$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/3EKzYf745b-2665iq1z5y5ivUfs.roa File: 3EKzYf745b-2665iq1z5y5ivUfs.roa (raw, json) Hash identifier: QGVa0Kouu/forB0pvZETkQ0WzDdYFygpaYV2gYZo/Zo= Subject key identifier: DC:42:B3:61:FE:F8:E5:BF:B6:EB:AE:62:AB:5C:F9:CB:98:AF:51:FB Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 06C5 Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/3EKzYf745b-2665iq1z5y5ivUfs.roa Signing time: Mon 26 Aug 2024 05:18:26 +0000 ROA not before: Mon 26 Aug 2024 05:18:26 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 134823 IP address blocks: 103.153.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1733 (0x6c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Aug 26 05:18:26 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=DC42B361FEF8E5BFB6EBAE62AB5CF9CB98AF51FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ea:52:3d:8d:cc:0a:96:f2:f9:11:88:0a:0f: 49:e3:70:4d:00:a0:89:8d:ce:2c:27:d0:9c:aa:29: 87:bc:91:04:63:98:18:e0:1a:ad:d9:d7:9c:1e:73: bc:ea:fb:77:47:a2:81:84:84:bb:c2:b4:34:96:59: 99:e4:a9:d3:8b:cd:09:6e:b1:c7:c6:17:61:61:14: 38:0a:73:3e:00:c1:06:be:ae:2d:1f:e5:5c:e3:f4: 12:88:35:9e:56:9d:7f:b5:13:f6:48:93:18:66:a5: 27:41:a0:a6:62:8d:b4:52:32:7c:c7:db:bf:c7:10: 83:26:81:bb:15:95:fd:fb:a8:71:c1:d5:89:79:7e: 21:8a:81:87:95:25:e9:17:28:2f:a6:f3:18:e5:5a: 66:15:d4:0f:70:4f:9b:81:16:db:fb:3c:ea:6b:6f: eb:54:8b:7b:85:c4:70:cf:af:65:a2:09:47:9b:1e: 4b:c4:47:7f:26:8c:84:66:3f:b0:f2:5e:15:30:87: 5f:b6:df:08:8b:46:98:49:78:93:19:e2:8d:bf:80: fc:12:37:06:41:1c:c6:39:a6:87:b9:e0:b5:f1:1a: c5:09:f1:c9:42:b6:ec:17:46:31:48:74:e2:fe:02: 54:ca:43:fa:6e:d6:df:46:54:9c:7c:5c:e8:63:78: 9b:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:42:B3:61:FE:F8:E5:BF:B6:EB:AE:62:AB:5C:F9:CB:98:AF:51:FB X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/3EKzYf745b-2665iq1z5y5ivUfs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.153.176.0/24 Signature Algorithm: sha256WithRSAEncryption 3c:4f:e2:9c:df:c7:d7:49:41:82:54:45:18:4e:c5:67:4b:b9: aa:99:d9:bb:0e:73:51:6c:6c:9a:0d:b8:39:f2:11:c3:61:35: f9:3f:d5:f7:75:51:49:ad:87:35:f5:69:7d:9b:61:d5:84:4d: 81:6c:09:6d:c4:4d:cc:87:a3:70:4f:f8:83:c2:27:c0:0d:a5: b5:27:2c:db:ed:d4:94:2f:5d:3c:22:d8:a5:dd:98:5b:ea:8d: b3:3f:dc:e4:1d:67:c3:74:db:2e:b1:ff:56:0a:f0:68:e3:ea: 71:75:f0:df:93:2d:3f:9b:3f:b3:07:cf:b1:d9:22:f5:32:b4: f6:15:dc:1e:97:c9:9f:85:c7:6f:62:db:39:9b:bc:a7:f5:61: 06:c4:d3:5d:37:36:7b:5d:b3:a6:44:c2:2e:c0:83:77:a8:ad: d4:c7:bf:fb:d4:3f:6d:44:e8:0d:fd:38:e8:37:ad:77:20:5c: 58:a3:79:7b:93:f8:0d:26:ac:4d:99:05:4f:a3:b7:f9:87:35: 05:61:3a:8f:98:1e:60:a0:5e:0b:95:eb:76:84:06:1b:a7:0f: 4c:45:3f:86:e0:dd:60:11:23:c8:85:d6:e2:65:d8:74:d4:57: 80:f0:b3:27:53:ca:da:14:ec:c4:0d:75:8b:bd:1f:f9:fa:8a: 1e:7e:3e:2d -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICBsUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yNDA4MjYw NTE4MjZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKERDNDJCMzYxRkVGOEU1 QkZCNkVCQUU2MkFCNUNGOUNCOThBRjUxRkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC96lI9jcwKlvL5EYgKD0njcE0AoImNziwn0JyqKYe8kQRjmBjg Gq3Z15wec7zq+3dHooGEhLvCtDSWWZnkqdOLzQluscfGF2FhFDgKcz4AwQa+ri0f 5Vzj9BKINZ5WnX+1E/ZIkxhmpSdBoKZijbRSMnzH27/HEIMmgbsVlf37qHHB1Yl5 fiGKgYeVJekXKC+m8xjlWmYV1A9wT5uBFtv7POprb+tUi3uFxHDPr2WiCUebHkvE R38mjIRmP7DyXhUwh1+23wiLRphJeJMZ4o2/gPwSNwZBHMY5poe54LXxGsUJ8clC tuwXRjFIdOL+AlTKQ/pu1t9GVJx8XOhjeJvhAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU3EKzYf745b+2665iq1z5y5ivUfswHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBLzNFS3pZZjc0NWItMjY2NWlx MXo1eTVpdlVmcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn mbAwDQYJKoZIhvcNAQELBQADggEBADxP4pzfx9dJQYJURRhOxWdLuaqZ2bsOc1Fs bJoNuDnyEcNhNfk/1fd1UUmthzX1aX2bYdWETYFsCW3ETcyHo3BP+IPCJ8ANpbUn LNvt1JQvXTwi2KXdmFvqjbM/3OQdZ8N02y6x/1YK8Gjj6nF18N+TLT+bP7MHz7HZ IvUytPYV3B6XyZ+Fx29i2zmbvKf1YQbE0103Nntds6ZEwi7Ag3eordTHv/vUP21E 6A39OOg3rXcgXFijeXuT+A0mrE2ZBU+jt/mHNQVhOo+YHmCgXguV63aEBhunD0xF P4bg3WARI8iF1uJl2HTUV4DwsydTytoU7MQNdYu9H/n6ih5+Pi0= -----END CERTIFICATE-----Generated at Fri Nov 22 06:41:33 2024 by rpki-client on console-ams.rpki-client.org