$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/lDXTS22hnwBNFgV6qLAgD0HYAl8.roa File: lDXTS22hnwBNFgV6qLAgD0HYAl8.roa (raw, json) Hash identifier: N2HxoJgAl5GoNLYwzj0Kwd4ASQXWlC2HJD5ZqH/1s9M= Subject key identifier: 94:35:D3:4B:6D:A1:9F:00:4D:16:05:7A:A8:B0:20:0F:41:D8:02:5F Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 06CD Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/lDXTS22hnwBNFgV6qLAgD0HYAl8.roa Signing time: Mon 26 Aug 2024 05:18:28 +0000 ROA not before: Mon 26 Aug 2024 05:18:28 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131657 IP address blocks: 103.122.190.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1741 (0x6cd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Aug 26 05:18:28 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=9435D34B6DA19F004D16057AA8B0200F41D8025F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:81:92:72:6e:cb:8f:68:1b:5d:b4:f2:c0:0f: 72:9c:33:ea:a4:df:17:6b:1c:ba:57:bc:55:88:98: 3c:09:99:47:b1:81:76:57:43:88:82:a2:da:96:14: 60:11:71:2a:be:46:a0:db:c3:a3:5f:c8:e4:70:22: 58:e4:e3:bf:9e:e9:2e:fd:9f:7f:27:02:e4:97:39: f7:e7:9e:bc:d4:4e:d2:78:80:c9:b2:f1:28:a7:d4: 77:00:54:e1:d5:11:c7:af:91:2d:fb:f9:00:76:40: 7a:ec:36:df:db:9f:f6:4f:36:d5:99:df:df:9c:d6: 88:f9:40:af:7e:43:23:9d:48:db:97:70:70:d5:4d: 78:b0:3b:a2:57:c9:3b:96:20:58:fc:7c:1b:5b:84: a9:e5:ee:a7:b5:c5:38:74:c0:ef:28:2e:7b:c8:e7: b3:c7:5b:26:0c:91:af:43:f2:19:7a:9a:91:ff:6a: a5:63:24:f6:fc:da:a2:1e:b7:7f:b8:83:57:87:06: ed:98:60:47:92:ed:d5:8d:c2:0b:dc:4a:72:de:4e: 68:a7:cc:92:fa:7b:04:7b:ea:41:c3:aa:9e:f2:1a: b4:90:e5:24:00:38:47:44:b3:03:d6:44:af:4c:23: ac:3c:47:e5:54:3d:43:fd:aa:2b:93:1d:b4:97:35: 7a:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:35:D3:4B:6D:A1:9F:00:4D:16:05:7A:A8:B0:20:0F:41:D8:02:5F X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/lDXTS22hnwBNFgV6qLAgD0HYAl8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.122.190.0/24 Signature Algorithm: sha256WithRSAEncryption 63:21:ab:5e:7a:bc:a9:6f:3f:8c:f4:60:7f:ab:47:e8:87:7e: 20:09:1e:83:96:33:72:8f:aa:61:46:32:fa:ee:cf:54:0a:1d: 4c:2e:39:d9:90:0e:07:a8:d2:58:ec:c8:b0:88:5d:2b:0f:5c: bd:af:2a:42:09:ba:31:21:e4:3c:6d:1c:c7:ce:b5:07:f8:b8: a9:bb:14:f7:19:05:7d:56:d1:90:58:86:12:39:0c:ed:c8:d4: 21:39:9e:e5:22:eb:b2:26:6b:e1:26:22:bc:ab:7a:27:71:3b: 6e:e0:30:3c:db:83:9d:89:69:8e:f3:e0:2e:46:7a:d8:fc:ae: 9e:be:03:9c:11:f9:e0:c5:5b:44:a0:29:43:bd:bf:b2:9d:fb: 36:4e:61:98:c2:69:2f:84:a9:0e:bd:68:c7:1c:d7:26:aa:81: 33:c7:fd:3b:c1:9a:e2:e0:90:c8:dc:20:27:71:2d:22:90:4f: f6:5c:47:82:91:ea:a5:60:a3:f1:dc:ee:e9:f7:77:a8:b6:ff: 69:8d:d8:43:ad:f0:be:c4:12:b6:52:2b:0c:7d:f6:c5:17:f1: ab:3c:29:73:e5:49:36:19:1b:0b:47:62:93:1a:c1:a9:57:c2: aa:65:30:08:90:ad:09:59:a3:e2:a1:fe:3a:26:0d:14:3d:f5: a1:38:e1:da -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICBs0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yNDA4MjYw NTE4MjhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDk0MzVEMzRCNkRBMTlG MDA0RDE2MDU3QUE4QjAyMDBGNDFEODAyNUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCsgZJybsuPaBtdtPLAD3KcM+qk3xdrHLpXvFWImDwJmUexgXZX Q4iCotqWFGARcSq+RqDbw6NfyORwIljk47+e6S79n38nAuSXOffnnrzUTtJ4gMmy 8Sin1HcAVOHVEcevkS37+QB2QHrsNt/bn/ZPNtWZ39+c1oj5QK9+QyOdSNuXcHDV TXiwO6JXyTuWIFj8fBtbhKnl7qe1xTh0wO8oLnvI57PHWyYMka9D8hl6mpH/aqVj JPb82qIet3+4g1eHBu2YYEeS7dWNwgvcSnLeTminzJL6ewR76kHDqp7yGrSQ5SQA OEdEswPWRK9MI6w8R+VUPUP9qiuTHbSXNXqJAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUlDXTS22hnwBNFgV6qLAgD0HYAl8wHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL2xEWFRTMjJobndCTkZnVjZx TEFnRDBIWUFsOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn er4wDQYJKoZIhvcNAQELBQADggEBAGMhq156vKlvP4z0YH+rR+iHfiAJHoOWM3KP qmFGMvruz1QKHUwuOdmQDgeo0ljsyLCIXSsPXL2vKkIJujEh5DxtHMfOtQf4uKm7 FPcZBX1W0ZBYhhI5DO3I1CE5nuUi67Ima+EmIryreidxO27gMDzbg52JaY7z4C5G etj8rp6+A5wR+eDFW0SgKUO9v7Kd+zZOYZjCaS+EqQ69aMcc1yaqgTPH/TvBmuLg kMjcICdxLSKQT/ZcR4KR6qVgo/Hc7un3d6i2/2mN2EOt8L7EErZSKwx99sUX8as8 KXPlSTYZGwtHYpMawalXwqplMAiQrQlZo+Kh/jomDRQ99aE44do= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:08 2024 by rpki-client on console-ams.rpki-client.org