$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/HY0TDNVtmOCr1NTIXLxswx-lcjw.roa File: HY0TDNVtmOCr1NTIXLxswx-lcjw.roa (raw, json) Hash identifier: d0HB10glckJKPKUMFOXknbsiG+aeCKJ3Djp0MdvEi0w= Subject key identifier: 1D:8D:13:0C:D5:6D:98:E0:AB:D4:D4:C8:5C:BC:6C:C3:1F:A5:72:3C Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 059D Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/HY0TDNVtmOCr1NTIXLxswx-lcjw.roa Signing time: Thu 12 Oct 2023 08:20:52 +0000 ROA not before: Thu 12 Oct 2023 08:20:52 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 134823 IP address blocks: 103.122.188.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 21:50:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1437 (0x59d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Oct 12 08:20:52 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=1D8D130CD56D98E0ABD4D4C85CBC6CC31FA5723C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:74:77:44:fc:b5:35:6d:f2:43:db:4c:48:97: 0f:7f:32:c1:85:3e:e5:39:d5:83:56:5d:8b:06:33: e5:5d:39:a2:d3:09:e0:47:2b:ba:df:17:3a:21:f0: 58:ad:9b:f0:60:15:0a:fd:dd:38:67:4c:ac:6d:71: 0b:43:6a:57:76:bf:95:0e:aa:30:74:93:d3:e4:cd: ee:b4:ce:41:92:a7:c0:5c:94:2e:0b:ae:f2:f6:6d: 87:15:77:f7:b6:33:ee:40:a5:5a:46:f1:c4:c3:53: 67:ac:c6:8d:b9:40:f1:07:98:19:b6:2a:b6:71:c2: 29:a1:a9:df:8d:c3:c9:c4:2c:df:41:83:86:cd:05: e2:c4:f7:4d:8e:1c:ef:5e:ff:cc:f6:4e:f2:13:43: 8c:5e:e2:28:79:fc:c9:23:85:6c:b2:61:12:e9:53: 4d:c3:3f:53:85:fd:68:1d:2e:16:92:73:24:46:cd: d3:15:3c:08:26:4c:59:c4:f2:74:12:04:a4:65:ac: a5:6c:55:e2:8b:51:82:54:9b:0c:67:db:a5:f6:0c: 21:53:2c:bd:55:be:03:18:d9:1d:fd:05:51:64:5d: f7:9e:78:b3:90:17:aa:67:78:08:64:65:0e:df:49: 36:70:ba:40:ac:75:cd:55:78:e6:94:a3:89:b6:99: 3e:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:8D:13:0C:D5:6D:98:E0:AB:D4:D4:C8:5C:BC:6C:C3:1F:A5:72:3C X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/HY0TDNVtmOCr1NTIXLxswx-lcjw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.122.188.0/22 Signature Algorithm: sha256WithRSAEncryption 73:f4:7f:ae:1e:5c:94:0d:e2:16:1b:d9:a8:cc:66:e9:f0:86: 9b:db:06:d2:eb:5a:1f:32:f2:3a:44:d6:98:25:01:3e:7c:e2: 8c:82:68:91:6c:29:56:47:4a:ca:90:a5:b0:62:b1:1a:91:8b: a3:38:a2:21:38:06:87:14:c6:37:f9:a8:83:bb:da:4f:dd:d2: 5a:7b:07:05:47:90:bf:18:c4:9e:c2:e1:a2:cd:83:94:c1:00: f1:39:73:76:d7:e7:a5:5c:2c:f1:d4:24:38:ac:27:aa:c6:3c: 2c:9a:32:96:e0:31:7d:77:cb:43:f9:93:8c:d5:f5:e3:b2:b4: 2d:ad:94:be:8a:4d:1b:5e:b6:02:26:cc:2d:2c:46:83:5c:55: 4a:31:ea:42:82:a9:b5:31:33:da:1d:2e:8f:00:01:b3:0a:f9: 54:c5:dd:74:33:fd:0b:17:91:96:9b:51:c3:da:ea:d9:b0:64: 73:c6:ce:74:08:31:dd:4b:93:9f:a2:7d:52:bc:af:af:e9:ac: 71:be:dc:bb:de:58:ed:85:9a:bc:53:df:93:f2:6c:aa:e9:5d: ee:89:65:a4:81:32:38:a2:0d:ac:0b:d6:54:50:b0:7b:fb:fa: bc:e7:b7:49:b7:bb:b0:dc:16:03:62:17:33:b1:41:92:d4:cb: c7:b9:53:c0 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICBZ0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yMzEwMTIw ODIwNTJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDFEOEQxMzBDRDU2RDk4 RTBBQkQ0RDRDODVDQkM2Q0MzMUZBNTcyM0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCkdHdE/LU1bfJD20xIlw9/MsGFPuU51YNWXYsGM+VdOaLTCeBH K7rfFzoh8Fitm/BgFQr93ThnTKxtcQtDald2v5UOqjB0k9Pkze60zkGSp8BclC4L rvL2bYcVd/e2M+5ApVpG8cTDU2esxo25QPEHmBm2KrZxwimhqd+Nw8nELN9Bg4bN BeLE902OHO9e/8z2TvITQ4xe4ih5/MkjhWyyYRLpU03DP1OF/WgdLhaScyRGzdMV PAgmTFnE8nQSBKRlrKVsVeKLUYJUmwxn26X2DCFTLL1VvgMY2R39BVFkXfeeeLOQ F6pneAhkZQ7fSTZwukCsdc1VeOaUo4m2mT4rAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUHY0TDNVtmOCr1NTIXLxswx+lcjwwHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL0hZMFRETlZ0bU9DcjFOVElY THhzd3gtbGNqdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn erwwDQYJKoZIhvcNAQELBQADggEBAHP0f64eXJQN4hYb2ajMZunwhpvbBtLrWh8y 8jpE1pglAT584oyCaJFsKVZHSsqQpbBisRqRi6M4oiE4BocUxjf5qIO72k/d0lp7 BwVHkL8YxJ7C4aLNg5TBAPE5c3bX56VcLPHUJDisJ6rGPCyaMpbgMX13y0P5k4zV 9eOytC2tlL6KTRtetgImzC0sRoNcVUox6kKCqbUxM9odLo8AAbMK+VTF3XQz/QsX kZabUcPa6tmwZHPGznQIMd1Lk5+ifVK8r6/prHG+3LveWO2FmrxT35PybKrpXe6J ZaSBMjiiDawL1lRQsHv7+rznt0m3u7DcFgNiFzOxQZLUy8e5U8A= -----END CERTIFICATE-----Generated at Tue May 7 15:44:11 2024 by rpki-client on console-ams.rpki-client.org