$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/7ewdx7enBfGu20ORVUYJr9HXv9c.roa File: 7ewdx7enBfGu20ORVUYJr9HXv9c.roa (raw, json) Hash identifier: nqIZ5l6JZGhWEmrWnZ5pS88s0HSzecldgfvXC+nThL8= Subject key identifier: ED:EC:1D:C7:B7:A7:05:F1:AE:DB:43:91:55:46:09:AF:D1:D7:BF:D7 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 0F6F Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/7ewdx7enBfGu20ORVUYJr9HXv9c.roa Signing time: Fri 01 Sep 2023 08:57:04 +0000 ROA not before: Fri 01 Sep 2023 08:57:04 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 142005 IP address blocks: 210.242.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 15:36:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3951 (0xf6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Sep 1 08:57:04 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=EDEC1DC7B7A705F1AEDB4391554609AFD1D7BFD7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:7f:0a:ec:b2:fd:74:c5:e7:5b:78:19:4e:b5: 24:5c:cc:ba:fd:00:83:17:2f:97:36:2a:f5:6a:21: 81:42:04:e6:98:40:0d:1c:34:1a:e8:44:60:2b:69: 2d:c9:0d:83:bb:88:70:b2:61:50:aa:c3:c2:df:ba: 61:ea:ce:2b:75:ff:8d:af:ce:27:e1:c2:42:b5:56: b7:e8:ec:dd:c2:d2:ed:87:5f:d0:7d:aa:6d:bc:eb: 84:be:ea:29:4c:11:56:88:1f:00:41:65:3f:96:33: 11:7b:82:a8:01:38:57:7a:71:d2:97:8c:b0:b7:a7: 2e:bc:dc:a7:75:65:b7:01:e9:f2:2b:2a:39:46:2e: 4d:d0:e4:2e:0a:0e:2f:08:e6:9e:4d:cd:76:c1:71: 19:3f:7a:d5:ec:d9:67:3b:b2:8b:e7:e8:5a:21:c9: f2:b7:1f:38:0e:02:ae:2b:f8:27:28:5a:6b:a8:2d: 9d:46:4a:13:74:cd:08:d5:d1:e6:cb:31:8e:e0:1a: 84:4d:81:50:28:6f:85:09:c0:46:aa:2a:d0:e5:64: f8:b2:00:a6:47:6e:0e:1d:24:6e:c2:b4:7a:b5:f1: 1f:9b:17:31:87:52:dc:55:59:44:2f:eb:d8:b3:c0: 04:b9:89:91:99:50:69:00:30:2a:e4:37:3d:b8:43: 67:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:EC:1D:C7:B7:A7:05:F1:AE:DB:43:91:55:46:09:AF:D1:D7:BF:D7 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/7ewdx7enBfGu20ORVUYJr9HXv9c.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.242.118.0/24 Signature Algorithm: sha256WithRSAEncryption a9:8f:f5:c2:2e:bd:61:1c:0b:d2:a5:98:fe:17:83:44:34:45: 90:08:b7:f4:bf:2b:d6:7b:d0:12:73:97:b1:b1:62:39:53:29: 9c:42:c6:98:ac:b0:cf:2b:33:5c:89:06:cd:a5:69:02:30:47: d7:22:a3:2f:55:00:99:17:07:00:47:57:79:67:35:e7:87:7f: 17:75:e2:47:2a:54:00:52:19:9c:e8:91:87:53:7c:3f:35:5a: d9:00:f8:f6:77:43:42:cc:d7:f3:a8:ad:ff:ca:e2:52:0b:04: f1:00:00:98:f6:6f:a6:82:ca:4e:a3:6a:21:9c:ea:fd:ff:2e: be:18:a2:dc:4e:4b:d0:9c:87:c3:70:b2:8b:a1:cb:ae:f3:af: 93:d2:ce:38:d0:15:1c:b5:94:90:fb:24:ca:24:e6:ec:f3:cf: 45:3f:07:f3:82:8c:87:be:8a:41:35:d9:48:d1:08:23:88:38: 51:6b:bd:99:16:bc:10:9b:a8:63:d3:f5:81:bc:4a:08:1b:93: af:ef:45:83:02:1c:00:4f:e1:b0:02:fe:f4:6f:47:86:e5:a9: 28:0c:61:38:4d:af:20:5b:31:a6:3e:ae:a3:55:93:77:48:08: 7e:55:2d:33:a1:f7:ce:a6:cd:f8:4f:a1:3c:a6:76:9d:95:36: f7:32:a3:ce -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICD28wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMzA5MDEw ODU3MDRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEVERUMxREM3QjdBNzA1 RjFBRURCNDM5MTU1NDYwOUFGRDFEN0JGRDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDsfwrssv10xedbeBlOtSRczLr9AIMXL5c2KvVqIYFCBOaYQA0c NBroRGAraS3JDYO7iHCyYVCqw8LfumHqzit1/42vzifhwkK1Vrfo7N3C0u2HX9B9 qm2864S+6ilMEVaIHwBBZT+WMxF7gqgBOFd6cdKXjLC3py683Kd1ZbcB6fIrKjlG Lk3Q5C4KDi8I5p5NzXbBcRk/etXs2Wc7sovn6FohyfK3HzgOAq4r+CcoWmuoLZ1G ShN0zQjV0ebLMY7gGoRNgVAob4UJwEaqKtDlZPiyAKZHbg4dJG7CtHq18R+bFzGH UtxVWUQv69izwAS5iZGZUGkAMCrkNz24Q2fpAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU7ewdx7enBfGu20ORVUYJr9HXv9cwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC83ZXdkeDdlbkJmR3UyME9SVlVZ SnI5SFh2OWMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA0vJ2 MA0GCSqGSIb3DQEBCwUAA4IBAQCpj/XCLr1hHAvSpZj+F4NENEWQCLf0vyvWe9AS c5exsWI5UymcQsaYrLDPKzNciQbNpWkCMEfXIqMvVQCZFwcAR1d5ZzXnh38XdeJH KlQAUhmc6JGHU3w/NVrZAPj2d0NCzNfzqK3/yuJSCwTxAACY9m+mgspOo2ohnOr9 /y6+GKLcTkvQnIfDcLKLocuu86+T0s440BUctZSQ+yTKJObs889FPwfzgoyHvopB NdlI0QgjiDhRa72ZFrwQm6hj0/WBvEoIG5Ov70WDAhwAT+GwAv70b0eG5akoDGE4 Ta8gWzGmPq6jVZN3SAh+VS0zoffOps34T6E8pnadlTb3MqPO -----END CERTIFICATE-----Generated at Wed Jun 5 00:23:00 2024 by rpki-client on console-ams.rpki-client.org