$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/935ovYW6JYoDaeGQ3ZAYSBnoITs.roa File: 935ovYW6JYoDaeGQ3ZAYSBnoITs.roa (raw, json) Hash identifier: YuDXiikEZbpa+2t2CJLyXr3l5Szr/tVbxtGUoMJfbgk= Subject key identifier: F7:7E:68:BD:85:BA:25:8A:03:69:E1:90:DD:90:18:48:19:E8:21:3B Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 056F Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/935ovYW6JYoDaeGQ3ZAYSBnoITs.roa Signing time: Fri 01 Sep 2023 08:59:48 +0000 ROA not before: Fri 01 Sep 2023 08:59:48 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 20473 IP address blocks: 103.153.176.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 09:48:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1391 (0x56f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Sep 1 08:59:48 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=F77E68BD85BA258A0369E190DD90184819E8213B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:1c:55:1c:2a:f6:76:a6:ca:3d:f1:b0:3c:f0: db:fd:7f:6d:0c:c1:7a:c7:6c:b9:b3:69:3f:c2:0d: 84:33:f3:ad:70:0c:9f:0a:77:e4:d1:37:20:f6:eb: b2:93:bc:46:2a:66:34:16:2f:ff:66:f1:a7:34:20: 5a:30:d2:89:4d:b4:48:11:62:85:53:d7:a3:be:63: 6f:4f:0a:2a:39:2c:d4:ef:93:dd:5d:25:0e:80:70: c9:35:ab:92:0c:76:4d:50:1e:0c:1c:65:b9:a5:0e: 17:bf:97:e6:ff:01:f1:70:ac:68:a3:ba:7a:79:27: e2:98:d6:d9:13:29:d6:74:a3:f7:cb:15:62:f5:5c: c9:a7:8c:d9:20:98:23:e3:55:4d:9b:7a:d2:5c:b4: a0:6b:37:23:3d:e5:c2:f2:dd:fd:24:0a:7e:9c:5f: e0:1e:12:d4:b3:df:a9:95:f5:cb:e6:41:20:aa:bd: 35:1e:4f:91:0c:36:a7:32:fc:29:c0:93:52:e3:5a: 22:a3:37:64:0b:20:4e:bb:82:1f:db:f2:0b:2e:80: 73:c1:52:be:e9:32:44:a8:7e:94:98:95:cd:10:d9: 40:88:2e:e4:bb:43:45:16:62:33:75:0d:35:49:12: 2d:7a:20:ae:0c:f8:33:87:06:46:d1:70:a4:53:65: 6e:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:7E:68:BD:85:BA:25:8A:03:69:E1:90:DD:90:18:48:19:E8:21:3B X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/935ovYW6JYoDaeGQ3ZAYSBnoITs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.153.176.0/23 Signature Algorithm: sha256WithRSAEncryption 58:2d:a8:61:37:eb:4c:4f:e2:28:22:ba:30:83:1f:09:d0:69: ba:09:3b:af:bd:3b:54:45:11:d3:8c:08:e7:59:4e:61:ad:0a: 50:7c:03:91:47:92:a5:3c:92:f9:eb:ad:ce:7d:69:3f:39:88: 2f:88:04:43:36:ef:40:4b:f1:a9:c6:71:26:32:b5:14:78:6d: 4e:c4:95:17:dd:d6:da:11:21:27:6d:5a:fc:70:48:4f:65:88: ea:70:ac:0c:d1:99:c1:47:a6:0c:1a:f6:75:3a:93:3d:a3:ff: df:05:fc:9a:11:8b:dc:56:18:c0:a0:71:db:6d:cc:84:70:0a: 09:0d:1e:34:43:40:fc:46:01:b8:3d:e4:22:91:ed:86:8c:c7: 0a:88:53:4f:db:a7:91:16:65:ec:22:55:d9:5e:95:d8:cb:9e: 46:27:2c:1d:3f:2b:39:24:7e:ab:34:25:45:c7:b5:cb:37:6a: c0:78:81:46:13:42:87:c6:cb:a7:d8:53:be:95:8e:4c:ca:a9: d7:51:6e:8a:6d:0f:52:c5:9d:59:ba:0f:a4:14:68:50:bf:12: 83:43:9f:3a:76:a1:7f:ae:bc:7a:c6:7c:03:cb:43:19:92:7a: 36:1e:26:5f:bd:aa:1d:e9:28:7a:15:0e:ce:bb:c7:be:bf:a7: 0d:4f:6b:ef -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICBW8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yMzA5MDEw ODU5NDhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEY3N0U2OEJEODVCQTI1 OEEwMzY5RTE5MEREOTAxODQ4MTlFODIxM0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQChHFUcKvZ2pso98bA88Nv9f20MwXrHbLmzaT/CDYQz861wDJ8K d+TRNyD267KTvEYqZjQWL/9m8ac0IFow0olNtEgRYoVT16O+Y29PCio5LNTvk91d JQ6AcMk1q5IMdk1QHgwcZbmlDhe/l+b/AfFwrGijunp5J+KY1tkTKdZ0o/fLFWL1 XMmnjNkgmCPjVU2betJctKBrNyM95cLy3f0kCn6cX+AeEtSz36mV9cvmQSCqvTUe T5EMNqcy/CnAk1LjWiKjN2QLIE67gh/b8gsugHPBUr7pMkSofpSYlc0Q2UCILuS7 Q0UWYjN1DTVJEi16IK4M+DOHBkbRcKRTZW4RAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU935ovYW6JYoDaeGQ3ZAYSBnoITswHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBLzkzNW92WVc2SllvRGFlR1Ez WkFZU0Jub0lUcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn mbAwDQYJKoZIhvcNAQELBQADggEBAFgtqGE360xP4igiujCDHwnQaboJO6+9O1RF EdOMCOdZTmGtClB8A5FHkqU8kvnrrc59aT85iC+IBEM270BL8anGcSYytRR4bU7E lRfd1toRISdtWvxwSE9liOpwrAzRmcFHpgwa9nU6kz2j/98F/JoRi9xWGMCgcdtt zIRwCgkNHjRDQPxGAbg95CKR7YaMxwqIU0/bp5EWZewiVdleldjLnkYnLB0/Kzkk fqs0JUXHtcs3asB4gUYTQofGy6fYU76VjkzKqddRboptD1LFnVm6D6QUaFC/EoND nzp2oX+uvHrGfAPLQxmSejYeJl+9qh3pKHoVDs67x76/pw1Pa+8= -----END CERTIFICATE-----Generated at Mon May 6 16:52:57 2024 by rpki-client on console-fra.rpki-client.org