$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/dp1TzxHJJwfpZIif95e-vCDJk3E.roa File: dp1TzxHJJwfpZIif95e-vCDJk3E.roa (raw, json) Hash identifier: z++fsUAeVNBmEGJ2Ok2NuCrYsVBQvBub3Lx9hnTRaPI= Subject key identifier: 76:9D:53:CF:11:C9:27:07:E9:64:88:9F:F7:97:BE:BC:20:C9:93:71 Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 05A5 Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/dp1TzxHJJwfpZIif95e-vCDJk3E.roa Signing time: Thu 12 Oct 2023 08:25:18 +0000 ROA not before: Thu 12 Oct 2023 08:25:18 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131657 IP address blocks: 103.122.188.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 21:50:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1445 (0x5a5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Oct 12 08:25:18 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=769D53CF11C92707E964889FF797BEBC20C99371 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:e5:1a:fe:6a:0c:7a:0e:b9:b2:28:41:56:fc: 26:cb:ed:9a:04:48:cb:ba:b8:c6:50:fe:46:57:df: 28:94:5e:c4:84:d9:af:91:ad:4d:1a:71:bb:c0:2a: 14:56:11:39:df:9b:35:1a:c8:6a:2a:9e:0b:55:2d: 4f:e5:9e:be:f3:bb:09:98:5d:39:87:ac:88:57:bf: 77:44:75:52:6c:7f:d0:7c:e5:25:89:74:8c:0c:f4: f1:51:0a:c6:22:72:29:16:71:cc:a1:c5:af:1a:8f: 31:29:c7:82:f2:21:b4:bc:b4:8d:b0:70:31:9b:df: 93:3f:a2:f5:bd:c7:44:6c:e0:f7:af:4b:74:95:a1: f7:53:c1:a8:ac:e9:da:10:78:7b:6d:e3:4c:fd:9f: e2:84:bd:62:73:59:0f:62:95:ca:f9:88:83:85:95: 5a:e3:e1:aa:02:bc:80:07:09:6a:70:0e:77:33:d1: db:db:69:49:54:ff:19:75:1d:c9:cb:0a:73:a9:9e: c1:7d:70:84:7e:0a:1e:fd:6a:db:1e:03:46:3e:53: c6:1a:93:7d:e1:a4:a8:3e:65:3d:40:26:27:90:d2: 70:46:3c:09:a3:e8:9b:ed:31:15:a9:d5:81:86:2d: 11:0a:95:94:24:e3:ef:49:5d:ca:9b:7b:19:24:4c: 77:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:9D:53:CF:11:C9:27:07:E9:64:88:9F:F7:97:BE:BC:20:C9:93:71 X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/dp1TzxHJJwfpZIif95e-vCDJk3E.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.122.188.0/24 Signature Algorithm: sha256WithRSAEncryption bc:e6:84:6b:da:aa:54:ac:2d:b6:81:aa:11:10:4a:5a:81:f5: 44:fa:8e:72:d8:b2:dd:f5:a9:f8:4c:98:74:bf:a4:59:c2:a8: c6:b4:5a:3b:97:ac:12:d3:d8:03:18:48:fe:11:ee:0c:d0:4c: 66:8e:44:4c:6a:b5:1d:2b:84:12:c8:26:06:8d:d4:f3:fb:1c: bb:c6:79:09:17:36:10:24:1f:ee:cb:34:4d:e2:a0:da:0f:dc: b1:b0:ad:5a:7f:e7:3e:70:f2:bc:22:d7:d9:42:af:84:a9:70: d8:79:58:77:37:e9:17:e6:8c:c2:6d:ba:bc:bf:d5:f1:b0:9d: 1b:0c:f2:d3:3d:40:dd:c5:0e:c2:ec:92:08:1d:7f:45:34:47: ae:2a:27:15:66:20:1c:bb:00:1d:e1:1f:52:ba:0b:99:ec:dd: d2:d5:56:fa:d1:2b:9c:d1:e5:0e:4c:03:db:06:1b:50:7c:04: b8:1f:42:c2:4a:34:70:43:9a:8d:bb:d0:5c:01:50:2f:95:46: ad:43:3c:6c:f1:ab:ac:e0:ed:36:4e:b7:e2:ae:24:b7:83:c0: cd:de:1e:f4:cd:5e:bd:9e:a4:ec:13:dd:69:57:ea:b6:a6:a0: d8:25:63:c9:05:35:ba:1e:cf:da:94:53:1f:4c:29:62:9f:4c: 57:a6:d8:0b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICBaUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yMzEwMTIw ODI1MThaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDc2OUQ1M0NGMTFDOTI3 MDdFOTY0ODg5RkY3OTdCRUJDMjBDOTkzNzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDO5Rr+agx6DrmyKEFW/CbL7ZoESMu6uMZQ/kZX3yiUXsSE2a+R rU0acbvAKhRWETnfmzUayGoqngtVLU/lnr7zuwmYXTmHrIhXv3dEdVJsf9B85SWJ dIwM9PFRCsYicikWccyhxa8ajzEpx4LyIbS8tI2wcDGb35M/ovW9x0Rs4PevS3SV ofdTwais6doQeHtt40z9n+KEvWJzWQ9ilcr5iIOFlVrj4aoCvIAHCWpwDncz0dvb aUlU/xl1HcnLCnOpnsF9cIR+Ch79atseA0Y+U8Yak33hpKg+ZT1AJieQ0nBGPAmj 6JvtMRWp1YGGLREKlZQk4+9JXcqbexkkTHfPAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUdp1TzxHJJwfpZIif95e+vCDJk3EwHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL2RwMVR6eEhKSndmcFpJaWY5 NWUtdkNESmszRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn erwwDQYJKoZIhvcNAQELBQADggEBALzmhGvaqlSsLbaBqhEQSlqB9UT6jnLYst31 qfhMmHS/pFnCqMa0WjuXrBLT2AMYSP4R7gzQTGaORExqtR0rhBLIJgaN1PP7HLvG eQkXNhAkH+7LNE3ioNoP3LGwrVp/5z5w8rwi19lCr4SpcNh5WHc36RfmjMJtury/ 1fGwnRsM8tM9QN3FDsLskggdf0U0R64qJxVmIBy7AB3hH1K6C5ns3dLVVvrRK5zR 5Q5MA9sGG1B8BLgfQsJKNHBDmo270FwBUC+VRq1DPGzxq6zg7TZOt+KuJLeDwM3e HvTNXr2epOwT3WlX6ramoNglY8kFNboez9qUUx9MKWKfTFem2As= -----END CERTIFICATE-----Generated at Tue May 7 15:44:11 2024 by rpki-client on console-ams.rpki-client.org