$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/jM0Uhaky-H8CGHAtNG56Cc2s7hs.roa File: jM0Uhaky-H8CGHAtNG56Cc2s7hs.roa (raw, json) Hash identifier: VsMzUSR73ZSOdfVa7Z9+hKbo2f7bOamjG6h/f0hrLKU= Subject key identifier: 8C:CD:14:85:A9:32:F8:7F:02:18:70:2D:34:6E:7A:09:CD:AC:EE:1B Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 06CB Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/jM0Uhaky-H8CGHAtNG56Cc2s7hs.roa Signing time: Mon 26 Aug 2024 05:18:28 +0000 ROA not before: Mon 26 Aug 2024 05:18:28 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 396982 IP address blocks: 103.153.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 06:54:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1739 (0x6cb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Aug 26 05:18:28 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8CCD1485A932F87F0218702D346E7A09CDACEE1B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c1:43:ca:11:67:59:a8:9a:8a:95:00:ff:e3: 31:c1:cc:5c:52:a9:a8:59:b7:13:66:0a:b9:64:e5: 73:35:6a:90:99:bb:fc:a4:31:1c:08:ad:16:d0:57: 95:58:da:52:b4:d6:ac:f1:0c:a3:e3:23:c1:3a:50: 59:df:83:98:e0:93:9a:b6:1e:66:5c:5e:6c:b4:57: e5:30:05:80:4b:76:bf:1c:3a:78:ac:95:2d:9a:2f: db:e2:ce:09:a9:52:71:de:1b:24:30:3c:da:f3:e8: f1:6d:27:01:e2:a1:a4:8a:0a:cb:b2:65:14:d6:36: 52:c1:04:0e:26:e3:e0:33:3d:e5:6c:6e:08:b1:66: aa:80:1f:0a:37:ad:33:e0:28:e5:47:b8:4e:cf:65: c5:04:24:de:ac:c8:a2:a5:0a:6f:25:e1:1f:d5:9b: 02:ae:5f:c0:d2:5d:e8:cd:e9:ec:c2:c6:6e:2c:58: 29:64:c6:26:fb:20:c2:33:e9:20:31:4d:99:36:5c: 4b:aa:56:fe:b3:19:39:70:88:f5:4c:2d:23:a5:f2: f2:8e:e7:ae:c1:79:10:2f:d9:2c:32:53:68:cf:1a: 48:09:63:75:23:ea:f4:f4:49:41:85:f3:8d:a8:d8: 8f:80:d4:90:ae:5e:af:69:85:6e:09:6b:71:1b:59: b2:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:CD:14:85:A9:32:F8:7F:02:18:70:2D:34:6E:7A:09:CD:AC:EE:1B X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/jM0Uhaky-H8CGHAtNG56Cc2s7hs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.153.177.0/24 Signature Algorithm: sha256WithRSAEncryption c3:26:e4:c8:a0:88:60:4e:88:54:3c:a2:31:15:73:dc:a0:f5: b9:c1:b7:0a:c6:66:8c:c9:fe:f7:00:0b:41:87:42:a0:c2:2c: 50:df:53:9f:cb:1f:ed:63:24:95:88:95:7e:e3:00:cd:0d:ee: 8e:55:cb:13:39:6a:94:d7:fd:47:d4:93:6e:57:ca:f0:0a:79: 37:00:20:9b:b6:72:5a:45:64:8f:32:a1:67:5f:ed:c8:09:d5: e4:54:6d:18:f5:c1:51:4e:87:48:a2:38:44:d2:7a:74:70:7c: 8e:9e:cc:64:43:e4:a3:bd:6d:43:2d:96:72:00:5b:61:8b:a6: 61:10:11:8e:46:99:98:42:ec:37:8d:0f:a7:e7:9e:bf:c9:fd: f9:26:08:74:98:c2:c7:24:f9:78:71:b3:43:6b:7c:49:4d:f7: b6:ff:7c:68:2a:e0:5f:1f:55:a2:65:6c:3a:f4:f3:12:8f:e6: 0f:10:45:2e:d8:f0:a3:60:6a:56:20:3d:c0:43:f0:6f:a6:76: df:e6:cd:3b:3d:64:85:c8:7d:3a:5a:e2:2e:af:c7:1f:9a:3f: 0d:ff:ca:67:e0:c5:ed:0c:97:3a:f5:17:12:54:37:6f:8d:50: fb:f1:f3:69:42:73:f4:09:a2:08:c2:66:4a:f7:9c:58:ea:46: 72:dc:da:18 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICBsswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yNDA4MjYw NTE4MjhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhDQ0QxNDg1QTkzMkY4 N0YwMjE4NzAyRDM0NkU3QTA5Q0RBQ0VFMUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7wUPKEWdZqJqKlQD/4zHBzFxSqahZtxNmCrlk5XM1apCZu/yk MRwIrRbQV5VY2lK01qzxDKPjI8E6UFnfg5jgk5q2HmZcXmy0V+UwBYBLdr8cOnis lS2aL9vizgmpUnHeGyQwPNrz6PFtJwHioaSKCsuyZRTWNlLBBA4m4+AzPeVsbgix ZqqAHwo3rTPgKOVHuE7PZcUEJN6syKKlCm8l4R/VmwKuX8DSXejN6ezCxm4sWClk xib7IMIz6SAxTZk2XEuqVv6zGTlwiPVMLSOl8vKO567BeRAv2SwyU2jPGkgJY3Uj 6vT0SUGF842o2I+A1JCuXq9phW4Ja3EbWbLVAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUjM0Uhaky+H8CGHAtNG56Cc2s7hswHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL2pNMFVoYWt5LUg4Q0dIQXRO RzU2Q2Myczdocy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn mbEwDQYJKoZIhvcNAQELBQADggEBAMMm5MigiGBOiFQ8ojEVc9yg9bnBtwrGZozJ /vcAC0GHQqDCLFDfU5/LH+1jJJWIlX7jAM0N7o5VyxM5apTX/UfUk25XyvAKeTcA IJu2clpFZI8yoWdf7cgJ1eRUbRj1wVFOh0iiOETSenRwfI6ezGRD5KO9bUMtlnIA W2GLpmEQEY5GmZhC7DeND6fnnr/J/fkmCHSYwsck+Xhxs0NrfElN97b/fGgq4F8f VaJlbDr08xKP5g8QRS7Y8KNgalYgPcBD8G+mdt/mzTs9ZIXIfTpa4i6vxx+aPw3/ ymfgxe0Mlzr1FxJUN2+NUPvx82lCc/QJogjCZkr3nFjqRnLc2hg= -----END CERTIFICATE-----Generated at Fri Nov 22 02:44:26 2024 by rpki-client on console-fra.rpki-client.org