$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/yakkZcx2ACGBhjbyy3yKy9h0JjU.roa File: yakkZcx2ACGBhjbyy3yKy9h0JjU.roa (raw, json) Hash identifier: U6UNnsT8Ivnf0fDfRQ7Qo8LC39thtp7ZSCoJ5xFiCWU= Subject key identifier: C9:A9:24:65:CC:76:00:21:81:86:36:F2:CB:7C:8A:CB:D8:74:26:35 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 0F70 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/yakkZcx2ACGBhjbyy3yKy9h0JjU.roa Signing time: Fri 01 Sep 2023 08:57:05 +0000 ROA not before: Fri 01 Sep 2023 08:57:05 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131660 IP address blocks: 114.25.250.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 03:55:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3952 (0xf70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Sep 1 08:57:05 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=C9A92465CC760021818636F2CB7C8ACBD8742635 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:fb:68:ec:3e:f4:aa:e6:fe:39:84:7e:6d:67: ce:c0:77:20:af:26:60:9d:4d:a7:09:e9:08:7c:2b: ac:3d:8e:74:f8:2c:89:29:d7:e7:7b:58:a4:a3:68: 60:33:e1:a9:6a:c0:a6:fa:22:81:67:93:fe:a0:22: 97:d8:0f:41:2f:ad:1c:27:88:51:e5:82:ea:73:eb: b9:29:38:2a:1d:36:fc:59:f2:6e:f8:3d:73:93:0b: 7c:30:79:1e:0f:e9:ff:98:ec:9d:ec:04:9e:53:2d: 5d:1c:08:9d:32:9d:73:6b:c6:b5:45:21:71:4e:bb: 72:f0:1c:1e:35:84:63:b3:0d:1b:43:4d:52:6b:68: 9d:ea:d5:25:df:35:cd:44:76:d5:26:33:be:04:c0: e6:b6:10:8f:d8:1c:41:72:ca:b7:0d:81:c2:b4:7e: 12:43:2c:d4:d8:74:e1:b5:70:e5:36:78:48:0b:61: fd:cd:65:52:91:93:cf:8f:6e:b8:7b:af:e5:8d:35: 6e:1d:91:e4:6c:f5:ca:d2:45:52:e7:59:3c:45:06: e9:80:25:22:55:87:0c:ff:e3:ca:05:e4:a3:c0:04: e1:be:96:1e:29:5c:3e:38:26:81:f3:eb:3a:e4:e8: 1b:25:89:ec:7f:09:55:b7:77:a4:4e:f8:41:24:27: f8:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:A9:24:65:CC:76:00:21:81:86:36:F2:CB:7C:8A:CB:D8:74:26:35 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/yakkZcx2ACGBhjbyy3yKy9h0JjU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 114.25.250.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:2f:29:b5:8a:39:4d:95:9e:e8:2a:dd:73:cd:72:47:3e:47: ce:3a:22:be:e5:be:1a:ed:28:a7:62:b4:67:a2:33:24:00:10: ec:21:37:b2:7d:1a:9b:07:8a:04:29:9e:b5:64:34:3c:8d:5c: 0f:ad:88:82:bf:aa:10:dc:32:be:3a:04:0c:53:45:42:93:2f: 60:3a:fa:2c:fd:97:ff:ae:a8:6d:dc:6e:c4:88:54:07:fe:fe: e5:af:9b:07:41:41:bc:de:a6:e4:0c:d5:b2:d7:d9:0a:df:cc: d5:1f:31:49:43:53:74:9f:3e:77:0d:16:9f:46:69:36:72:b6: 53:52:cf:53:97:4b:d1:09:98:d2:cd:2f:40:52:e6:44:cc:cd: 8b:bc:00:5c:eb:63:9b:f0:1f:f4:a1:c3:20:89:f3:02:c4:de: c1:df:5b:47:bd:51:4e:c0:3c:da:05:dd:59:cb:c6:f1:04:b0: c7:8d:69:c6:61:46:45:4e:55:27:5f:98:83:45:bb:61:bd:77: 57:73:a4:94:92:21:66:74:d5:80:37:d9:64:4f:66:66:a3:d0: 49:89:04:ad:98:28:73:5a:42:34:ae:a3:a0:5b:44:a0:6d:f1: 61:40:61:ca:2c:5a:18:62:09:2d:da:5f:03:57:41:52:11:2b: 45:f9:03:2c -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICD3AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMzA5MDEw ODU3MDVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEM5QTkyNDY1Q0M3NjAw MjE4MTg2MzZGMkNCN0M4QUNCRDg3NDI2MzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCk+2jsPvSq5v45hH5tZ87AdyCvJmCdTacJ6Qh8K6w9jnT4LIkp 1+d7WKSjaGAz4alqwKb6IoFnk/6gIpfYD0EvrRwniFHlgupz67kpOCodNvxZ8m74 PXOTC3wweR4P6f+Y7J3sBJ5TLV0cCJ0ynXNrxrVFIXFOu3LwHB41hGOzDRtDTVJr aJ3q1SXfNc1EdtUmM74EwOa2EI/YHEFyyrcNgcK0fhJDLNTYdOG1cOU2eEgLYf3N ZVKRk8+Pbrh7r+WNNW4dkeRs9crSRVLnWTxFBumAJSJVhwz/48oF5KPABOG+lh4p XD44JoHz6zrk6Bsliex/CVW3d6RO+EEkJ/hVAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUyakkZcx2ACGBhjbyy3yKy9h0JjUwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC95YWtrWmN4MkFDR0JoamJ5eTN5 S3k5aDBKalUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAchn6 MA0GCSqGSIb3DQEBCwUAA4IBAQBLLym1ijlNlZ7oKt1zzXJHPkfOOiK+5b4a7Sin YrRnojMkABDsITeyfRqbB4oEKZ61ZDQ8jVwPrYiCv6oQ3DK+OgQMU0VCky9gOvos /Zf/rqht3G7EiFQH/v7lr5sHQUG83qbkDNWy19kK38zVHzFJQ1N0nz53DRafRmk2 crZTUs9Tl0vRCZjSzS9AUuZEzM2LvABc62Ob8B/0ocMgifMCxN7B31tHvVFOwDza Bd1Zy8bxBLDHjWnGYUZFTlUnX5iDRbthvXdXc6SUkiFmdNWAN9lkT2Zmo9BJiQSt mChzWkI0rqOgW0SgbfFhQGHKLFoYYgkt2l8DV0FSEStF+QMs -----END CERTIFICATE-----Generated at Tue Jun 18 12:54:04 2024 by rpki-client on console-ams.rpki-client.org