$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/ZQsHbK53NiIc00xTfP9uUIMaXak.roa File: ZQsHbK53NiIc00xTfP9uUIMaXak.roa (raw, json) Hash identifier: TdmJmSXgh1/ptU9azGGH9IKivDoiNQTECMCS2bGu5r0= Subject key identifier: 65:0B:07:6C:AE:77:36:22:1C:D3:4C:53:7C:FF:6E:50:83:1A:5D:A9 Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 0576 Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/ZQsHbK53NiIc00xTfP9uUIMaXak.roa Signing time: Fri 01 Sep 2023 08:59:50 +0000 ROA not before: Fri 01 Sep 2023 08:59:50 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131657 IP address blocks: 2406:48c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 21:50:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1398 (0x576) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Sep 1 08:59:50 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=650B076CAE7736221CD34C537CFF6E50831A5DA9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:55:9e:36:38:6e:1f:32:b9:20:26:a0:79:4d: eb:73:c5:06:09:24:1f:58:6b:ca:50:a6:85:a1:f4: 71:8a:34:75:05:cb:ce:db:ac:07:29:66:b9:bf:94: f5:e0:e2:dd:a0:99:e1:ff:51:8c:11:b0:af:0e:a3: 69:68:7e:8c:f4:c8:ef:9a:d9:ab:60:1e:2b:69:db: 1a:45:ab:8a:43:e4:76:40:a3:f6:d1:7a:44:0f:18: 7b:97:2f:2f:8c:30:5e:a9:66:67:a6:e0:b5:4b:f1: ab:eb:e1:42:35:c0:0f:be:9c:56:2b:fe:d5:51:fa: c9:e6:ec:0b:97:95:5b:6b:3b:b6:4e:90:d8:a7:78: 25:bf:f9:9c:ca:01:72:87:45:60:24:f5:a6:4e:85: 9a:65:46:f4:cc:a7:43:6a:8e:df:db:78:36:14:6a: c4:88:17:df:b3:be:51:5a:9b:b6:72:0b:45:b3:dd: 71:42:6c:79:f9:fb:23:ce:73:ea:c9:3b:d7:af:dc: 14:24:23:1a:a0:fe:1c:ff:0a:36:03:22:1c:ce:aa: 64:71:83:98:31:9d:80:62:5f:71:35:77:63:29:11: 59:8b:29:7b:ec:0e:2d:c4:88:a8:9d:f0:9a:28:26: d0:ab:61:a5:6d:2b:bb:cb:ea:9c:2a:a6:68:d8:5d: 02:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:0B:07:6C:AE:77:36:22:1C:D3:4C:53:7C:FF:6E:50:83:1A:5D:A9 X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/ZQsHbK53NiIc00xTfP9uUIMaXak.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2406:48c0::/48 Signature Algorithm: sha256WithRSAEncryption 26:82:5a:7e:c9:a0:87:9b:d1:d2:9b:68:00:cd:01:2d:12:25: 88:3a:fa:b2:df:d3:79:f1:58:a8:69:0d:aa:75:7d:19:60:bd: 95:f6:c7:82:09:d8:06:37:d5:a3:3f:bb:ef:93:99:e8:9f:91: f0:98:4f:f1:69:f0:cc:00:20:92:4a:a9:9c:58:ab:38:73:fa: cb:4f:8a:11:44:91:e3:64:be:06:88:0a:e2:49:36:0e:df:01: 73:c4:83:a5:82:a5:a9:9f:f9:1e:7a:be:2c:80:b1:a6:fa:30: ad:34:6d:4e:0c:45:c5:04:da:6c:51:b2:a8:bc:0d:d4:ce:78: cf:7a:24:45:4f:11:72:7c:3c:f0:13:8b:69:76:b9:b8:41:53: ed:38:35:40:a5:7c:68:aa:f8:f4:e4:11:41:83:8c:36:4c:44: 6e:42:64:56:84:8a:fd:1d:78:7d:36:c7:d3:cb:dd:10:d1:56: e7:28:39:11:b1:44:d5:28:87:84:a2:fa:2d:d8:eb:b3:56:62: 7a:ad:73:a1:b1:c4:8a:cf:d7:dd:74:7e:9b:b5:8c:04:9d:96: 85:ce:fa:0e:34:67:f1:c6:a9:9e:24:7b:cd:c5:bc:5e:9c:0d: 20:4c:57:03:b3:80:26:44:cd:ae:ee:08:b0:04:07:9b:30:d3: 62:3c:14:91 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICBXYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yMzA5MDEw ODU5NTBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDY1MEIwNzZDQUU3NzM2 MjIxQ0QzNEM1MzdDRkY2RTUwODMxQTVEQTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCmVZ42OG4fMrkgJqB5TetzxQYJJB9Ya8pQpoWh9HGKNHUFy87b rAcpZrm/lPXg4t2gmeH/UYwRsK8Oo2lofoz0yO+a2atgHitp2xpFq4pD5HZAo/bR ekQPGHuXLy+MMF6pZmem4LVL8avr4UI1wA++nFYr/tVR+snm7AuXlVtrO7ZOkNin eCW/+ZzKAXKHRWAk9aZOhZplRvTMp0Nqjt/beDYUasSIF9+zvlFam7ZyC0Wz3XFC bHn5+yPOc+rJO9ev3BQkIxqg/hz/CjYDIhzOqmRxg5gxnYBiX3E1d2MpEVmLKXvs Di3EiKid8JooJtCrYaVtK7vL6pwqpmjYXQLrAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUZQsHbK53NiIc00xTfP9uUIMaXakwHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL1pRc0hiSzUzTmlJYzAweFRm UDl1VUlNYVhhay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk BkjAAAAwDQYJKoZIhvcNAQELBQADggEBACaCWn7JoIeb0dKbaADNAS0SJYg6+rLf 03nxWKhpDap1fRlgvZX2x4IJ2AY31aM/u++TmeifkfCYT/Fp8MwAIJJKqZxYqzhz +stPihFEkeNkvgaICuJJNg7fAXPEg6WCpamf+R56viyAsab6MK00bU4MRcUE2mxR sqi8DdTOeM96JEVPEXJ8PPATi2l2ubhBU+04NUClfGiq+PTkEUGDjDZMRG5CZFaE iv0deH02x9PL3RDRVucoORGxRNUoh4Si+i3Y67NWYnqtc6GxxIrP1910fpu1jASd loXO+g40Z/HGqZ4ke83FvF6cDSBMVwOzgCZEza7uCLAEB5sw02I8FJE= -----END CERTIFICATE-----Generated at Tue May 7 14:32:35 2024 by rpki-client on console-fra.rpki-client.org