$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/YkBxP0Zevph0AmmQIcUUZGzaKvQ.roa File: YkBxP0Zevph0AmmQIcUUZGzaKvQ.roa (raw, json) Hash identifier: lRi4iQ6qsmJa3oK+iGOptvC6mYcS6nnBZtlfnM+qFO4= Subject key identifier: 62:40:71:3F:46:5E:BE:98:74:02:69:90:21:C5:14:64:6C:DA:2A:F4 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 0FBB Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/YkBxP0Zevph0AmmQIcUUZGzaKvQ.roa Signing time: Fri 01 Sep 2023 08:57:25 +0000 ROA not before: Fri 01 Sep 2023 08:57:25 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 142005 IP address blocks: 210.242.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 15:36:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4027 (0xfbb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Sep 1 08:57:25 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=6240713F465EBE987402699021C514646CDA2AF4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:0a:71:c7:29:ab:3f:8f:cd:3f:16:a8:9a:4b: da:43:85:0c:d1:e0:28:7c:ce:43:b3:90:c7:24:7c: 39:db:bd:3a:4f:8e:71:d1:52:06:36:a9:f0:6e:89: bb:9c:73:3f:99:4d:4c:0b:09:fa:b0:30:34:23:a4: c3:1a:68:a8:ee:d7:8e:62:c4:26:40:7b:35:ef:88: 77:ad:dc:1e:57:87:10:a2:80:41:55:4c:5c:2a:32: 57:4d:e7:69:f1:a1:c5:db:b2:45:76:22:fd:31:20: cf:15:4b:66:55:25:45:cd:c5:4f:e8:0e:79:de:ac: e8:cc:ec:85:90:cb:85:85:36:a7:bf:ce:76:94:62: ea:a0:0b:e1:cb:87:b6:d6:91:8b:21:c9:0d:15:6c: 8d:f0:97:d6:c2:a7:03:dc:0f:7d:92:fc:d8:85:c4: bd:0f:5a:66:4a:b5:bc:81:b6:cf:c7:8c:3a:7a:b0: d6:b8:f9:d4:6c:1f:3b:9d:5c:2f:39:bc:b3:db:64: 65:7f:06:ea:dd:43:03:78:ea:18:56:40:70:7e:a5: 0a:7d:53:ba:0c:81:42:a6:14:f9:0f:5b:1b:82:c6: 03:36:26:b1:ab:38:89:8a:65:eb:cf:52:89:e7:09: 44:73:41:0f:86:5f:15:9d:12:b9:e9:fe:5f:53:f2: ab:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:40:71:3F:46:5E:BE:98:74:02:69:90:21:C5:14:64:6C:DA:2A:F4 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/YkBxP0Zevph0AmmQIcUUZGzaKvQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.242.186.0/24 Signature Algorithm: sha256WithRSAEncryption 06:e4:03:bd:7a:a9:e0:ac:ce:f8:04:ae:d7:70:32:aa:61:b4: d0:2e:51:45:31:28:27:5d:7f:3d:e4:eb:6b:de:ca:74:da:e5: da:16:e9:12:7a:75:ea:03:9a:70:71:7b:c5:c1:37:03:60:11: bc:e4:30:0a:7d:cc:3a:86:2d:54:bd:6d:4e:b5:8c:1d:f3:6f: e3:03:fe:93:98:4f:9c:2e:7a:37:4e:1b:dc:24:a8:0d:9f:b4: 6d:a0:b2:e2:29:3d:ab:de:25:69:90:5b:7f:b0:28:d2:2c:d7: 97:66:39:7a:ae:64:c0:b8:22:3b:58:0b:11:f9:fa:01:6c:ab: 4a:f0:e3:f4:ba:10:1c:da:41:ae:3e:1b:90:77:1b:27:87:53: 00:67:c4:ec:84:17:fd:92:cd:4f:77:97:77:16:66:cf:0e:9c: a7:37:d8:2c:e5:11:bc:c7:71:3e:03:eb:36:a9:55:26:5b:3a: 2e:43:9d:59:05:6f:a6:1d:e6:9e:cd:0c:d7:cd:56:bc:35:13: bc:77:4b:d1:68:cb:fd:43:b1:73:32:ff:da:58:92:94:e4:4a: 7a:b9:9b:fe:ce:d9:6b:d4:56:52:53:9e:34:0e:03:39:ce:7f: 72:6a:14:e6:c1:83:1e:5d:f5:87:de:9f:7f:10:0d:90:59:17: 93:1c:95:78 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICD7swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMzA5MDEw ODU3MjVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDYyNDA3MTNGNDY1RUJF OTg3NDAyNjk5MDIxQzUxNDY0NkNEQTJBRjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDpCnHHKas/j80/FqiaS9pDhQzR4Ch8zkOzkMckfDnbvTpPjnHR UgY2qfBuibuccz+ZTUwLCfqwMDQjpMMaaKju145ixCZAezXviHet3B5XhxCigEFV TFwqMldN52nxocXbskV2Iv0xIM8VS2ZVJUXNxU/oDnnerOjM7IWQy4WFNqe/znaU YuqgC+HLh7bWkYshyQ0VbI3wl9bCpwPcD32S/NiFxL0PWmZKtbyBts/HjDp6sNa4 +dRsHzudXC85vLPbZGV/BurdQwN46hhWQHB+pQp9U7oMgUKmFPkPWxuCxgM2JrGr OImKZevPUonnCURzQQ+GXxWdErnp/l9T8qvfAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUYkBxP0Zevph0AmmQIcUUZGzaKvQwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9Za0J4UDBaZXZwaDBBbW1RSWNV VVpHemFLdlEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA0vK6 MA0GCSqGSIb3DQEBCwUAA4IBAQAG5AO9eqngrM74BK7XcDKqYbTQLlFFMSgnXX89 5Otr3sp02uXaFukSenXqA5pwcXvFwTcDYBG85DAKfcw6hi1UvW1OtYwd82/jA/6T mE+cLno3ThvcJKgNn7RtoLLiKT2r3iVpkFt/sCjSLNeXZjl6rmTAuCI7WAsR+foB bKtK8OP0uhAc2kGuPhuQdxsnh1MAZ8TshBf9ks1Pd5d3FmbPDpynN9gs5RG8x3E+ A+s2qVUmWzouQ51ZBW+mHeaezQzXzVa8NRO8d0vRaMv9Q7FzMv/aWJKU5Ep6uZv+ ztlr1FZSU540DgM5zn9yahTmwYMeXfWH3p9/EA2QWReTHJV4 -----END CERTIFICATE-----Generated at Tue Jun 4 22:58:27 2024 by rpki-client on console-fra.rpki-client.org