$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/KoCRDGbld2rCrXVVlYVqHTkNsMQ.roa File: KoCRDGbld2rCrXVVlYVqHTkNsMQ.roa (raw, json) Hash identifier: D/3CiM3Q4zjwQv7tTl2JFsadof8X54M8Zf22PPKDdKU= Subject key identifier: 2A:80:91:0C:66:E5:77:6A:C2:AD:75:55:95:85:6A:1D:39:0D:B0:C4 Certificate issuer: /CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Certificate serial: 0F60 Authority key identifier: C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/KoCRDGbld2rCrXVVlYVqHTkNsMQ.roa Signing time: Fri 01 Sep 2023 08:57:00 +0000 ROA not before: Fri 01 Sep 2023 08:57:00 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 17714 IP address blocks: 203.160.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Jun 2024 15:36:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3936 (0xf60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C49E7B6F951B112F9106A96FE7F8774EAE802509 Validity Not Before: Sep 1 08:57:00 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=2A80910C66E5776AC2AD755595856A1D390DB0C4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f3:1d:40:e6:b0:95:f3:34:f9:f3:f3:58:b4:db: 08:f9:1d:56:52:32:58:78:5c:03:e4:f8:ae:56:5e: ba:b9:a0:a2:c5:a3:82:71:9a:49:75:74:80:60:51: fc:73:71:6d:e6:23:b1:d1:18:e2:08:ff:76:bf:92: 06:d3:a5:dc:97:b3:c7:25:54:2d:b0:8c:34:c0:a9: d5:1d:ef:db:45:37:a7:b9:24:68:03:02:5f:af:03: c3:d9:03:10:ac:82:e7:97:18:5b:a5:e4:ba:6c:c7: a7:40:f0:1c:a0:cf:41:b5:32:78:92:0e:75:1d:bd: fd:65:f7:50:96:0b:57:4b:0a:98:72:3b:b6:d3:14: 1b:50:0e:4d:c5:3c:27:56:6d:ef:fd:eb:77:14:b0: cc:96:51:7c:7e:eb:62:e2:7a:da:78:43:7a:d8:78: 08:81:bd:19:4c:89:c6:5c:bb:45:c9:a2:2d:e9:b7: ab:86:ad:c9:f1:2d:45:ce:63:84:55:33:f3:e3:0d: 4c:00:42:1f:68:df:5c:25:13:30:c4:84:8d:1e:42: bc:85:d1:64:ff:28:ca:c7:e7:e8:b4:e3:42:a3:79: e1:3a:13:27:51:19:a8:ba:c0:a0:66:3f:83:b4:00: 5b:c7:3d:3c:3c:a5:c3:88:b7:d5:2b:2e:19:cd:85: 77:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:80:91:0C:66:E5:77:6A:C2:AD:75:55:95:85:6A:1D:39:0D:B0:C4 X509v3 Authority Key Identifier: keyid:C4:9E:7B:6F:95:1B:11:2F:91:06:A9:6F:E7:F8:77:4E:AE:80:25:09 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/xJ57b5UbES-RBqlv5_h3Tq6AJQk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/xJ57b5UbES-RBqlv5_h3Tq6AJQk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/KoCRDGbld2rCrXVVlYVqHTkNsMQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.160.237.0/24 Signature Algorithm: sha256WithRSAEncryption 44:36:0a:67:5c:b7:93:c6:ef:dd:10:8c:73:4e:ae:b5:85:4e: 0e:f2:74:8e:65:9f:74:bd:d2:71:22:d6:a4:4b:cb:95:fd:c4: a1:f9:15:a0:68:31:d6:77:53:75:69:8e:a2:3b:0e:58:9d:9a: cc:8a:46:fb:41:22:b6:53:2c:2c:9d:8b:a6:00:9f:f6:94:b8: 21:11:0d:2a:98:01:5b:15:54:f1:38:7e:16:22:db:05:ac:f9: 79:7c:17:00:ed:e8:6a:0b:d4:4c:de:e7:d9:ec:06:0d:e4:ab: f7:8c:e5:2a:ec:34:2c:fe:4c:6d:95:af:99:65:11:a4:ae:d4: 1b:b0:1b:04:a8:ce:40:14:53:40:4d:b4:2c:70:36:05:ad:b9: e9:84:f9:20:fc:b4:0e:e7:ed:94:36:f3:8d:6b:b2:cf:c7:86: 9d:d5:7f:6e:9e:8f:3f:e6:b7:36:71:48:90:d1:d2:6b:d2:54: 33:68:76:31:76:de:2f:e1:fd:71:cd:8f:ea:bd:4c:49:da:65: 0e:aa:d6:f5:bc:d9:e7:3c:78:3c:1e:4f:54:20:f0:2b:27:08: 07:70:9e:f2:07:c8:a2:40:a8:b7:3f:a8:d9:84:68:e6:a8:06: d8:cf:7d:94:a5:f6:18:50:9e:0f:9c:7e:67:09:be:d8:75:f2: bb:1a:53:7f -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICD2AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzQ5 RTdCNkY5NTFCMTEyRjkxMDZBOTZGRTdGODc3NEVBRTgwMjUwOTAeFw0yMzA5MDEw ODU3MDBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDJBODA5MTBDNjZFNTc3 NkFDMkFENzU1NTk1ODU2QTFEMzkwREIwQzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDzHUDmsJXzNPnz81i02wj5HVZSMlh4XAPk+K5WXrq5oKLFo4Jx mkl1dIBgUfxzcW3mI7HRGOII/3a/kgbTpdyXs8clVC2wjDTAqdUd79tFN6e5JGgD Al+vA8PZAxCsgueXGFul5Lpsx6dA8Bygz0G1MniSDnUdvf1l91CWC1dLCphyO7bT FBtQDk3FPCdWbe/963cUsMyWUXx+62Lietp4Q3rYeAiBvRlMicZcu0XJoi3pt6uG rcnxLUXOY4RVM/PjDUwAQh9o31wlEzDEhI0eQryF0WT/KMrH5+i040KjeeE6EydR Gai6wKBmP4O0AFvHPTw8pcOIt9UrLhnNhXcpAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUKoCRDGbld2rCrXVVlYVqHTkNsMQwHwYDVR0jBBgwFoAUxJ57b5UbES+RBqlv 5/h3Tq6AJQkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv eEo1N2I1VWJFUy1SQnFsdjVfaDNUcTZBSlFrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS94SjU3YjVVYkVTLVJCcWx2NV9oM1RxNkFKUWsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9Lb0NSREdibGQyckNyWFZWbFlW cUhUa05zTVEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAy6Dt MA0GCSqGSIb3DQEBCwUAA4IBAQBENgpnXLeTxu/dEIxzTq61hU4O8nSOZZ90vdJx ItakS8uV/cSh+RWgaDHWd1N1aY6iOw5YnZrMikb7QSK2UywsnYumAJ/2lLghEQ0q mAFbFVTxOH4WItsFrPl5fBcA7ehqC9RM3ufZ7AYN5Kv3jOUq7DQs/kxtla+ZZRGk rtQbsBsEqM5AFFNATbQscDYFrbnphPkg/LQO5+2UNvONa7LPx4ad1X9uno8/5rc2 cUiQ0dJr0lQzaHYxdt4v4f1xzY/qvUxJ2mUOqtb1vNnnPHg8Hk9UIPArJwgHcJ7y B8iiQKi3P6jZhGjmqAbYz32UpfYYUJ4PnH5nCb7YdfK7GlN/ -----END CERTIFICATE-----Generated at Tue Jun 4 22:58:27 2024 by rpki-client on console-fra.rpki-client.org