$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/8HC_z4Ra_L97cnpoqL4aRT6ksRk.roa File: 8HC_z4Ra_L97cnpoqL4aRT6ksRk.roa (raw, json) Hash identifier: 9hn3JOqsRtLkUb09rR6bIlIxDYbedhsgmBK2b5vyTEE= Subject key identifier: F0:70:BF:CF:84:5A:FC:BF:7B:72:7A:68:A8:BE:1A:45:3E:A4:B1:19 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0BAA Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/8HC_z4Ra_L97cnpoqL4aRT6ksRk.roa Signing time: Fri 01 Sep 2023 08:50:51 +0000 ROA not before: Fri 01 Sep 2023 08:50:51 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9674 IP address blocks: 110.24.0.0/13 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 18:54:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2986 (0xbaa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Sep 1 08:50:51 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=F070BFCF845AFCBF7B727A68A8BE1A453EA4B119 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:6c:26:4f:71:d1:a3:38:6e:57:5b:09:90:c3: bb:f4:fc:3e:a7:96:a5:e2:e6:51:6e:e8:d5:bf:dd: 15:75:7f:80:c3:49:44:a0:d6:7f:d3:ff:a2:61:4d: 3e:43:f3:9a:6c:45:ba:26:c4:af:33:0e:8c:6b:a3: 50:09:38:15:81:7d:8c:45:ec:37:6c:6e:71:6a:76: d5:95:7b:8a:e0:53:7e:8a:c0:c0:20:65:85:95:4a: cc:bc:b3:8e:cf:a4:23:a7:fb:55:82:29:28:d9:0e: b7:ac:68:36:ea:2b:65:b0:cb:66:e1:3e:49:e7:dd: 13:bc:84:d0:7b:a1:6d:2b:ab:78:05:af:54:05:17: 6d:62:25:d9:5b:90:29:c6:36:3b:f0:11:9c:54:1c: 11:e3:3f:d6:2f:93:ef:0e:1b:10:02:31:23:be:34: 9c:c0:29:75:df:14:1b:2a:8e:d1:86:ff:7a:8b:cd: f2:b2:34:14:ba:26:6b:69:d1:76:35:37:e3:59:71: fe:50:72:b5:a4:68:47:10:e2:4a:7b:95:87:eb:a4: df:ad:8b:af:70:22:44:ce:be:68:6b:b3:ae:42:bd: cf:87:da:85:0e:b7:fe:fb:df:44:80:0f:1f:ff:4e: fe:20:68:de:7b:72:8d:d7:8d:43:87:c1:6e:a0:8b: 05:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:70:BF:CF:84:5A:FC:BF:7B:72:7A:68:A8:BE:1A:45:3E:A4:B1:19 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/8HC_z4Ra_L97cnpoqL4aRT6ksRk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 110.24.0.0/13 Signature Algorithm: sha256WithRSAEncryption 86:22:b1:2a:f8:ad:fc:53:b0:91:33:58:a1:21:fb:98:ed:76: 18:93:3f:ab:06:23:ae:fc:00:b2:25:98:78:15:bc:3e:bd:3f: d8:c6:84:13:66:9b:e4:8f:25:0e:d1:02:73:aa:2c:14:d7:8c: c8:16:2c:8a:46:f0:f0:b3:a3:fd:4e:09:2b:12:26:e3:43:e4: 2b:f0:a6:45:56:ef:27:c6:e4:c1:08:8f:96:e3:e3:c6:9d:d5: 7c:ec:04:4f:e2:5e:c5:b0:fd:cb:51:38:ff:2b:9b:a2:ed:96: 25:32:9b:96:9c:d9:33:ff:4e:d2:43:97:60:84:17:67:d5:fc: 59:7d:18:49:88:25:f1:de:36:1a:6e:2a:e7:99:09:6d:fa:b1: ac:22:7d:f4:49:cf:1d:30:b2:9e:05:bd:b3:9f:ae:7e:d2:11: fb:65:18:b8:d0:26:b3:31:38:8b:58:21:1c:c8:e3:e8:a1:47: fc:8d:3b:d6:bb:ab:e8:10:61:87:c0:7c:2a:cc:59:5b:19:d4: 40:fb:74:3c:8c:45:09:e5:8b:06:30:41:77:65:f1:e1:84:90: cd:e2:73:ed:a7:ec:b8:5c:5c:3e:0d:cd:80:d8:7e:da:ec:e3: ae:e1:8b:c4:f6:f3:5f:4d:45:13:ed:0f:1c:41:ea:76:3c:4e: f6:cf:33:ad -----BEGIN CERTIFICATE----- MIIEyzCCA7OgAwIBAgICC6owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yMzA5MDEw ODUwNTFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEYwNzBCRkNGODQ1QUZD QkY3QjcyN0E2OEE4QkUxQTQ1M0VBNEIxMTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDAbCZPcdGjOG5XWwmQw7v0/D6nlqXi5lFu6NW/3RV1f4DDSUSg 1n/T/6JhTT5D85psRbomxK8zDoxro1AJOBWBfYxF7DdsbnFqdtWVe4rgU36KwMAg ZYWVSsy8s47PpCOn+1WCKSjZDresaDbqK2Wwy2bhPknn3RO8hNB7oW0rq3gFr1QF F21iJdlbkCnGNjvwEZxUHBHjP9Yvk+8OGxACMSO+NJzAKXXfFBsqjtGG/3qLzfKy NBS6Jmtp0XY1N+NZcf5QcrWkaEcQ4kp7lYfrpN+ti69wIkTOvmhrs65Cvc+H2oUO t/7730SADx//Tv4gaN57co3XjUOHwW6giwXJAgMBAAGjggHnMIIB4zAdBgNVHQ4E FgQU8HC/z4Ra/L97cnpoqL4aRT6ksRkwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVULzhIQ196NFJhX0w5N2NucG9xTDRhUlQ2 a3NSay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgABMAUDAwNuGDANBgkq hkiG9w0BAQsFAAOCAQEAhiKxKvit/FOwkTNYoSH7mO12GJM/qwYjrvwAsiWYeBW8 Pr0/2MaEE2ab5I8lDtECc6osFNeMyBYsikbw8LOj/U4JKxIm40PkK/CmRVbvJ8bk wQiPluPjxp3VfOwET+JexbD9y1E4/yubou2WJTKblpzZM/9O0kOXYIQXZ9X8WX0Y SYgl8d42Gm4q55kJbfqxrCJ99EnPHTCyngW9s5+uftIR+2UYuNAmszE4i1ghHMjj 6KFH/I071rur6BBhh8B8KsxZWxnUQPt0PIxFCeWLBjBBd2Xx4YSQzeJz7afsuFxc Pg3NgNh+2uzjruGLxPbzX01FE+0PHEHqdjxO9s8zrQ== -----END CERTIFICATE-----Generated at Mon Jun 3 02:57:39 2024 by rpki-client on console-fra.rpki-client.org