$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/e6ctCldZnVIycrlLqEoesEG4TjU.roa File: e6ctCldZnVIycrlLqEoesEG4TjU.roa (raw, json) Hash identifier: Yfrr0x2Gp+uA76xSpj0FvIQWna20/kjCSUw1jac5BT8= Subject key identifier: 7B:A7:2D:0A:57:59:9D:52:32:72:B9:4B:A8:4A:1E:B0:41:B8:4E:35 Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 06CA Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/e6ctCldZnVIycrlLqEoesEG4TjU.roa Signing time: Mon 26 Aug 2024 05:18:27 +0000 ROA not before: Mon 26 Aug 2024 05:18:27 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 20473 IP address blocks: 103.153.176.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 02:24:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1738 (0x6ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Aug 26 05:18:27 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=7BA72D0A57599D523272B94BA84A1EB041B84E35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:01:36:4d:8c:c5:66:50:88:88:c8:ca:31:5a: 60:6f:89:38:f0:e5:b9:45:8b:2f:b8:0a:46:fc:7d: ba:2c:76:ba:97:21:dc:3c:ee:42:84:4c:a4:40:64: 4c:d0:12:11:dc:a2:92:50:da:93:94:ba:02:78:83: c5:d4:82:9e:be:8b:f7:45:17:95:ab:06:12:d3:9c: 29:d6:46:23:a1:cd:9b:a8:71:55:29:63:a1:69:86: 7e:7a:d0:80:63:f4:03:19:83:06:04:74:22:2c:f8: 0f:c5:7f:a6:a1:6b:b0:bf:97:71:f4:a2:d3:70:97: 3c:79:8b:08:69:62:cc:18:d8:5a:c1:3a:1f:c2:96: 68:20:fa:2e:06:0b:23:98:62:a3:eb:fe:c3:25:0c: 5e:88:81:b3:53:0f:cf:67:f8:7f:f0:54:e2:30:47: a6:53:fa:32:92:8d:fd:2c:f2:32:af:9b:be:70:b0: 1d:04:34:58:5f:1c:73:d4:6d:a6:d0:5f:0d:20:5e: a9:c1:2c:83:08:43:89:06:17:22:67:77:d7:1a:e3: 9c:63:0e:86:fc:59:f7:31:71:cc:bb:6a:06:64:84: 87:7e:de:01:ab:bc:9e:4c:98:e3:bf:f7:a6:32:71: 5a:1e:6d:9d:9d:ac:79:d6:93:9d:64:c0:8e:07:c9: bd:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:A7:2D:0A:57:59:9D:52:32:72:B9:4B:A8:4A:1E:B0:41:B8:4E:35 X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/e6ctCldZnVIycrlLqEoesEG4TjU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.153.176.0/23 Signature Algorithm: sha256WithRSAEncryption 08:c9:50:8d:37:99:f6:12:59:b7:ba:01:8c:90:2a:7c:e4:dc: 42:31:28:53:1e:37:4a:2a:80:be:95:3a:8c:98:68:11:cd:45: 9c:9e:85:91:1a:64:9e:cb:70:63:b0:8a:da:5b:72:65:e0:2f: 1b:83:b8:c0:6d:1c:d6:ed:4f:aa:22:14:86:d7:28:b1:59:00: 67:9f:db:b5:be:cc:ae:bf:b7:18:fa:99:ef:28:c5:35:0d:1d: 40:7a:22:f1:0f:3f:07:a3:2f:8c:3d:3f:7c:05:52:37:e4:70: 38:84:26:45:1b:57:d1:9d:1c:3e:bc:36:a8:02:96:b5:d3:01: 7a:07:01:67:fe:8b:4a:24:d8:31:28:36:62:8b:1f:07:28:3e: e8:ff:2f:c5:50:5c:0a:6c:01:67:3e:10:f7:b2:1a:65:f0:85: 86:c4:c4:b5:c6:29:50:cd:e1:35:c8:a1:36:d6:7c:69:17:cb: 15:72:f8:a7:5d:cd:6d:2b:64:3c:f0:ee:cd:12:91:9c:71:78: 29:52:3b:e3:7e:55:68:89:90:04:b7:58:02:a6:52:6d:7d:0e: 35:cc:9a:7e:cd:37:ac:d3:ee:19:99:c0:15:e6:88:b5:98:95: f7:8f:d2:89:42:7f:3f:15:93:fa:b0:f6:ae:85:73:fc:7c:de: 5e:e3:82:50 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICBsowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yNDA4MjYw NTE4MjdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDdCQTcyRDBBNTc1OTlE NTIzMjcyQjk0QkE4NEExRUIwNDFCODRFMzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDhATZNjMVmUIiIyMoxWmBviTjw5blFiy+4Ckb8fbosdrqXIdw8 7kKETKRAZEzQEhHcopJQ2pOUugJ4g8XUgp6+i/dFF5WrBhLTnCnWRiOhzZuocVUp Y6Fphn560IBj9AMZgwYEdCIs+A/Ff6aha7C/l3H0otNwlzx5iwhpYswY2FrBOh/C lmgg+i4GCyOYYqPr/sMlDF6IgbNTD89n+H/wVOIwR6ZT+jKSjf0s8jKvm75wsB0E NFhfHHPUbabQXw0gXqnBLIMIQ4kGFyJnd9ca45xjDob8Wfcxccy7agZkhId+3gGr vJ5MmOO/96YycVoebZ2drHnWk51kwI4Hyb1LAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUe6ctCldZnVIycrlLqEoesEG4TjUwHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL2U2Y3RDbGRablZJeWNybExx RW9lc0VHNFRqVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn mbAwDQYJKoZIhvcNAQELBQADggEBAAjJUI03mfYSWbe6AYyQKnzk3EIxKFMeN0oq gL6VOoyYaBHNRZyehZEaZJ7LcGOwitpbcmXgLxuDuMBtHNbtT6oiFIbXKLFZAGef 27W+zK6/txj6me8oxTUNHUB6IvEPPwejL4w9P3wFUjfkcDiEJkUbV9GdHD68NqgC lrXTAXoHAWf+i0ok2DEoNmKLHwcoPuj/L8VQXApsAWc+EPeyGmXwhYbExLXGKVDN 4TXIoTbWfGkXyxVy+KddzW0rZDzw7s0SkZxxeClSO+N+VWiJkAS3WAKmUm19DjXM mn7NN6zT7hmZwBXmiLWYlfeP0olCfz8Vk/qw9q6Fc/x83l7jglA= -----END CERTIFICATE-----Generated at Fri Nov 22 00:59:09 2024 by rpki-client on console-fra.rpki-client.org