$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/PI0mjrIzlLu6eYVEQCE4OUU-EOw.roa File: PI0mjrIzlLu6eYVEQCE4OUU-EOw.roa (raw, json) Hash identifier: 1ctCY7ENtYqf85w6GHFKjyMJgZK7qUnqW7ghmcHoDQc= Subject key identifier: 3C:8D:26:8E:B2:33:94:BB:BA:79:85:44:40:21:38:39:45:3E:10:EC Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 0F99 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/PI0mjrIzlLu6eYVEQCE4OUU-EOw.roa Signing time: Fri 01 Sep 2023 08:57:16 +0000 ROA not before: Fri 01 Sep 2023 08:57:16 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 3462 IP address blocks: 114.24.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 15:36:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3993 (0xf99) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Sep 1 08:57:16 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=3C8D268EB23394BBBA79854440213839453E10EC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:31:50:0e:93:5a:47:ca:6c:03:a5:c8:68:67: 45:94:db:6f:74:c3:04:d7:31:a2:3b:3a:8d:11:ef: 7f:9b:ce:35:0b:d7:4f:6c:81:fd:8b:4d:0e:83:f1: 47:8c:84:96:30:64:b9:ab:94:68:7c:c1:dd:54:d3: f5:e8:71:d9:52:b1:57:6e:6e:52:fa:d8:86:0b:e0: 00:29:ad:20:9b:4b:1a:90:f0:01:f7:1f:a5:bf:41: 1c:36:78:9c:41:5d:dc:1c:19:dc:90:45:6e:6d:a2: 45:84:7a:2b:b1:32:01:fd:03:72:5e:2f:6e:e7:9e: 11:54:11:fc:5c:12:a1:db:9d:19:9d:b7:94:8c:04: 0a:d3:71:68:9b:ff:c5:bd:2e:2b:1e:83:ef:9b:6a: 69:ec:58:b5:91:0d:f5:1e:13:6f:bc:69:0f:2f:3e: 45:86:3d:da:ff:ee:5c:19:46:6c:94:4d:33:27:55: b7:a4:c1:5f:aa:2f:10:78:ff:fd:aa:87:19:35:f1: db:1a:74:8f:05:da:c3:ce:d7:e0:fd:8e:fc:21:10: 83:12:f8:96:b8:93:14:25:d2:bb:9d:6f:2b:c0:26: 3f:c6:36:8c:26:29:5f:3c:58:26:d8:5c:e5:e7:b6: 54:36:7d:51:55:c9:e0:fc:11:2d:a3:d8:a4:f5:e4: 0e:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:8D:26:8E:B2:33:94:BB:BA:79:85:44:40:21:38:39:45:3E:10:EC X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/PI0mjrIzlLu6eYVEQCE4OUU-EOw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 114.24.0.0/14 Signature Algorithm: sha256WithRSAEncryption a3:af:47:7a:2e:62:01:c4:10:d7:77:79:58:16:ea:07:a7:44: 6a:57:13:47:2a:f2:2f:55:33:e4:c7:eb:ad:22:1d:bc:e0:27: 52:7b:ad:37:d6:65:80:4b:dc:bb:d6:e2:b3:6c:fa:6b:72:05: 77:de:ac:bb:62:b0:fe:9e:13:f1:cb:b2:1a:49:bd:40:76:59: fe:25:60:4f:72:60:eb:95:df:87:89:4f:9e:7e:4f:14:40:69: 58:41:9f:dc:31:11:cf:f8:f8:34:85:08:8c:cd:22:d5:c7:86: f9:c8:b5:b6:24:34:51:35:73:ef:0b:8c:07:46:6a:61:99:14: c6:72:b6:6b:8e:a7:08:6d:bf:53:d4:78:6c:a3:c4:5b:1a:44: b7:1b:6f:d4:78:8c:f3:6b:f2:d7:70:15:39:a5:b7:39:83:74: 98:77:a7:71:05:9a:30:ae:e9:52:d5:c9:4c:a3:d5:3f:5c:91: 75:35:aa:f0:a9:54:ca:5f:38:09:e3:e1:c5:49:c0:8c:8e:da: 2b:cc:df:00:4e:68:db:33:1d:1b:63:b0:f2:e4:c1:e2:15:bc: d8:ee:03:73:dd:5e:c2:ae:d6:94:3e:d3:d6:86:4e:78:be:50: ec:e3:c4:47:b4:09:a6:b3:e2:03:a0:66:fb:10:b0:e1:9b:37: 0e:c6:05:84 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICD5kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMzA5MDEw ODU3MTZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDNDOEQyNjhFQjIzMzk0 QkJCQTc5ODU0NDQwMjEzODM5NDUzRTEwRUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyMVAOk1pHymwDpchoZ0WU2290wwTXMaI7Oo0R73+bzjUL109s gf2LTQ6D8UeMhJYwZLmrlGh8wd1U0/XocdlSsVdublL62IYL4AAprSCbSxqQ8AH3 H6W/QRw2eJxBXdwcGdyQRW5tokWEeiuxMgH9A3JeL27nnhFUEfxcEqHbnRmdt5SM BArTcWib/8W9Liseg++bamnsWLWRDfUeE2+8aQ8vPkWGPdr/7lwZRmyUTTMnVbek wV+qLxB4//2qhxk18dsadI8F2sPO1+D9jvwhEIMS+Ja4kxQl0rudbyvAJj/GNowm KV88WCbYXOXntlQ2fVFVyeD8ES2j2KT15A5TAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUPI0mjrIzlLu6eYVEQCE4OUU+EOwwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9QSTBtanJJemxMdTZlWVZFUUNF NE9VVS1FT3cucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMCchgw DQYJKoZIhvcNAQELBQADggEBAKOvR3ouYgHEENd3eVgW6genRGpXE0cq8i9VM+TH 660iHbzgJ1J7rTfWZYBL3LvW4rNs+mtyBXferLtisP6eE/HLshpJvUB2Wf4lYE9y YOuV34eJT55+TxRAaVhBn9wxEc/4+DSFCIzNItXHhvnItbYkNFE1c+8LjAdGamGZ FMZytmuOpwhtv1PUeGyjxFsaRLcbb9R4jPNr8tdwFTmltzmDdJh3p3EFmjCu6VLV yUyj1T9ckXU1qvCpVMpfOAnj4cVJwIyO2ivM3wBOaNszHRtjsPLkweIVvNjuA3Pd XsKu1pQ+09aGTni+UOzjxEe0Caaz4gOgZvsQsOGbNw7GBYQ= -----END CERTIFICATE-----Generated at Wed Jun 5 00:23:00 2024 by rpki-client on console-ams.rpki-client.org