$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/Q9Mir3CBYD6MD4IYNdftw1Cl9rY.roa File: Q9Mir3CBYD6MD4IYNdftw1Cl9rY.roa (raw, json) Hash identifier: iUVavT5zA2Wsm1MQfdS8jU3NpFw/3x9HUupDtHDBs2U= Subject key identifier: 43:D3:22:AF:70:81:60:3E:8C:0F:82:18:35:D7:ED:C3:50:A5:F6:B6 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 0F96 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Q9Mir3CBYD6MD4IYNdftw1Cl9rY.roa Signing time: Fri 01 Sep 2023 08:57:15 +0000 ROA not before: Fri 01 Sep 2023 08:57:15 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131660 IP address blocks: 2001:b000:59c::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 15:36:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3990 (0xf96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Sep 1 08:57:15 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=43D322AF7081603E8C0F821835D7EDC350A5F6B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:16:25:68:b8:ff:60:fc:49:53:af:c5:c6:59: e3:9d:05:17:17:2e:97:ac:92:00:7a:00:04:e9:06: f2:fb:ab:96:d2:88:87:25:e8:c4:92:cc:df:8a:8e: cd:66:ca:c7:e1:15:d4:d5:0c:4d:98:f7:4b:dd:51: 11:4a:1c:90:41:a3:20:0b:02:66:bb:fe:ee:00:c5: a3:dc:0b:39:49:22:0d:38:33:91:c6:9a:5b:11:0a: 32:55:ad:90:a1:da:13:ad:8d:87:20:fc:ae:3b:99: 97:ff:b9:97:c5:f4:77:73:05:ed:9d:3a:7c:c7:8c: 19:9d:40:02:a7:16:72:1f:48:e7:ec:2b:71:7c:17: b2:39:4b:83:78:f9:5f:dd:36:6e:44:eb:ab:18:1b: ba:a3:dd:15:e2:24:7a:17:b3:72:f0:3b:d8:81:24: b4:64:90:6c:01:93:7f:42:a7:2c:c0:1d:59:9f:6b: cf:58:9c:34:d9:a6:79:ef:3f:58:80:4c:43:6b:fb: d9:c7:51:22:84:f1:50:8e:0d:c8:69:23:94:4d:69: 18:20:6a:46:1c:da:33:de:1f:b2:7e:79:6a:85:b1: 8a:07:f1:74:5f:45:6e:70:9e:10:a5:a1:60:2a:a4: 9c:7e:5c:ea:6b:1b:c4:d0:62:0a:4a:02:ee:da:a9: b9:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:D3:22:AF:70:81:60:3E:8C:0F:82:18:35:D7:ED:C3:50:A5:F6:B6 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/Q9Mir3CBYD6MD4IYNdftw1Cl9rY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:b000:59c::/48 Signature Algorithm: sha256WithRSAEncryption 28:1b:f6:fd:ef:f7:08:7f:cf:e6:c5:ec:7c:03:14:d7:84:ac: 55:f3:06:5e:bd:5e:35:af:e8:b3:71:fd:1d:35:47:d3:50:e9: a6:98:b8:64:01:d1:e8:75:c0:a5:66:dd:7e:e3:ce:8f:53:6d: 05:88:1b:5d:70:e3:d1:56:a9:77:62:0c:6e:b1:ea:e9:50:74: 6b:6d:35:09:9c:e1:8d:a2:0e:8f:b5:45:69:de:1f:c5:09:97: 1c:e2:8e:49:bc:ea:db:b0:48:fc:8f:f1:dd:b3:93:41:e8:b0: a6:7f:5e:a3:ed:b0:80:95:a1:86:c5:3e:de:ae:fc:86:b7:b6: 7a:87:b8:98:b2:26:06:24:31:57:c3:b3:da:c8:57:76:bd:00: 77:82:49:17:78:59:be:66:8b:46:95:76:6d:a7:25:1f:85:09: 18:e2:45:68:c8:ec:72:88:bc:09:24:6a:63:8d:56:89:79:08: 97:08:15:11:fb:3c:3f:b4:bf:10:3c:16:7d:a5:96:37:1a:a2: 62:68:8b:56:c9:18:9a:6d:5a:42:d4:79:1d:6d:e9:03:7c:04: fc:68:53:cf:5e:fe:47:1a:f1:1b:f8:a0:58:f1:97:a3:a1:6e: 05:6d:fc:f6:02:1f:63:d8:bd:f4:87:19:aa:46:5f:00:9f:c3: ce:ab:dc:87 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICD5YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMzA5MDEw ODU3MTVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDQzRDMyMkFGNzA4MTYw M0U4QzBGODIxODM1RDdFREMzNTBBNUY2QjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFFiVouP9g/ElTr8XGWeOdBRcXLpeskgB6AATpBvL7q5bSiIcl 6MSSzN+Kjs1mysfhFdTVDE2Y90vdURFKHJBBoyALAma7/u4AxaPcCzlJIg04M5HG mlsRCjJVrZCh2hOtjYcg/K47mZf/uZfF9HdzBe2dOnzHjBmdQAKnFnIfSOfsK3F8 F7I5S4N4+V/dNm5E66sYG7qj3RXiJHoXs3LwO9iBJLRkkGwBk39CpyzAHVmfa89Y nDTZpnnvP1iATENr+9nHUSKE8VCODchpI5RNaRggakYc2jPeH7J+eWqFsYoH8XRf RW5wnhCloWAqpJx+XOprG8TQYgpKAu7aqblFAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUQ9Mir3CBYD6MD4IYNdftw1Cl9rYwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9ROU1pcjNDQllENk1ENElZTmRm dHcxQ2w5clkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAGw AAWcMA0GCSqGSIb3DQEBCwUAA4IBAQAoG/b97/cIf8/mxex8AxTXhKxV8wZevV41 r+izcf0dNUfTUOmmmLhkAdHodcClZt1+486PU20FiBtdcOPRVql3YgxuserpUHRr bTUJnOGNog6PtUVp3h/FCZcc4o5JvOrbsEj8j/Hds5NB6LCmf16j7bCAlaGGxT7e rvyGt7Z6h7iYsiYGJDFXw7PayFd2vQB3gkkXeFm+ZotGlXZtpyUfhQkY4kVoyOxy iLwJJGpjjVaJeQiXCBUR+zw/tL8QPBZ9pZY3GqJiaItWyRiabVpC1HkdbekDfAT8 aFPPXv5HGvEb+KBY8ZejoW4Fbfz2Ah9j2L30hxmqRl8An8POq9yH -----END CERTIFICATE-----Generated at Wed Jun 5 00:23:00 2024 by rpki-client on console-ams.rpki-client.org