$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/_OVvouldr5m6D_0Xo40xkOZnVNw.roa File: _OVvouldr5m6D_0Xo40xkOZnVNw.roa (raw, json) Hash identifier: wISZxTMFKrokZxZ4auoDII6egcx406aAKGYAp7Nnf7s= Subject key identifier: FC:E5:6F:A2:E9:5D:AF:99:BA:0F:FD:17:A3:8D:31:90:E6:67:54:DC Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 0F6E Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/_OVvouldr5m6D_0Xo40xkOZnVNw.roa Signing time: Fri 01 Sep 2023 08:57:04 +0000 ROA not before: Fri 01 Sep 2023 08:57:04 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 54994 IP address blocks: 210.61.180.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 01:40:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3950 (0xf6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Sep 1 08:57:04 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=FCE56FA2E95DAF99BA0FFD17A38D3190E66754DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:dd:2e:6d:1d:7c:5d:5c:52:20:02:3b:14:23: 15:9a:83:33:f8:b9:74:b4:5c:2e:df:2c:9e:0d:3e: 35:42:92:e6:1a:a1:4b:cb:86:ae:2e:8f:3f:2e:a0: 9e:58:c8:d1:3c:16:13:d5:18:11:b0:98:41:46:43: 0e:47:f6:fc:26:35:c2:5f:fc:a7:01:e9:f6:16:6b: ee:2b:9a:ae:95:25:9a:e5:cf:97:3b:01:77:19:60: b0:bf:3b:ff:f3:a1:84:7b:f6:08:b6:2a:25:d9:12: f9:39:9a:09:e3:12:0f:3a:5f:36:ea:94:23:ec:a9: d8:9b:ce:dd:3e:b2:8f:06:df:4b:1e:19:42:d9:29: 57:19:2a:d9:68:b0:f6:9a:d0:d8:2f:d5:b4:5b:4c: 12:81:bb:f3:a8:bd:20:61:5d:d5:6b:7e:12:b3:2e: d5:7b:c7:3a:cb:bf:86:00:a5:26:d2:49:bc:72:8b: f3:2f:88:44:c5:72:09:41:08:9d:72:6b:f6:0b:a0: 42:4c:0a:8b:96:3e:45:9d:38:2a:59:f4:44:5c:de: 2d:8a:04:57:f2:3f:d5:9a:06:2d:34:71:7c:de:6d: 56:73:83:7b:bb:b5:c8:4d:72:42:f1:ae:80:85:73: d8:b7:12:77:57:50:b2:87:ac:5f:bb:ff:a6:d1:21: f1:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:E5:6F:A2:E9:5D:AF:99:BA:0F:FD:17:A3:8D:31:90:E6:67:54:DC X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/_OVvouldr5m6D_0Xo40xkOZnVNw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.61.180.0/24 Signature Algorithm: sha256WithRSAEncryption 0e:52:73:67:c6:1b:ee:96:7a:c5:bd:f8:81:35:48:42:02:df: 54:4a:7c:2a:17:49:6a:d6:83:48:0c:4e:70:2d:c5:92:02:89: b6:a1:cd:9c:0b:96:16:31:fd:57:3e:0f:3a:98:d5:9c:2e:ec: d8:81:e9:8a:89:58:69:5f:51:4b:0e:ba:6d:b8:d7:39:78:11: 90:7e:2c:17:48:d8:16:f5:af:16:f5:cb:3d:29:51:10:cf:0d: ed:52:3e:a0:e7:26:89:a7:b0:2b:62:06:f0:e0:82:66:c1:c1: 7b:2e:11:07:25:4e:4c:95:bb:31:57:68:40:7b:4c:54:ed:fb: ee:97:e5:f0:00:23:3b:e2:ed:ac:2a:29:7f:96:78:90:60:f0: 47:49:16:40:0c:02:c1:ec:05:e6:bd:f0:08:b1:5c:2c:a7:56: 1a:a3:4d:79:ab:9c:f8:ed:60:54:52:03:47:8d:af:8f:2a:ee: 5c:b4:6b:65:67:b7:2e:5b:22:09:87:8d:84:ec:a3:f6:02:7e: 46:24:11:d2:2b:1c:a8:ef:36:13:1a:ca:65:ee:1b:12:74:db: ad:23:0c:85:5b:32:0b:8c:ef:7d:27:ec:06:c7:84:e9:4b:e7: b5:8b:64:ee:d9:fa:9e:18:f1:de:7f:c1:86:21:9b:5e:81:b6: a3:ba:75:5f -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICD24wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMzA5MDEw ODU3MDRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEZDRTU2RkEyRTk1REFG OTlCQTBGRkQxN0EzOEQzMTkwRTY2NzU0REMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDo3S5tHXxdXFIgAjsUIxWagzP4uXS0XC7fLJ4NPjVCkuYaoUvL hq4ujz8uoJ5YyNE8FhPVGBGwmEFGQw5H9vwmNcJf/KcB6fYWa+4rmq6VJZrlz5c7 AXcZYLC/O//zoYR79gi2KiXZEvk5mgnjEg86XzbqlCPsqdibzt0+so8G30seGULZ KVcZKtlosPaa0Ngv1bRbTBKBu/OovSBhXdVrfhKzLtV7xzrLv4YApSbSSbxyi/Mv iETFcglBCJ1ya/YLoEJMCouWPkWdOCpZ9ERc3i2KBFfyP9WaBi00cXzebVZzg3u7 tchNckLxroCFc9i3EndXULKHrF+7/6bRIfGFAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU/OVvouldr5m6D/0Xo40xkOZnVNwwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9fT1Z2b3VsZHI1bTZEXzBYbzQw eGtPWm5WTncucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQA0j20 MA0GCSqGSIb3DQEBCwUAA4IBAQAOUnNnxhvulnrFvfiBNUhCAt9USnwqF0lq1oNI DE5wLcWSAom2oc2cC5YWMf1XPg86mNWcLuzYgemKiVhpX1FLDrptuNc5eBGQfiwX SNgW9a8W9cs9KVEQzw3tUj6g5yaJp7ArYgbw4IJmwcF7LhEHJU5MlbsxV2hAe0xU 7fvul+XwACM74u2sKil/lniQYPBHSRZADALB7AXmvfAIsVwsp1Yao015q5z47WBU UgNHja+PKu5ctGtlZ7cuWyIJh42E7KP2An5GJBHSKxyo7zYTGspl7hsSdNutIwyF WzILjO99J+wGx4TpS+e1i2Tu2fqeGPHef8GGIZtegbajunVf -----END CERTIFICATE-----Generated at Mon Jun 3 23:10:42 2024 by rpki-client on console-ams.rpki-client.org