$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/UA8BtC016ABZu8kbCsHf_-Rjsxs.roa File: UA8BtC016ABZu8kbCsHf_-Rjsxs.roa (raw, json) Hash identifier: Edb2t+wSi55cVWBD5fig+z/BsjM516YnVNmAqmahsRo= Subject key identifier: 50:0F:01:B4:2D:35:E8:00:59:BB:C9:1B:0A:C1:DF:FF:E4:63:B3:1B Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 0572 Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/UA8BtC016ABZu8kbCsHf_-Rjsxs.roa Signing time: Fri 01 Sep 2023 08:59:49 +0000 ROA not before: Fri 01 Sep 2023 08:59:49 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 17418 IP address blocks: 103.153.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 23:45:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1394 (0x572) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Sep 1 08:59:49 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=500F01B42D35E80059BBC91B0AC1DFFFE463B31B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:82:a0:ff:e9:d9:1c:d4:83:38:2b:cd:63:8b: fc:2d:3e:9f:57:b6:b2:df:b9:58:c2:e6:53:37:0c: e2:13:3b:de:61:64:7e:8a:6d:b3:3d:84:8a:15:4f: fb:7d:58:1f:a1:50:bf:d2:5f:5b:66:1f:93:03:45: ad:8f:f4:65:36:ae:63:b5:07:1a:56:db:09:f5:73: 87:81:9a:99:f7:b8:53:01:90:b2:ea:48:76:af:75: 19:fe:6c:5f:70:4b:96:e0:27:a7:78:91:aa:86:c6: bd:30:26:75:f1:06:94:61:ee:8b:dd:3d:2b:a7:12: 89:c5:1b:15:0b:b9:93:b1:fa:7f:0b:df:c5:ee:bc: e9:ab:d5:30:bd:8c:1e:af:1b:4c:8a:c6:e1:c6:36: 59:46:71:48:61:07:2a:34:ae:b2:a5:fb:26:86:eb: 71:c2:43:c0:2b:04:87:8d:06:b3:d4:2f:63:c9:6c: ff:8d:0f:bd:12:ba:4e:6a:45:de:02:ce:4a:d3:be: ea:94:a7:3c:22:4f:6d:50:4d:8c:2e:07:d7:9f:c9: fb:42:91:7e:e3:b4:49:32:a9:72:f4:9a:4a:38:a0: 66:39:27:04:b3:cb:62:27:7c:98:7a:63:31:f5:3d: 87:40:06:56:f5:f6:b2:b0:10:99:3b:56:94:f2:ef: 6d:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:0F:01:B4:2D:35:E8:00:59:BB:C9:1B:0A:C1:DF:FF:E4:63:B3:1B X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/UA8BtC016ABZu8kbCsHf_-Rjsxs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.153.176.0/24 Signature Algorithm: sha256WithRSAEncryption 13:6e:53:48:8d:f0:0f:2c:de:f9:e0:5e:37:7e:92:ef:fd:14: ef:c5:65:fa:c4:13:7e:ba:18:fa:51:9f:de:d2:bb:4b:66:5b: 92:94:4e:ef:0b:70:62:02:69:ef:64:c6:e8:72:ae:e4:80:75: 1f:86:c2:fc:8f:b8:48:22:e8:1e:01:9c:7b:86:e1:9a:9f:65: 8d:0a:54:da:a2:76:10:c0:e3:34:b3:50:41:4a:bd:0f:47:05: 1e:bc:2e:f9:d4:2a:12:8a:d0:82:ac:fc:42:e1:fd:05:16:0b: c6:69:42:67:b7:a0:f8:77:cf:54:14:55:e2:86:4d:90:7b:f2: 46:9b:ad:03:d0:75:21:06:8f:7e:62:39:c4:1f:2c:38:88:21: 31:95:9d:fb:b1:f0:c4:6d:64:4d:52:3a:4d:c6:3d:29:99:e9: 4a:be:87:ea:3c:48:23:5a:18:8e:a7:25:5b:b7:ae:6e:d0:5d: 3c:85:55:4f:a6:d5:7f:f8:2f:63:fe:54:32:f3:47:a4:85:bc: 26:d8:6d:0b:4b:c1:65:b4:d1:af:d7:f6:d8:6e:3c:32:33:26: 1c:df:12:95:50:5d:79:02:2b:a5:07:84:fa:86:be:0c:3c:64: 68:10:c8:a5:84:65:d4:6e:1a:65:77:da:e1:d0:1b:8d:97:bd: 6f:50:ca:be -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICBXIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yMzA5MDEw ODU5NDlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDUwMEYwMUI0MkQzNUU4 MDA1OUJCQzkxQjBBQzFERkZGRTQ2M0IzMUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEgqD/6dkc1IM4K81ji/wtPp9XtrLfuVjC5lM3DOITO95hZH6K bbM9hIoVT/t9WB+hUL/SX1tmH5MDRa2P9GU2rmO1BxpW2wn1c4eBmpn3uFMBkLLq SHavdRn+bF9wS5bgJ6d4kaqGxr0wJnXxBpRh7ovdPSunEonFGxULuZOx+n8L38Xu vOmr1TC9jB6vG0yKxuHGNllGcUhhByo0rrKl+yaG63HCQ8ArBIeNBrPUL2PJbP+N D70Suk5qRd4CzkrTvuqUpzwiT21QTYwuB9efyftCkX7jtEkyqXL0mko4oGY5JwSz y2InfJh6YzH1PYdABlb19rKwEJk7VpTy720PAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUUA8BtC016ABZu8kbCsHf/+RjsxswHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL1VBOEJ0QzAxNkFCWnU4a2JD c0hmXy1SanN4cy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn mbAwDQYJKoZIhvcNAQELBQADggEBABNuU0iN8A8s3vngXjd+ku/9FO/FZfrEE366 GPpRn97Su0tmW5KUTu8LcGICae9kxuhyruSAdR+GwvyPuEgi6B4BnHuG4ZqfZY0K VNqidhDA4zSzUEFKvQ9HBR68LvnUKhKK0IKs/ELh/QUWC8ZpQme3oPh3z1QUVeKG TZB78kabrQPQdSEGj35iOcQfLDiIITGVnfux8MRtZE1SOk3GPSmZ6Uq+h+o8SCNa GI6nJVu3rm7QXTyFVU+m1X/4L2P+VDLzR6SFvCbYbQtLwWW00a/X9thuPDIzJhzf EpVQXXkCK6UHhPqGvgw8ZGgQyKWEZdRuGmV32uHQG42XvW9Qyr4= -----END CERTIFICATE-----Generated at Tue May 7 00:09:10 2024 by rpki-client on console-ams.rpki-client.org