$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/YCcBtkrCK81KrwTI96Lw7mblt3o.roa File: YCcBtkrCK81KrwTI96Lw7mblt3o.roa (raw, json) Hash identifier: PkCAJlpf7lhiqGPsPT0SeQ9IfjonaTus8mW/uDxnuks= Subject key identifier: 60:27:01:B6:4A:C2:2B:CD:4A:AF:04:C8:F7:A2:F0:EE:66:E5:B7:7A Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 06BF Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/YCcBtkrCK81KrwTI96Lw7mblt3o.roa Signing time: Mon 26 Aug 2024 05:18:26 +0000 ROA not before: Mon 26 Aug 2024 05:18:26 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17418 IP address blocks: 103.153.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1727 (0x6bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Aug 26 05:18:26 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=602701B64AC22BCD4AAF04C8F7A2F0EE66E5B77A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ea:7c:f8:f8:5b:c0:5b:37:d4:0a:6f:35:d5: 2b:2a:e6:20:ec:4e:5d:ab:dd:83:46:19:8f:00:d8: 84:d0:53:bf:7a:f4:06:e5:84:79:13:f5:09:b9:67: 9f:e3:ee:55:72:c2:86:7d:26:32:7f:8e:a6:a6:e5: 5b:f6:30:ef:13:47:d2:37:19:b9:89:02:ef:e3:47: 0b:55:a3:42:f0:e3:85:43:60:ba:3e:fb:a0:aa:07: cd:a7:af:b2:bb:c7:bf:ea:d6:f8:03:10:5d:ac:69: 8e:03:01:34:ce:05:44:37:77:bc:03:46:22:f1:82: c5:d5:a9:30:02:f3:6f:61:5a:a8:2c:3a:cb:6d:70: 9a:89:7c:ea:dc:e1:82:eb:c2:e7:f7:75:35:47:b8: 3b:be:55:38:c7:37:c3:0b:e4:2b:32:fd:1b:a3:30: bb:4c:3e:78:68:b6:63:ff:5f:9e:44:2a:02:b1:62: 59:00:a8:97:8d:fb:e4:2b:70:1a:6c:af:36:53:75: 5b:ae:ce:74:31:71:e5:6d:19:fc:04:37:fa:10:af: 9c:2a:47:f7:39:eb:ed:ac:19:2b:10:3b:d8:23:78: 79:48:e6:b7:a3:9f:3b:85:1a:55:7c:49:e2:9b:d9: 61:00:9f:6e:19:2e:a8:53:bc:70:ed:9e:18:64:03: 0a:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:27:01:B6:4A:C2:2B:CD:4A:AF:04:C8:F7:A2:F0:EE:66:E5:B7:7A X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/YCcBtkrCK81KrwTI96Lw7mblt3o.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.153.176.0/24 Signature Algorithm: sha256WithRSAEncryption bc:7d:61:df:61:45:36:6f:35:2f:09:1a:c8:49:3f:90:b4:01: e8:36:6b:47:90:2a:cd:4c:e7:d3:ff:bb:d2:2e:3b:37:86:3c: bd:53:1a:ac:10:aa:29:bb:3a:ec:ad:fb:d4:fc:50:77:1b:30: ec:4e:ae:1d:d9:a8:ef:88:3d:85:3f:df:27:26:20:b7:fe:c0: 69:d0:6d:78:7d:2f:25:1c:94:00:77:a2:1f:fe:f0:29:8f:7e: 89:57:92:7d:c1:85:94:0f:82:f7:43:2b:2f:fd:31:41:49:f8: 6f:72:c2:fc:f8:c1:16:d2:fe:62:6e:3b:4b:e7:fe:bc:21:84: 91:a0:f6:35:e0:b9:7b:4d:44:b7:21:14:3c:aa:07:76:93:a3: 07:9d:73:14:6c:d6:c8:62:73:ce:46:b4:52:4e:64:ca:2a:68: 6a:00:4a:f4:00:40:3d:fc:03:ba:43:3a:f4:b3:c9:e2:3e:79: b3:84:f6:b3:a6:24:5d:bd:64:9b:b8:1f:71:fa:4b:37:ab:9b: 2a:fb:2b:1c:40:97:ff:e2:c4:96:71:76:c8:42:5a:fc:51:f5: a9:ed:5b:8b:cf:16:09:b7:b6:f2:1c:43:a5:4b:9e:af:cf:81: 86:d3:38:7b:da:20:30:86:83:e5:6f:d9:e8:b1:6c:f8:3f:01: 3e:a7:04:4e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICBr8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yNDA4MjYw NTE4MjZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDYwMjcwMUI2NEFDMjJC Q0Q0QUFGMDRDOEY3QTJGMEVFNjZFNUI3N0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDA6nz4+FvAWzfUCm811Ssq5iDsTl2r3YNGGY8A2ITQU7969Abl hHkT9Qm5Z5/j7lVywoZ9JjJ/jqam5Vv2MO8TR9I3GbmJAu/jRwtVo0Lw44VDYLo+ +6CqB82nr7K7x7/q1vgDEF2saY4DATTOBUQ3d7wDRiLxgsXVqTAC829hWqgsOstt cJqJfOrc4YLrwuf3dTVHuDu+VTjHN8ML5Csy/RujMLtMPnhotmP/X55EKgKxYlkA qJeN++QrcBpsrzZTdVuuznQxceVtGfwEN/oQr5wqR/c56+2sGSsQO9gjeHlI5rej nzuFGlV8SeKb2WEAn24ZLqhTvHDtnhhkAwp7AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUYCcBtkrCK81KrwTI96Lw7mblt3owHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL1lDY0J0a3JDSzgxS3J3VEk5 Nkx3N21ibHQzby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn mbAwDQYJKoZIhvcNAQELBQADggEBALx9Yd9hRTZvNS8JGshJP5C0Aeg2a0eQKs1M 59P/u9IuOzeGPL1TGqwQqim7Ouyt+9T8UHcbMOxOrh3ZqO+IPYU/3ycmILf+wGnQ bXh9LyUclAB3oh/+8CmPfolXkn3BhZQPgvdDKy/9MUFJ+G9ywvz4wRbS/mJuO0vn /rwhhJGg9jXguXtNRLchFDyqB3aTowedcxRs1shic85GtFJOZMoqaGoASvQAQD38 A7pDOvSzyeI+ebOE9rOmJF29ZJu4H3H6Szermyr7KxxAl//ixJZxdshCWvxR9ant W4vPFgm3tvIcQ6VLnq/PgYbTOHvaIDCGg+Vv2eixbPg/AT6nBE4= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:51 2024 by rpki-client on console-fra.rpki-client.org