$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/aLOeQ-F4EpF8JrfH5pHsjON1bUE.roa File: aLOeQ-F4EpF8JrfH5pHsjON1bUE.roa (raw, json) Hash identifier: YxK/MP1oRNWo8Bjwlr3P4X3835+AZt6YfWzR9b8qxv8= Subject key identifier: 68:B3:9E:43:E1:78:12:91:7C:26:B7:C7:E6:91:EC:8C:E3:75:6D:41 Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 06DC Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/aLOeQ-F4EpF8JrfH5pHsjON1bUE.roa Signing time: Mon 26 Aug 2024 05:18:33 +0000 ROA not before: Mon 26 Aug 2024 05:18:33 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 134823 IP address blocks: 103.122.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1756 (0x6dc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Aug 26 05:18:33 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=68B39E43E17812917C26B7C7E691EC8CE3756D41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:c0:f3:a8:f5:15:01:ee:fd:16:f4:39:bf:3e: c0:d7:2c:58:15:e3:7c:c4:a7:68:10:33:96:08:fe: 8d:c2:98:ee:79:22:33:ae:58:a2:e4:2f:ee:09:39: 17:ae:e2:8e:c4:07:97:14:36:5e:03:3b:1d:7f:fc: 7d:52:07:b0:fd:e2:80:98:34:e4:e8:1d:f0:16:bc: cd:09:46:34:e9:cc:d4:62:65:16:55:85:51:7b:b6: 61:de:8d:95:e8:56:1f:0b:3f:86:2f:0a:cc:82:5a: 4f:9e:44:ce:aa:29:98:a1:b9:73:2d:45:bc:bd:3c: 98:d0:6f:79:fe:ff:48:21:a4:f6:3b:5e:b3:db:e6: 26:14:e8:b0:56:e9:0c:7e:06:37:5a:f5:4e:1d:2d: 4c:90:37:fc:65:cb:b9:2e:70:c9:3e:f1:7e:fb:2c: 8b:38:02:b4:25:ff:79:ae:a3:a9:ad:c0:32:ed:8b: 25:19:a7:56:00:f8:6f:8a:12:f1:a0:6a:06:62:4b: 89:ab:dc:9c:73:5e:4f:4f:4d:e6:00:60:91:85:4f: 3a:ed:59:b8:d7:22:0d:3c:29:a2:b9:e9:52:35:17: 37:48:c5:1a:03:7d:ba:b6:68:d8:23:94:60:8f:a6: f9:98:a3:28:f1:71:3a:04:a8:6f:01:1f:8b:f1:73: 8a:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:B3:9E:43:E1:78:12:91:7C:26:B7:C7:E6:91:EC:8C:E3:75:6D:41 X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/aLOeQ-F4EpF8JrfH5pHsjON1bUE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.122.188.0/24 Signature Algorithm: sha256WithRSAEncryption 55:55:f5:ab:e5:90:c2:4c:2d:2f:1a:a4:d7:bf:9c:ef:92:af: d1:48:7e:49:3a:c6:01:de:20:f4:55:07:82:e4:96:5c:04:e2: dd:63:46:0c:c4:a2:d7:03:56:37:79:42:9e:f5:2e:c4:cb:d0: 1e:c4:1f:90:78:01:0b:2c:a4:34:81:02:43:9e:4d:33:21:b8: 82:cb:04:14:8f:1d:0d:90:91:64:4a:18:3b:d5:7a:f0:89:cb: 8c:33:42:13:be:85:51:12:ca:2c:e2:de:7d:b4:17:28:a6:47: 31:36:b5:31:02:a9:dd:3c:01:c8:1e:9d:db:90:a1:0b:6b:db: a0:21:d7:9b:05:69:20:8d:ff:23:79:0b:93:82:65:30:b1:ed: bf:bd:d0:da:c5:0b:80:db:15:c1:41:90:69:c3:ea:d7:1a:22: da:58:a1:f7:61:44:fc:01:ba:6f:c2:8d:aa:15:1a:e8:a0:71: b3:f6:0d:27:9e:25:db:ef:fb:9e:ea:22:cd:5d:e0:d5:84:05: 23:a8:c8:6f:00:80:c9:31:d5:9e:e2:60:ed:2d:74:9b:24:af: 23:40:cc:e2:62:5b:2d:7e:81:06:91:2d:ea:7e:9e:c1:c4:fd: 50:ee:c7:b4:38:ee:1a:9f:da:20:fd:43:49:60:a5:99:f9:04: fe:e5:0b:0f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICBtwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yNDA4MjYw NTE4MzNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY4QjM5RTQzRTE3ODEy OTE3QzI2QjdDN0U2OTFFQzhDRTM3NTZENDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFwPOo9RUB7v0W9Dm/PsDXLFgV43zEp2gQM5YI/o3CmO55IjOu WKLkL+4JOReu4o7EB5cUNl4DOx1//H1SB7D94oCYNOToHfAWvM0JRjTpzNRiZRZV hVF7tmHejZXoVh8LP4YvCsyCWk+eRM6qKZihuXMtRby9PJjQb3n+/0ghpPY7XrPb 5iYU6LBW6Qx+Bjda9U4dLUyQN/xly7kucMk+8X77LIs4ArQl/3muo6mtwDLtiyUZ p1YA+G+KEvGgagZiS4mr3JxzXk9PTeYAYJGFTzrtWbjXIg08KaK56VI1FzdIxRoD fbq2aNgjlGCPpvmYoyjxcToEqG8BH4vxc4pfAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUaLOeQ+F4EpF8JrfH5pHsjON1bUEwHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL2FMT2VRLUY0RXBGOEpyZkg1 cEhzak9OMWJVRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn erwwDQYJKoZIhvcNAQELBQADggEBAFVV9avlkMJMLS8apNe/nO+Sr9FIfkk6xgHe IPRVB4LkllwE4t1jRgzEotcDVjd5Qp71LsTL0B7EH5B4AQsspDSBAkOeTTMhuILL BBSPHQ2QkWRKGDvVevCJy4wzQhO+hVESyizi3n20FyimRzE2tTECqd08AcgenduQ oQtr26Ah15sFaSCN/yN5C5OCZTCx7b+90NrFC4DbFcFBkGnD6tcaItpYofdhRPwB um/CjaoVGuigcbP2DSeeJdvv+57qIs1d4NWEBSOoyG8AgMkx1Z7iYO0tdJskryNA zOJiWy1+gQaRLep+nsHE/VDux7Q47hqf2iD9Q0lgpZn5BP7lCw8= -----END CERTIFICATE-----Generated at Fri Nov 22 07:03:27 2024 by rpki-client on console-fra.rpki-client.org