$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/0jB6pwewwyXbBZWSK3cY5gB2DP8.roa File: 0jB6pwewwyXbBZWSK3cY5gB2DP8.roa (raw, json) Hash identifier: 5kKUu+3YmSMXhxKzVXlbVH3xRMUCz4OvngkITcILh6M= Subject key identifier: D2:30:7A:A7:07:B0:C3:25:DB:05:95:92:2B:77:18:E6:00:76:0C:FF Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 0F35 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/0jB6pwewwyXbBZWSK3cY5gB2DP8.roa Signing time: Fri 01 Sep 2023 08:56:45 +0000 ROA not before: Fri 01 Sep 2023 08:56:45 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 3462 IP address blocks: 125.224.0.0/13 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 15:36:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3893 (0xf35) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Sep 1 08:56:45 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=D2307AA707B0C325DB0595922B7718E600760CFF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:d1:93:69:cd:39:8e:a0:57:d0:73:43:eb:d2: 39:a8:9d:e1:40:02:92:02:f4:a5:c1:48:3a:e0:ff: d4:de:bb:e5:42:b2:38:2b:89:db:65:a5:7f:e0:d0: d8:8a:17:53:0a:f2:28:17:73:f7:f5:11:44:bb:7e: 04:c3:87:74:17:c8:2c:19:43:50:61:e4:83:09:82: b6:9c:be:08:af:b7:c5:1b:b3:b8:cd:f6:98:5f:92: b1:c2:4c:c6:19:d7:51:39:7f:f3:d9:68:f9:07:6d: 41:4f:13:fa:16:76:4c:06:66:55:31:e6:31:49:ab: 52:c0:dd:ae:d1:04:a6:42:7a:f8:d7:5a:91:42:da: c1:a0:3e:46:93:49:c0:72:84:3d:40:88:37:35:ef: 50:c1:5e:b4:f5:57:86:7b:03:15:66:c4:e0:77:3a: a9:49:18:fd:3d:c0:78:0f:9b:29:bd:93:58:1e:f2: 9c:f2:f1:84:78:d7:17:aa:a9:01:0a:59:11:18:c6: ff:e7:b6:48:a9:72:e7:f9:39:ba:03:59:9a:f1:7c: 18:2e:f9:bb:99:91:10:b3:89:c2:fe:b1:c4:0c:11: e1:2f:59:af:1d:f4:4b:5d:10:38:bd:7a:f6:44:41: 66:66:74:11:6d:5f:11:1f:70:cf:59:7f:a8:38:65: a0:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:30:7A:A7:07:B0:C3:25:DB:05:95:92:2B:77:18:E6:00:76:0C:FF X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/0jB6pwewwyXbBZWSK3cY5gB2DP8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 125.224.0.0/13 Signature Algorithm: sha256WithRSAEncryption b1:ae:66:e8:5d:04:41:5b:46:44:bf:c4:08:c3:6d:9f:5b:a9: 7c:e3:e8:61:d3:32:c8:7a:c3:e0:c9:15:c7:00:8f:7c:ea:5a: e2:12:61:fe:09:99:68:f9:8d:bb:05:91:e6:58:6b:da:f3:87: b2:92:fb:fb:ef:60:1e:6f:74:c1:12:90:11:c8:6d:04:1d:ed: 91:04:c5:36:90:aa:40:a1:7b:cf:d9:d0:12:ea:ca:c9:a5:72: c5:d2:5a:fb:6f:e7:10:6c:72:44:c6:17:65:cc:39:1b:58:67: ce:40:e3:43:bd:89:f5:35:b9:ae:04:30:dc:2e:72:69:a4:85: e9:e6:1f:36:0e:53:ea:24:dc:70:87:aa:d6:c7:89:f8:8f:26: ed:70:89:11:0d:95:9e:a7:76:9d:04:0f:e2:3f:fc:56:38:9f: 9e:29:d9:87:8e:fc:a5:89:22:e4:3d:60:f7:ae:31:7e:48:dd: a2:b5:cc:37:29:b0:be:cb:e2:0f:82:0a:2c:f2:49:bf:7c:ee: 22:4b:df:df:0f:11:66:57:91:cd:0f:34:78:91:04:08:f2:c9: 08:db:9b:01:31:c5:a2:10:d5:c7:60:a9:cc:30:fd:20:c3:f0: 49:5e:54:06:4b:52:d2:16:c4:91:f0:4b:7e:70:cb:1d:63:86: ac:eb:27:aa -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICDzUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMzA5MDEw ODU2NDVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEQyMzA3QUE3MDdCMEMz MjVEQjA1OTU5MjJCNzcxOEU2MDA3NjBDRkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDB0ZNpzTmOoFfQc0Pr0jmoneFAApIC9KXBSDrg/9Teu+VCsjgr idtlpX/g0NiKF1MK8igXc/f1EUS7fgTDh3QXyCwZQ1Bh5IMJgracvgivt8Ubs7jN 9phfkrHCTMYZ11E5f/PZaPkHbUFPE/oWdkwGZlUx5jFJq1LA3a7RBKZCevjXWpFC 2sGgPkaTScByhD1AiDc171DBXrT1V4Z7AxVmxOB3OqlJGP09wHgPmym9k1ge8pzy 8YR41xeqqQEKWREYxv/ntkipcuf5OboDWZrxfBgu+buZkRCzicL+scQMEeEvWa8d 9EtdEDi9evZEQWZmdBFtXxEfcM9Zf6g4ZaCjAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQU0jB6pwewwyXbBZWSK3cY5gB2DP8wHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC8wakI2cHdld3d5WGJCWldTSzNj WTVnQjJEUDgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMDfeAw DQYJKoZIhvcNAQELBQADggEBALGuZuhdBEFbRkS/xAjDbZ9bqXzj6GHTMsh6w+DJ FccAj3zqWuISYf4JmWj5jbsFkeZYa9rzh7KS+/vvYB5vdMESkBHIbQQd7ZEExTaQ qkChe8/Z0BLqysmlcsXSWvtv5xBsckTGF2XMORtYZ85A40O9ifU1ua4EMNwucmmk henmHzYOU+ok3HCHqtbHifiPJu1wiRENlZ6ndp0ED+I//FY4n54p2YeO/KWJIuQ9 YPeuMX5I3aK1zDcpsL7L4g+CCizySb987iJL398PEWZXkc0PNHiRBAjyyQjbmwEx xaIQ1cdgqcww/SDD8EleVAZLUtIWxJHwS35wyx1jhqzrJ6o= -----END CERTIFICATE-----Generated at Wed Jun 5 00:23:00 2024 by rpki-client on console-ams.rpki-client.org