$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/ziZJom52Kq-GD68JWUs-YbcckYY.roa File: ziZJom52Kq-GD68JWUs-YbcckYY.roa (raw, json) Hash identifier: w8iR2rvYFPBzzBTY8Z3cRip/nO7VVAqonjj8330FUH8= Subject key identifier: CE:26:49:A2:6E:76:2A:AF:86:0F:AF:09:59:4B:3E:61:B7:1C:91:86 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 0F6C Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ziZJom52Kq-GD68JWUs-YbcckYY.roa Signing time: Fri 01 Sep 2023 08:57:03 +0000 ROA not before: Fri 01 Sep 2023 08:57:03 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131660 IP address blocks: 2001:b000:594::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 03:55:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3948 (0xf6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Sep 1 08:57:03 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=CE2649A26E762AAF860FAF09594B3E61B71C9186 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:35:2e:35:f1:0d:08:40:cf:1e:dc:7a:b9:41: 15:ff:5d:89:d2:2b:da:6e:ea:90:bc:63:49:a5:13: 6e:21:9d:0c:f8:43:94:37:d6:69:1f:89:09:1d:6d: 7c:ce:7d:cd:10:86:a1:7d:06:1f:e5:60:2a:fb:42: c5:da:b7:25:63:f0:02:68:8b:2c:b5:84:e9:dc:f2: 4c:e1:47:fe:17:44:73:93:a7:95:4f:01:49:ae:3d: da:6a:7f:0f:11:3c:4f:39:cc:45:52:54:78:77:92: 8a:06:e2:6d:44:ee:e1:b8:63:54:97:d3:db:c2:50: 67:97:7a:6a:8a:50:48:46:2a:31:7e:51:b7:b3:8a: 7b:28:1f:ce:ba:d1:96:87:d2:a4:1f:8b:42:a4:0b: b0:a0:6d:19:17:2b:bf:77:72:2b:54:52:20:00:b5: 88:52:f4:55:42:0d:8a:f7:cf:7f:a5:6c:42:dd:eb: bf:4a:a8:eb:d2:a2:09:b1:54:0c:45:1d:b2:af:48: 84:ac:41:cc:99:9f:e4:47:2a:d0:6d:73:39:af:ae: 72:8d:f3:95:d2:ad:9f:a2:fa:ca:e6:59:c7:eb:4e: ad:69:c8:cc:71:83:bd:3e:3a:1b:50:09:d8:d4:b3: 5e:4d:28:24:24:5b:4e:0b:65:4e:fd:fe:27:6e:85: 26:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:26:49:A2:6E:76:2A:AF:86:0F:AF:09:59:4B:3E:61:B7:1C:91:86 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/ziZJom52Kq-GD68JWUs-YbcckYY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:b000:594::/48 Signature Algorithm: sha256WithRSAEncryption 8a:9f:4e:c5:bf:b2:11:73:5b:0a:24:9a:d6:13:0e:d2:d5:d0: 4b:44:49:c0:57:55:2a:e5:2f:b9:17:5d:28:28:7d:68:48:ae: d5:de:3c:6c:25:fe:f7:3d:96:c6:82:3e:34:08:3b:3a:1f:9b: b9:44:0d:58:3f:66:7f:4d:53:6e:d9:7a:dc:26:79:6c:03:23: 4d:3c:26:04:af:0d:8c:a2:05:72:a0:aa:53:6b:89:05:06:aa: d7:0d:76:a3:b7:fe:fb:ef:43:62:16:4a:79:0c:08:cb:cb:65: 16:e1:65:fa:24:c6:46:af:37:bc:72:67:5d:05:21:e1:09:ff: 09:90:a5:42:4e:bd:9c:c7:03:2e:2f:c2:e1:8a:36:56:82:e5: 68:5e:97:35:21:86:d2:cd:b6:b8:56:7b:13:2f:20:99:d9:14: df:86:ed:c1:ce:74:6a:73:21:f6:40:9e:4c:ea:0b:88:9b:2e: 05:40:73:20:96:75:5d:f3:01:8e:a9:3b:a4:7d:e8:83:04:f9: 33:00:ab:13:eb:99:13:20:1f:44:b0:73:0a:5e:47:d7:6d:21: c1:64:53:7e:8b:8c:bb:c8:58:b7:7b:9b:38:13:21:c9:26:7b: 22:4a:6e:ac:be:31:7f:76:2f:02:ba:6e:8d:0a:b6:a9:c8:7c: bf:a0:14:5f -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICD2wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMzA5MDEw ODU3MDNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKENFMjY0OUEyNkU3NjJB QUY4NjBGQUYwOTU5NEIzRTYxQjcxQzkxODYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSNS418Q0IQM8e3Hq5QRX/XYnSK9pu6pC8Y0mlE24hnQz4Q5Q3 1mkfiQkdbXzOfc0QhqF9Bh/lYCr7QsXatyVj8AJoiyy1hOnc8kzhR/4XRHOTp5VP AUmuPdpqfw8RPE85zEVSVHh3kooG4m1E7uG4Y1SX09vCUGeXemqKUEhGKjF+Ubez insoH8660ZaH0qQfi0KkC7CgbRkXK793citUUiAAtYhS9FVCDYr3z3+lbELd679K qOvSogmxVAxFHbKvSISsQcyZn+RHKtBtczmvrnKN85XSrZ+i+srmWcfrTq1pyMxx g70+OhtQCdjUs15NKCQkW04LZU79/iduhSbpAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUziZJom52Kq+GD68JWUs+YbcckYYwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC96aVpKb201MktxLUdENjhKV1Vz LVliY2NrWVkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAGw AAWUMA0GCSqGSIb3DQEBCwUAA4IBAQCKn07Fv7IRc1sKJJrWEw7S1dBLREnAV1Uq 5S+5F10oKH1oSK7V3jxsJf73PZbGgj40CDs6H5u5RA1YP2Z/TVNu2XrcJnlsAyNN PCYErw2MogVyoKpTa4kFBqrXDXajt/7770NiFkp5DAjLy2UW4WX6JMZGrze8cmdd BSHhCf8JkKVCTr2cxwMuL8LhijZWguVoXpc1IYbSzba4VnsTLyCZ2RTfhu3BznRq cyH2QJ5M6guImy4FQHMglnVd8wGOqTukfeiDBPkzAKsT65kTIB9EsHMKXkfXbSHB ZFN+i4y7yFi3e5s4EyHJJnsiSm6svjF/di8Cum6NCrapyHy/oBRf -----END CERTIFICATE-----Generated at Tue Jun 18 12:54:04 2024 by rpki-client on console-ams.rpki-client.org