$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/eEAWsMCMrLltDjL2nss8gItZfb0.roa File: eEAWsMCMrLltDjL2nss8gItZfb0.roa (raw, json) Hash identifier: Yjoz5IqSeUWs07d0aVKdPNMd+HgeZnN2Du60H10z6pg= Subject key identifier: 78:40:16:B0:C0:8C:AC:B9:6D:0E:32:F6:9E:CB:3C:80:8B:59:7D:BD Certificate issuer: /CN=534C76274A330B071EFD20DB05F6D0429293743E Certificate serial: 0C3B Authority key identifier: 53:4C:76:27:4A:33:0B:07:1E:FD:20:DB:05:F6:D0:42:92:93:74:3E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/U0x2J0ozCwce_SDbBfbQQpKTdD4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/eEAWsMCMrLltDjL2nss8gItZfb0.roa Signing time: Fri 01 Sep 2023 08:56:48 +0000 ROA not before: Fri 01 Sep 2023 08:56:48 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 7481 IP address blocks: 2001:7fa:1::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/U0x2J0ozCwce_SDbBfbQQpKTdD4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/U0x2J0ozCwce_SDbBfbQQpKTdD4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/U0x2J0ozCwce_SDbBfbQQpKTdD4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/0dL1XCbbKFIKeZb_cu0BBCAHmKI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0dL1XCbbKFIKeZb_cu0BBCAHmKI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0dL1XCbbKFIKeZb_cu0BBCAHmKI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 09:40:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3131 (0xc3b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=534C76274A330B071EFD20DB05F6D0429293743E Validity Not Before: Sep 1 08:56:48 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=784016B0C08CACB96D0E32F69ECB3C808B597DBD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:9b:00:10:35:4e:d9:66:34:b4:86:9e:6d:4d: ae:78:60:cf:c8:26:2c:03:8f:82:5a:89:31:74:4c: f3:99:96:0e:7c:bf:86:95:c5:1e:15:83:99:6b:b6: 5d:57:a9:6e:63:56:a3:ba:dd:38:a2:58:f7:cc:54: 02:fa:73:0c:ae:c4:92:96:b0:18:00:ba:24:22:ca: 6a:b2:03:e9:67:5e:a9:4c:d2:09:49:0f:8b:ea:72: 3f:22:7a:30:91:05:71:39:81:c1:cd:2c:91:0d:7f: 2b:b7:16:11:cd:b3:cc:3d:a9:73:db:6a:5e:c7:d8: 31:7a:de:45:15:06:fc:8c:c2:be:a9:5e:35:fd:61: e8:ec:7d:2b:2c:84:5f:9d:c8:07:89:ec:5c:b2:b4: 4a:d5:3e:4c:d7:62:3c:86:f8:01:89:05:bb:ce:b8: 86:d5:40:34:45:21:b4:5e:71:4b:3f:30:ab:64:7e: 02:80:ce:64:a1:45:10:18:d3:8b:63:92:cf:72:69: c0:74:1f:9f:cd:12:b1:03:c2:c6:f4:fa:86:4a:8c: 03:d6:5e:c1:d9:9d:bd:93:07:db:ad:cd:2d:5d:86: 75:3d:2a:91:25:e9:d7:ad:31:71:74:6d:ac:5f:6b: 02:2b:07:06:51:88:3f:e0:93:04:75:cb:73:b1:f6: 87:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:40:16:B0:C0:8C:AC:B9:6D:0E:32:F6:9E:CB:3C:80:8B:59:7D:BD X509v3 Authority Key Identifier: keyid:53:4C:76:27:4A:33:0B:07:1E:FD:20:DB:05:F6:D0:42:92:93:74:3E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/U0x2J0ozCwce_SDbBfbQQpKTdD4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/U0x2J0ozCwce_SDbBfbQQpKTdD4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/eEAWsMCMrLltDjL2nss8gItZfb0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2001:7fa:1::/48 Signature Algorithm: sha256WithRSAEncryption b6:99:c9:a9:61:59:4c:ac:16:22:9f:a6:b0:0f:9c:56:09:63: 72:a5:18:58:78:11:ff:6c:a9:fc:93:a8:9b:7a:05:57:85:9f: ae:18:ba:f1:16:50:42:df:ca:3a:7f:f0:c5:7f:f3:d1:8d:79: b0:1f:d7:fc:f7:9a:d3:a9:f2:83:f3:6b:43:14:89:74:bc:a4: 2e:53:6f:74:53:e8:f5:4d:36:8d:d3:e1:17:c7:cf:3d:78:c8: ae:91:c9:ed:6b:1e:78:01:98:01:46:ae:d2:13:00:56:a2:3c: bf:ba:c8:20:e3:4e:77:1d:64:d0:9c:bf:16:f6:8b:2a:50:3c: 3d:21:e8:95:07:f9:3a:00:d4:8e:32:fa:68:11:07:7d:5f:60: 7b:0d:63:70:c2:c4:9c:b3:69:59:2d:ed:97:19:d0:27:b9:a5: 88:97:5e:21:b5:e2:86:af:d4:79:40:a7:be:f0:2d:23:9d:2e: fe:8d:fb:19:ba:eb:ba:77:07:b7:40:f4:c4:ad:98:57:e9:ef: d9:0f:fb:68:5a:7a:21:4c:c7:14:9f:06:a4:7f:c8:9a:ce:ce: 74:94:56:ee:df:f0:d1:ed:be:3f:fe:fe:4c:6e:b1:a7:23:2b: 4b:6d:48:0b:3e:09:d8:2f:48:2a:3f:8b:27:c5:ff:45:43:1d: a8:9a:b7:cc -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICDDswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTM0 Qzc2Mjc0QTMzMEIwNzFFRkQyMERCMDVGNkQwNDI5MjkzNzQzRTAeFw0yMzA5MDEw ODU2NDhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDc4NDAxNkIwQzA4Q0FD Qjk2RDBFMzJGNjlFQ0IzQzgwOEI1OTdEQkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD4mwAQNU7ZZjS0hp5tTa54YM/IJiwDj4JaiTF0TPOZlg58v4aV xR4Vg5lrtl1XqW5jVqO63TiiWPfMVAL6cwyuxJKWsBgAuiQiymqyA+lnXqlM0glJ D4vqcj8iejCRBXE5gcHNLJENfyu3FhHNs8w9qXPbal7H2DF63kUVBvyMwr6pXjX9 YejsfSsshF+dyAeJ7FyytErVPkzXYjyG+AGJBbvOuIbVQDRFIbRecUs/MKtkfgKA zmShRRAY04tjks9yacB0H5/NErEDwsb0+oZKjAPWXsHZnb2TB9utzS1dhnU9KpEl 6detMXF0baxfawIrBwZRiD/gkwR1y3Ox9ofnAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUeEAWsMCMrLltDjL2nss8gItZfb0wHwYDVR0jBBgwFoAUU0x2J0ozCwce/SDb BfbQQpKTdD4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv VTB4Mkowb3pDd2NlX1NEYkJmYlFRcEtUZEQ0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9VMHgySjBvekN3Y2VfU0RiQmZiUVFwS1RkRDQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9lRUFXc01DTXJMbHREakwybnNz OGdJdFpmYjAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCIGCCsGAQUFBwEHAQH/BBMwETAPBAIAAjAJAwcAIAEH +gABMA0GCSqGSIb3DQEBCwUAA4IBAQC2mcmpYVlMrBYin6awD5xWCWNypRhYeBH/ bKn8k6ibegVXhZ+uGLrxFlBC38o6f/DFf/PRjXmwH9f895rTqfKD82tDFIl0vKQu U290U+j1TTaN0+EXx889eMiukcntax54AZgBRq7SEwBWojy/usgg4053HWTQnL8W 9osqUDw9IeiVB/k6ANSOMvpoEQd9X2B7DWNwwsScs2lZLe2XGdAnuaWIl14hteKG r9R5QKe+8C0jnS7+jfsZuuu6dwe3QPTErZhX6e/ZD/toWnohTMcUnwakf8iazs50 lFbu3/DR7b4//v5MbrGnIytLbUgLPgnYL0gqP4snxf9FQx2omrfM -----END CERTIFICATE-----Generated at Tue Jun 4 20:03:02 2024 by rpki-client on console-ams.rpki-client.org