$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/hZR7gXlaiVWeFLYiJ-PugPLk_9Q.roa File: hZR7gXlaiVWeFLYiJ-PugPLk_9Q.roa (raw, json) Hash identifier: eP8zFS6GFH1xs36/MaeoV8gWxl8qeGSlmxYAssAPYtw= Subject key identifier: 85:94:7B:81:79:5A:89:55:9E:14:B6:22:27:E3:EE:80:F2:E4:FF:D4 Certificate issuer: /CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05 Certificate serial: 0C77 Authority key identifier: 87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/hZR7gXlaiVWeFLYiJ-PugPLk_9Q.roa Signing time: Mon 26 Aug 2024 04:56:18 +0000 ROA not before: Mon 26 Aug 2024 04:56:18 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131149 IP address blocks: 103.123.242.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Sep 2024 03:51:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3191 (0xc77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=87A4AFD9E7FC1FED4F9545DE41CE4413DACB0E05 Validity Not Before: Aug 26 04:56:18 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=85947B81795A89559E14B62227E3EE80F2E4FFD4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:68:7a:b0:67:a5:51:0e:e0:68:83:b1:55:58: 89:30:cd:09:e8:85:fb:17:bd:46:b0:67:b7:51:fe: 50:fa:f3:da:31:d2:ec:b4:7a:7f:8c:00:61:df:af: 97:a6:fd:48:31:1d:db:51:5a:74:b7:a1:dc:c4:81: b4:fa:4d:10:0c:e7:f0:b2:29:b9:c0:81:7f:c1:b2: e3:b9:3d:a1:2b:60:c8:52:f4:de:2c:fa:2c:14:1d: 20:50:df:07:3b:ff:50:db:a8:2d:93:99:07:2f:fe: 39:ee:31:60:ea:b3:51:12:dd:13:ef:fd:4b:d4:92: 6f:45:fd:e5:44:3b:16:2b:a9:30:af:62:50:54:cb: f9:5f:9e:e5:0a:be:83:3d:9d:f3:89:29:11:24:62: 37:ec:a2:8c:bf:38:a6:21:39:52:4e:9d:ad:59:53: 90:9c:63:e7:7a:ab:f1:1a:64:1b:5a:42:7d:9a:19: 12:22:41:2c:0e:5d:1d:b6:b2:c4:80:0f:68:e4:0d: 2e:53:51:fd:e4:8b:8c:bb:8c:c2:f2:67:ff:58:00: e2:89:a2:51:2b:ab:a4:ec:a4:f7:cf:54:c8:a4:3e: b1:f9:b0:1e:5c:ba:ac:4d:63:59:a9:bd:0c:59:5f: de:cb:c5:da:45:b7:a2:db:30:91:25:51:54:2f:df: f1:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:94:7B:81:79:5A:89:55:9E:14:B6:22:27:E3:EE:80:F2:E4:FF:D4 X509v3 Authority Key Identifier: keyid:87:A4:AF:D9:E7:FC:1F:ED:4F:95:45:DE:41:CE:44:13:DA:CB:0E:05 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/h6Sv2ef8H-1PlUXeQc5EE9rLDgU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YUANJHEN/hZR7gXlaiVWeFLYiJ-PugPLk_9Q.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.123.242.0/23 Signature Algorithm: sha256WithRSAEncryption 96:94:fd:1d:15:41:55:74:70:51:68:66:0d:b6:f9:a3:d6:f6: 86:3a:50:0e:bb:b8:c4:99:ed:04:25:6f:70:ce:92:04:22:db: 2f:0e:31:41:d2:c7:c3:a2:33:33:fc:9c:fb:b7:c8:dd:cb:e9: bf:11:49:a5:a6:c4:06:25:f7:5c:92:3e:57:cb:d3:70:e9:c1: 79:4b:01:17:bf:42:8a:d3:fb:32:fc:ee:c9:65:b3:15:de:44: 65:5c:57:7a:47:cb:3c:14:ee:c7:a0:93:a3:97:6b:34:05:83: 8a:5e:68:12:b7:27:8d:4c:c5:8d:88:39:c1:74:cd:5d:a0:f8: 21:5e:1b:52:e0:8b:74:6f:07:8e:12:a8:8b:54:37:ab:72:81: 69:c9:fc:95:78:2a:4c:bd:b7:16:f2:49:16:3b:e7:55:c4:de: 19:f1:f8:36:35:db:05:38:d6:02:af:2f:79:d8:9f:f2:27:3c: df:70:df:3b:b5:80:55:35:d8:e7:3f:a8:45:21:0d:26:7e:83: 28:2e:4d:c5:5b:05:4d:2c:ec:9c:8b:99:8c:40:df:74:b3:ce: 60:de:8a:e1:5b:ed:70:af:28:f8:a4:01:70:92:dc:8e:34:fe: 8f:0a:66:bf:a2:74:a0:79:17:ab:cc:16:82:0e:83:bb:24:83: 8c:7e:81:da -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICDHcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODdB NEFGRDlFN0ZDMUZFRDRGOTU0NURFNDFDRTQ0MTNEQUNCMEUwNTAeFw0yNDA4MjYw NDU2MThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg1OTQ3QjgxNzk1QTg5 NTU5RTE0QjYyMjI3RTNFRTgwRjJFNEZGRDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKaHqwZ6VRDuBog7FVWIkwzQnohfsXvUawZ7dR/lD689ox0uy0 en+MAGHfr5em/UgxHdtRWnS3odzEgbT6TRAM5/CyKbnAgX/BsuO5PaErYMhS9N4s +iwUHSBQ3wc7/1DbqC2TmQcv/jnuMWDqs1ES3RPv/UvUkm9F/eVEOxYrqTCvYlBU y/lfnuUKvoM9nfOJKREkYjfsooy/OKYhOVJOna1ZU5CcY+d6q/EaZBtaQn2aGRIi QSwOXR22ssSAD2jkDS5TUf3ki4y7jMLyZ/9YAOKJolErq6TspPfPVMikPrH5sB5c uqxNY1mpvQxZX97LxdpFt6LbMJElUVQv3/EXAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUhZR7gXlaiVWeFLYiJ+PugPLk/9QwHwYDVR0jBBgwFoAUh6Sv2ef8H+1PlUXe Qc5EE9rLDgUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvWVVBTkpI RU4vaDZTdjJlZjhILTFQbFVYZVFjNUVFOXJMRGdVLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9oNlN2MmVmOEgtMVBsVVhlUWM1RUU5ckxEZ1UuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ZVUFOSkhFTi9oWlI3Z1hsYWlWV2VG TFlpSi1QdWdQTGtfOVEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBZ3vyMA0GCSqGSIb3DQEBCwUAA4IBAQCWlP0dFUFVdHBRaGYNtvmj1vaGOlAO u7jEme0EJW9wzpIEItsvDjFB0sfDojMz/Jz7t8jdy+m/EUmlpsQGJfdckj5Xy9Nw 6cF5SwEXv0KK0/sy/O7JZbMV3kRlXFd6R8s8FO7HoJOjl2s0BYOKXmgStyeNTMWN iDnBdM1doPghXhtS4It0bweOEqiLVDercoFpyfyVeCpMvbcW8kkWO+dVxN4Z8fg2 NdsFONYCry952J/yJzzfcN87tYBVNdjnP6hFIQ0mfoMoLk3FWwVNLOyci5mMQN90 s85g3orhW+1wryj4pAFwktyONP6PCma/onSgeRerzBaCDoO7JIOMfoHa -----END CERTIFICATE-----Generated at Fri Sep 27 23:37:02 2024 by rpki-client on console-fra.rpki-client.org