$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/dAxn3n4L-m77arOaIgshyPOH8F0.roa File: dAxn3n4L-m77arOaIgshyPOH8F0.roa (raw, json) Hash identifier: IU58FWAJ5FocumsnnJgO5ZUG6mMlMqiCK/NavrUV6Mk= Subject key identifier: 74:0C:67:DE:7E:0B:FA:6E:FB:6A:B3:9A:22:0B:21:C8:F3:87:F0:5D Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 056A Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/dAxn3n4L-m77arOaIgshyPOH8F0.roa Signing time: Fri 01 Sep 2023 08:59:47 +0000 ROA not before: Fri 01 Sep 2023 08:59:47 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131657 IP address blocks: 103.153.176.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 21:50:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1386 (0x56a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Sep 1 08:59:47 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=740C67DE7E0BFA6EFB6AB39A220B21C8F387F05D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:53:97:2f:6f:65:15:68:cf:85:be:7e:2e:54: 14:46:f0:14:4a:7a:de:f9:ff:51:d3:56:00:d7:f6: 72:54:cc:ef:ef:c1:2f:62:7c:6c:6d:ea:49:2d:b2: d1:28:3e:e6:e4:33:36:04:df:8c:b4:75:70:28:42: 85:20:26:46:ca:32:14:31:b8:38:4b:e5:c5:a5:46: 74:20:29:6b:c6:bd:23:e4:11:80:84:e7:43:ab:ba: 37:57:ed:b6:f1:c2:e8:36:52:04:ed:bc:92:22:a1: 2c:bd:fb:7e:09:aa:9b:c9:98:00:d0:d9:e4:9f:ee: 92:a9:5c:95:fc:03:0b:14:65:9a:5f:a2:5e:df:d9: 40:a1:9c:c3:04:79:d6:54:14:6f:69:3d:e1:b3:75: 13:ab:5d:e7:46:74:e5:f2:1f:01:37:06:a6:08:04: 57:d8:1c:4a:5b:fd:4d:79:98:1d:6d:b6:7c:e5:8c: 8a:b1:ed:d1:4c:bd:70:31:89:b6:ba:01:f8:ac:e7: c6:a0:fc:dc:9f:6b:57:5c:06:8f:7b:a6:aa:f7:e8: 99:d1:d6:61:0f:45:3b:7e:b7:6c:bf:40:de:7b:7d: 19:81:58:5b:31:c7:f4:43:08:80:a5:34:2f:ca:76: 7a:03:59:fe:72:38:c4:ba:c2:14:0b:b4:59:de:5d: e1:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:0C:67:DE:7E:0B:FA:6E:FB:6A:B3:9A:22:0B:21:C8:F3:87:F0:5D X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/dAxn3n4L-m77arOaIgshyPOH8F0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.153.176.0/23 Signature Algorithm: sha256WithRSAEncryption 9a:69:b7:42:c5:91:75:f2:56:5f:d9:b1:a5:a6:dd:46:67:67: e2:0b:2d:4b:ff:43:37:e9:04:4e:91:74:72:44:97:16:bd:10: a3:81:00:c5:a2:4f:85:ef:95:65:ca:4a:f6:73:75:38:77:d9: 4d:ea:3f:9e:31:cc:c5:44:29:a0:2a:9c:65:e8:51:6b:64:df: ff:b9:99:84:12:40:7e:68:e2:d3:64:46:8c:95:8b:bf:dd:70: 09:bb:0f:9e:0b:87:be:c8:59:28:ac:d6:a4:b8:ce:b5:fb:c3: f2:b9:2f:d3:c7:fb:58:c0:25:f6:32:09:ce:01:fd:68:9b:7e: cb:5b:51:5a:f4:5a:35:cd:6e:08:45:9e:6e:9c:8a:d1:97:07: 58:5e:15:08:bc:88:e4:da:93:08:70:84:57:49:73:90:a8:23: 02:0d:14:4b:43:0d:4c:85:c7:46:ae:8a:de:df:a1:4e:30:c3: c1:28:0c:92:94:71:d0:be:b3:f2:ce:23:e8:fd:c1:ba:8a:d1: fe:27:bb:db:18:e7:89:f1:92:8a:58:4e:50:5f:e0:bf:c4:a6: b6:06:4b:c6:e3:81:2d:ff:ad:21:8d:26:37:4b:19:71:a8:a5: e5:24:6f:61:30:ce:e8:e2:91:db:45:00:a0:fa:05:54:ba:88: ed:f2:53:16 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICBWowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yMzA5MDEw ODU5NDdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDc0MEM2N0RFN0UwQkZB NkVGQjZBQjM5QTIyMEIyMUM4RjM4N0YwNUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCkU5cvb2UVaM+Fvn4uVBRG8BRKet75/1HTVgDX9nJUzO/vwS9i fGxt6kktstEoPubkMzYE34y0dXAoQoUgJkbKMhQxuDhL5cWlRnQgKWvGvSPkEYCE 50OrujdX7bbxwug2UgTtvJIioSy9+34JqpvJmADQ2eSf7pKpXJX8AwsUZZpfol7f 2UChnMMEedZUFG9pPeGzdROrXedGdOXyHwE3BqYIBFfYHEpb/U15mB1ttnzljIqx 7dFMvXAxiba6Afis58ag/Nyfa1dcBo97pqr36JnR1mEPRTt+t2y/QN57fRmBWFsx x/RDCIClNC/KdnoDWf5yOMS6whQLtFneXeGTAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUdAxn3n4L+m77arOaIgshyPOH8F0wHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL2RBeG4zbjRMLW03N2FyT2FJ Z3NoeVBPSDhGMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn mbAwDQYJKoZIhvcNAQELBQADggEBAJppt0LFkXXyVl/ZsaWm3UZnZ+ILLUv/Qzfp BE6RdHJElxa9EKOBAMWiT4XvlWXKSvZzdTh32U3qP54xzMVEKaAqnGXoUWtk3/+5 mYQSQH5o4tNkRoyVi7/dcAm7D54Lh77IWSis1qS4zrX7w/K5L9PH+1jAJfYyCc4B /WibfstbUVr0WjXNbghFnm6citGXB1heFQi8iOTakwhwhFdJc5CoIwINFEtDDUyF x0auit7foU4ww8EoDJKUcdC+s/LOI+j9wbqK0f4nu9sY54nxkopYTlBf4L/EprYG S8bjgS3/rSGNJjdLGXGopeUkb2EwzujikdtFAKD6BVS6iO3yUxY= -----END CERTIFICATE-----Generated at Tue May 7 14:32:35 2024 by rpki-client on console-fra.rpki-client.org