$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/ggcJu91vAQpJDG_rTj-tLyt4qb8.roa File: ggcJu91vAQpJDG_rTj-tLyt4qb8.roa (raw, json) Hash identifier: oG00aEZEu95EV2Ppo6ZEWSCTwn/jYrVEFgrrFBobZ9s= Subject key identifier: 82:07:09:BB:DD:6F:01:0A:49:0C:6F:EB:4E:3F:AD:2F:2B:78:A9:BF Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 06D3 Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/ggcJu91vAQpJDG_rTj-tLyt4qb8.roa Signing time: Mon 26 Aug 2024 05:18:30 +0000 ROA not before: Mon 26 Aug 2024 05:18:30 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 134823 IP address blocks: 103.122.188.0/22 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1747 (0x6d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Aug 26 05:18:30 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=820709BBDD6F010A490C6FEB4E3FAD2F2B78A9BF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:43:51:6a:b4:5e:57:f4:27:4a:c2:21:13:8c: 83:a1:e7:44:01:ef:26:b1:1a:9d:3d:f1:72:1b:be: 46:8c:83:7c:03:c5:7e:a8:8d:b4:5f:7e:05:87:9c: 23:f3:78:2d:d2:56:6b:f9:fe:8e:cb:1d:69:ad:be: 92:3f:cc:40:c5:32:75:97:6a:5f:8f:d6:5a:ce:90: 20:cd:38:f4:67:7d:2d:56:77:37:40:f0:53:b1:8d: 3d:48:d7:47:db:c0:34:52:61:59:f8:af:0c:d3:fa: 9d:ea:26:57:c4:41:2d:0a:c1:24:b9:3a:25:e6:94: 2b:5c:73:9f:bc:7f:66:16:ba:95:bd:60:8e:62:c6: 3a:11:2d:6e:26:50:46:dd:c9:3b:61:ce:0e:7c:db: 16:26:8e:d6:d2:68:a1:09:66:69:e5:e0:c2:a5:47: 01:45:67:1b:d4:c0:7a:ef:b0:61:34:96:1d:2b:3a: 8b:f8:30:f2:f6:74:84:f3:2d:5d:4c:b6:d0:d0:b2: 5c:b8:6d:46:89:d8:60:36:25:9a:45:fd:fd:be:80: 9f:81:ad:6d:d4:fa:2b:2c:1b:cf:1c:97:07:55:1f: 05:d6:b7:d3:1e:6c:03:b9:a8:ac:44:66:55:0a:9b: d7:40:a1:f3:7f:8a:e3:05:20:92:a2:4d:d4:d4:0c: f3:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:07:09:BB:DD:6F:01:0A:49:0C:6F:EB:4E:3F:AD:2F:2B:78:A9:BF X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/ggcJu91vAQpJDG_rTj-tLyt4qb8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.122.188.0/22 Signature Algorithm: sha256WithRSAEncryption b0:8f:f6:f5:33:be:e3:c3:30:cd:d2:f3:16:cc:f0:5a:0b:56: 59:a4:a7:57:c2:47:ad:13:d4:3b:1c:64:38:67:f6:69:52:4d: aa:a1:de:b0:b8:65:99:24:2a:40:2b:da:a2:bd:fc:d6:2a:70: 28:f9:5b:b1:ce:68:54:06:f0:09:d0:56:4d:0b:f6:95:44:31: 58:88:3b:52:58:12:b6:bb:7d:51:ff:c2:43:bd:2f:ec:a8:6a: 51:d5:cc:31:da:15:d1:fd:5e:28:d3:8a:1d:bd:09:fe:eb:26: ee:cf:74:84:26:55:0c:49:bf:77:5a:c1:e7:06:73:39:bb:2b: 43:96:b0:87:24:a4:62:fd:6f:33:2a:eb:6e:7f:5b:b8:36:b1: d8:c2:80:05:4c:6f:06:85:0e:92:32:6c:d2:d9:5d:a2:b1:e1: 9d:9f:70:55:61:1f:41:e2:47:b0:cf:82:89:fd:51:a5:3f:23: 5a:5d:db:12:00:34:be:5d:6d:66:7a:6e:7f:c2:8d:1e:1f:55: 9c:7e:3b:16:81:aa:f8:f0:3d:51:23:81:d1:3c:3f:2c:be:23: d5:bd:f9:59:34:13:40:b3:e6:72:03:18:3f:56:9e:8d:7b:a9: 31:b7:60:09:e9:ef:91:e1:88:b2:35:c7:c5:df:7b:15:0c:52: 4f:0e:e0:b4 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICBtMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yNDA4MjYw NTE4MzBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDgyMDcwOUJCREQ2RjAx MEE0OTBDNkZFQjRFM0ZBRDJGMkI3OEE5QkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7Q1FqtF5X9CdKwiETjIOh50QB7yaxGp098XIbvkaMg3wDxX6o jbRffgWHnCPzeC3SVmv5/o7LHWmtvpI/zEDFMnWXal+P1lrOkCDNOPRnfS1WdzdA 8FOxjT1I10fbwDRSYVn4rwzT+p3qJlfEQS0KwSS5OiXmlCtcc5+8f2YWupW9YI5i xjoRLW4mUEbdyTthzg582xYmjtbSaKEJZmnl4MKlRwFFZxvUwHrvsGE0lh0rOov4 MPL2dITzLV1MttDQsly4bUaJ2GA2JZpF/f2+gJ+BrW3U+issG88clwdVHwXWt9Me bAO5qKxEZlUKm9dAofN/iuMFIJKiTdTUDPO3AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUggcJu91vAQpJDG/rTj+tLyt4qb8wHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL2dnY0p1OTF2QVFwSkRHX3JU ai10THl0NHFiOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn erwwDQYJKoZIhvcNAQELBQADggEBALCP9vUzvuPDMM3S8xbM8FoLVlmkp1fCR60T 1DscZDhn9mlSTaqh3rC4ZZkkKkAr2qK9/NYqcCj5W7HOaFQG8AnQVk0L9pVEMViI O1JYEra7fVH/wkO9L+yoalHVzDHaFdH9XijTih29Cf7rJu7PdIQmVQxJv3dawecG czm7K0OWsIckpGL9bzMq625/W7g2sdjCgAVMbwaFDpIybNLZXaKx4Z2fcFVhH0Hi R7DPgon9UaU/I1pd2xIANL5dbWZ6bn/CjR4fVZx+OxaBqvjwPVEjgdE8Pyy+I9W9 +Vk0E0Cz5nIDGD9Wno17qTG3YAnp75HhiLI1x8XfexUMUk8O4LQ= -----END CERTIFICATE-----Generated at Fri Nov 22 07:03:27 2024 by rpki-client on console-fra.rpki-client.org