$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/ksRACS3hH_wG168ibtuGCAh8A0Y.roa File: ksRACS3hH_wG168ibtuGCAh8A0Y.roa (raw, json) Hash identifier: Tk9oLzFbVDsHTjMWmw2gAepK7SXlzX6i++kTdbqvRDo= Subject key identifier: 92:C4:40:09:2D:E1:1F:FC:06:D7:AF:22:6E:DB:86:08:08:7C:03:46 Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 0579 Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/ksRACS3hH_wG168ibtuGCAh8A0Y.roa Signing time: Fri 01 Sep 2023 08:59:51 +0000 ROA not before: Fri 01 Sep 2023 08:59:51 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 134823 IP address blocks: 103.153.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 08 May 2024 21:50:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1401 (0x579) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Sep 1 08:59:51 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=92C440092DE11FFC06D7AF226EDB8608087C0346 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ff:1e:e0:f0:c2:60:e3:af:99:95:32:3e:2b: ad:e0:43:66:2e:1f:01:8b:59:2b:d8:35:c8:17:f0: 31:2e:3b:e0:1d:07:70:9f:90:57:b1:40:e5:f4:83: ff:33:78:14:3a:d2:87:df:5c:1c:6f:49:f2:28:e1: 97:ad:07:94:c3:5d:37:0d:98:54:dd:75:22:52:ec: 16:17:80:36:b9:5d:76:df:91:20:a0:0a:39:88:2a: 2b:8b:04:63:c4:32:5b:ca:99:02:e2:1d:8e:3f:f2: ce:a1:52:fe:20:64:d4:57:1f:26:c7:d3:3e:ea:30: 39:82:b8:a3:49:04:83:ff:3e:b6:66:5b:96:47:61: 90:c5:b0:50:4c:40:98:69:7c:b6:cb:c6:dc:d7:16: 6d:05:db:3f:e2:a7:90:7a:03:bd:67:e9:bf:34:3d: 4d:2e:2a:0f:53:20:ac:4b:30:f7:b7:69:3e:d4:e8: 0e:e4:c4:88:b4:30:61:55:28:3e:69:9b:af:ef:16: ff:15:fe:e4:b4:e8:7d:e1:67:0e:84:01:e7:ab:9e: c2:2c:ab:53:4d:30:34:06:84:a0:19:11:d7:b1:63: a8:97:b1:06:68:c3:e7:0b:d4:92:cf:06:d3:26:67: f0:39:cb:97:f4:f2:14:f2:a4:f3:1a:41:ec:f7:a6: 7e:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:C4:40:09:2D:E1:1F:FC:06:D7:AF:22:6E:DB:86:08:08:7C:03:46 X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/ksRACS3hH_wG168ibtuGCAh8A0Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.153.176.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:e9:2e:2e:6d:24:2f:67:05:68:6c:ca:61:22:37:9c:db:b7: 6b:ea:5d:5f:b0:8e:35:38:46:93:11:63:5d:10:70:5c:01:4a: 10:e1:3a:6a:02:99:02:55:5e:44:f1:c3:cb:cb:cf:c1:47:98: fa:45:ab:cc:2d:4f:b0:e3:da:03:c1:7a:e5:fa:78:6b:8d:9f: c1:fc:8d:db:e9:d4:ca:8f:eb:ae:20:74:46:bb:7c:2f:72:74: 3f:8f:35:36:e1:a6:04:61:10:d8:be:e5:68:5b:53:e0:3d:11: 73:89:ef:5e:06:67:53:ab:5e:e5:0b:06:e4:69:d1:8e:02:f7: ae:6f:81:d3:c8:e5:0e:51:ad:28:3f:b8:5e:f3:37:6d:f5:0d: 41:aa:93:ef:fa:d4:27:8e:60:07:ae:dd:5e:29:fd:dd:cc:0a: 41:ae:e5:f7:36:0c:d2:5e:ab:29:5c:93:91:88:1b:61:ad:1d: 06:7a:8b:4e:18:60:3e:2f:b2:9f:ef:dc:56:e1:84:ab:d1:f5: 26:af:1c:b2:b4:94:73:a1:31:0e:b9:bf:3e:db:3e:50:06:b1: c0:86:d5:b6:46:48:79:ae:92:6d:a3:fc:3b:3c:f4:a0:da:5f: 1e:a8:9a:14:6b:da:a8:97:64:ab:47:5b:04:f8:e7:5e:c8:c8: c0:8f:40:76 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICBXkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yMzA5MDEw ODU5NTFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDkyQzQ0MDA5MkRFMTFG RkMwNkQ3QUYyMjZFREI4NjA4MDg3QzAzNDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCm/x7g8MJg46+ZlTI+K63gQ2YuHwGLWSvYNcgX8DEuO+AdB3Cf kFexQOX0g/8zeBQ60offXBxvSfIo4ZetB5TDXTcNmFTddSJS7BYXgDa5XXbfkSCg CjmIKiuLBGPEMlvKmQLiHY4/8s6hUv4gZNRXHybH0z7qMDmCuKNJBIP/PrZmW5ZH YZDFsFBMQJhpfLbLxtzXFm0F2z/ip5B6A71n6b80PU0uKg9TIKxLMPe3aT7U6A7k xIi0MGFVKD5pm6/vFv8V/uS06H3hZw6EAeernsIsq1NNMDQGhKAZEdexY6iXsQZo w+cL1JLPBtMmZ/A5y5f08hTypPMaQez3pn7HAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUksRACS3hH/wG168ibtuGCAh8A0YwHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL2tzUkFDUzNoSF93RzE2OGli dHVHQ0FoOEEwWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn mbAwDQYJKoZIhvcNAQELBQADggEBAIzpLi5tJC9nBWhsymEiN5zbt2vqXV+wjjU4 RpMRY10QcFwBShDhOmoCmQJVXkTxw8vLz8FHmPpFq8wtT7Dj2gPBeuX6eGuNn8H8 jdvp1MqP664gdEa7fC9ydD+PNTbhpgRhENi+5WhbU+A9EXOJ714GZ1OrXuULBuRp 0Y4C965vgdPI5Q5RrSg/uF7zN231DUGqk+/61CeOYAeu3V4p/d3MCkGu5fc2DNJe qylck5GIG2GtHQZ6i04YYD4vsp/v3FbhhKvR9SavHLK0lHOhMQ65vz7bPlAGscCG 1bZGSHmukm2j/Ds89KDaXx6omhRr2qiXZKtHWwT4517IyMCPQHY= -----END CERTIFICATE-----Generated at Tue May 7 15:44:11 2024 by rpki-client on console-ams.rpki-client.org