$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/Cr6nEoWZnmd4oP4wSrUJRNyWxFY.roa File: Cr6nEoWZnmd4oP4wSrUJRNyWxFY.roa (raw, json) Hash identifier: k4PAf/It7F0P1ZbfDXsRQF8glVbCzOBYvocjT//krXI= Subject key identifier: 0A:BE:A7:12:85:99:9E:67:78:A0:FE:30:4A:B5:09:44:DC:96:C4:56 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 0F5C Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Cr6nEoWZnmd4oP4wSrUJRNyWxFY.roa Signing time: Fri 01 Sep 2023 08:56:59 +0000 ROA not before: Fri 01 Sep 2023 08:56:59 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 3462 IP address blocks: 210.61.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 24 May 2024 01:23:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3932 (0xf5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Sep 1 08:56:59 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=0ABEA71285999E6778A0FE304AB50944DC96C456 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:74:ae:4d:3e:3b:a4:b4:2f:bb:76:55:d4:59: 53:36:8c:dc:18:8e:20:47:91:65:2b:6e:80:82:ab: 69:3f:85:e2:04:f0:d4:ab:0f:2f:fb:9b:e4:76:57: d8:5e:1c:35:fa:69:25:d2:e9:12:45:84:06:6f:82: 55:f9:33:77:d9:32:75:59:67:86:c6:9a:76:c1:a8: 45:6c:3f:44:aa:07:b3:04:32:13:80:0f:f3:d7:e8: 3d:3c:31:8d:eb:60:41:3e:7f:dd:f3:ec:cf:e7:a6: 2a:df:d2:50:4f:2f:7b:95:69:b5:3b:1b:2e:74:0f: b1:c7:87:39:20:1e:1b:dc:8f:f7:30:f9:3f:b5:f8: 9d:94:37:02:db:f5:de:98:ef:39:22:08:dd:5f:a4: d5:88:69:a5:c7:96:4b:3f:7b:5e:8a:bd:63:ea:14: d3:29:80:0b:76:30:aa:99:d4:73:da:df:b9:e2:ef: 61:69:b5:f6:cc:a8:40:ae:a3:a9:78:91:04:5a:c3: 2b:3a:7a:07:23:a2:aa:2a:16:e1:1d:52:2d:b0:0a: 91:71:ff:2c:6d:ec:21:f8:48:0b:88:d4:6d:0b:f3: 01:e3:ff:e2:83:d2:6c:ca:52:21:49:65:16:7e:1d: 70:a5:ac:6f:5e:1e:4c:fa:a2:d9:6b:b4:2c:52:de: f2:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:BE:A7:12:85:99:9E:67:78:A0:FE:30:4A:B5:09:44:DC:96:C4:56 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Cr6nEoWZnmd4oP4wSrUJRNyWxFY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.61.0.0/16 Signature Algorithm: sha256WithRSAEncryption c7:db:ca:c3:9b:d7:58:40:c2:ae:04:e5:c4:3e:3c:70:b3:ef: 09:a2:79:9f:7b:6b:c0:15:06:83:c3:37:e7:57:44:31:0e:b7: f9:26:05:6d:85:51:b2:b3:b5:ae:5b:4e:0d:a9:5b:a8:d9:d6: 10:ee:06:f3:bc:e4:0b:e0:5c:d7:37:ea:30:eb:9c:2c:e6:8e: 67:bb:8d:73:83:94:1f:ef:ca:47:24:71:8b:6a:3c:ef:5a:60: 76:ea:d1:7d:73:78:e1:2d:70:3b:55:cc:c2:a7:65:ff:70:81: f1:82:5e:5f:56:11:09:6b:fc:20:1a:aa:a2:72:b8:d2:84:0e: 40:d5:79:07:b4:f4:44:7c:e5:67:a6:f8:0c:95:00:62:1d:e6: d9:db:03:91:07:08:27:07:e5:c5:e9:c6:2d:86:ba:d7:ab:44: 2a:f4:8a:b9:6d:c4:a8:08:b1:d0:83:ca:29:5a:60:13:85:1e: 39:88:22:fb:f2:dd:ac:3f:7f:e6:09:80:16:1f:b4:9f:e8:aa: 4d:22:a6:3f:69:f3:f5:1a:90:a8:12:c7:2e:a5:8c:49:e7:16: c8:7c:c4:a1:87:63:a3:e8:bb:98:94:8b:45:9b:84:06:a5:5f: 45:02:36:29:3a:0e:5f:74:a2:ba:13:f6:64:18:1d:b9:74:52: 7b:54:b6:94 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICD1wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMzA5MDEw ODU2NTlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDBBQkVBNzEyODU5OTlF Njc3OEEwRkUzMDRBQjUwOTQ0REM5NkM0NTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6dK5NPjuktC+7dlXUWVM2jNwYjiBHkWUrboCCq2k/heIE8NSr Dy/7m+R2V9heHDX6aSXS6RJFhAZvglX5M3fZMnVZZ4bGmnbBqEVsP0SqB7MEMhOA D/PX6D08MY3rYEE+f93z7M/npirf0lBPL3uVabU7Gy50D7HHhzkgHhvcj/cw+T+1 +J2UNwLb9d6Y7zkiCN1fpNWIaaXHlks/e16KvWPqFNMpgAt2MKqZ1HPa37ni72Fp tfbMqECuo6l4kQRawys6egcjoqoqFuEdUi2wCpFx/yxt7CH4SAuI1G0L8wHj/+KD 0mzKUiFJZRZ+HXClrG9eHkz6otlrtCxS3vKXAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUCr6nEoWZnmd4oP4wSrUJRNyWxFYwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9DcjZuRW9XWm5tZDRvUDR3U3JV SlJOeVd4Rlkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMA0j0w DQYJKoZIhvcNAQELBQADggEBAMfbysOb11hAwq4E5cQ+PHCz7wmieZ97a8AVBoPD N+dXRDEOt/kmBW2FUbKzta5bTg2pW6jZ1hDuBvO85AvgXNc36jDrnCzmjme7jXOD lB/vykckcYtqPO9aYHbq0X1zeOEtcDtVzMKnZf9wgfGCXl9WEQlr/CAaqqJyuNKE DkDVeQe09ER85Wem+AyVAGId5tnbA5EHCCcH5cXpxi2GuterRCr0irltxKgIsdCD yilaYBOFHjmIIvvy3aw/f+YJgBYftJ/oqk0ipj9p8/UakKgSxy6ljEnnFsh8xKGH Y6Pou5iUi0WbhAalX0UCNik6Dl90oroT9mQYHbl0UntUtpQ= -----END CERTIFICATE-----Generated at Thu May 23 03:15:02 2024 by rpki-client on console-fra.rpki-client.org