$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/htCKMPc4Rbh12g8reUX6HgT4SIY.roa File: htCKMPc4Rbh12g8reUX6HgT4SIY.roa (raw, json) Hash identifier: yKZTjwTacbXm9JpfVSXyeAYjDkm0zRcm9ENm6ssOffI= Subject key identifier: 86:D0:8A:30:F7:38:45:B8:75:DA:0F:2B:79:45:FA:1E:04:F8:48:86 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 0FBD Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/htCKMPc4Rbh12g8reUX6HgT4SIY.roa Signing time: Fri 01 Sep 2023 08:57:26 +0000 ROA not before: Fri 01 Sep 2023 08:57:26 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 17714 IP address blocks: 114.30.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Jun 2024 13:42:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4029 (0xfbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Sep 1 08:57:26 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=86D08A30F73845B875DA0F2B7945FA1E04F84886 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:8d:0d:a1:8c:7a:1e:89:b6:74:a4:dc:2e:c4: 6e:b2:f3:a1:07:b4:2c:aa:a8:85:92:2b:99:6d:4c: 52:cb:98:72:c5:fd:03:91:a3:fa:90:17:f7:cc:7e: c1:cf:98:27:2c:83:28:01:06:b5:be:94:9d:c2:f3: ff:7f:e7:84:d2:05:db:77:55:07:1c:2d:56:04:72: 93:d0:c4:04:f6:bf:29:b5:a4:be:f4:a0:3f:a8:78: d8:75:05:48:a5:6d:87:8f:24:43:8a:4e:88:3a:1b: f5:8f:05:09:8b:ba:72:55:87:e2:b1:d9:84:d9:22: 74:ee:f8:44:2e:77:71:81:bb:c6:d9:42:a0:14:5d: 6c:a3:4a:06:19:80:83:b4:4b:63:05:5b:58:a4:fa: 69:d0:3f:5c:b2:41:34:58:4d:46:19:3d:ee:cb:27: af:8a:d2:18:fb:23:d1:1f:01:30:2c:ac:9a:3c:b5: 1c:9c:a2:86:83:c7:c7:dd:1a:e0:4b:a1:0f:b4:b7: be:1b:b7:c6:ca:8f:7f:84:e9:61:db:a1:13:06:ab: 54:06:38:e2:55:da:06:dd:ce:24:1b:1e:62:93:7b: 81:61:78:5a:2b:13:15:c6:7e:41:e2:80:58:12:ba: 9f:c0:df:37:b1:e9:53:99:88:ae:e9:60:2f:37:d8: a6:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:D0:8A:30:F7:38:45:B8:75:DA:0F:2B:79:45:FA:1E:04:F8:48:86 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/htCKMPc4Rbh12g8reUX6HgT4SIY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 114.30.35.0/24 Signature Algorithm: sha256WithRSAEncryption a0:82:cd:54:3a:78:c9:a1:95:54:92:ef:d0:e8:d5:66:8f:d2: 66:42:56:33:64:a7:cd:5d:27:d8:b2:84:ae:1b:0c:ca:7e:9a: 8d:c1:5a:c8:de:09:cd:8f:9a:7f:64:7e:c7:35:1c:7b:f9:d1: 35:c5:06:22:cc:0e:0b:36:c8:c5:28:af:6f:0d:4e:31:97:65: e3:47:5a:e0:d7:5e:a4:d3:ee:97:9a:26:96:b2:c1:3b:f0:d7: aa:62:2b:2d:1c:1f:6a:8b:99:e2:c1:73:25:62:ae:2d:4f:4b: c2:9b:af:37:86:a6:08:0e:18:09:8c:4b:08:13:4a:1e:07:b0: 1e:36:59:fa:d9:fa:e5:f0:a3:03:f0:cc:c2:d6:58:4a:bf:97: 17:8c:d6:41:79:68:07:e2:9f:70:07:a0:16:65:e8:92:19:f6: c4:50:ff:9c:a8:ef:77:b4:08:ca:0f:d6:7b:bf:b0:db:35:12: f9:e2:f3:76:ea:76:02:e2:24:3e:fd:64:e3:6a:78:ba:5d:bb: 1e:69:da:2b:45:cd:a0:33:1a:ca:2f:16:f4:a5:60:15:23:6d: c6:5c:b9:13:0b:ab:2b:b0:fa:60:a0:76:7a:5a:9f:c0:26:91: 20:38:e3:8f:28:06:e5:85:4e:d7:d1:1d:09:30:d0:1b:79:cc: 8f:40:eb:b6 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICD70wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMzA5MDEw ODU3MjZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDg2RDA4QTMwRjczODQ1 Qjg3NURBMEYyQjc5NDVGQTFFMDRGODQ4ODYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDijQ2hjHoeibZ0pNwuxG6y86EHtCyqqIWSK5ltTFLLmHLF/QOR o/qQF/fMfsHPmCcsgygBBrW+lJ3C8/9/54TSBdt3VQccLVYEcpPQxAT2vym1pL70 oD+oeNh1BUilbYePJEOKTog6G/WPBQmLunJVh+Kx2YTZInTu+EQud3GBu8bZQqAU XWyjSgYZgIO0S2MFW1ik+mnQP1yyQTRYTUYZPe7LJ6+K0hj7I9EfATAsrJo8tRyc ooaDx8fdGuBLoQ+0t74bt8bKj3+E6WHboRMGq1QGOOJV2gbdziQbHmKTe4FheFor ExXGfkHigFgSup/A3zex6VOZiK7pYC832KZlAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUhtCKMPc4Rbh12g8reUX6HgT4SIYwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9odENLTVBjNFJiaDEyZzhyZVVY NkhnVDRTSVkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAch4j MA0GCSqGSIb3DQEBCwUAA4IBAQCggs1UOnjJoZVUku/Q6NVmj9JmQlYzZKfNXSfY soSuGwzKfpqNwVrI3gnNj5p/ZH7HNRx7+dE1xQYizA4LNsjFKK9vDU4xl2XjR1rg 116k0+6XmiaWssE78NeqYistHB9qi5niwXMlYq4tT0vCm683hqYIDhgJjEsIE0oe B7AeNln62frl8KMD8MzC1lhKv5cXjNZBeWgH4p9wB6AWZeiSGfbEUP+cqO93tAjK D9Z7v7DbNRL54vN26nYC4iQ+/WTjani6XbseadorRc2gMxrKLxb0pWAVI23GXLkT C6srsPpgoHZ6Wp/AJpEgOOOPKAblhU7X0R0JMNAbecyPQOu2 -----END CERTIFICATE-----Generated at Wed Jun 5 05:26:58 2024 by rpki-client on console-fra.rpki-client.org