$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/CmOZcGtxQEqJjI6ilVYc1ztKB4U.roa File: CmOZcGtxQEqJjI6ilVYc1ztKB4U.roa (raw, json) Hash identifier: /Rk576H8c1mdpxX7jhPjS/0YvFvppb6V8TxapF2AkRo= Subject key identifier: 0A:63:99:70:6B:71:40:4A:89:8C:8E:A2:95:56:1C:D7:3B:4A:07:85 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 107C Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/CmOZcGtxQEqJjI6ilVYc1ztKB4U.roa Signing time: Wed 08 May 2024 02:23:38 +0000 ROA not before: Wed 08 May 2024 02:23:38 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 198949 IP address blocks: 203.74.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4220 (0x107c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: May 8 02:23:38 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=0A6399706B71404A898C8EA295561CD73B4A0785 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:d1:3b:e4:57:dd:a4:5d:ee:82:34:ad:83:b2: 24:47:36:54:32:fe:8b:81:f3:57:a5:7a:f1:27:2a: c0:de:90:92:7d:ff:6b:01:8c:55:f7:f0:1b:fd:48: f8:80:2a:2b:1b:f0:ea:e5:89:61:ac:94:d9:35:f0: 6f:3f:4c:0d:0f:cf:1c:ea:e9:7f:a0:bc:01:53:f2: 08:71:53:81:9c:1b:c1:3d:20:9e:f8:38:a8:8f:f6: 8c:cd:15:4d:54:9e:bb:27:8f:d1:11:55:2b:bf:62: fe:d2:1a:5b:08:70:68:b2:c0:33:05:27:17:76:cd: 6c:62:00:3d:44:f7:b5:83:5c:40:3f:4f:06:08:e9: ce:cf:9c:9a:90:62:3b:37:8a:8c:47:18:98:7c:c1: fc:2c:3d:22:f2:47:3e:f9:a3:de:c7:ca:89:b9:a0: d5:af:5f:49:7c:a2:10:d6:bd:5d:3d:5f:96:7b:30: ae:37:01:5b:00:c4:ae:74:da:62:43:81:91:48:70: 41:40:ee:9e:bd:69:64:18:66:0e:d8:cb:45:ad:9b: bb:53:2f:52:06:26:5e:94:3a:e1:cb:ea:d0:46:aa: fc:9f:12:bd:c2:93:ca:b6:04:76:8e:00:87:2c:5d: df:e3:2a:01:63:d0:d0:2e:9b:26:0e:17:ad:60:6e: 47:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:63:99:70:6B:71:40:4A:89:8C:8E:A2:95:56:1C:D7:3B:4A:07:85 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/CmOZcGtxQEqJjI6ilVYc1ztKB4U.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.74.176.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:36:d4:84:52:71:88:2e:99:27:7a:75:c5:14:7b:48:50:0e: 3f:d2:24:61:91:e0:57:f4:52:0d:3e:d5:2e:a3:9c:b7:33:ea: 28:ac:f0:6a:e1:c9:4d:6f:06:c5:cd:86:78:de:69:bb:11:75: 28:e0:76:c1:7b:bd:b0:14:d2:66:0f:bd:6c:4e:ae:96:47:2b: d7:63:73:f4:5c:c9:83:6c:2f:3b:9d:90:21:12:e3:71:50:41: ae:ab:3a:fb:31:58:ce:19:6e:4b:1a:7b:ef:d2:21:d3:98:f1: d1:7b:be:5c:84:44:f6:77:13:70:3d:6b:5f:73:bf:53:f5:aa: b3:f4:bb:e5:e6:39:84:f1:e2:8e:13:48:7d:a2:b8:12:45:6f: 8b:d5:f5:57:ce:0b:25:7d:63:6d:7e:4f:57:86:87:de:bf:c3: 7a:56:9d:9a:b0:93:79:ec:2e:6e:1d:27:56:a7:88:98:3a:b1: cf:65:94:62:40:25:81:af:03:55:4b:45:c3:9f:ba:ad:b2:ea: d2:da:b0:ff:7e:ab:80:24:dc:71:b8:da:70:97:d4:50:3b:f1: cb:c0:a6:20:d4:cc:96:56:ba:9a:01:23:d3:4a:71:61:2a:3a: b1:52:c3:47:9f:3c:6a:85:f7:69:ce:9b:db:d8:d8:28:88:ad: 21:91:26:51 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICEHwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yNDA1MDgw MjIzMzhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDBBNjM5OTcwNkI3MTQw NEE4OThDOEVBMjk1NTYxQ0Q3M0I0QTA3ODUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDO0TvkV92kXe6CNK2DsiRHNlQy/ouB81elevEnKsDekJJ9/2sB jFX38Bv9SPiAKisb8OrliWGslNk18G8/TA0Pzxzq6X+gvAFT8ghxU4GcG8E9IJ74 OKiP9ozNFU1Unrsnj9ERVSu/Yv7SGlsIcGiywDMFJxd2zWxiAD1E97WDXEA/TwYI 6c7PnJqQYjs3ioxHGJh8wfwsPSLyRz75o97Hyom5oNWvX0l8ohDWvV09X5Z7MK43 AVsAxK502mJDgZFIcEFA7p69aWQYZg7Yy0Wtm7tTL1IGJl6UOuHL6tBGqvyfEr3C k8q2BHaOAIcsXd/jKgFj0NAumyYOF61gbkfXAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUCmOZcGtxQEqJjI6ilVYc1ztKB4UwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9DbU9aY0d0eFFFcUpqSTZpbFZZ YzF6dEtCNFUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy0qw MA0GCSqGSIb3DQEBCwUAA4IBAQANNtSEUnGILpknenXFFHtIUA4/0iRhkeBX9FIN PtUuo5y3M+oorPBq4clNbwbFzYZ43mm7EXUo4HbBe72wFNJmD71sTq6WRyvXY3P0 XMmDbC87nZAhEuNxUEGuqzr7MVjOGW5LGnvv0iHTmPHRe75chET2dxNwPWtfc79T 9aqz9Lvl5jmE8eKOE0h9orgSRW+L1fVXzgslfWNtfk9Xhofev8N6Vp2asJN57C5u HSdWp4iYOrHPZZRiQCWBrwNVS0XDn7qtsurS2rD/fquAJNxxuNpwl9RQO/HLwKYg 1MyWVrqaASPTSnFhKjqxUsNHnzxqhfdpzpvb2NgoiK0hkSZR -----END CERTIFICATE-----Generated at Mon Jun 3 19:07:54 2024 by rpki-client on console-fra.rpki-client.org