$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/-TnV1iA7z5J59_AMsTLkrfjjAtU.roa File: -TnV1iA7z5J59_AMsTLkrfjjAtU.roa (raw, json) Hash identifier: VL8HiVMGqoAXsgFWG/Psef73BTnm6DpUhyYSNKpmds4= Subject key identifier: F9:39:D5:D6:20:3B:CF:92:79:F7:F0:0C:B1:32:E4:AD:F8:E3:02:D5 Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 05B3 Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/-TnV1iA7z5J59_AMsTLkrfjjAtU.roa Signing time: Thu 12 Oct 2023 08:27:00 +0000 ROA not before: Thu 12 Oct 2023 08:27:00 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131657 IP address blocks: 103.122.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 21:50:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1459 (0x5b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Oct 12 08:27:00 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=F939D5D6203BCF9279F7F00CB132E4ADF8E302D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:60:e0:a3:ef:f4:5d:30:e8:3a:a6:a5:fe:a4: a6:f2:d4:f8:0b:db:65:b8:f2:bd:db:24:1b:a3:57: 8a:ee:ea:27:4f:1d:13:35:f7:d6:d0:76:b9:c4:64: be:1c:1a:bb:43:46:9a:68:85:53:ca:6f:81:8c:d7: 41:16:2a:79:1d:4d:a1:28:e4:3b:2c:6c:c4:31:58: 06:d4:f0:b8:07:3b:2a:fd:f7:f7:a6:7e:36:69:41: 7a:3f:04:29:61:29:10:41:c5:00:da:46:bb:36:be: 23:02:e8:74:d3:95:33:ee:d3:40:45:cb:12:eb:94: 9d:1d:3b:e4:dd:eb:aa:99:7e:e9:03:e0:bf:9b:4a: c6:7f:0e:72:55:94:91:cf:bc:54:50:4b:26:9e:43: fd:30:c7:9e:90:d9:f5:7e:a6:5a:42:ec:d7:ff:88: c5:d9:89:a9:63:1f:18:b7:d4:2e:e9:88:bc:be:ec: 7c:3c:03:cf:39:b6:56:7d:e5:26:e7:b1:b0:96:10: e0:e3:0e:a3:47:2c:08:0b:f9:52:21:1c:24:d9:02: fd:ae:d4:82:a0:fa:e9:50:5c:27:2b:8c:cc:46:30: 53:f4:2b:62:92:3b:b0:c2:9a:97:be:55:30:19:75: 8f:d2:70:1b:4f:40:45:86:2c:6e:da:f6:d0:93:25: c7:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:39:D5:D6:20:3B:CF:92:79:F7:F0:0C:B1:32:E4:AD:F8:E3:02:D5 X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/-TnV1iA7z5J59_AMsTLkrfjjAtU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.122.191.0/24 Signature Algorithm: sha256WithRSAEncryption 53:a3:bc:0e:4e:25:21:81:ba:0a:23:6b:70:37:35:1f:7a:14: 46:cc:f0:b7:53:b5:03:b5:09:0f:8b:8a:20:98:45:99:db:ac: 01:04:76:17:4a:2c:27:0d:b1:a7:b8:de:ae:44:c9:fc:9e:24: f2:9a:3a:d8:13:63:fe:6e:ec:f4:74:b4:3c:bd:e2:02:b7:d2: 60:5b:5c:93:f6:a4:31:74:c6:48:61:d3:79:9e:52:9f:96:a2: 13:67:a6:6a:c1:6d:05:2f:1e:8e:c3:6d:ca:8b:cd:27:02:88: 9d:f0:8d:3f:53:8b:e2:62:cf:09:9b:56:c8:77:b0:e0:10:96: 45:1c:5b:a3:9c:32:34:48:ab:3d:8e:77:e1:8c:7e:63:f8:91: 2a:6f:11:bf:f0:5d:66:0b:09:50:b0:d0:6d:44:cf:dc:81:ec: 6b:8a:61:26:b6:48:a1:26:b1:06:cb:a8:2d:4a:53:7f:cf:82: dd:51:d7:0b:ab:40:5f:b2:5a:57:0e:03:ad:dd:63:9c:45:a7: 1d:e2:ca:c3:f4:a7:46:af:e4:79:89:07:03:fb:00:29:36:e7: 98:80:36:c0:a3:5a:1f:74:a4:20:5b:01:d0:d1:bf:20:4e:30: 28:f4:69:22:4f:ee:95:ac:a4:53:5c:9e:1f:ed:9d:b8:2a:af: 73:ed:4a:d3 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICBbMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yMzEwMTIw ODI3MDBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEY5MzlENUQ2MjAzQkNG OTI3OUY3RjAwQ0IxMzJFNEFERjhFMzAyRDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+YOCj7/RdMOg6pqX+pKby1PgL22W48r3bJBujV4ru6idPHRM1 99bQdrnEZL4cGrtDRppohVPKb4GM10EWKnkdTaEo5DssbMQxWAbU8LgHOyr99/em fjZpQXo/BClhKRBBxQDaRrs2viMC6HTTlTPu00BFyxLrlJ0dO+Td66qZfukD4L+b SsZ/DnJVlJHPvFRQSyaeQ/0wx56Q2fV+plpC7Nf/iMXZialjHxi31C7piLy+7Hw8 A885tlZ95SbnsbCWEODjDqNHLAgL+VIhHCTZAv2u1IKg+ulQXCcrjMxGMFP0K2KS O7DCmpe+VTAZdY/ScBtPQEWGLG7a9tCTJcfVAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU+TnV1iA7z5J59/AMsTLkrfjjAtUwHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBLy1UblYxaUE3ejVKNTlfQU1z VExrcmZqakF0VS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn er8wDQYJKoZIhvcNAQELBQADggEBAFOjvA5OJSGBugoja3A3NR96FEbM8LdTtQO1 CQ+LiiCYRZnbrAEEdhdKLCcNsae43q5EyfyeJPKaOtgTY/5u7PR0tDy94gK30mBb XJP2pDF0xkhh03meUp+WohNnpmrBbQUvHo7DbcqLzScCiJ3wjT9Ti+JizwmbVsh3 sOAQlkUcW6OcMjRIqz2Od+GMfmP4kSpvEb/wXWYLCVCw0G1Ez9yB7GuKYSa2SKEm sQbLqC1KU3/Pgt1R1wurQF+yWlcOA63dY5xFpx3iysP0p0av5HmJBwP7ACk255iA NsCjWh90pCBbAdDRvyBOMCj0aSJP7pWspFNcnh/tnbgqr3PtStM= -----END CERTIFICATE-----Generated at Tue May 7 14:32:35 2024 by rpki-client on console-fra.rpki-client.org