$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/ueaG-GePLpyOmDYDoAsY3ZQ2C74.roa File: ueaG-GePLpyOmDYDoAsY3ZQ2C74.roa (raw, json) Hash identifier: huNj0H4s23rONhMSo+TW566PfxF0LqMbKHJFoLJ2IMQ= Subject key identifier: B9:E6:86:F8:67:8F:2E:9C:8E:98:36:03:A0:0B:18:DD:94:36:0B:BE Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 05B1 Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/ueaG-GePLpyOmDYDoAsY3ZQ2C74.roa Signing time: Thu 12 Oct 2023 08:26:48 +0000 ROA not before: Thu 12 Oct 2023 08:26:48 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 20473 IP address blocks: 103.122.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 07 May 2024 09:48:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1457 (0x5b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Oct 12 08:26:48 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=B9E686F8678F2E9C8E983603A00B18DD94360BBE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:09:4a:e3:79:09:27:4a:dd:81:d8:fd:4f:d1: 0c:c0:aa:40:48:3c:5a:f3:de:35:50:44:e8:58:6e: 33:46:85:d6:c6:66:94:11:34:1d:6d:c2:34:2a:38: 16:59:cc:ab:18:de:1a:c1:d0:d6:1e:dc:6a:12:43: 64:a6:3c:9f:eb:54:ad:b8:18:55:d2:6f:aa:89:d8: 2b:d6:6d:7b:bd:d5:7d:b4:c8:73:2f:e3:e9:02:f6: 08:23:ff:2c:e9:f1:41:88:55:d0:ab:da:e9:b1:af: 22:54:1c:03:d6:01:f3:99:36:6b:cd:cf:a9:26:9e: db:e2:6d:74:02:15:d9:c2:b2:5a:54:0e:af:cd:23: b6:1f:a0:05:28:9e:c1:62:3e:cd:dc:67:ab:e4:66: d3:7d:ef:dc:53:50:25:20:16:6d:f4:81:08:46:09: 1c:50:6c:db:9e:3c:06:67:19:c1:35:7b:ee:e8:9a: c1:2b:5a:9e:b4:40:3d:d5:f2:72:50:09:16:ae:9c: 65:26:f6:a1:6f:7a:09:9e:d0:e1:bb:b8:6a:29:fd: 2b:e2:1c:73:e4:50:52:81:3c:27:3c:71:48:8c:b2: 71:5c:f5:ae:ed:48:e5:27:be:45:d1:aa:9b:5a:af: de:ff:7c:f5:f3:e4:ba:8b:e1:00:a8:7b:53:70:f0: 5d:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:E6:86:F8:67:8F:2E:9C:8E:98:36:03:A0:0B:18:DD:94:36:0B:BE X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/ueaG-GePLpyOmDYDoAsY3ZQ2C74.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.122.191.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:4f:6e:19:09:06:11:dc:54:1c:65:86:5c:c4:c8:02:6e:e8: 15:09:bb:11:9a:1f:3a:fe:45:32:46:e7:55:bc:f8:36:c8:d3: 49:4f:0c:61:60:72:52:46:1b:2c:67:24:b1:dc:ea:23:02:fe: 74:bf:61:a0:d0:d4:86:b3:68:9c:a5:24:3c:6c:a0:2f:13:9b: af:ae:88:2b:ad:7b:b6:f7:17:9e:a2:37:84:9a:55:d3:21:92: f9:b1:9d:b2:a9:e9:5e:86:22:90:43:5c:eb:9f:ee:62:57:27: f0:32:11:dd:68:ea:73:c2:aa:f6:25:6b:b2:8c:04:ba:e5:31: 0d:d7:98:08:20:37:f9:fc:73:83:a5:0d:41:6f:09:63:fc:d5: fa:3c:43:cd:25:7a:72:7c:3a:7c:9d:37:c9:41:32:a3:36:11: 43:25:02:57:a4:ca:c6:2f:41:64:57:46:5a:f7:7a:4a:dd:da: 27:58:02:e8:54:bb:58:ce:57:42:df:99:19:4b:0f:34:fa:c0: c8:b9:bc:3d:97:07:d7:2b:8a:c3:1d:bd:19:76:24:58:f8:e3: 76:92:51:bb:eb:77:c5:66:82:ce:92:6d:8a:86:7a:31:dc:fe: 37:ae:d8:75:b3:f4:5e:97:91:de:54:ea:d6:4e:c0:75:99:91: f9:10:5b:ae -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICBbEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yMzEwMTIw ODI2NDhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEI5RTY4NkY4Njc4RjJF OUM4RTk4MzYwM0EwMEIxOEREOTQzNjBCQkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtCUrjeQknSt2B2P1P0QzAqkBIPFrz3jVQROhYbjNGhdbGZpQR NB1twjQqOBZZzKsY3hrB0NYe3GoSQ2SmPJ/rVK24GFXSb6qJ2CvWbXu91X20yHMv 4+kC9ggj/yzp8UGIVdCr2umxryJUHAPWAfOZNmvNz6kmntvibXQCFdnCslpUDq/N I7YfoAUonsFiPs3cZ6vkZtN979xTUCUgFm30gQhGCRxQbNuePAZnGcE1e+7omsEr Wp60QD3V8nJQCRaunGUm9qFvegme0OG7uGop/SviHHPkUFKBPCc8cUiMsnFc9a7t SOUnvkXRqptar97/fPXz5LqL4QCoe1Nw8F1lAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUueaG+GePLpyOmDYDoAsY3ZQ2C74wHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL3VlYUctR2VQTHB5T21EWURv QXNZM1pRMkM3NC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn er8wDQYJKoZIhvcNAQELBQADggEBAJpPbhkJBhHcVBxlhlzEyAJu6BUJuxGaHzr+ RTJG51W8+DbI00lPDGFgclJGGyxnJLHc6iMC/nS/YaDQ1IazaJylJDxsoC8Tm6+u iCute7b3F56iN4SaVdMhkvmxnbKp6V6GIpBDXOuf7mJXJ/AyEd1o6nPCqvYla7KM BLrlMQ3XmAggN/n8c4OlDUFvCWP81fo8Q80lenJ8OnydN8lBMqM2EUMlAlekysYv QWRXRlr3ekrd2idYAuhUu1jOV0LfmRlLDzT6wMi5vD2XB9crisMdvRl2JFj443aS Ubvrd8Vmgs6SbYqGejHc/jeu2HWz9F6Xkd5U6tZOwHWZkfkQW64= -----END CERTIFICATE-----Generated at Mon May 6 16:42:13 2024 by rpki-client on console-ams.rpki-client.org