$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/mBvb4R_HROzZIMaOU-UoH8H6xrc.roa File: mBvb4R_HROzZIMaOU-UoH8H6xrc.roa (raw, json) Hash identifier: +AtYXmY5MHi2KL/t9YIrPHAJZyea1Ee3gILD+4WCxg0= Subject key identifier: 98:1B:DB:E1:1F:C7:44:EC:D9:20:C6:8E:53:E5:28:1F:C1:FA:C6:B7 Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 06D9 Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/mBvb4R_HROzZIMaOU-UoH8H6xrc.roa Signing time: Mon 26 Aug 2024 05:18:31 +0000 ROA not before: Mon 26 Aug 2024 05:18:31 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17418 IP address blocks: 103.153.176.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1753 (0x6d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Aug 26 05:18:31 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=981BDBE11FC744ECD920C68E53E5281FC1FAC6B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:3a:07:57:e4:52:59:d6:1c:5b:fe:77:c0:21: fc:52:82:6b:6d:9e:9d:c1:7a:d5:49:4f:cd:69:f8: 3b:08:bc:05:d3:a6:50:bb:84:dd:dd:b8:a6:aa:71: 5d:cc:36:d9:1f:56:1e:23:c8:1b:12:51:69:bb:56: 8f:9d:af:df:aa:f4:59:a7:f4:90:ea:33:c4:21:d8: 93:a3:1a:4a:f6:31:b6:e7:b0:8e:4b:33:60:07:65: c8:9c:8e:8c:90:41:92:04:29:6c:c9:fe:97:7f:7d: db:84:48:6f:29:ae:33:dc:e4:fb:c2:77:d8:ab:f2: b2:4c:db:b5:0f:fc:d8:13:22:08:74:e8:06:39:aa: 0a:80:2e:39:4b:b3:a0:d2:a8:ad:b4:f6:33:dd:aa: c9:63:86:30:3d:06:f2:b3:41:11:d1:c2:0a:bf:14: 06:57:b1:6b:d7:13:ff:54:01:6c:c2:07:a9:83:f1: 10:6c:a4:ee:c8:8b:19:1a:df:b2:b5:39:1b:26:fa: 3e:50:76:eb:80:14:39:e1:61:94:34:7d:bd:fd:16: 85:c2:03:f5:0a:a8:e9:3b:75:88:21:49:43:73:1e: b9:06:72:f5:40:49:4d:1e:d1:69:5d:df:85:86:be: bd:67:eb:bf:15:62:1e:6c:84:2e:47:ba:6f:55:6e: 6e:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:1B:DB:E1:1F:C7:44:EC:D9:20:C6:8E:53:E5:28:1F:C1:FA:C6:B7 X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/mBvb4R_HROzZIMaOU-UoH8H6xrc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.153.176.0/23 Signature Algorithm: sha256WithRSAEncryption c2:1d:10:d7:0f:6f:68:ba:fe:e1:3d:37:ff:70:db:1b:c2:52: 3a:c8:6e:30:7c:7c:a5:ca:a5:00:40:1a:c2:18:b2:34:92:0a: f6:9f:e7:25:b0:46:8e:82:e1:d4:0f:df:dd:de:ac:7e:b9:9a: a0:93:f8:7a:4a:9b:97:e4:b2:12:3a:1d:e3:05:3f:ee:00:bc: 91:8a:b8:72:30:bc:44:48:4c:85:b9:d8:23:00:94:37:27:5d: 33:7f:5f:ac:15:e2:24:1f:1b:05:0e:f1:91:89:5a:7a:e7:ed: 80:2b:4e:91:40:31:62:38:11:a8:79:48:2d:be:3f:fc:a5:eb: 2c:c3:2b:0c:7a:6b:06:f7:d0:4f:57:1b:43:fb:1e:a8:5b:9c: 9d:16:10:be:d2:c1:98:dd:ab:57:fa:00:0d:30:ab:45:cb:36: d1:42:d1:5d:be:42:9a:2a:72:a6:31:87:55:33:fb:53:20:79: e1:fa:55:3b:98:13:e9:f7:b8:9e:d8:df:fb:86:86:33:9f:f9: 29:bd:65:2c:15:3a:6e:08:76:2f:43:33:35:33:3a:fb:7b:98: 51:38:38:94:09:09:b7:72:4f:d0:0f:c7:7c:98:7a:f3:6e:13: f0:ae:da:a9:40:3f:e9:b0:26:98:c1:4f:87:cb:45:5c:3c:80: b7:36:b1:ea -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICBtkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yNDA4MjYw NTE4MzFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDk4MUJEQkUxMUZDNzQ0 RUNEOTIwQzY4RTUzRTUyODFGQzFGQUM2QjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7OgdX5FJZ1hxb/nfAIfxSgmttnp3BetVJT81p+DsIvAXTplC7 hN3duKaqcV3MNtkfVh4jyBsSUWm7Vo+dr9+q9Fmn9JDqM8Qh2JOjGkr2MbbnsI5L M2AHZcicjoyQQZIEKWzJ/pd/fduESG8prjPc5PvCd9ir8rJM27UP/NgTIgh06AY5 qgqALjlLs6DSqK209jPdqsljhjA9BvKzQRHRwgq/FAZXsWvXE/9UAWzCB6mD8RBs pO7Iixka37K1ORsm+j5QduuAFDnhYZQ0fb39FoXCA/UKqOk7dYghSUNzHrkGcvVA SU0e0Wld34WGvr1n678VYh5shC5Hum9Vbm7vAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUmBvb4R/HROzZIMaOU+UoH8H6xrcwHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL21CdmI0Ul9IUk96WklNYU9V LVVvSDhINnhyYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn mbAwDQYJKoZIhvcNAQELBQADggEBAMIdENcPb2i6/uE9N/9w2xvCUjrIbjB8fKXK pQBAGsIYsjSSCvaf5yWwRo6C4dQP393erH65mqCT+HpKm5fkshI6HeMFP+4AvJGK uHIwvERITIW52CMAlDcnXTN/X6wV4iQfGwUO8ZGJWnrn7YArTpFAMWI4Eah5SC2+ P/yl6yzDKwx6awb30E9XG0P7HqhbnJ0WEL7SwZjdq1f6AA0wq0XLNtFC0V2+Qpoq cqYxh1Uz+1MgeeH6VTuYE+n3uJ7Y3/uGhjOf+Sm9ZSwVOm4Idi9DMzUzOvt7mFE4 OJQJCbdyT9APx3yYevNuE/Cu2qlAP+mwJpjBT4fLRVw8gLc2seo= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:32 2024 by rpki-client on console-ams.rpki-client.org