$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/7uXpzfJflemFWgFDf_H8HDs3h4I.roa File: 7uXpzfJflemFWgFDf_H8HDs3h4I.roa (raw, json) Hash identifier: D9rhJcNUhOTUvqiaD9C+MK4XcpJigKas3saEwB+n8K4= Subject key identifier: EE:E5:E9:CD:F2:5F:95:E9:85:5A:01:43:7F:F1:FC:1C:3B:37:87:82 Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 05AF Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/7uXpzfJflemFWgFDf_H8HDs3h4I.roa Signing time: Thu 12 Oct 2023 08:26:36 +0000 ROA not before: Thu 12 Oct 2023 08:26:36 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131657 IP address blocks: 103.122.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 21:50:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1455 (0x5af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Oct 12 08:26:36 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=EEE5E9CDF25F95E9855A01437FF1FC1C3B378782 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:df:1c:46:3f:2b:6f:08:a6:31:e5:b8:eb:78: 1c:29:68:c5:ac:96:b5:bf:b0:cb:9f:67:97:08:99: 5f:74:37:7d:9b:e7:c7:1c:36:b9:d9:b6:55:e4:49: bf:37:06:27:e5:00:9b:6d:7c:68:53:a2:61:9a:15: 56:71:3c:27:dd:73:cf:db:e6:e8:c5:39:49:97:53: fe:86:52:b2:55:e1:eb:a3:4a:e3:a3:1a:3c:50:19: 59:46:fe:05:fe:a1:2f:66:34:b9:d5:39:7f:f1:0b: 81:b1:d6:09:60:d0:e5:b2:0f:f8:dd:5a:73:34:a7: a5:ef:53:2d:05:c0:ba:47:a0:fe:09:f0:cf:b0:06: 7c:af:87:cf:fb:3a:fd:32:a2:bb:5f:c4:8c:13:14: 78:43:e5:bd:44:a1:26:a3:7b:f7:b9:81:1d:67:6d: 53:a4:61:21:ec:24:b5:4a:08:44:95:0b:85:fe:6c: 1f:66:7f:dd:4f:95:c5:31:82:39:7a:51:ba:35:37: 96:40:01:ba:10:98:39:66:0b:65:2a:2a:ee:43:73: 29:9f:d8:6d:ad:e3:c8:e0:d7:30:c7:99:1e:32:a9: b6:4d:df:c5:7a:12:f2:5b:04:48:f8:c0:03:33:c1: 61:ba:07:12:b1:3f:12:25:26:1c:a5:5e:5a:74:57: 43:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:E5:E9:CD:F2:5F:95:E9:85:5A:01:43:7F:F1:FC:1C:3B:37:87:82 X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/7uXpzfJflemFWgFDf_H8HDs3h4I.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.122.190.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:8d:42:b7:99:8b:9a:5d:01:68:9a:bd:29:4d:bc:eb:45:57: dd:95:f3:63:f2:ae:51:7d:7c:25:c6:58:5a:7c:10:f0:98:fc: 16:99:e4:b5:c1:74:b1:06:d2:f3:f2:d9:c1:d4:74:05:ab:52: 45:34:cd:51:1e:58:7b:b1:64:d6:4f:3f:08:d9:ac:ad:e8:30: e7:ba:a9:d1:80:c2:45:93:bf:10:48:7a:07:13:3d:e7:e5:03: 13:6a:4e:56:6c:85:4c:e0:0b:af:5d:10:0b:98:7a:ef:7f:9f: cf:02:f1:ae:06:83:b1:d3:5e:14:2e:1b:4b:2e:35:5a:f8:f6: ed:5b:92:5a:fe:5c:b8:92:01:39:d3:f1:c0:9a:fa:bb:63:27: 91:0b:13:f7:09:32:35:63:90:03:11:ee:60:95:63:58:f8:50: 91:9f:c2:80:bc:ea:0e:23:23:5a:dc:ba:24:dc:14:69:b1:01: d7:42:66:e1:a2:37:2a:5d:fe:30:d1:e2:89:28:80:69:96:00: 50:cc:5e:94:7a:f0:26:2e:82:28:2a:bc:f3:9a:1a:b0:b1:c7: a1:3d:54:f0:fd:b6:c1:2d:88:fc:69:03:d5:b3:88:27:1e:89: fe:5e:1f:ee:bc:c5:d5:96:c2:99:71:bd:a1:0e:e5:a6:b5:88: bd:31:ed:e6 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICBa8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yMzEwMTIw ODI2MzZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEVFRTVFOUNERjI1Rjk1 RTk4NTVBMDE0MzdGRjFGQzFDM0IzNzg3ODIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDM3xxGPytvCKYx5bjreBwpaMWslrW/sMufZ5cImV90N32b58cc NrnZtlXkSb83BiflAJttfGhTomGaFVZxPCfdc8/b5ujFOUmXU/6GUrJV4eujSuOj GjxQGVlG/gX+oS9mNLnVOX/xC4Gx1glg0OWyD/jdWnM0p6XvUy0FwLpHoP4J8M+w Bnyvh8/7Ov0yortfxIwTFHhD5b1EoSaje/e5gR1nbVOkYSHsJLVKCESVC4X+bB9m f91PlcUxgjl6Ubo1N5ZAAboQmDlmC2UqKu5Dcymf2G2t48jg1zDHmR4yqbZN38V6 EvJbBEj4wAMzwWG6BxKxPxIlJhylXlp0V0PfAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU7uXpzfJflemFWgFDf/H8HDs3h4IwHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBLzd1WHB6ZkpmbGVtRldnRkRm X0g4SERzM2g0SS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn er4wDQYJKoZIhvcNAQELBQADggEBAHqNQreZi5pdAWiavSlNvOtFV92V82PyrlF9 fCXGWFp8EPCY/BaZ5LXBdLEG0vPy2cHUdAWrUkU0zVEeWHuxZNZPPwjZrK3oMOe6 qdGAwkWTvxBIegcTPeflAxNqTlZshUzgC69dEAuYeu9/n88C8a4Gg7HTXhQuG0su NVr49u1bklr+XLiSATnT8cCa+rtjJ5ELE/cJMjVjkAMR7mCVY1j4UJGfwoC86g4j I1rcuiTcFGmxAddCZuGiNypd/jDR4okogGmWAFDMXpR68CYugigqvPOaGrCxx6E9 VPD9tsEtiPxpA9WziCceif5eH+68xdWWwplxvaEO5aa1iL0x7eY= -----END CERTIFICATE-----Generated at Tue May 7 15:44:11 2024 by rpki-client on console-ams.rpki-client.org