$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/GR3QNmNW1Vwan0tEC8nYHT4P-H4.roa File: GR3QNmNW1Vwan0tEC8nYHT4P-H4.roa (raw, json) Hash identifier: 2O2+LwzybWth3ZtfsJyPtjTZ839ACIVx6hhRxOYTxmA= Subject key identifier: 19:1D:D0:36:63:56:D5:5C:1A:9F:4B:44:0B:C9:D8:1D:3E:0F:F8:7E Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 0F36 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/GR3QNmNW1Vwan0tEC8nYHT4P-H4.roa Signing time: Fri 01 Sep 2023 08:56:45 +0000 ROA not before: Fri 01 Sep 2023 08:56:45 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 17421 IP address blocks: 2001:b400::/32 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3894 (0xf36) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Sep 1 08:56:45 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=191DD0366356D55C1A9F4B440BC9D81D3E0FF87E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:10:bc:b2:72:75:c1:97:57:4f:8a:95:b1:11: 12:c2:83:9b:e3:66:14:7f:0e:b7:b8:30:57:0c:19: bb:7f:fb:e1:65:a7:f4:35:e4:75:e7:8a:0b:30:79: 69:59:95:54:93:76:16:a6:03:9c:b4:ee:24:2b:71: cb:39:49:e9:57:ac:4f:76:3d:30:6e:38:66:14:ba: 31:c6:a6:64:91:da:92:2a:cb:ca:27:c1:1c:a8:8b: db:8f:a1:1f:1b:8e:06:9b:33:61:82:90:c8:a5:03: 4f:84:3a:a7:75:3b:7d:8b:c3:b2:8d:12:85:a6:b5: 66:ea:c7:c5:eb:9e:d5:ff:9e:c5:e3:95:ec:9c:ee: ab:c1:da:a7:89:7f:10:d1:ba:47:b7:4e:28:d8:79: 84:77:d9:d3:60:fa:f8:cd:83:a5:14:d6:87:5d:94: 16:87:7d:48:c4:c5:ac:b9:d5:d7:66:be:31:3d:8a: 03:2e:64:1b:c9:c8:1b:10:f5:14:65:5f:b3:b8:de: 81:cf:fd:7a:d3:56:de:36:5c:0e:34:67:98:68:ca: ee:d1:b4:43:d6:4f:07:23:21:1c:16:e1:01:51:19: c6:7d:77:59:01:68:43:95:8f:6b:60:af:3c:00:f6: 90:99:bd:d6:a9:c8:44:ef:76:46:46:c6:e8:f7:63: dc:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:1D:D0:36:63:56:D5:5C:1A:9F:4B:44:0B:C9:D8:1D:3E:0F:F8:7E X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/GR3QNmNW1Vwan0tEC8nYHT4P-H4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:b400::/32 Signature Algorithm: sha256WithRSAEncryption 45:12:13:67:43:40:82:1e:a7:51:36:dd:57:69:b4:8f:aa:33: ab:e0:b9:63:25:ae:26:02:68:2a:19:e2:f8:b4:39:58:a7:43: 32:92:50:b7:90:36:8b:b3:cb:e1:c3:7e:6a:26:be:80:71:85: f5:92:c4:b2:a2:f7:a6:6f:4a:91:01:ea:78:44:93:e4:0b:32: c6:36:61:a8:38:35:84:2e:49:e9:ee:de:a5:c5:84:e6:c4:14: da:36:7a:67:65:05:65:06:9d:dd:3d:2c:68:ff:73:e6:ca:24: 62:e2:a4:d9:84:38:cb:a9:53:a8:51:47:a2:ca:b0:08:a9:cb: 5d:c9:59:d1:9b:bb:4b:76:39:65:9b:57:d9:a5:6f:c9:37:e6: a3:f3:f2:17:cd:b2:86:4a:71:3e:68:92:1b:fa:19:e7:56:00: cf:2a:99:3d:4e:87:15:3a:40:43:73:78:6e:ac:84:40:e1:67: 7f:88:f6:d2:fc:e2:87:61:8a:f2:6f:fd:a1:10:9e:50:36:65: 7c:db:c2:e8:43:9f:81:2d:72:8c:da:63:3a:6b:a6:88:fd:c6: 05:74:0f:de:f7:54:6c:19:12:99:33:7e:a8:52:3a:9f:27:ed: ff:59:64:f4:67:bf:ed:6b:8e:58:64:7c:ba:ed:c3:e1:98:ab: 3b:d1:41:1b -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICDzYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMzA5MDEw ODU2NDVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDE5MUREMDM2NjM1NkQ1 NUMxQTlGNEI0NDBCQzlEODFEM0UwRkY4N0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxELyycnXBl1dPipWxERLCg5vjZhR/Dre4MFcMGbt/++Flp/Q1 5HXnigsweWlZlVSTdhamA5y07iQrccs5SelXrE92PTBuOGYUujHGpmSR2pIqy8on wRyoi9uPoR8bjgabM2GCkMilA0+EOqd1O32Lw7KNEoWmtWbqx8XrntX/nsXjleyc 7qvB2qeJfxDRuke3TijYeYR32dNg+vjNg6UU1oddlBaHfUjExay51ddmvjE9igMu ZBvJyBsQ9RRlX7O43oHP/XrTVt42XA40Z5hoyu7RtEPWTwcjIRwW4QFRGcZ9d1kB aEOVj2tgrzwA9pCZvdapyETvdkZGxuj3Y9zLAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUGR3QNmNW1Vwan0tEC8nYHT4P+H4wHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9HUjNRTm1OVzFWd2FuMHRFQzhu WUhUNFAtSDQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAIAG0 ADANBgkqhkiG9w0BAQsFAAOCAQEARRITZ0NAgh6nUTbdV2m0j6ozq+C5YyWuJgJo Khni+LQ5WKdDMpJQt5A2i7PL4cN+aia+gHGF9ZLEsqL3pm9KkQHqeEST5AsyxjZh qDg1hC5J6e7epcWE5sQU2jZ6Z2UFZQad3T0saP9z5sokYuKk2YQ4y6lTqFFHosqw CKnLXclZ0Zu7S3Y5ZZtX2aVvyTfmo/PyF82yhkpxPmiSG/oZ51YAzyqZPU6HFTpA Q3N4bqyEQOFnf4j20vzih2GK8m/9oRCeUDZlfNvC6EOfgS1yjNpjOmumiP3GBXQP 3vdUbBkSmTN+qFI6nyft/1lk9Ge/7WuOWGR8uu3D4ZirO9FBGw== -----END CERTIFICATE-----Generated at Mon Jun 3 19:07:54 2024 by rpki-client on console-fra.rpki-client.org