$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/ysgZhpYJKTynI-LXmeAoBQgUiTY.roa File: ysgZhpYJKTynI-LXmeAoBQgUiTY.roa (raw, json) Hash identifier: gKVy0zpWZvcbzLLSQmIu3P5u5AXOtfZ38ZwduWlI1eM= Subject key identifier: CA:C8:19:86:96:09:29:3C:A7:23:E2:D7:99:E0:28:05:08:14:89:36 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 0FAD Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ysgZhpYJKTynI-LXmeAoBQgUiTY.roa Signing time: Fri 01 Sep 2023 08:57:22 +0000 ROA not before: Fri 01 Sep 2023 08:57:22 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 17714 IP address blocks: 175.111.255.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 03:55:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4013 (0xfad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Sep 1 08:57:22 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=CAC819869609293CA723E2D799E0280508148936 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:ac:57:cf:a0:e5:90:10:79:1b:48:f9:ee:2d: db:10:7a:c1:5e:f8:64:81:f2:a6:59:10:b1:e3:f4: f4:cc:fa:5f:02:83:ac:f7:25:42:cc:bc:8c:73:b2: 1d:73:1e:08:39:7b:03:37:6b:87:d7:41:d7:ea:be: 17:75:d3:15:da:78:ca:c0:e8:66:fa:95:dd:8c:1e: 6b:d3:12:53:b0:25:39:91:8d:2d:3e:a5:91:09:4a: e0:a2:3d:38:cd:6e:60:86:37:1e:ff:df:a1:74:23: 98:ea:86:2e:d6:71:b8:36:0f:23:e7:0a:f6:b4:82: c4:5b:14:24:8c:e7:c9:ab:e4:eb:42:6b:7a:cf:f1: de:95:0d:b4:89:3d:89:60:4d:b0:cf:c0:39:ab:e6: 27:ce:bd:c5:ea:5f:1a:2e:ef:04:ea:55:04:ba:ab: 8a:c3:4c:00:5f:34:99:3b:3d:34:b6:5f:81:70:32: 0a:57:94:a3:36:7d:4d:f9:30:6f:d5:24:05:f0:31: 7f:f4:f2:93:92:09:b1:87:73:ee:21:b3:e0:6a:94: 4e:fe:a0:28:ce:8b:23:09:2c:de:cb:89:2a:db:7f: f2:aa:77:ba:3f:0b:e9:12:44:a5:76:7d:7b:5a:72: dc:89:ff:07:55:c7:ae:06:4f:14:3d:7a:a8:1f:47: 5e:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:C8:19:86:96:09:29:3C:A7:23:E2:D7:99:E0:28:05:08:14:89:36 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ysgZhpYJKTynI-LXmeAoBQgUiTY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 175.111.255.0/24 Signature Algorithm: sha256WithRSAEncryption 29:f9:1a:a3:fb:72:b4:0d:82:be:e9:bb:e7:7c:4c:9c:ec:37: 73:f7:15:07:d6:77:65:36:9b:3c:8c:e3:47:d2:85:a4:bd:0b: a9:83:ce:29:59:3f:ec:5d:5a:0f:b2:4c:0f:e4:00:23:97:c4: a7:68:f2:c6:31:89:11:eb:9f:77:7c:45:94:97:a7:01:84:c2: e4:2f:61:a7:1a:c4:98:89:99:07:13:b6:42:71:e5:06:10:f3: 26:bc:f7:4f:e5:be:56:7b:85:e0:30:7c:94:da:90:b1:27:83: 70:e6:1b:44:24:e6:76:01:8a:52:3a:1b:f3:ec:50:89:73:ac: f0:e2:da:2e:72:91:f2:8a:bb:2f:1a:8d:e9:1e:8b:ed:ac:c4: d7:85:ef:14:bb:1e:69:8d:f3:14:e7:bb:ef:8c:75:88:60:b9: ff:84:49:11:3c:aa:85:e3:ee:db:c1:62:4b:c6:91:9b:41:90: 38:d0:0e:16:55:5a:13:e6:4f:32:2f:57:c4:54:1a:d7:33:cf: b1:97:2f:86:f6:c3:05:8f:46:e4:98:d1:22:b1:c7:35:79:9e: 3f:4d:89:68:68:a3:17:de:7f:d4:18:36:db:d7:91:db:18:f1: e7:bd:46:7e:a1:62:9d:e7:62:03:11:37:d4:ec:cf:df:75:52: b7:14:55:2a -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICD60wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMzA5MDEw ODU3MjJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKENBQzgxOTg2OTYwOTI5 M0NBNzIzRTJENzk5RTAyODA1MDgxNDg5MzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCrFfPoOWQEHkbSPnuLdsQesFe+GSB8qZZELHj9PTM+l8Cg6z3 JULMvIxzsh1zHgg5ewM3a4fXQdfqvhd10xXaeMrA6Gb6ld2MHmvTElOwJTmRjS0+ pZEJSuCiPTjNbmCGNx7/36F0I5jqhi7Wcbg2DyPnCva0gsRbFCSM58mr5OtCa3rP 8d6VDbSJPYlgTbDPwDmr5ifOvcXqXxou7wTqVQS6q4rDTABfNJk7PTS2X4FwMgpX lKM2fU35MG/VJAXwMX/08pOSCbGHc+4hs+BqlE7+oCjOiyMJLN7LiSrbf/Kqd7o/ C+kSRKV2fXtactyJ/wdVx64GTxQ9eqgfR15NAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUysgZhpYJKTynI+LXmeAoBQgUiTYwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC95c2daaHBZSktUeW5JLUxYbWVB b0JRZ1VpVFkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAr2// MA0GCSqGSIb3DQEBCwUAA4IBAQAp+Rqj+3K0DYK+6bvnfEyc7Ddz9xUH1ndlNps8 jONH0oWkvQupg84pWT/sXVoPskwP5AAjl8SnaPLGMYkR6593fEWUl6cBhMLkL2Gn GsSYiZkHE7ZCceUGEPMmvPdP5b5We4XgMHyU2pCxJ4Nw5htEJOZ2AYpSOhvz7FCJ c6zw4toucpHyirsvGo3pHovtrMTXhe8Uux5pjfMU57vvjHWIYLn/hEkRPKqF4+7b wWJLxpGbQZA40A4WVVoT5k8yL1fEVBrXM8+xly+G9sMFj0bkmNEiscc1eZ4/TYlo aKMX3n/UGDbb15HbGPHnvUZ+oWKd52IDETfU7M/fdVK3FFUq -----END CERTIFICATE-----Generated at Tue Jun 18 12:54:04 2024 by rpki-client on console-ams.rpki-client.org