$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/xH_HXjdBtOhrEHbDbwrh1HVakbk.roa File: xH_HXjdBtOhrEHbDbwrh1HVakbk.roa (raw, json) Hash identifier: p7pU7zUSC53txi2jkBjEdStKjSfLZJtlEu5IN7iqvLg= Subject key identifier: C4:7F:C7:5E:37:41:B4:E8:6B:10:76:C3:6F:0A:E1:D4:75:5A:91:B9 Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Certificate serial: 0BA6 Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/xH_HXjdBtOhrEHbDbwrh1HVakbk.roa Signing time: Fri 01 Sep 2023 10:01:09 +0000 ROA not before: Fri 01 Sep 2023 10:01:09 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 4780 IP address blocks: 49.213.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 04:29:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2982 (0xba6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Validity Not Before: Sep 1 10:01:09 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=C47FC75E3741B4E86B1076C36F0AE1D4755A91B9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:84:c0:65:f5:80:77:8f:3a:4b:66:ca:8c:eb: e8:43:22:f0:d1:96:9e:aa:26:cc:a6:f0:3f:45:18: 3c:0b:ed:ce:1f:5b:d2:a3:14:0e:ce:26:1c:dd:2d: 60:df:61:b9:89:e8:51:34:eb:dd:43:da:94:78:fd: 1a:9e:c6:35:55:f1:4c:ab:1d:e5:b6:84:2d:61:86: ef:11:d0:08:e8:3f:48:94:8a:cd:b1:ae:aa:73:17: ba:56:c7:3f:a3:a9:e1:a5:5c:f7:02:5e:46:43:be: b4:19:50:9e:6b:bf:46:cc:71:9e:78:e9:6b:32:11: 58:b8:7a:fd:0d:10:0d:d0:de:2e:08:70:72:b6:89: 13:5a:64:00:55:9b:74:00:b6:80:23:21:d2:a6:8b: 62:c9:74:99:32:60:c9:45:60:91:47:0c:88:44:9e: b0:56:57:17:46:20:eb:ad:f1:ae:f4:2e:3f:82:a4: ec:30:d1:d7:d6:43:eb:cd:e1:9f:ba:0a:46:32:61: 65:be:b9:19:0c:a4:d1:d5:42:17:95:3c:fa:17:94: 5c:e3:1c:63:22:9e:77:e6:94:93:73:e6:11:69:cb: 7d:c2:e0:4d:10:9a:6a:0d:e4:74:35:7c:82:80:50: 99:cd:57:fd:60:63:c0:32:4a:54:31:51:8b:1a:81: 47:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:7F:C7:5E:37:41:B4:E8:6B:10:76:C3:6F:0A:E1:D4:75:5A:91:B9 X509v3 Authority Key Identifier: keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/xH_HXjdBtOhrEHbDbwrh1HVakbk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.213.175.0/24 Signature Algorithm: sha256WithRSAEncryption 42:a1:81:f8:56:16:fb:55:fd:1f:e9:2e:e0:a4:d9:23:28:2a: 76:c6:67:4f:c5:6e:bb:b1:d9:4c:8c:3e:46:5a:c0:92:9a:6b: 96:0f:d5:55:52:08:8b:13:fe:4f:05:28:38:85:be:c0:7e:b0: dd:30:ad:14:f0:db:79:58:b9:7d:a7:b6:72:6a:6f:0a:f5:9b: a7:14:8f:d6:cf:08:7c:a7:80:1c:92:b8:45:3a:d4:96:96:ff: b1:29:01:9c:b4:1d:9b:1d:61:3b:aa:72:0f:1d:7f:57:43:b8: c6:8c:e5:95:5d:8d:ef:92:82:99:48:6d:bb:33:67:4d:b1:c7: 23:23:35:2d:54:fb:d2:d9:f8:17:ae:d8:62:52:65:be:84:58: 89:bc:b8:85:b4:31:24:b4:8b:09:ed:f2:bb:3a:c6:01:05:38: e7:27:09:b5:86:d7:0b:b1:18:47:dd:cb:95:3d:1b:05:b9:2c: 77:01:f9:21:d2:a8:53:2f:00:46:da:e2:67:ac:48:89:8b:05: 2f:84:8b:48:d5:0a:c8:ae:62:73:e0:e5:e9:43:d0:22:e8:f8: ff:50:db:05:52:18:a7:ec:3a:b6:e7:e3:c6:f7:3d:8f:0d:f7: 1c:ed:23:80:18:f1:13:36:32:4d:f4:85:36:4f:69:38:d7:6a: cf:f4:1e:dd -----BEGIN CERTIFICATE----- MIIEzjCCA7agAwIBAgICC6YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTAy NTgyQjAyN0U1NzAzOEVBMDBBM0U4NDg0RDU1REVFQTJFMUEyQTAeFw0yMzA5MDEx MDAxMDlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEM0N0ZDNzVFMzc0MUI0 RTg2QjEwNzZDMzZGMEFFMUQ0NzU1QTkxQjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFhMBl9YB3jzpLZsqM6+hDIvDRlp6qJsym8D9FGDwL7c4fW9Kj FA7OJhzdLWDfYbmJ6FE0691D2pR4/RqexjVV8UyrHeW2hC1hhu8R0AjoP0iUis2x rqpzF7pWxz+jqeGlXPcCXkZDvrQZUJ5rv0bMcZ546WsyEVi4ev0NEA3Q3i4IcHK2 iRNaZABVm3QAtoAjIdKmi2LJdJkyYMlFYJFHDIhEnrBWVxdGIOut8a70Lj+CpOww 0dfWQ+vN4Z+6CkYyYWW+uRkMpNHVQheVPPoXlFzjHGMinnfmlJNz5hFpy33C4E0Q mmoN5HQ1fIKAUJnNV/1gY8AySlQxUYsagUflAgMBAAGjggHqMIIB5jAdBgNVHQ4E FgQUxH/HXjdBtOhrEHbDbwrh1HVakbkwHwYDVR0jBBgwFoAU4CWCsCflcDjqAKPo SE1V3uouGiowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVElOUC80 Q1dDc0NmbGNEanFBS1BvU0UxVjN1b3VHaW8uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzRDV0NzQ2ZsY0RqcUFLUG9TRTFWM3VvdUdpby5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1RJTlAveEhfSFhqZEJ0T2hyRUhiRGJ3cmgx SFZha2JrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgMEADHVrzAN BgkqhkiG9w0BAQsFAAOCAQEAQqGB+FYW+1X9H+ku4KTZIygqdsZnT8Vuu7HZTIw+ RlrAkpprlg/VVVIIixP+TwUoOIW+wH6w3TCtFPDbeVi5fae2cmpvCvWbpxSP1s8I fKeAHJK4RTrUlpb/sSkBnLQdmx1hO6pyDx1/V0O4xozllV2N75KCmUhtuzNnTbHH IyM1LVT70tn4F67YYlJlvoRYiby4hbQxJLSLCe3yuzrGAQU45ycJtYbXC7EYR93L lT0bBbksdwH5IdKoUy8ARtriZ6xIiYsFL4SLSNUKyK5ic+Dl6UPQIuj4/1DbBVIY p+w6tufjxvc9jw33HO0jgBjxEzYyTfSFNk9pONdqz/Qe3Q== -----END CERTIFICATE-----Generated at Mon Jun 3 02:57:43 2024 by rpki-client on console-fra.rpki-client.org