9c:e2:0e:b3:b6: db:fd:24:7e:cd:ba:e0:25:ab:25:81:ce:6b:7e:5e:e8:e9:12: 4d:0f:e3:be:57:12:40:2c:78:ed:b0:67:49:3d:88:14:cb:76: 1f:31:e1:bb:9d:ce:49:e0:a6:54:91:5b:16:03:d5:9f:18:bc: a1:17:8a:c9:aa:c5:43:86:42:08:aa:82:02:c2:b7:d6:12:a1: ac:3b:0c:09:7c:b5:6a:00:48:54:c2:64:90:e2:6b:96:2f:4f: 71:31:64:7b:80:8d:de:e7:f5:86:fa:d1:0f:11:7f:ef:d0:28: 0e:ed:03:9b:72:06:9d:b0:37:e1:76:c9:60:70:b3:80:51:ee: e8:6a:b3:74:6b:d4:f1:75:92:2f:ae:99:0d:0b:ba:53:7c:c8: 74:8c:7d:78:f3:27:dd:9f:64:72:a1:f2:30:13:d9:63:30:7a: 50:37:86:72:48:23:5a:bb:50:d6:5e:e9:36:80:60:a9:c7:18: 0f:9a:5b:a9:c3:35:3e:2c:94:c1:1d:71:5a:19:35:66:59:92: 62:bb:a7:7e:1f:5a:64:ef:46:51:d8:6c:73:25:6e:2d:30:d6: 17:60:65:f6:b2:51:2b:73:e6:ae:2c:d2:c2:dd:7d:f4:70:15: d5:5d:47:6a -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICDzwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMzA5MDEw ODU2NDhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEM3NzAyQjQ4OTgwRUE4 ODIzQzNBMTdDM0Y3RkVEQzIwM0YwRDc0NkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC45LHOtxPmswR6abNAxQfKgaqQw1gs2y2SveJT5xFw6kVn9l48 B/kds466Xb2fxLRSXe2nQ2Xji/Nfye/UkZER5XFMGm6SglOGHqzI2kBpCv000ZRK DjehJDsbm91pl5boZr/dzHStlpp8RZ/oBhua1Eh2KZ8o9twDCt5DONhcBShaP9Na TUzk/dLMgxUI1/uBAAV1iyC+RIpsqbQz8utBMy+iXIf2C+tp52cTMt8eZddjQhxT tiZxpmzxYgxWOMuQP9bgH2CnpGdbdeVLEM8JncnR0y4VHHT6vx7l1OrOTbl2fSzh 5B2T+Y8EOSsFPbYpfzaTC0YCz0Iy/Vi6Q+ZrAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUx3ArSJgOqII8OhfD9/7cID8NdG0wHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC94M0FyU0pnT3FJSThPaGZEOV83 Y0lEOE5kRzAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAATAHAwUGyiec ADANBgkqhkiG9w0BAQsFAAOCAQEAijOSmbbZ4M5FwFPXZ5ziDrO22/0kfs264CWr JYHOa35e6OkSTQ/jvlcSQCx47bBnST2IFMt2HzHhu53OSeCmVJFbFgPVnxi8oReK yarFQ4ZCCKqCAsK31hKhrDsMCXy1agBIVMJkkOJrli9PcTFke4CN3uf1hvrRDxF/ 79AoDu0Dm3IGnbA34XbJYHCzgFHu6GqzdGvU8XWSL66ZDQu6U3zIdIx9ePMn3Z9k cqHyMBPZYzB6UDeGckgjWrtQ1l7pNoBgqccYD5pbqcM1PiyUwR1xWhk1ZlmSYrun fh9aZO9GUdhscyVuLTDWF2Bl9rJRK3PmrizSwt199HAV1V1Hag== -----END CERTIFICATE-----Generated at Tue Jun 18 13:13:38 2024 by rpki-client on console-fra.rpki-client.org