$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/y3IdcpzkkFb4uNxqUN7BitLDMt0.roa File: y3IdcpzkkFb4uNxqUN7BitLDMt0.roa (raw, json) Hash identifier: CiQoVsaZpigOdcvuvg3b6EQag1vkgE1MgJnQPb7UTrs= Subject key identifier: CB:72:1D:72:9C:E4:90:56:F8:B8:DC:6A:50:DE:C1:8A:D2:C3:32:DD Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 0FB3 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/y3IdcpzkkFb4uNxqUN7BitLDMt0.roa Signing time: Fri 01 Sep 2023 08:57:23 +0000 ROA not before: Fri 01 Sep 2023 08:57:23 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 17714 IP address blocks: 203.78.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 03:55:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4019 (0xfb3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Sep 1 08:57:23 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=CB721D729CE49056F8B8DC6A50DEC18AD2C332DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:55:e6:8d:72:42:9e:a6:c9:23:bf:f6:c0:aa: fc:c6:ca:c3:4f:b8:d7:26:0d:a6:b9:4a:dc:d9:08: 17:21:c2:ad:03:68:98:ff:ed:b7:2c:b4:44:87:9b: 22:3a:4e:24:39:07:70:a5:ae:37:8a:0c:54:af:a7: f1:a9:97:ee:64:92:2b:8f:ef:02:40:fd:f5:be:05: c7:8a:3f:65:1b:e7:e4:d8:b1:e9:b7:91:e2:b0:bd: eb:aa:f5:dd:a3:75:73:83:69:2d:e3:b1:86:4e:3d: a5:82:e2:90:2f:2e:86:b2:7b:b3:d2:7b:89:c3:82: 97:23:bb:00:67:4f:48:b7:5d:7d:7e:48:6d:5a:a8: c3:b0:6c:73:5f:7b:5b:73:f9:22:2a:2e:3f:ff:82: 3e:1a:1e:fb:9c:86:b8:76:4a:f3:66:60:75:09:de: 24:de:03:25:fa:95:ab:09:e5:b5:24:de:f3:b8:db: 67:a6:fc:49:bb:0e:75:ae:ee:09:75:d8:81:bd:ac: d2:32:4a:24:55:c9:1c:b0:21:5c:72:e1:0e:4f:61: c4:8d:47:97:5d:0d:ce:5a:b9:8e:e2:81:3d:83:2d: 58:2e:3d:2f:6c:50:3a:2b:5b:4f:71:e9:79:59:11: 6a:52:eb:fd:39:64:1d:48:07:44:37:d6:e4:81:dc: 86:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:72:1D:72:9C:E4:90:56:F8:B8:DC:6A:50:DE:C1:8A:D2:C3:32:DD X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/y3IdcpzkkFb4uNxqUN7BitLDMt0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.78.190.0/24 Signature Algorithm: sha256WithRSAEncryption c4:a3:4c:0c:e5:10:26:8b:37:e9:fa:2d:24:7f:4a:7a:d2:12: 10:31:0a:dd:30:b4:41:84:a6:35:93:86:22:79:d0:ad:2b:fb: 88:f1:9c:4b:75:cb:56:ba:6e:bf:d4:4b:85:1b:4b:d4:41:d6: cd:99:9f:36:8e:08:8e:4c:9e:43:48:75:39:63:33:19:63:90: 50:70:1c:47:f2:db:ef:b7:7f:68:2e:d0:59:f6:f8:c0:13:93: df:73:bc:fe:16:18:22:13:9c:4b:17:00:28:08:44:bc:f2:5c: 35:e4:12:ec:a1:d6:2a:d8:19:ca:9e:aa:a2:9e:f3:85:13:9b: a6:9a:d3:24:d8:fe:7b:76:b8:17:59:85:ba:df:00:5f:6d:3e: 12:67:6b:bf:eb:57:49:8b:f2:bf:12:ef:b3:85:7c:ec:c2:c5: 87:06:d7:91:0d:6c:7f:ba:84:89:91:f3:84:21:66:d5:f2:5e: 5f:6a:ec:80:05:72:39:2b:92:4d:df:dd:16:28:e5:4b:65:02: ce:fb:25:93:e8:dc:a3:50:da:27:75:7a:f5:1b:57:56:1e:c6: 90:e5:3b:a6:56:c3:db:44:f4:43:d3:1b:f6:e9:20:f4:47:e2: f7:b8:f2:df:72:54:32:43:a6:20:ce:bb:cd:30:64:c6:2f:d9: c6:0a:9b:49 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICD7MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMzA5MDEw ODU3MjNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKENCNzIxRDcyOUNFNDkw NTZGOEI4REM2QTUwREVDMThBRDJDMzMyREQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFVeaNckKepskjv/bAqvzGysNPuNcmDaa5StzZCBchwq0DaJj/ 7bcstESHmyI6TiQ5B3ClrjeKDFSvp/Gpl+5kkiuP7wJA/fW+BceKP2Ub5+TYsem3 keKwveuq9d2jdXODaS3jsYZOPaWC4pAvLoaye7PSe4nDgpcjuwBnT0i3XX1+SG1a qMOwbHNfe1tz+SIqLj//gj4aHvuchrh2SvNmYHUJ3iTeAyX6lasJ5bUk3vO422em /Em7DnWu7gl12IG9rNIySiRVyRywIVxy4Q5PYcSNR5ddDc5auY7igT2DLVguPS9s UDorW09x6XlZEWpS6/05ZB1IB0Q31uSB3IbhAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUy3IdcpzkkFb4uNxqUN7BitLDMt0wHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC95M0lkY3B6a2tGYjR1TnhxVU43 Qml0TERNdDAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy06+ MA0GCSqGSIb3DQEBCwUAA4IBAQDEo0wM5RAmizfp+i0kf0p60hIQMQrdMLRBhKY1 k4YiedCtK/uI8ZxLdctWum6/1EuFG0vUQdbNmZ82jgiOTJ5DSHU5YzMZY5BQcBxH 8tvvt39oLtBZ9vjAE5Pfc7z+FhgiE5xLFwAoCES88lw15BLsodYq2BnKnqqinvOF E5ummtMk2P57drgXWYW63wBfbT4SZ2u/61dJi/K/Eu+zhXzswsWHBteRDWx/uoSJ kfOEIWbV8l5fauyABXI5K5JN390WKOVLZQLO+yWT6NyjUNondXr1G1dWHsaQ5Tum VsPbRPRD0xv26SD0R+L3uPLfclQyQ6YgzrvNMGTGL9nGCptJ -----END CERTIFICATE-----Generated at Tue Jun 18 12:54:04 2024 by rpki-client on console-ams.rpki-client.org