$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/AI8DCJYrygDHvSuYWNDQm7Pac2c.roa File: AI8DCJYrygDHvSuYWNDQm7Pac2c.roa (raw, json) Hash identifier: dEXdtk3/DvxmW34Wr7TNW1IWtpuLx01dPC3wwZoYar4= Subject key identifier: 00:8F:03:08:96:2B:CA:00:C7:BD:2B:98:58:D0:D0:9B:B3:DA:73:67 Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 05A1 Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/AI8DCJYrygDHvSuYWNDQm7Pac2c.roa Signing time: Thu 12 Oct 2023 08:21:22 +0000 ROA not before: Thu 12 Oct 2023 08:21:22 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 20473 IP address blocks: 103.122.188.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 09:48:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1441 (0x5a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Oct 12 08:21:22 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=008F0308962BCA00C7BD2B9858D0D09BB3DA7367 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:4a:c6:8c:7f:6a:9c:dd:05:d6:37:b2:28:c7: a2:d3:d4:79:1e:02:dc:1e:a0:9a:05:68:1f:e5:03: d9:8f:6a:e0:df:01:47:54:9f:26:51:48:e7:17:57: 16:a9:fb:74:14:12:26:ef:e3:6a:50:f1:6e:db:89: 0b:9d:01:7f:d8:a7:1b:55:71:0c:cd:39:6c:c6:99: ac:2a:59:99:37:6d:d0:06:12:5f:a9:9d:2f:8b:d3: 06:12:59:7d:67:af:4b:3d:ce:9e:3d:6c:7b:b5:30: cf:06:b0:fc:6a:2e:14:17:99:db:a7:8f:c0:07:c5: 67:02:5b:e9:e4:89:6e:c2:c5:08:73:c5:66:42:d7: d8:f6:04:66:4f:41:14:c3:74:29:e8:62:96:58:02: 4c:a8:cf:4c:c7:9e:95:cb:d0:9d:e3:3c:2d:c4:cc: 0e:0c:61:da:f5:55:e9:0e:ce:a4:28:cd:4a:ef:ca: 1a:55:22:67:cb:b8:4c:18:c7:d2:d5:a5:63:af:85: 3d:49:20:40:bb:ee:0c:16:7e:fc:91:25:71:a1:ad: 81:08:da:3e:21:3c:18:04:60:af:34:87:97:5d:9f: 42:9e:02:16:3e:62:21:93:ab:8f:3c:72:8e:ec:64: 59:a6:3d:85:7b:ea:9a:88:db:b1:20:cf:5e:2d:8a: f0:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:8F:03:08:96:2B:CA:00:C7:BD:2B:98:58:D0:D0:9B:B3:DA:73:67 X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/AI8DCJYrygDHvSuYWNDQm7Pac2c.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.122.188.0/22 Signature Algorithm: sha256WithRSAEncryption ba:3f:32:90:f2:5c:7e:0d:e2:99:d8:f7:88:90:27:58:d7:02: de:c5:7f:13:35:f9:39:0b:f2:17:49:29:9d:65:5e:bd:73:37: d9:55:cc:53:11:c2:0d:02:3b:27:35:0f:02:be:2a:9e:08:80: 41:59:98:99:52:d2:7f:7c:92:6c:5e:7b:c7:d6:ce:b0:6f:66: 73:d1:1c:bd:bf:69:a3:37:eb:c0:71:d6:69:d8:86:fc:8d:25: e4:39:0c:b3:dd:f9:36:15:04:a3:33:f3:3c:f9:47:bf:8b:66: 7a:b4:c9:b0:67:e6:46:23:14:b2:12:c3:4e:a0:b1:43:4b:d2: 0c:10:ea:0d:6e:9b:fc:89:8c:bb:74:18:ad:ff:33:9e:d0:b9: 35:5e:12:25:46:96:93:79:b3:b6:5a:71:47:cc:f0:3a:a0:8b: 1c:13:69:ec:dc:8a:aa:5d:93:f0:09:fe:08:72:31:59:08:a7: c2:81:43:6c:10:1f:e8:08:81:ba:b6:84:af:9f:ab:ef:36:dd: 2f:b1:4d:e1:fe:93:d9:05:d7:be:ec:a1:2e:f5:2d:be:8c:2c: 5e:40:eb:d2:5c:4e:d6:e0:4c:1f:4f:69:84:9d:58:2b:29:25: 79:c1:41:10:81:32:3c:93:10:a5:a9:58:f0:18:7f:90:b2:6a: ce:2a:b1:b3 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICBaEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yMzEwMTIw ODIxMjJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDAwOEYwMzA4OTYyQkNB MDBDN0JEMkI5ODU4RDBEMDlCQjNEQTczNjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCiSsaMf2qc3QXWN7Iox6LT1HkeAtweoJoFaB/lA9mPauDfAUdU nyZRSOcXVxap+3QUEibv42pQ8W7biQudAX/YpxtVcQzNOWzGmawqWZk3bdAGEl+p nS+L0wYSWX1nr0s9zp49bHu1MM8GsPxqLhQXmdunj8AHxWcCW+nkiW7CxQhzxWZC 19j2BGZPQRTDdCnoYpZYAkyoz0zHnpXL0J3jPC3EzA4MYdr1VekOzqQozUrvyhpV ImfLuEwYx9LVpWOvhT1JIEC77gwWfvyRJXGhrYEI2j4hPBgEYK80h5ddn0KeAhY+ YiGTq488co7sZFmmPYV76pqI27Egz14tivDPAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUAI8DCJYrygDHvSuYWNDQm7Pac2cwHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL0FJOERDSllyeWdESHZTdVlX TkRRbTdQYWMyYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn erwwDQYJKoZIhvcNAQELBQADggEBALo/MpDyXH4N4pnY94iQJ1jXAt7FfxM1+TkL 8hdJKZ1lXr1zN9lVzFMRwg0COyc1DwK+Kp4IgEFZmJlS0n98kmxee8fWzrBvZnPR HL2/aaM368Bx1mnYhvyNJeQ5DLPd+TYVBKMz8zz5R7+LZnq0ybBn5kYjFLISw06g sUNL0gwQ6g1um/yJjLt0GK3/M57QuTVeEiVGlpN5s7ZacUfM8DqgixwTaezciqpd k/AJ/ghyMVkIp8KBQ2wQH+gIgbq2hK+fq+823S+xTeH+k9kF177soS71Lb6MLF5A 69JcTtbgTB9PaYSdWCspJXnBQRCBMjyTEKWpWPAYf5Cyas4qsbM= -----END CERTIFICATE-----Generated at Mon May 6 16:52:57 2024 by rpki-client on console-fra.rpki-client.org