$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/GHtRqvCiFyvOSenRVzvuKA8hD5k.roa File: GHtRqvCiFyvOSenRVzvuKA8hD5k.roa (raw, json) Hash identifier: UHwp4Fy4Ttx3eVIYjnRvNG/b8OzwuJeMj/0NxkWhucY= Subject key identifier: 18:7B:51:AA:F0:A2:17:2B:CE:49:E9:D1:57:3B:EE:28:0F:21:0F:99 Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 06C2 Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/GHtRqvCiFyvOSenRVzvuKA8hD5k.roa Signing time: Mon 26 Aug 2024 05:18:26 +0000 ROA not before: Mon 26 Aug 2024 05:18:26 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131657 IP address blocks: 103.122.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1730 (0x6c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Aug 26 05:18:26 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=187B51AAF0A2172BCE49E9D1573BEE280F210F99 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:bc:bc:ee:e9:a0:6c:e7:d7:90:75:ac:c3:2e: dc:df:1b:31:b7:e8:55:ea:27:9d:5c:d5:72:3a:ef: 4b:a2:1a:5d:cf:04:95:0c:f2:ee:6a:d1:43:fb:75: 3f:26:94:e3:43:94:33:b6:0b:6d:ac:5e:ee:22:4c: eb:df:96:31:35:2b:1d:dc:cc:7f:84:8b:21:aa:79: e5:a3:f1:cb:d3:42:48:f8:20:a5:e3:ea:27:61:57: d7:d6:5d:d1:ac:95:d8:8e:c1:26:1b:a1:2c:53:c4: 20:2c:84:a2:01:72:70:56:98:3d:5f:de:c7:96:73: 12:1b:81:50:90:d4:ec:be:34:e0:eb:a6:c4:b4:f6: 8a:5a:a6:da:16:56:5b:49:af:b5:2b:28:8d:81:b6: 2b:9d:3c:52:a8:15:63:8b:15:e2:eb:dd:43:e8:87: e0:e9:a9:d5:d0:1f:04:80:3a:9d:f0:f9:26:ad:79: e0:d5:5c:2c:17:c0:dc:56:72:ec:12:7a:45:53:b2: 2e:48:b2:3b:bf:1b:40:0d:46:c1:8a:3f:d6:11:b4: e5:5c:95:f5:eb:12:96:7e:62:39:92:2a:fa:d4:de: cd:e1:34:a5:b6:dd:ad:28:20:8e:bd:e6:76:02:6e: 6d:3a:b0:1d:f7:3e:98:6d:c4:0f:66:a0:f5:00:47: 65:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:7B:51:AA:F0:A2:17:2B:CE:49:E9:D1:57:3B:EE:28:0F:21:0F:99 X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/GHtRqvCiFyvOSenRVzvuKA8hD5k.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.122.189.0/24 Signature Algorithm: sha256WithRSAEncryption ae:e1:b9:a4:b8:51:80:25:5a:6a:3f:32:22:e0:af:ba:ba:4a: 8b:03:ca:ae:8c:9d:da:51:00:68:8b:1c:0b:46:4a:bc:41:52: 03:fb:31:3e:65:04:70:63:10:f6:0c:e6:e6:e1:d1:3c:0c:5b: 44:92:6a:e3:5d:fe:fb:d9:7c:9b:67:82:77:70:26:03:f8:2f: e9:b0:33:d9:4c:c7:cc:ec:a2:43:56:88:7d:a9:86:3f:5d:ce: 42:0f:85:51:37:dc:2f:58:5c:0f:da:f5:e7:16:d1:f6:67:e6: c0:29:76:33:1f:5d:13:1d:d9:b4:9a:ae:2a:6b:46:a0:2d:0f: 52:d8:31:f0:7b:93:18:e0:91:2b:65:ad:89:31:83:ea:a9:1f: 49:23:b9:bc:98:00:8d:0f:76:99:68:8e:35:f2:4f:2f:b8:b1: 74:d8:e8:df:6c:da:7f:de:55:c4:42:0b:4c:63:b5:3b:68:96: 1d:d3:35:a7:fc:c6:a5:d4:5c:33:5b:88:b4:35:b1:3c:b1:2b: 97:d0:d9:5b:79:dd:f4:fe:d7:82:28:aa:67:01:38:0a:14:c8: 01:86:2a:1b:b8:1d:df:3e:a0:9e:f9:ef:a7:54:ef:15:a5:27: 7b:87:5e:20:52:80:fb:ed:2c:60:1f:e6:dd:42:d0:dd:e5:b1: cf:d0:ac:35 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICBsIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yNDA4MjYw NTE4MjZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE4N0I1MUFBRjBBMjE3 MkJDRTQ5RTlEMTU3M0JFRTI4MEYyMTBGOTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1vLzu6aBs59eQdazDLtzfGzG36FXqJ51c1XI670uiGl3PBJUM 8u5q0UP7dT8mlONDlDO2C22sXu4iTOvfljE1Kx3czH+EiyGqeeWj8cvTQkj4IKXj 6idhV9fWXdGsldiOwSYboSxTxCAshKIBcnBWmD1f3seWcxIbgVCQ1Oy+NODrpsS0 9opaptoWVltJr7UrKI2BtiudPFKoFWOLFeLr3UPoh+DpqdXQHwSAOp3w+SateeDV XCwXwNxWcuwSekVTsi5Isju/G0ANRsGKP9YRtOVclfXrEpZ+YjmSKvrU3s3hNKW2 3a0oII695nYCbm06sB33PphtxA9moPUAR2XBAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUGHtRqvCiFyvOSenRVzvuKA8hD5kwHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL0dIdFJxdkNpRnl2T1NlblJW enZ1S0E4aEQ1ay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn er0wDQYJKoZIhvcNAQELBQADggEBAK7huaS4UYAlWmo/MiLgr7q6SosDyq6MndpR AGiLHAtGSrxBUgP7MT5lBHBjEPYM5ubh0TwMW0SSauNd/vvZfJtngndwJgP4L+mw M9lMx8zsokNWiH2phj9dzkIPhVE33C9YXA/a9ecW0fZn5sApdjMfXRMd2bSaripr RqAtD1LYMfB7kxjgkStlrYkxg+qpH0kjubyYAI0PdplojjXyTy+4sXTY6N9s2n/e VcRCC0xjtTtolh3TNaf8xqXUXDNbiLQ1sTyxK5fQ2Vt53fT+14IoqmcBOAoUyAGG Khu4Hd8+oJ7576dU7xWlJ3uHXiBSgPvtLGAf5t1C0N3lsc/QrDU= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:51 2024 by rpki-client on console-fra.rpki-client.org