$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/8LnOL23gz3frQ5h-ct61OJ1ItiE.roa File: 8LnOL23gz3frQ5h-ct61OJ1ItiE.roa (raw, json) Hash identifier: xHH0c4/0WNyPwPRyyF7p3+bE9awcDAnLG/oTR2Va/tY= Subject key identifier: F0:B9:CE:2F:6D:E0:CF:77:EB:43:98:7E:72:DE:B5:38:9D:48:B6:21 Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 06C9 Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/8LnOL23gz3frQ5h-ct61OJ1ItiE.roa Signing time: Mon 26 Aug 2024 05:18:27 +0000 ROA not before: Mon 26 Aug 2024 05:18:27 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131657 IP address blocks: 103.122.188.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1737 (0x6c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Aug 26 05:18:27 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F0B9CE2F6DE0CF77EB43987E72DEB5389D48B621 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:75:02:21:d6:ed:83:0f:5f:02:7e:a8:a4:9e: be:98:0c:f9:9d:d9:6e:77:e8:9d:e7:5b:bc:03:0f: ad:e1:58:53:b5:55:22:7e:10:66:c9:66:9a:e4:66: 86:0e:f8:87:ed:6b:15:6c:ff:0b:8f:0d:3d:7b:b7: ec:b9:ee:36:b8:f9:63:0b:16:df:06:d3:ae:35:ad: a0:f5:0a:65:b6:78:08:91:4e:fb:bf:44:ac:51:67: 26:2c:af:be:97:b0:81:f9:ff:28:7e:b6:aa:9d:11: dc:cd:95:c6:5b:3c:86:37:b7:f2:49:2b:1e:23:83: 68:4c:51:92:18:ec:74:b9:a6:0f:79:e7:1b:ca:b7: 17:c0:bd:f0:15:b1:54:0b:fd:b6:58:08:26:56:15: b4:1e:76:ce:2e:bd:c7:92:1a:1b:29:61:fb:9f:b4: a5:ba:b9:e5:ee:c2:85:be:40:51:5a:26:c2:75:cd: e9:72:38:cd:85:76:21:85:b4:af:a0:7a:d1:ca:f7: 8f:6e:0e:a6:03:b7:1d:c8:4e:c4:69:02:c9:02:d4: ad:9e:66:08:ec:e4:3c:c2:42:57:2e:a6:0b:59:a2: d8:75:49:93:71:7e:ee:fc:21:ce:5e:27:79:b5:27: f4:84:12:b9:3d:63:b6:13:4d:f4:6d:70:c6:1e:ee: f4:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:B9:CE:2F:6D:E0:CF:77:EB:43:98:7E:72:DE:B5:38:9D:48:B6:21 X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/8LnOL23gz3frQ5h-ct61OJ1ItiE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.122.188.0/22 Signature Algorithm: sha256WithRSAEncryption 20:6c:53:30:f2:d3:ec:90:c6:fb:d0:34:39:7f:66:64:3d:fa: c2:93:a9:a1:8c:9e:08:f8:f5:61:4e:da:34:87:52:25:12:a8: 94:ad:2c:c4:46:17:ce:2e:77:3a:9b:e2:ad:59:e8:ab:97:bf: 07:ac:d8:63:6f:7f:29:e3:ec:13:0b:d2:05:87:ba:10:9f:a0: 41:fe:67:c0:04:b4:04:fd:07:52:42:0b:a4:d8:36:5d:ff:f6: 8f:e0:f1:2a:9a:3d:7f:15:c0:2f:4b:39:a6:08:d8:8e:14:d5: ba:04:c2:2c:ad:9c:7c:9d:22:15:0b:a9:6b:10:b3:5d:74:34: 7b:62:1e:f9:83:4d:53:af:3a:95:39:e3:6f:01:2b:95:64:52: e8:6b:f4:95:5a:97:ef:63:a2:90:5b:0a:9b:f9:08:09:40:b0: f7:74:8d:39:69:ec:a0:c3:af:97:4f:ea:6d:a5:96:cd:f6:0a: 88:fb:4f:b4:9a:18:0b:d1:32:4f:56:57:68:3b:e7:d2:15:4d: cb:ea:8e:15:ad:56:e8:1b:3e:e5:31:28:23:ca:b3:f6:6d:8f: 44:7f:db:af:58:40:03:74:77:24:33:13:b6:af:f6:04:3b:65: 25:5d:d6:09:e7:8f:48:36:a7:1a:b6:0e:ff:c9:35:0d:27:c0: f4:51:ba:f0 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICBskwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yNDA4MjYw NTE4MjdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEYwQjlDRTJGNkRFMENG NzdFQjQzOTg3RTcyREVCNTM4OUQ0OEI2MjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxdQIh1u2DD18Cfqiknr6YDPmd2W536J3nW7wDD63hWFO1VSJ+ EGbJZprkZoYO+IftaxVs/wuPDT17t+y57ja4+WMLFt8G0641raD1CmW2eAiRTvu/ RKxRZyYsr76XsIH5/yh+tqqdEdzNlcZbPIY3t/JJKx4jg2hMUZIY7HS5pg955xvK txfAvfAVsVQL/bZYCCZWFbQeds4uvceSGhspYfuftKW6ueXuwoW+QFFaJsJ1zely OM2FdiGFtK+getHK949uDqYDtx3ITsRpAskC1K2eZgjs5DzCQlcupgtZoth1SZNx fu78Ic5eJ3m1J/SEErk9Y7YTTfRtcMYe7vTbAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU8LnOL23gz3frQ5h+ct61OJ1ItiEwHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBLzhMbk9MMjNnejNmclE1aC1j dDYxT0oxSXRpRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn erwwDQYJKoZIhvcNAQELBQADggEBACBsUzDy0+yQxvvQNDl/ZmQ9+sKTqaGMngj4 9WFO2jSHUiUSqJStLMRGF84udzqb4q1Z6KuXvwes2GNvfynj7BML0gWHuhCfoEH+ Z8AEtAT9B1JCC6TYNl3/9o/g8SqaPX8VwC9LOaYI2I4U1boEwiytnHydIhULqWsQ s110NHtiHvmDTVOvOpU5428BK5VkUuhr9JVal+9jopBbCpv5CAlAsPd0jTlp7KDD r5dP6m2lls32Coj7T7SaGAvRMk9WV2g759IVTcvqjhWtVugbPuUxKCPKs/Ztj0R/ 269YQAN0dyQzE7av9gQ7ZSVd1gnnj0g2pxq2Dv/JNQ0nwPRRuvA= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:51 2024 by rpki-client on console-fra.rpki-client.org