$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/LOmiPkoEY3ESLJFkcuMSNt-SOWM.roa File: LOmiPkoEY3ESLJFkcuMSNt-SOWM.roa (raw, json) Hash identifier: AgAj7qR/jxj25YjzMo1bix9Qb7ZTgBPiN/0qMReIOQk= Subject key identifier: 2C:E9:A2:3E:4A:04:63:71:12:2C:91:64:72:E3:12:36:DF:92:39:63 Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 056E Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/LOmiPkoEY3ESLJFkcuMSNt-SOWM.roa Signing time: Fri 01 Sep 2023 08:59:48 +0000 ROA not before: Fri 01 Sep 2023 08:59:48 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 134823 IP address blocks: 103.153.176.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 21:50:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1390 (0x56e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Sep 1 08:59:48 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=2CE9A23E4A046371122C916472E31236DF923963 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:37:b5:c3:dd:fd:cd:9c:d7:c9:df:a8:5f:98: ad:59:1b:79:85:f9:74:3b:a4:66:44:84:d6:0a:27: 52:d2:cd:3d:b9:61:35:aa:a9:7f:fa:9e:8b:c8:78: ed:2f:0a:36:75:ef:98:df:78:ba:0f:b9:0d:2e:27: ee:44:0f:d4:8a:8b:16:87:e0:9b:8c:af:e3:9a:9d: 6f:d6:99:93:8f:d9:70:7a:da:56:d8:31:a9:8b:70: 41:5f:d8:69:b3:d0:9c:8e:a4:a2:58:e7:b2:58:4c: d1:6c:da:38:e2:9e:c7:c5:35:86:72:4b:68:27:97: 1d:96:72:53:c4:c8:5f:be:cc:e9:d2:08:9b:78:48: eb:18:80:4c:73:d1:93:a7:9a:f8:7d:75:84:85:53: ab:68:d7:54:2f:ce:fa:97:6f:b1:a1:5d:12:d5:7c: b9:54:93:17:fd:8f:92:a0:ac:e5:bd:d4:68:da:51: 38:b8:50:58:eb:a6:ae:db:fa:64:86:b4:5b:f6:8b: 6f:38:8f:e4:77:08:0a:75:18:dd:06:24:0e:3e:85: 9c:1c:23:ec:b7:38:c5:d5:c5:bb:9a:cd:56:33:cd: a9:36:bd:d4:be:e3:59:dd:12:8f:15:d1:e9:0a:27: ce:3b:5e:23:29:68:4b:38:ca:43:f1:56:00:0c:bf: ed:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:E9:A2:3E:4A:04:63:71:12:2C:91:64:72:E3:12:36:DF:92:39:63 X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/LOmiPkoEY3ESLJFkcuMSNt-SOWM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.153.176.0/23 Signature Algorithm: sha256WithRSAEncryption a7:ba:d1:1b:b6:ad:ee:3d:9a:a0:e7:ee:bd:b2:90:7a:fd:dc: 45:82:ee:91:2a:62:6d:b1:75:91:b9:71:c3:ad:66:9c:f3:6d: 4b:d3:5c:69:91:8e:01:10:c9:88:8f:cf:b4:c7:f9:c9:9b:e7: c1:18:6c:a3:8f:97:18:a7:77:e2:9a:dd:98:26:4a:88:70:c5: 6b:6e:61:99:e4:ac:c8:2a:0b:55:d6:55:47:1a:d8:53:dd:26: d2:e6:5a:73:c4:d4:68:a6:bb:20:c1:25:93:01:fd:c5:fb:d5: 6d:ec:4b:8d:da:b6:2f:17:a0:ce:24:20:c7:d6:e6:e6:2b:e8: e4:d4:9d:60:7f:ce:19:98:ea:13:5e:7a:4b:71:6f:d5:3d:92: 6f:2c:14:b4:35:f9:64:1b:7e:ac:33:b0:ba:5b:f1:6b:ba:b4: 00:c4:79:a5:6f:9e:88:2a:02:45:b5:34:e4:bc:4c:54:fc:5f: f8:eb:d0:e2:53:7f:0a:7f:1e:a5:57:65:74:57:b0:12:0e:3a: 2f:55:01:41:7c:69:df:ed:83:d8:cd:50:cd:40:25:a0:e1:06: 50:db:3a:9e:ba:fe:5e:de:c2:3b:21:28:af:71:4c:a5:bb:80: 59:e2:f2:ca:ef:07:b4:60:bc:b0:7e:5f:bf:93:99:00:10:1c: ed:98:d8:6b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICBW4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yMzA5MDEw ODU5NDhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDJDRTlBMjNFNEEwNDYz NzExMjJDOTE2NDcyRTMxMjM2REY5MjM5NjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBN7XD3f3NnNfJ36hfmK1ZG3mF+XQ7pGZEhNYKJ1LSzT25YTWq qX/6novIeO0vCjZ175jfeLoPuQ0uJ+5ED9SKixaH4JuMr+OanW/WmZOP2XB62lbY MamLcEFf2Gmz0JyOpKJY57JYTNFs2jjinsfFNYZyS2gnlx2WclPEyF++zOnSCJt4 SOsYgExz0ZOnmvh9dYSFU6to11QvzvqXb7GhXRLVfLlUkxf9j5KgrOW91GjaUTi4 UFjrpq7b+mSGtFv2i284j+R3CAp1GN0GJA4+hZwcI+y3OMXVxbuazVYzzak2vdS+ 41ndEo8V0ekKJ847XiMpaEs4ykPxVgAMv+2NAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQULOmiPkoEY3ESLJFkcuMSNt+SOWMwHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL0xPbWlQa29FWTNFU0xKRmtj dU1TTnQtU09XTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn mbAwDQYJKoZIhvcNAQELBQADggEBAKe60Ru2re49mqDn7r2ykHr93EWC7pEqYm2x dZG5ccOtZpzzbUvTXGmRjgEQyYiPz7TH+cmb58EYbKOPlxind+Ka3ZgmSohwxWtu YZnkrMgqC1XWVUca2FPdJtLmWnPE1GimuyDBJZMB/cX71W3sS43ati8XoM4kIMfW 5uYr6OTUnWB/zhmY6hNeektxb9U9km8sFLQ1+WQbfqwzsLpb8Wu6tADEeaVvnogq AkW1NOS8TFT8X/jr0OJTfwp/HqVXZXRXsBIOOi9VAUF8ad/tg9jNUM1AJaDhBlDb Op66/l7ewjshKK9xTKW7gFni8srvB7RgvLB+X7+TmQAQHO2Y2Gs= -----END CERTIFICATE-----Generated at Tue May 7 14:32:35 2024 by rpki-client on console-fra.rpki-client.org