$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/8YXm4xDhouCmygDskvXFdchfcow.roa File: 8YXm4xDhouCmygDskvXFdchfcow.roa (raw, json) Hash identifier: 8sYgFsM9ZQIDnMSMqb0HHGcqjjBb6VF+69H73liE6qA= Subject key identifier: F1:85:E6:E3:10:E1:A2:E0:A6:CA:00:EC:92:F5:C5:75:C8:5F:72:8C Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 06D5 Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/8YXm4xDhouCmygDskvXFdchfcow.roa Signing time: Mon 26 Aug 2024 05:18:31 +0000 ROA not before: Mon 26 Aug 2024 05:18:31 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 20473 IP address blocks: 103.122.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 02:24:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1749 (0x6d5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Aug 26 05:18:31 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F185E6E310E1A2E0A6CA00EC92F5C575C85F728C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:77:a4:09:02:a4:07:52:e7:c1:39:5f:a8:a5: f9:21:73:54:23:85:6c:af:b9:0e:b7:62:3a:bc:6c: e3:ab:e0:50:2d:9f:85:17:1c:bb:e8:57:57:f0:53: 54:a5:d1:6a:6e:fe:b3:1f:74:eb:e7:11:d0:da:d0: 1b:08:7e:2f:62:5e:82:ff:3a:72:e1:d7:7d:be:e0: d8:9e:50:87:5c:40:e3:e0:b0:04:07:0b:72:d6:db: 76:85:1b:00:a9:2b:b8:c0:5f:8a:90:d5:57:fb:55: a3:11:31:3b:c5:43:1f:b5:80:6c:a1:85:cc:a7:f0: dd:74:2c:97:3e:13:27:df:76:21:92:70:7a:f7:34: 1b:1c:8a:7f:7d:2c:78:fd:43:af:ac:c2:95:6c:c8: 31:9a:33:2b:6b:c8:03:e0:02:3d:b7:eb:44:47:c1: 2f:41:15:75:ba:47:16:df:eb:23:99:33:a3:9f:8b: a7:c7:bf:be:91:2b:ab:ca:86:34:8a:44:d8:be:af: 92:9e:4c:d8:dc:cb:27:62:87:e3:92:5f:f4:a9:c4: ea:40:5f:62:5d:9c:ea:59:da:a1:05:33:97:81:c4: ad:70:8a:d2:c2:9d:27:8e:51:ae:bb:cb:a7:cf:b6: c8:d3:6e:7b:85:63:ea:80:03:41:97:0f:07:54:5b: 25:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:85:E6:E3:10:E1:A2:E0:A6:CA:00:EC:92:F5:C5:75:C8:5F:72:8C X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/8YXm4xDhouCmygDskvXFdchfcow.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.122.188.0/24 Signature Algorithm: sha256WithRSAEncryption 6c:ef:8e:c9:59:0f:70:31:03:f4:f1:d5:07:47:a3:84:57:06: d9:06:c5:e7:a5:c1:5b:35:fc:58:37:65:ad:c3:b4:9f:10:14: 27:5a:c5:3b:64:53:26:0a:0b:7a:23:a0:b2:14:e8:0d:5d:4c: 47:fd:95:53:05:2d:59:96:de:30:03:d0:9b:97:76:0f:ee:cc: 33:02:af:ce:5f:6a:80:ca:c7:6c:dd:d3:e0:00:7d:73:6d:eb: 2a:a5:3e:92:10:da:62:ec:c8:45:e7:d1:e5:43:da:57:ef:2e: 97:58:59:35:8a:d3:aa:d9:8e:54:3a:e7:a0:6a:18:32:39:40: 8f:91:75:65:dd:a7:52:6c:3c:eb:0b:12:1e:07:82:13:a1:1e: 73:be:99:04:dd:9b:82:c2:10:a0:59:98:11:d4:04:7b:a1:16: 0b:cb:bc:2c:3d:2a:00:1c:45:9e:ec:94:9f:ef:43:0f:3f:1e: 74:71:27:08:0b:91:65:02:9d:af:00:92:44:32:7e:de:dc:dd: 2d:68:69:9b:f8:43:7f:41:40:3b:7b:b2:52:03:36:54:71:fc: 0d:10:81:07:2f:42:c3:a3:64:70:94:d4:cc:af:c1:ce:ed:00: 53:7a:48:8a:5b:c1:ae:7c:16:c5:0c:22:e1:c2:08:72:2b:82: 9b:d9:1a:55 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICBtUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yNDA4MjYw NTE4MzFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEYxODVFNkUzMTBFMUEy RTBBNkNBMDBFQzkyRjVDNTc1Qzg1RjcyOEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDed6QJAqQHUufBOV+opfkhc1QjhWyvuQ63Yjq8bOOr4FAtn4UX HLvoV1fwU1Sl0Wpu/rMfdOvnEdDa0BsIfi9iXoL/OnLh132+4NieUIdcQOPgsAQH C3LW23aFGwCpK7jAX4qQ1Vf7VaMRMTvFQx+1gGyhhcyn8N10LJc+EyffdiGScHr3 NBscin99LHj9Q6+swpVsyDGaMytryAPgAj2360RHwS9BFXW6Rxbf6yOZM6Ofi6fH v76RK6vKhjSKRNi+r5KeTNjcyydih+OSX/SpxOpAX2JdnOpZ2qEFM5eBxK1witLC nSeOUa67y6fPtsjTbnuFY+qAA0GXDwdUWyXjAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU8YXm4xDhouCmygDskvXFdchfcowwHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBLzhZWG00eERob3VDbXlnRHNr dlhGZGNoZmNvdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn erwwDQYJKoZIhvcNAQELBQADggEBAGzvjslZD3AxA/Tx1QdHo4RXBtkGxeelwVs1 /Fg3Za3DtJ8QFCdaxTtkUyYKC3ojoLIU6A1dTEf9lVMFLVmW3jAD0JuXdg/uzDMC r85faoDKx2zd0+AAfXNt6yqlPpIQ2mLsyEXn0eVD2lfvLpdYWTWK06rZjlQ656Bq GDI5QI+RdWXdp1JsPOsLEh4HghOhHnO+mQTdm4LCEKBZmBHUBHuhFgvLvCw9KgAc RZ7slJ/vQw8/HnRxJwgLkWUCna8AkkQyft7c3S1oaZv4Q39BQDt7slIDNlRx/A0Q gQcvQsOjZHCU1Myvwc7tAFN6SIpbwa58FsUMIuHCCHIrgpvZGlU= -----END CERTIFICATE-----Generated at Fri Nov 22 00:15:15 2024 by rpki-client on console-ams.rpki-client.org