$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/m1GBigR8FgQ_-9XOXJKQjezXwrw.roa File: m1GBigR8FgQ_-9XOXJKQjezXwrw.roa (raw, json) Hash identifier: Qx3+ztYHGXb6xwxLl95iVdPv9n18su3lQxCJq6BOlTQ= Subject key identifier: 9B:51:81:8A:04:7C:16:04:3F:FB:D5:CE:5C:92:90:8D:EC:D7:C2:BC Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 0570 Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/m1GBigR8FgQ_-9XOXJKQjezXwrw.roa Signing time: Fri 01 Sep 2023 08:59:48 +0000 ROA not before: Fri 01 Sep 2023 08:59:48 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 17418 IP address blocks: 103.153.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 23:45:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1392 (0x570) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Sep 1 08:59:48 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=9B51818A047C16043FFBD5CE5C92908DECD7C2BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:c6:5e:9d:15:93:f9:5c:18:3c:9f:98:c3:1b: d9:26:a0:ca:71:f0:b4:7f:b0:1f:6b:09:5b:bb:9d: cc:a7:2b:7f:3e:d8:34:25:bc:ac:b5:cc:98:26:fd: 39:bc:5c:b7:03:cd:65:cf:49:e4:36:42:01:4e:43: b9:c8:6f:b2:01:ac:55:eb:85:7a:4d:0f:16:f5:1b: f9:39:aa:f0:39:43:e3:79:ed:e8:da:84:5a:ea:69: d0:91:9a:80:b7:79:aa:ba:a2:2c:fa:c9:66:bb:64: 49:bb:25:64:1f:10:13:92:65:57:00:97:19:9d:50: 34:6c:bb:c1:c2:00:fb:92:30:8e:1e:c5:bd:e2:70: f6:4a:7c:92:67:4a:af:8a:b0:39:ec:df:51:fa:77: e6:3a:4a:ab:0e:1b:c9:4a:59:d7:ba:c2:39:34:26: e3:aa:98:89:ae:2d:41:60:19:48:f8:2f:01:31:70: 06:f6:f9:5b:96:35:fb:a1:62:53:8d:40:c6:fb:3b: 77:f1:1a:02:09:58:75:51:34:d5:3b:c0:4c:fa:5d: 16:e2:b8:2a:a8:d1:2b:c4:dc:7c:7a:95:e9:cc:d0: 68:d8:36:aa:29:84:2b:ff:1c:ed:f6:21:57:49:ac: b4:9f:66:e9:6b:5a:63:3b:df:33:6f:2d:a1:c1:5f: ed:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:51:81:8A:04:7C:16:04:3F:FB:D5:CE:5C:92:90:8D:EC:D7:C2:BC X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/m1GBigR8FgQ_-9XOXJKQjezXwrw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.153.177.0/24 Signature Algorithm: sha256WithRSAEncryption 40:52:f5:aa:70:b4:6a:65:34:10:a8:8a:f5:7e:35:63:e5:d3: 2c:9a:00:42:d4:5a:52:d8:0c:18:78:e5:38:8d:9d:41:a6:4c: 4f:f4:fc:5a:5b:43:ae:6a:a5:ce:05:3b:51:ab:1f:32:56:30: ff:fb:a0:32:df:f4:06:6c:b9:f6:7d:28:c5:6d:cd:4d:0b:cb: fc:a0:7e:8a:47:a1:e9:99:fb:d0:37:86:aa:fa:89:02:b7:80: 03:32:f0:3a:20:7e:35:40:73:62:a7:c8:69:f9:97:17:50:6e: f1:bb:f9:30:cf:54:28:6f:9d:e7:da:95:59:40:a6:ef:ac:14: 82:73:6e:5c:44:09:13:50:4f:15:83:c5:d2:c5:d6:1f:88:ce: 1f:e2:e2:37:67:65:98:42:dd:2b:1d:17:92:68:9e:a7:01:d3: 87:34:21:2f:c8:41:ea:63:b3:00:0a:d5:4c:cc:ea:03:40:2a: 89:c0:4e:9f:49:94:d0:ed:86:ff:19:65:57:b5:7b:1a:19:c6: cd:98:7e:c7:99:7e:3e:61:63:ed:33:36:5e:01:5f:b2:db:f7: e6:5b:fc:1c:e9:e6:60:b3:09:ff:f1:b9:f1:8d:44:0e:45:a1: c8:92:a9:87:4d:ea:59:f1:ca:f6:a8:ac:7a:2b:9f:8d:cd:da: 35:af:26:7e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICBXAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yMzA5MDEw ODU5NDhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDlCNTE4MThBMDQ3QzE2 MDQzRkZCRDVDRTVDOTI5MDhERUNEN0MyQkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDdxl6dFZP5XBg8n5jDG9kmoMpx8LR/sB9rCVu7ncynK38+2DQl vKy1zJgm/Tm8XLcDzWXPSeQ2QgFOQ7nIb7IBrFXrhXpNDxb1G/k5qvA5Q+N57eja hFrqadCRmoC3eaq6oiz6yWa7ZEm7JWQfEBOSZVcAlxmdUDRsu8HCAPuSMI4exb3i cPZKfJJnSq+KsDns31H6d+Y6SqsOG8lKWde6wjk0JuOqmImuLUFgGUj4LwExcAb2 +VuWNfuhYlONQMb7O3fxGgIJWHVRNNU7wEz6XRbiuCqo0SvE3Hx6lenM0GjYNqop hCv/HO32IVdJrLSfZulrWmM73zNvLaHBX+21AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUm1GBigR8FgQ/+9XOXJKQjezXwrwwHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL20xR0JpZ1I4RmdRXy05WE9Y SktRamV6WHdydy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn mbEwDQYJKoZIhvcNAQELBQADggEBAEBS9apwtGplNBCoivV+NWPl0yyaAELUWlLY DBh45TiNnUGmTE/0/FpbQ65qpc4FO1GrHzJWMP/7oDLf9AZsufZ9KMVtzU0Ly/yg fopHoemZ+9A3hqr6iQK3gAMy8DogfjVAc2KnyGn5lxdQbvG7+TDPVChvnefalVlA pu+sFIJzblxECRNQTxWDxdLF1h+Izh/i4jdnZZhC3SsdF5JonqcB04c0IS/IQepj swAK1UzM6gNAKonATp9JlNDthv8ZZVe1exoZxs2YfseZfj5hY+0zNl4BX7Lb9+Zb /Bzp5mCzCf/xufGNRA5FociSqYdN6lnxyvaorHorn43N2jWvJn4= -----END CERTIFICATE-----Generated at Tue May 7 01:14:04 2024 by rpki-client on console-fra.rpki-client.org