$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/7ldcf4mMtMdmhsKPDp_2g9WYdfk.roa File: 7ldcf4mMtMdmhsKPDp_2g9WYdfk.roa (raw, json) Hash identifier: pmhoYHhDb1PaD6gRd93Be0D3i6UqQ44SLx9XOl+rpV0= Subject key identifier: EE:57:5C:7F:89:8C:B4:C7:66:86:C2:8F:0E:9F:F6:83:D5:98:75:F9 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 0F73 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/7ldcf4mMtMdmhsKPDp_2g9WYdfk.roa Signing time: Fri 01 Sep 2023 08:57:06 +0000 ROA not before: Fri 01 Sep 2023 08:57:06 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 17421 IP address blocks: 221.120.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 01:23:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3955 (0xf73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Sep 1 08:57:06 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=EE575C7F898CB4C76686C28F0E9FF683D59875F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:eb:7d:b5:7b:df:46:e7:ff:30:46:b4:eb:3e: 16:c9:c8:33:f2:be:4f:1d:b6:56:b2:43:c9:38:a6: 12:9b:e3:00:46:39:35:2f:0d:a3:b7:68:66:fa:cd: 8f:fd:a8:d7:58:2d:93:4b:3c:fb:fb:93:29:3f:26: 1f:64:21:19:8a:45:43:38:41:fd:d0:45:ad:42:78: b9:de:ee:27:a2:97:88:e6:05:ee:b8:2d:e6:73:b5: b2:35:99:65:a4:bf:ab:e7:98:65:b4:64:bf:c7:b4: de:da:b4:38:c2:1f:d3:5a:62:8a:66:a3:be:18:59: 2e:bc:d2:40:bc:a3:b4:5d:23:63:51:5f:e7:ab:68: 02:79:a8:68:45:1b:b8:d5:2a:1b:40:75:2d:2d:b1: 54:18:02:87:7d:b1:2a:6a:64:c8:59:94:06:fb:e0: b5:fc:85:f7:15:68:5b:56:ae:60:06:0b:c8:85:84: b1:7f:90:5b:63:fa:99:db:b3:bd:03:63:75:63:4f: 70:c7:f2:3a:00:7c:06:d2:02:b0:de:b1:e4:b5:f4: a0:22:25:f8:ea:db:9f:0b:58:e2:30:fd:2c:91:30: e9:f7:07:6e:8e:1b:72:34:1f:51:a2:bc:f0:22:cc: bc:29:75:a6:09:2f:69:35:03:6f:f8:f1:18:98:fd: 71:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:57:5C:7F:89:8C:B4:C7:66:86:C2:8F:0E:9F:F6:83:D5:98:75:F9 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/7ldcf4mMtMdmhsKPDp_2g9WYdfk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 221.120.64.0/19 Signature Algorithm: sha256WithRSAEncryption 7f:5f:b3:8b:ca:11:bd:25:28:7a:0d:6b:0f:a8:fe:02:6e:4b: 4c:56:df:60:bb:ef:ca:41:dd:03:29:4b:dc:e4:1e:1a:cc:4f: 76:10:d1:bb:d1:1a:ea:01:ad:c7:e7:ac:29:04:7f:c4:68:3a: c7:35:b2:3e:58:ae:f0:18:52:5d:20:9f:2c:0b:d4:61:af:20: 02:e0:14:45:ef:90:7a:e2:ce:20:99:31:ab:bf:51:0d:d7:08: 7a:23:ad:f2:0b:ca:fc:6c:db:f7:27:ec:dd:3c:2b:73:12:a4: 35:6e:2c:15:e5:b9:74:d7:16:ea:28:62:fd:fe:b2:d3:7a:8f: 14:8c:75:17:c3:10:c5:fa:3d:1c:82:a7:e7:17:92:56:2b:3a: 79:3b:c6:23:a4:1c:64:36:76:42:8e:f4:93:d5:0f:0d:f1:89: f9:26:b3:ed:9b:92:ac:b6:ef:ec:28:85:44:6d:ab:0f:0b:e6: 7c:f5:54:cc:e4:ee:f2:31:d0:b9:c3:7c:24:40:fe:e7:1b:d3: 9d:c3:c0:37:ac:b4:00:b9:db:3c:64:b1:21:34:e4:e7:55:72: 58:fc:32:6d:91:6f:e8:05:8e:ef:22:d5:0a:02:58:df:22:63: 0a:7f:ed:1a:41:83:87:49:77:e8:18:36:89:7e:14:1b:ed:53: de:83:11:72 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICD3MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMzA5MDEw ODU3MDZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEVFNTc1QzdGODk4Q0I0 Qzc2Njg2QzI4RjBFOUZGNjgzRDU5ODc1RjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/6321e99G5/8wRrTrPhbJyDPyvk8dtlayQ8k4phKb4wBGOTUv DaO3aGb6zY/9qNdYLZNLPPv7kyk/Jh9kIRmKRUM4Qf3QRa1CeLne7ieil4jmBe64 LeZztbI1mWWkv6vnmGW0ZL/HtN7atDjCH9NaYopmo74YWS680kC8o7RdI2NRX+er aAJ5qGhFG7jVKhtAdS0tsVQYAod9sSpqZMhZlAb74LX8hfcVaFtWrmAGC8iFhLF/ kFtj+pnbs70DY3VjT3DH8joAfAbSArDeseS19KAiJfjq258LWOIw/SyRMOn3B26O G3I0H1GivPAizLwpdaYJL2k1A2/48RiY/XFbAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU7ldcf4mMtMdmhsKPDp/2g9WYdfkwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC83bGRjZjRtTXRNZG1oc0tQRHBf Mmc5V1lkZmsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQF3XhA MA0GCSqGSIb3DQEBCwUAA4IBAQB/X7OLyhG9JSh6DWsPqP4CbktMVt9gu+/KQd0D KUvc5B4azE92ENG70RrqAa3H56wpBH/EaDrHNbI+WK7wGFJdIJ8sC9RhryAC4BRF 75B64s4gmTGrv1EN1wh6I63yC8r8bNv3J+zdPCtzEqQ1biwV5bl01xbqKGL9/rLT eo8UjHUXwxDF+j0cgqfnF5JWKzp5O8YjpBxkNnZCjvST1Q8N8Yn5JrPtm5Kstu/s KIVEbasPC+Z89VTM5O7yMdC5w3wkQP7nG9Odw8A3rLQAuds8ZLEhNOTnVXJY/DJt kW/oBY7vItUKAljfImMKf+0aQYOHSXfoGDaJfhQb7VPegxFy -----END CERTIFICATE-----Generated at Thu May 23 03:15:02 2024 by rpki-client on console-fra.rpki-client.org