$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/-Zi9ndnq1wgijjEJsDZKcWUKSdg.roa File: -Zi9ndnq1wgijjEJsDZKcWUKSdg.roa (raw, json) Hash identifier: le/3MBxZRR24YSvPBeB2jVMkRC9CYfgExzFdR24Td5k= Subject key identifier: F9:98:BD:9D:D9:EA:D7:08:22:8E:31:09:B0:36:4A:71:65:0A:49:D8 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 0FC1 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/-Zi9ndnq1wgijjEJsDZKcWUKSdg.roa Signing time: Fri 01 Sep 2023 08:57:27 +0000 ROA not before: Fri 01 Sep 2023 08:57:27 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 3462 IP address blocks: 60.249.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4033 (0xfc1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Sep 1 08:57:27 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=F998BD9DD9EAD708228E3109B0364A71650A49D8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:23:07:12:30:0e:37:74:b9:64:a5:ee:c3:74: 61:8f:fe:f4:1b:0a:f6:bf:fc:e3:44:59:9b:65:84: 47:99:0d:56:2e:f1:b4:2f:95:14:e0:d0:38:cd:4a: 1b:74:69:73:7a:54:b7:2e:fe:d0:8f:70:8e:82:6a: 67:1d:7e:14:6a:ae:1e:07:29:18:70:04:1c:c2:03: b1:f0:38:41:f7:4b:ae:af:db:63:85:9b:c4:14:46: f6:13:28:4b:b7:54:2e:ae:33:4d:6d:a7:55:52:1b: 92:74:db:3c:71:68:e4:c7:39:d7:5a:41:6d:e1:00: 01:23:35:64:0d:35:f6:08:c1:ce:9f:a6:ef:8a:46: bf:00:b7:9f:48:0d:4a:bc:46:17:b3:31:6e:66:12: 52:75:e0:b3:df:7c:4f:54:ae:35:f4:69:d4:54:1e: 84:9f:3e:fd:57:f0:e4:4e:c1:b8:a2:c9:d4:33:ae: 47:1b:f5:2d:5f:f5:2b:55:6a:f9:1e:5b:fd:11:7d: d9:59:18:eb:78:8b:66:fc:96:6e:e3:bc:6d:20:14: e8:78:90:69:a0:17:7f:14:16:8e:f3:7b:bb:f0:31: 15:33:5b:b9:d2:89:5e:ac:30:23:4f:8b:2f:bc:6c: 97:f0:4b:e1:6c:18:0d:da:d1:72:b7:19:c5:f1:93: 24:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:98:BD:9D:D9:EA:D7:08:22:8E:31:09:B0:36:4A:71:65:0A:49:D8 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/-Zi9ndnq1wgijjEJsDZKcWUKSdg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.249.0.0/16 Signature Algorithm: sha256WithRSAEncryption c3:e5:f1:07:3c:18:33:47:00:1c:ec:42:ab:89:ee:fe:84:ba: f1:62:27:37:e3:32:71:94:87:11:d8:eb:00:4d:5d:9c:68:73: f3:53:e3:d9:2a:ee:11:ae:57:fb:1d:bc:54:7f:a8:39:cf:37: cd:93:6a:c5:ab:3a:17:7c:6c:10:13:9f:9c:56:d5:8a:48:89: 04:c1:20:54:97:8c:73:85:c8:d3:13:b4:17:1f:ee:0d:f3:cd: 94:f4:bc:3f:d1:12:ee:1e:10:69:18:d0:c1:10:b0:92:66:03: 18:50:6a:0a:60:11:b7:95:5a:4d:40:43:5b:a7:ef:3d:cd:8f: 66:65:f2:3a:cb:bf:8f:05:ea:fd:ed:af:22:a1:35:f9:14:3c: 6c:93:3d:04:9d:a1:68:24:14:70:a9:10:ee:24:74:19:1d:57: 78:df:e5:6b:0a:c6:d0:5e:b1:49:d4:3e:dc:66:5f:36:a8:ea: be:50:de:b1:c8:29:ed:6a:0c:27:d8:f8:7b:27:98:fb:a6:e4: bf:3f:de:35:6b:c1:fd:d2:12:17:93:e3:4f:6b:78:35:fe:40: 1d:71:75:67:41:f5:d1:51:3d:15:4b:a2:bb:2b:93:ea:5b:e2: 45:ce:ec:94:2b:5b:49:9d:e9:12:2e:fa:9b:93:7d:b7:b0:69: 58:ca:48:aa -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICD8EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMzA5MDEw ODU3MjdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEY5OThCRDlERDlFQUQ3 MDgyMjhFMzEwOUIwMzY0QTcxNjUwQTQ5RDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRIwcSMA43dLlkpe7DdGGP/vQbCva//ONEWZtlhEeZDVYu8bQv lRTg0DjNSht0aXN6VLcu/tCPcI6CamcdfhRqrh4HKRhwBBzCA7HwOEH3S66v22OF m8QURvYTKEu3VC6uM01tp1VSG5J02zxxaOTHOddaQW3hAAEjNWQNNfYIwc6fpu+K Rr8At59IDUq8RhezMW5mElJ14LPffE9UrjX0adRUHoSfPv1X8OROwbiiydQzrkcb 9S1f9StVavkeW/0RfdlZGOt4i2b8lm7jvG0gFOh4kGmgF38UFo7ze7vwMRUzW7nS iV6sMCNPiy+8bJfwS+FsGA3a0XK3GcXxkySHAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQU+Zi9ndnq1wgijjEJsDZKcWUKSdgwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC8tWmk5bmRucTF3Z2lqakVKc0Ra S2NXVUtTZGcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAPPkw DQYJKoZIhvcNAQELBQADggEBAMPl8Qc8GDNHABzsQquJ7v6EuvFiJzfjMnGUhxHY 6wBNXZxoc/NT49kq7hGuV/sdvFR/qDnPN82TasWrOhd8bBATn5xW1YpIiQTBIFSX jHOFyNMTtBcf7g3zzZT0vD/REu4eEGkY0MEQsJJmAxhQagpgEbeVWk1AQ1un7z3N j2Zl8jrLv48F6v3tryKhNfkUPGyTPQSdoWgkFHCpEO4kdBkdV3jf5WsKxtBesUnU PtxmXzao6r5Q3rHIKe1qDCfY+HsnmPum5L8/3jVrwf3SEheT409reDX+QB1xdWdB 9dFRPRVLorsrk+pb4kXO7JQrW0md6RIu+puTfbewaVjKSKo= -----END CERTIFICATE-----Generated at Mon Jun 3 19:07:54 2024 by rpki-client on console-fra.rpki-client.org