$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/q76c0HyhjeqfbibMIU4mmhCZync.roa File: q76c0HyhjeqfbibMIU4mmhCZync.roa (raw, json) Hash identifier: YEMnzWAQPG90mm/ALnCZmQFe8jqBhDzvVuHW3HX7EB0= Subject key identifier: AB:BE:9C:D0:7C:A1:8D:EA:9F:6E:26:CC:21:4E:26:9A:10:99:CA:77 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 0F32 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/q76c0HyhjeqfbibMIU4mmhCZync.roa Signing time: Fri 01 Sep 2023 08:56:44 +0000 ROA not before: Fri 01 Sep 2023 08:56:44 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 3462 IP address blocks: 203.69.47.224/27 maxlen: 27 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Jun 2024 13:42:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3890 (0xf32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Sep 1 08:56:44 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=ABBE9CD07CA18DEA9F6E26CC214E269A1099CA77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:1f:22:be:3f:08:82:39:83:3c:5d:cc:6a:6f: 65:22:15:54:9d:c0:c8:ad:86:98:5a:74:8a:67:36: a8:14:83:80:80:ee:52:4f:56:ea:b3:ca:66:1a:de: a6:a0:d6:ad:aa:a2:56:1a:0b:96:90:1d:20:a8:e1: 4a:42:f8:ac:b5:79:e3:7a:76:61:b8:c7:73:43:6e: 47:dc:54:f9:7a:d5:69:69:9c:78:fa:3a:e8:00:d3: f3:d7:bf:31:4d:e4:9f:6a:b3:ed:f1:e9:cb:8f:fc: 70:de:30:9b:68:4e:e1:ec:f5:dc:bc:3e:82:83:65: b0:ee:f3:b8:07:8f:28:f1:20:45:19:cc:b5:78:a9: 6d:e0:64:f8:70:7c:e9:5b:e0:d4:b5:e3:87:ea:cf: 3c:39:fd:6c:8a:ec:94:9a:ef:75:88:dc:5f:6d:24: 80:22:eb:79:34:0c:8b:2f:1e:0f:1d:44:26:3e:fc: 50:61:a9:76:21:3b:30:90:8f:5d:00:a0:6c:4f:2e: fc:a8:58:5b:11:51:80:cc:e5:d3:af:cf:c6:b7:0a: 35:a4:36:e7:e9:25:0e:3a:81:50:3a:13:86:a3:26: 37:dd:b2:f2:93:69:5c:22:7f:b7:22:bf:81:00:b5: c0:00:9c:6a:74:ed:04:41:27:fd:28:e4:7f:be:bb: 6b:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:BE:9C:D0:7C:A1:8D:EA:9F:6E:26:CC:21:4E:26:9A:10:99:CA:77 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/q76c0HyhjeqfbibMIU4mmhCZync.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.69.47.224/27 Signature Algorithm: sha256WithRSAEncryption 2b:a8:8b:93:97:e9:05:12:2d:da:12:7f:ee:6b:22:81:5e:e8: 6b:16:da:8d:cd:3c:a8:c0:2b:c5:50:f5:28:98:b7:90:45:7e: 93:b1:a1:2e:eb:c6:d6:12:74:9e:06:f9:50:04:65:1f:af:dd: 65:39:57:dc:17:05:ed:fb:39:7f:5f:cc:7a:fe:1a:32:f5:a6: d2:30:b8:f3:42:f3:9f:dc:b3:b4:20:97:1e:bb:31:92:b8:4f: 68:f8:ad:a1:4a:11:fa:50:b0:67:b8:75:7a:44:cf:c2:6c:33: 86:b9:b5:9e:0c:5c:26:c2:cc:21:6f:02:01:4d:1d:a7:00:eb: f5:34:85:2b:04:d3:b7:97:e8:4b:18:bb:2e:01:01:ac:b3:27: 10:89:fc:20:2e:b0:be:1d:34:37:f3:24:6e:e0:49:85:50:c2: cb:bc:e6:3f:c8:9d:2b:45:02:b8:89:6e:60:f9:cd:cb:2f:71: 30:00:ec:02:22:31:38:6a:6d:bd:2a:f7:e7:b4:1b:70:b5:2e: b1:64:26:1c:0f:e4:ab:86:36:8d:f9:4a:86:55:3f:79:8a:77: 97:de:03:4b:07:03:ee:d9:51:16:3d:51:52:ce:c4:87:b9:5c: 14:7a:e2:08:b1:7c:66:61:8d:0f:75:ce:5d:b2:42:2d:5a:f4: 8e:6f:d2:51 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICDzIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMzA5MDEw ODU2NDRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEFCQkU5Q0QwN0NBMThE RUE5RjZFMjZDQzIxNEUyNjlBMTA5OUNBNzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8HyK+PwiCOYM8Xcxqb2UiFVSdwMithphadIpnNqgUg4CA7lJP VuqzymYa3qag1q2qolYaC5aQHSCo4UpC+Ky1eeN6dmG4x3NDbkfcVPl61WlpnHj6 OugA0/PXvzFN5J9qs+3x6cuP/HDeMJtoTuHs9dy8PoKDZbDu87gHjyjxIEUZzLV4 qW3gZPhwfOlb4NS144fqzzw5/WyK7JSa73WI3F9tJIAi63k0DIsvHg8dRCY+/FBh qXYhOzCQj10AoGxPLvyoWFsRUYDM5dOvz8a3CjWkNufpJQ46gVA6E4ajJjfdsvKT aVwif7civ4EAtcAAnGp07QRBJ/0o5H++u2s7AgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUq76c0HyhjeqfbibMIU4mmhCZyncwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9xNzZjMEh5aGplcWZiaWJNSVU0 bW1oQ1p5bmMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAATAHAwUFy0Uv 4DANBgkqhkiG9w0BAQsFAAOCAQEAK6iLk5fpBRIt2hJ/7msigV7oaxbajc08qMAr xVD1KJi3kEV+k7GhLuvG1hJ0ngb5UARlH6/dZTlX3BcF7fs5f1/Mev4aMvWm0jC4 80Lzn9yztCCXHrsxkrhPaPitoUoR+lCwZ7h1ekTPwmwzhrm1ngxcJsLMIW8CAU0d pwDr9TSFKwTTt5foSxi7LgEBrLMnEIn8IC6wvh00N/MkbuBJhVDCy7zmP8idK0UC uIluYPnNyy9xMADsAiIxOGptvSr357QbcLUusWQmHA/kq4Y2jflKhlU/eYp3l94D SwcD7tlRFj1RUs7Eh7lcFHriCLF8ZmGND3XOXbJCLVr0jm/SUQ== -----END CERTIFICATE-----Generated at Wed Jun 5 06:55:29 2024 by rpki-client on console-fra.rpki-client.org