$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/485Y_m5I_1xm6zF-q2wFRC4h19s.roa File: 485Y_m5I_1xm6zF-q2wFRC4h19s.roa (raw, json) Hash identifier: gNnAGYutLP4LVcAg6vM/21PXbaMD10wsjiA5U/BiTKw= Subject key identifier: E3:CE:58:FE:6E:48:FF:5C:66:EB:31:7E:AB:6C:05:44:2E:21:D7:DB Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 0F9D Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/485Y_m5I_1xm6zF-q2wFRC4h19s.roa Signing time: Fri 01 Sep 2023 08:57:17 +0000 ROA not before: Fri 01 Sep 2023 08:57:17 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 3462 IP address blocks: 221.120.25.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 15:36:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3997 (0xf9d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Sep 1 08:57:17 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=E3CE58FE6E48FF5C66EB317EAB6C05442E21D7DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:13:12:f4:8d:71:e9:52:74:cb:1b:a1:15:0e: c8:36:02:d7:73:db:30:3a:d3:9f:4a:bf:3d:00:fa: 94:c7:7b:ef:37:85:f1:46:fb:d6:23:0d:36:a9:93: d8:ff:f5:c4:ea:f6:23:ce:e6:39:df:65:3a:f8:ba: 48:33:dd:30:7e:52:4e:13:29:eb:10:27:aa:e4:77: 11:50:c3:93:dd:b5:22:fd:42:d3:17:bc:49:e6:b0: f6:e1:b2:65:a8:2d:ec:ee:fa:94:63:d0:8a:c5:40: f7:42:e8:e8:98:82:48:f4:f0:81:be:2d:da:3b:4b: 54:db:41:08:d0:e9:5e:95:42:ae:77:ed:12:db:c4: f4:15:db:fb:23:87:70:f8:db:f5:0e:5f:8a:93:23: 3e:95:18:53:fb:67:2b:9d:0f:97:c6:e5:89:09:64: 8f:c2:1e:6e:16:b0:bb:fd:44:13:8c:28:c6:11:1f: b7:9d:d2:47:50:fb:34:a8:33:47:73:12:0e:62:2c: 28:33:d0:be:ab:d4:21:e8:ce:15:5b:66:a2:85:de: 16:46:9b:5b:57:0d:c1:48:4e:6d:ef:7a:d4:d4:87: 3f:c7:a3:ae:b7:74:ab:ad:44:6d:20:94:56:51:a0: cc:a5:e3:b6:18:f9:0a:d2:21:f8:2a:f1:a0:40:6a: 5e:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:CE:58:FE:6E:48:FF:5C:66:EB:31:7E:AB:6C:05:44:2E:21:D7:DB X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/485Y_m5I_1xm6zF-q2wFRC4h19s.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 221.120.25.0/24 Signature Algorithm: sha256WithRSAEncryption 71:b8:56:00:3d:6a:90:85:9d:9f:dd:1a:d2:b1:28:a0:f9:d5: 33:1d:d1:36:13:0c:ce:a9:5d:77:cd:21:02:a3:1e:04:ed:9f: d4:b7:93:51:24:bb:9a:c0:50:01:01:f2:18:e4:2f:6d:37:e2: 19:85:7e:b9:c1:df:30:2e:16:05:24:54:35:dd:e3:ce:bb:33: 35:80:7b:7d:fb:40:c3:02:6d:89:88:5b:c2:3f:75:ae:e8:0c: 2c:64:69:33:6b:c3:46:1d:58:e1:fc:a5:1c:f8:38:0d:32:78: b2:c6:eb:30:98:fc:28:a8:d6:1d:bb:52:7b:c4:23:7a:fd:41: 9b:f4:df:5b:24:96:37:a3:14:04:5f:07:ae:4e:c7:dd:2d:b6: ee:77:1b:75:6b:90:64:a3:d4:75:84:f3:10:8d:17:d0:68:10: c5:1e:e7:17:a7:61:3e:26:37:12:3b:cc:b9:3b:75:5a:23:e2: 74:84:fc:0b:51:2a:17:67:9e:59:3a:ab:82:b8:ce:f3:3f:2f: 96:47:fb:d4:3c:32:eb:5d:46:59:05:19:be:c8:e0:53:d2:06: 25:2f:4a:34:4b:cf:fa:2c:a5:01:bc:60:95:0c:9e:72:91:58: 56:7d:a7:f1:8a:52:76:b8:c1:56:0e:b7:73:63:5b:07:ef:4b: db:d0:c5:05 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICD50wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMzA5MDEw ODU3MTdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEUzQ0U1OEZFNkU0OEZG NUM2NkVCMzE3RUFCNkMwNTQ0MkUyMUQ3REIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCeExL0jXHpUnTLG6EVDsg2Atdz2zA6059Kvz0A+pTHe+83hfFG +9YjDTapk9j/9cTq9iPO5jnfZTr4ukgz3TB+Uk4TKesQJ6rkdxFQw5PdtSL9QtMX vEnmsPbhsmWoLezu+pRj0IrFQPdC6OiYgkj08IG+Ldo7S1TbQQjQ6V6VQq537RLb xPQV2/sjh3D42/UOX4qTIz6VGFP7ZyudD5fG5YkJZI/CHm4WsLv9RBOMKMYRH7ed 0kdQ+zSoM0dzEg5iLCgz0L6r1CHozhVbZqKF3hZGm1tXDcFITm3vetTUhz/Ho663 dKutRG0glFZRoMyl47YY+QrSIfgq8aBAal5JAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU485Y/m5I/1xm6zF+q2wFRC4h19swHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC80ODVZX201SV8xeG02ekYtcTJ3 RlJDNGgxOXMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA3XgZ MA0GCSqGSIb3DQEBCwUAA4IBAQBxuFYAPWqQhZ2f3RrSsSig+dUzHdE2EwzOqV13 zSECox4E7Z/Ut5NRJLuawFABAfIY5C9tN+IZhX65wd8wLhYFJFQ13ePOuzM1gHt9 +0DDAm2JiFvCP3Wu6AwsZGkza8NGHVjh/KUc+DgNMniyxuswmPwoqNYdu1J7xCN6 /UGb9N9bJJY3oxQEXweuTsfdLbbudxt1a5Bko9R1hPMQjRfQaBDFHucXp2E+JjcS O8y5O3VaI+J0hPwLUSoXZ55ZOquCuM7zPy+WR/vUPDLrXUZZBRm+yOBT0gYlL0o0 S8/6LKUBvGCVDJ5ykVhWfafxilJ2uMFWDrdzY1sH70vb0MUF -----END CERTIFICATE-----Generated at Tue Jun 4 20:03:01 2024 by rpki-client on console-ams.rpki-client.org