$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/G2Ykj2l3phIcVtMM6VaOoWYJdgs.roa File: G2Ykj2l3phIcVtMM6VaOoWYJdgs.roa (raw, json) Hash identifier: 7YSUkYloPstyGRxUWFTzKwPHdKiPy/q0ULg7nW95d7E= Subject key identifier: 1B:66:24:8F:69:77:A6:12:1C:56:D3:0C:E9:56:8E:A1:66:09:76:0B Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 06D6 Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/G2Ykj2l3phIcVtMM6VaOoWYJdgs.roa Signing time: Mon 26 Aug 2024 05:18:31 +0000 ROA not before: Mon 26 Aug 2024 05:18:31 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 134823 IP address blocks: 103.122.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1750 (0x6d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Aug 26 05:18:31 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1B66248F6977A6121C56D30CE9568EA16609760B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:c8:83:9f:bb:73:7d:f1:b1:df:64:5f:67:bc: 81:4b:bb:9e:7b:46:9d:b5:ac:f0:b5:11:17:64:77: c1:0d:9a:7a:49:0d:7f:a6:7f:c4:c0:64:51:3f:47: ac:51:53:08:a6:fe:6e:ac:95:f1:6f:ca:50:f0:6c: 6d:27:49:88:c0:9f:08:50:aa:ed:c1:0d:be:90:e9: 19:12:29:2c:4d:b1:93:5f:ae:c4:70:d5:8a:4d:fd: 05:88:67:ba:84:a8:9f:94:a8:8d:2e:45:a1:10:16: 18:1a:a8:02:84:ca:ac:1b:8f:1a:1d:e3:29:10:d1: c0:b5:2b:84:f6:ad:cd:da:2b:b1:8d:bf:f3:e3:0d: 65:03:d3:2d:f7:1b:3f:61:3e:4c:5d:3a:f3:71:f3: 18:16:b7:ec:cc:43:8d:48:a1:22:8a:70:b7:d1:0e: 7f:31:84:67:48:37:64:6d:8b:d2:a5:82:d0:5e:0e: 9d:0d:a9:be:e0:1b:16:68:47:7d:41:e9:cb:1c:41: 38:3e:b0:39:b0:31:d1:e9:82:40:7e:ea:dd:46:39: 04:6b:cf:a0:69:5a:2b:34:7e:69:88:b0:58:44:bb: c4:d5:f9:fd:47:fd:00:3c:88:fd:c8:10:4e:40:c1: 3c:03:7e:b7:55:08:c9:eb:7d:0b:0f:bb:a9:e6:34: 9a:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:66:24:8F:69:77:A6:12:1C:56:D3:0C:E9:56:8E:A1:66:09:76:0B X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/G2Ykj2l3phIcVtMM6VaOoWYJdgs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.122.190.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:5a:15:45:77:b7:2b:e1:be:b7:e1:56:c9:03:a9:2d:8d:ab: 44:56:87:a1:11:83:8e:d9:5a:cc:17:f1:f0:79:a9:4e:49:93: 5b:7a:f3:4c:3f:a9:12:8d:7a:04:8a:78:d4:32:11:f2:96:7a: af:97:2a:60:99:0d:d5:6a:21:3b:ef:25:8c:d8:c6:e4:7d:71: 5d:fa:ab:a3:09:f5:2a:c5:0e:48:c3:af:76:db:13:67:30:7f: 1c:9c:87:49:0b:4d:f2:22:f2:92:03:40:bf:7a:38:6f:8c:9b: 9a:65:d5:0c:7e:47:88:16:58:6c:4a:bb:84:9f:9b:4f:aa:88: 1e:76:e5:45:9b:31:33:12:09:ac:d2:d0:35:8d:1c:f2:b7:a6: d0:41:29:ea:ec:e4:9d:50:a6:23:89:61:02:03:d2:eb:fc:b5: 66:3f:e1:81:24:0d:d8:42:ec:7f:b5:d3:84:04:ea:a5:14:a2: 15:c4:b3:c0:fc:c8:83:18:e6:af:ca:7c:70:2f:8f:0a:c3:03: 49:ae:2d:6c:70:21:37:b1:53:76:bd:8d:18:3d:ec:49:25:34: 99:ed:d3:e2:1e:df:1b:94:7f:00:0f:25:d0:71:3b:91:64:20: b5:55:f3:06:6e:ec:c0:1a:f0:31:fe:c2:b2:9e:03:90:a3:6b: 4d:86:4f:6e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICBtYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yNDA4MjYw NTE4MzFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDFCNjYyNDhGNjk3N0E2 MTIxQzU2RDMwQ0U5NTY4RUExNjYwOTc2MEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDWyIOfu3N98bHfZF9nvIFLu557Rp21rPC1ERdkd8ENmnpJDX+m f8TAZFE/R6xRUwim/m6slfFvylDwbG0nSYjAnwhQqu3BDb6Q6RkSKSxNsZNfrsRw 1YpN/QWIZ7qEqJ+UqI0uRaEQFhgaqAKEyqwbjxod4ykQ0cC1K4T2rc3aK7GNv/Pj DWUD0y33Gz9hPkxdOvNx8xgWt+zMQ41IoSKKcLfRDn8xhGdIN2Rti9KlgtBeDp0N qb7gGxZoR31B6cscQTg+sDmwMdHpgkB+6t1GOQRrz6BpWis0fmmIsFhEu8TV+f1H /QA8iP3IEE5AwTwDfrdVCMnrfQsPu6nmNJpFAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUG2Ykj2l3phIcVtMM6VaOoWYJdgswHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL0cyWWtqMmwzcGhJY1Z0TU02 VmFPb1dZSmRncy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn er4wDQYJKoZIhvcNAQELBQADggEBAExaFUV3tyvhvrfhVskDqS2Nq0RWh6ERg47Z WswX8fB5qU5Jk1t680w/qRKNegSKeNQyEfKWeq+XKmCZDdVqITvvJYzYxuR9cV36 q6MJ9SrFDkjDr3bbE2cwfxych0kLTfIi8pIDQL96OG+Mm5pl1Qx+R4gWWGxKu4Sf m0+qiB525UWbMTMSCazS0DWNHPK3ptBBKers5J1QpiOJYQID0uv8tWY/4YEkDdhC 7H+104QE6qUUohXEs8D8yIMY5q/KfHAvjwrDA0muLWxwITexU3a9jRg97EklNJnt 0+Ie3xuUfwAPJdBxO5FkILVV8wZu7MAa8DH+wrKeA5Cja02GT24= -----END CERTIFICATE-----Generated at Fri Nov 22 07:03:27 2024 by rpki-client on console-fra.rpki-client.org