$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/zVhDDKCJP78roxqERNktb1mgkpg.roa File: zVhDDKCJP78roxqERNktb1mgkpg.roa (raw, json) Hash identifier: EWlWn0QSWh2bFGTN2KlYUnxGsw2grkGqn7+xTvPKTgQ= Subject key identifier: CD:58:43:0C:A0:89:3F:BF:2B:A3:1A:84:44:D9:2D:6F:59:A0:92:98 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 0F81 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/zVhDDKCJP78roxqERNktb1mgkpg.roa Signing time: Fri 01 Sep 2023 08:57:09 +0000 ROA not before: Fri 01 Sep 2023 08:57:09 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 10126 IP address blocks: 114.30.32.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 03:55:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3969 (0xf81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Sep 1 08:57:09 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=CD58430CA0893FBF2BA31A8444D92D6F59A09298 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:84:97:36:2f:f4:06:43:4f:6c:cc:c0:23:4c: 55:39:29:6c:e7:dc:b1:b6:a8:18:af:d0:62:01:09: d4:3c:40:2d:1f:a5:5a:39:df:10:ef:45:fe:42:31: 13:7c:d4:03:db:7b:62:8c:a3:dd:7f:26:28:ef:cb: ca:db:f6:e0:93:a0:69:81:56:76:74:0b:10:40:c5: d2:c2:35:f9:01:c7:ac:0b:1f:16:f2:e4:c5:c2:6e: 1e:a5:c1:da:6f:b4:dd:fe:dd:2e:25:89:6e:ad:d7: c7:6b:d2:96:b8:9a:31:1f:4f:77:b3:33:d6:13:c5: a0:59:d1:c2:28:14:dc:8d:6e:df:bd:2b:b9:3f:df: f6:23:6f:2d:30:16:ab:cf:59:81:7f:06:bd:c4:71: e4:78:0e:2e:16:bf:2f:6d:71:cb:ef:55:9a:ba:b4: da:ec:9f:0f:b6:0f:13:94:8d:d2:4d:cb:65:ef:ca: 54:88:86:33:aa:f7:85:89:78:de:e4:6e:62:14:ab: 07:90:53:bf:66:6f:ae:15:03:9c:3c:83:3c:61:a5: e5:33:3d:98:f3:13:5e:d5:de:de:35:da:d0:71:d4: ad:39:07:12:67:4c:a9:69:99:41:02:8d:bf:6a:19: 0d:1d:07:33:a4:2b:5c:25:94:47:d4:a0:f4:c8:0f: 4d:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:58:43:0C:A0:89:3F:BF:2B:A3:1A:84:44:D9:2D:6F:59:A0:92:98 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/zVhDDKCJP78roxqERNktb1mgkpg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 114.30.32.0/20 Signature Algorithm: sha256WithRSAEncryption bd:99:0c:8a:30:f2:90:19:c1:a9:7d:e8:95:1d:aa:4d:b9:52: f0:1b:47:e3:69:9f:1f:86:62:a8:49:46:ce:f6:b2:c5:0c:ac: aa:4c:62:66:9a:8d:fc:6c:d7:90:92:9a:93:64:34:d1:92:4d: bf:12:ac:0d:f9:e8:c9:2f:58:83:a1:24:07:08:c2:cb:a9:d1: be:e9:6b:75:a8:bf:4f:cc:8c:14:a0:7f:89:bb:23:86:b0:83: 64:ba:d6:50:1a:1f:0f:0b:40:92:52:3a:05:30:65:d6:f6:95: 32:ee:fe:c8:8f:16:d5:5b:12:3b:48:52:d6:76:24:8a:e7:de: cf:04:32:59:0c:a3:4d:ef:3f:02:0f:6a:25:a6:20:66:d6:59: a1:14:75:5f:b6:a5:49:20:cc:d6:48:3b:f7:8a:60:ba:5a:26: 07:01:c1:02:31:2b:c4:78:d7:9d:39:a4:23:88:4c:36:92:4e: 3c:fe:9d:9e:ed:7b:27:8f:36:b1:51:6e:96:bf:5d:dc:92:d8: 8f:c9:3e:25:7b:cf:18:c0:07:8a:8a:44:65:39:c8:74:fa:11: 58:62:4f:45:08:a2:55:b4:03:14:14:af:14:39:84:40:41:6e: 87:a8:4a:46:22:d1:e8:dc:fa:12:49:94:6d:f0:b0:49:d6:e5: a4:7c:b2:26 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICD4EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMzA5MDEw ODU3MDlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKENENTg0MzBDQTA4OTNG QkYyQkEzMUE4NDQ0RDkyRDZGNTlBMDkyOTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDehJc2L/QGQ09szMAjTFU5KWzn3LG2qBiv0GIBCdQ8QC0fpVo5 3xDvRf5CMRN81APbe2KMo91/Jijvy8rb9uCToGmBVnZ0CxBAxdLCNfkBx6wLHxby 5MXCbh6lwdpvtN3+3S4liW6t18dr0pa4mjEfT3ezM9YTxaBZ0cIoFNyNbt+9K7k/ 3/Yjby0wFqvPWYF/Br3EceR4Di4Wvy9tccvvVZq6tNrsnw+2DxOUjdJNy2XvylSI hjOq94WJeN7kbmIUqweQU79mb64VA5w8gzxhpeUzPZjzE17V3t412tBx1K05BxJn TKlpmUECjb9qGQ0dBzOkK1wllEfUoPTID00/AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUzVhDDKCJP78roxqERNktb1mgkpgwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC96VmhEREtDSlA3OHJveHFFUk5r dGIxbWdrcGcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEch4g MA0GCSqGSIb3DQEBCwUAA4IBAQC9mQyKMPKQGcGpfeiVHapNuVLwG0fjaZ8fhmKo SUbO9rLFDKyqTGJmmo38bNeQkpqTZDTRkk2/EqwN+ejJL1iDoSQHCMLLqdG+6Wt1 qL9PzIwUoH+JuyOGsINkutZQGh8PC0CSUjoFMGXW9pUy7v7IjxbVWxI7SFLWdiSK 597PBDJZDKNN7z8CD2olpiBm1lmhFHVftqVJIMzWSDv3imC6WiYHAcECMSvEeNed OaQjiEw2kk48/p2e7XsnjzaxUW6Wv13cktiPyT4le88YwAeKikRlOch0+hFYYk9F CKJVtAMUFK8UOYRAQW6HqEpGItHo3PoSSZRt8LBJ1uWkfLIm -----END CERTIFICATE-----Generated at Tue Jun 18 13:13:38 2024 by rpki-client on console-fra.rpki-client.org