$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/Pta2IDo67GEz0WL2Xr8WxyGXiLo.roa File: Pta2IDo67GEz0WL2Xr8WxyGXiLo.roa (raw, json) Hash identifier: hEy966rwvWNng5F0BB4APMPtpH6JVqpjwrEglJmBf1M= Subject key identifier: 3E:D6:B6:20:3A:3A:EC:61:33:D1:62:F6:5E:BF:16:C7:21:97:88:BA Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 056B Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/Pta2IDo67GEz0WL2Xr8WxyGXiLo.roa Signing time: Fri 01 Sep 2023 08:59:47 +0000 ROA not before: Fri 01 Sep 2023 08:59:47 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131657 IP address blocks: 103.153.176.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 21:50:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1387 (0x56b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Sep 1 08:59:47 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=3ED6B6203A3AEC6133D162F65EBF16C7219788BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:28:40:fa:62:89:ba:ad:11:cc:fc:17:22:c3: bf:5f:9d:2b:99:a5:7d:cf:27:56:e7:61:b0:f4:29: be:8b:dd:c8:6b:b1:d6:8b:13:5b:84:41:cb:22:cf: 34:f1:8c:08:01:1b:03:a9:c3:78:27:7b:70:b5:4d: b8:bf:c3:9b:af:0d:7a:eb:62:52:d3:bc:50:33:67: 09:0f:0e:4d:30:c6:a5:1a:c6:c8:98:6d:bd:20:06: 99:c9:27:21:5e:07:aa:c0:3d:3e:ef:2f:77:97:ef: 7a:95:c1:e8:66:bd:52:e1:5a:58:a7:21:57:e7:f3: ba:0c:a9:86:d6:85:07:d9:ed:23:f7:f6:ad:c0:b1: 09:24:66:89:03:a1:c6:99:7f:96:f2:1a:3f:37:bd: 2d:3b:94:6a:32:d2:1b:ef:5d:a8:fa:dd:21:01:8b: c2:d5:09:c0:89:d3:bb:75:ca:e6:a0:04:fa:0a:7a: 01:75:e2:97:e1:d4:ec:02:7b:2c:93:14:fb:b0:64: cc:2e:5d:fa:92:cc:1f:45:73:b0:53:03:7b:74:0a: a1:ee:06:86:ed:c3:34:47:75:f4:e8:88:8c:f6:9c: 33:fb:a8:40:91:73:e2:bd:0e:cd:4b:11:8d:e1:a2: ef:e8:47:1f:88:f3:bb:83:98:5b:cd:1c:bf:fa:52: a7:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:D6:B6:20:3A:3A:EC:61:33:D1:62:F6:5E:BF:16:C7:21:97:88:BA X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/Pta2IDo67GEz0WL2Xr8WxyGXiLo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.153.176.0/23 Signature Algorithm: sha256WithRSAEncryption 6c:7d:e2:56:94:ef:fc:c4:2d:81:d2:a5:23:e9:ea:86:38:93: 72:59:68:16:11:05:89:27:19:bd:19:de:25:10:e6:45:7e:fb: d4:0d:2a:c9:a4:09:b9:0c:d2:8e:ab:d7:21:94:0f:49:e2:5c: a7:52:27:2b:5f:81:cd:61:7e:97:7b:bb:ee:41:65:f6:76:1b: f7:72:fe:27:c0:b0:75:00:cc:06:ad:12:3b:c2:39:74:96:7d: 46:b7:ed:48:38:b2:a4:67:e2:24:ae:02:62:11:77:e7:e4:d9: 5b:fc:6c:85:88:fb:0e:71:16:08:49:d1:64:a6:d4:cb:b4:87: 66:59:b5:a8:06:5b:ec:2b:f7:78:f0:38:81:80:48:2f:23:e7: da:eb:f3:51:51:74:04:d0:8b:cd:97:12:65:57:de:4b:c6:d7: 76:93:35:d9:9b:e8:dc:8e:03:58:60:a1:f7:73:62:9c:04:e2: 0f:7c:ba:ac:df:df:71:15:41:9e:48:83:0a:5d:8a:00:17:b0: 5f:0d:92:5b:50:d7:31:d7:74:4c:5f:cb:a2:f5:70:84:46:f8: 75:01:89:a8:78:ee:10:72:dc:ad:0f:96:0a:35:21:f9:4b:0d: af:7d:16:f3:e6:b6:ee:15:3a:bf:80:8e:53:49:bd:d9:21:7e: 48:51:02:4a -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICBWswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yMzA5MDEw ODU5NDdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDNFRDZCNjIwM0EzQUVD NjEzM0QxNjJGNjVFQkYxNkM3MjE5Nzg4QkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDkKED6Yom6rRHM/Bciw79fnSuZpX3PJ1bnYbD0Kb6L3chrsdaL E1uEQcsizzTxjAgBGwOpw3gne3C1Tbi/w5uvDXrrYlLTvFAzZwkPDk0wxqUaxsiY bb0gBpnJJyFeB6rAPT7vL3eX73qVwehmvVLhWlinIVfn87oMqYbWhQfZ7SP39q3A sQkkZokDocaZf5byGj83vS07lGoy0hvvXaj63SEBi8LVCcCJ07t1yuagBPoKegF1 4pfh1OwCeyyTFPuwZMwuXfqSzB9Fc7BTA3t0CqHuBobtwzRHdfToiIz2nDP7qECR c+K9Ds1LEY3hou/oRx+I87uDmFvNHL/6UqfrAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUPta2IDo67GEz0WL2Xr8WxyGXiLowHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL1B0YTJJRG82N0dFejBXTDJY cjhXeHlHWGlMby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn mbAwDQYJKoZIhvcNAQELBQADggEBAGx94laU7/zELYHSpSPp6oY4k3JZaBYRBYkn Gb0Z3iUQ5kV++9QNKsmkCbkM0o6r1yGUD0niXKdSJytfgc1hfpd7u+5BZfZ2G/dy /ifAsHUAzAatEjvCOXSWfUa37Ug4sqRn4iSuAmIRd+fk2Vv8bIWI+w5xFghJ0WSm 1Mu0h2ZZtagGW+wr93jwOIGASC8j59rr81FRdATQi82XEmVX3kvG13aTNdmb6NyO A1hgofdzYpwE4g98uqzf33EVQZ5IgwpdigAXsF8NkltQ1zHXdExfy6L1cIRG+HUB iah47hBy3K0Plgo1IflLDa99FvPmtu4VOr+AjlNJvdkhfkhRAko= -----END CERTIFICATE-----Generated at Tue May 7 14:32:35 2024 by rpki-client on console-fra.rpki-client.org