$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/UQ8DmkUTCB9GFw6gk4wF9fVoq7o.roa File: UQ8DmkUTCB9GFw6gk4wF9fVoq7o.roa (raw, json) Hash identifier: glHvpWnIIssHFrF0ju7BP7TVmTWxYWrISAG1ThFKoKk= Subject key identifier: 51:0F:03:9A:45:13:08:1F:46:17:0E:A0:93:8C:05:F5:F5:68:AB:BA Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 06D0 Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/UQ8DmkUTCB9GFw6gk4wF9fVoq7o.roa Signing time: Mon 26 Aug 2024 05:18:29 +0000 ROA not before: Mon 26 Aug 2024 05:18:29 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 20473 IP address blocks: 103.122.188.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 02:24:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1744 (0x6d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Aug 26 05:18:29 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=510F039A4513081F46170EA0938C05F5F568ABBA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:2c:00:74:84:01:ab:4b:93:23:45:64:5c:29: 60:10:1f:b1:10:ce:ac:aa:95:b9:dc:b4:fc:22:3b: d7:b9:5e:5c:a8:81:f1:c5:fa:52:f4:a8:97:21:a6: eb:6b:28:ca:94:d4:80:5c:1c:6c:38:4a:ae:f3:0d: 14:e7:39:74:c9:7e:4d:3d:bd:ad:0c:aa:cf:42:88: 42:29:ff:97:c2:6f:bb:9a:31:84:30:82:ef:04:56: a9:e7:cc:e3:88:2d:c1:f8:8a:b7:3b:cd:fc:91:1b: 12:af:af:6d:2b:10:24:32:56:df:61:39:73:69:04: dd:07:73:a6:75:1d:a5:bd:4a:57:b8:cc:c3:d0:2e: 31:f4:d5:07:70:5d:9d:97:72:70:b2:e2:16:f6:a4: f9:ee:99:5b:de:56:97:35:b7:f8:89:bb:d2:59:88: 8e:9e:8d:c5:56:0d:2c:91:48:41:af:54:cc:97:84: ba:54:e9:54:97:32:d0:86:1a:ef:1c:b4:67:78:32: 85:0e:7a:f7:cd:98:65:67:f0:2f:aa:71:2d:7a:0f: e7:8d:47:df:da:de:d6:93:0e:3c:21:06:84:bb:59: a7:26:18:98:90:36:92:7d:8b:78:15:2c:4e:9e:ae: a9:eb:56:84:69:ea:f4:cb:52:10:3a:e0:84:e1:67: 51:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:0F:03:9A:45:13:08:1F:46:17:0E:A0:93:8C:05:F5:F5:68:AB:BA X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/UQ8DmkUTCB9GFw6gk4wF9fVoq7o.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.122.188.0/22 Signature Algorithm: sha256WithRSAEncryption 80:2c:1b:95:94:84:20:4e:0e:65:27:42:5f:27:2f:56:17:d9: 6e:94:7b:5d:3a:a7:aa:8e:c5:ae:35:04:ee:fc:56:cf:79:0a: 07:e9:4d:35:15:5e:a9:7e:93:b7:9b:d2:56:b6:7b:1d:50:c2: bc:21:39:94:e9:51:e8:f7:9b:cb:07:73:a1:f8:e6:c2:49:f7: 86:d1:e1:62:9f:9c:eb:9c:a1:85:97:4d:cb:f5:50:de:f1:e3: 8b:f4:2c:11:4b:7d:29:29:1a:04:11:ba:e5:d1:ac:da:b7:20: c8:77:4e:06:2b:8c:2a:f4:ea:cf:45:91:09:fb:f0:e7:7f:d6: 93:91:b2:7b:0f:e1:77:9e:af:c0:8d:42:f4:14:75:ad:1e:5f: 83:9c:18:2b:54:ce:5e:a2:17:e3:63:3f:28:0b:7b:dc:43:e3: d6:f1:ed:63:f0:29:14:eb:dd:e2:30:fa:ee:2d:df:fd:94:1b: cb:1a:3f:5c:38:7b:81:54:76:b7:4d:c4:41:05:f0:3e:6d:08: 3a:3d:a2:3e:1f:83:00:11:d4:70:8b:4f:8e:94:8a:bb:77:11: e2:99:11:89:63:fa:71:eb:f4:c2:51:79:a4:b5:38:36:e0:d8: 52:ab:fa:e1:5d:e1:dd:a8:90:7b:13:27:fb:30:86:a4:fc:84: e0:af:56:c1 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICBtAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yNDA4MjYw NTE4MjlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDUxMEYwMzlBNDUxMzA4 MUY0NjE3MEVBMDkzOEMwNUY1RjU2OEFCQkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDLAB0hAGrS5MjRWRcKWAQH7EQzqyqlbnctPwiO9e5XlyogfHF +lL0qJchputrKMqU1IBcHGw4Sq7zDRTnOXTJfk09va0Mqs9CiEIp/5fCb7uaMYQw gu8EVqnnzOOILcH4irc7zfyRGxKvr20rECQyVt9hOXNpBN0Hc6Z1HaW9Sle4zMPQ LjH01QdwXZ2XcnCy4hb2pPnumVveVpc1t/iJu9JZiI6ejcVWDSyRSEGvVMyXhLpU 6VSXMtCGGu8ctGd4MoUOevfNmGVn8C+qcS16D+eNR9/a3taTDjwhBoS7WacmGJiQ NpJ9i3gVLE6erqnrVoRp6vTLUhA64IThZ1ElAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUUQ8DmkUTCB9GFw6gk4wF9fVoq7owHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL1VROERta1VUQ0I5R0Z3Nmdr NHdGOWZWb3E3by5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn erwwDQYJKoZIhvcNAQELBQADggEBAIAsG5WUhCBODmUnQl8nL1YX2W6Ue106p6qO xa41BO78Vs95CgfpTTUVXql+k7eb0la2ex1QwrwhOZTpUej3m8sHc6H45sJJ94bR 4WKfnOucoYWXTcv1UN7x44v0LBFLfSkpGgQRuuXRrNq3IMh3TgYrjCr06s9FkQn7 8Od/1pORsnsP4Xeer8CNQvQUda0eX4OcGCtUzl6iF+NjPygLe9xD49bx7WPwKRTr 3eIw+u4t3/2UG8saP1w4e4FUdrdNxEEF8D5tCDo9oj4fgwAR1HCLT46Uirt3EeKZ EYlj+nHr9MJReaS1ODbg2FKr+uFd4d2okHsTJ/swhqT8hOCvVsE= -----END CERTIFICATE-----Generated at Fri Nov 22 00:15:15 2024 by rpki-client on console-ams.rpki-client.org