$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/yFs8b0PteXV4xGOGq2PgwfSgJN4.roa File: yFs8b0PteXV4xGOGq2PgwfSgJN4.roa (raw, json) Hash identifier: xK0E3E7OAn95/EazCFD+Ax/8/ofPzsB9X8UE/NhbKJQ= Subject key identifier: C8:5B:3C:6F:43:ED:79:75:78:C4:63:86:AB:63:E0:C1:F4:A0:24:DE Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 06D4 Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/yFs8b0PteXV4xGOGq2PgwfSgJN4.roa Signing time: Mon 26 Aug 2024 05:18:30 +0000 ROA not before: Mon 26 Aug 2024 05:18:30 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 134823 IP address blocks: 103.122.189.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 11:24:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1748 (0x6d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Aug 26 05:18:30 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C85B3C6F43ED797578C46386AB63E0C1F4A024DE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:5b:e3:69:83:c3:f4:5a:82:08:e8:5f:8f:ff: 60:e0:e8:6f:bc:22:0e:31:18:ef:55:31:7b:2a:c3: 88:c3:b1:1d:e0:af:bb:87:8c:e7:cf:57:90:66:3e: 10:67:47:9d:93:61:81:63:53:c4:c5:70:8a:fc:3f: 19:58:41:4e:e2:1e:22:b7:a5:2e:fe:dd:74:a0:e0: 24:ac:1b:b5:ee:69:86:5f:63:3c:89:58:81:ef:d0: 1f:5d:2e:31:e1:10:ea:a0:55:bc:7e:82:85:30:98: 76:5b:1d:c7:c1:4c:57:ed:c8:ef:bb:8c:20:97:ea: 54:71:ec:93:c4:d3:d9:4b:80:bd:fa:1c:1f:8a:6e: 28:6c:d9:01:cd:34:61:64:2f:d1:19:8a:d1:f5:93: af:b7:9e:16:19:91:c3:69:3a:01:b7:e3:a9:cc:e8: 24:aa:f1:7b:db:0d:8d:3f:e1:e6:88:9a:01:64:40: e1:e3:95:6e:6e:0a:35:19:42:9b:a3:6a:b1:b8:3d: 5b:3d:b2:1f:c8:21:b7:1a:d8:04:11:39:bb:fb:50: a3:d0:46:51:9e:9a:3f:5d:f8:dd:9a:5e:d6:20:41: 9c:82:f5:74:25:62:17:a8:12:b9:ab:6d:b3:37:0a: de:a8:7f:96:01:c1:51:0e:72:17:08:c7:09:8a:ed: 40:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:5B:3C:6F:43:ED:79:75:78:C4:63:86:AB:63:E0:C1:F4:A0:24:DE X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/yFs8b0PteXV4xGOGq2PgwfSgJN4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.122.189.0/24 Signature Algorithm: sha256WithRSAEncryption 88:bf:6c:f2:e1:c5:b5:ec:a2:af:95:da:d4:82:4d:b4:46:74: a4:5a:62:eb:33:ff:d2:47:2b:24:f8:2f:75:30:04:62:02:66: cb:1f:0b:55:c3:ab:de:5b:8c:2b:26:18:a6:83:ae:09:fe:0e: 69:74:b0:38:9c:b7:3b:f7:14:62:59:c2:5b:57:c7:4a:26:59: b8:0d:52:0c:c6:06:79:ec:96:65:89:d3:3a:26:cb:7c:54:bd: 3e:e0:6b:1b:f0:4b:85:70:d4:f9:63:81:aa:18:ef:92:f5:af: 7d:71:17:23:6c:af:bf:eb:0e:20:0f:8e:16:0f:71:92:ff:26: 1e:46:2f:d0:c5:b6:49:79:67:75:d1:da:0d:51:4e:03:9a:61: 74:80:b5:41:7d:3e:6b:04:fb:8e:b9:fc:6a:75:51:54:aa:81: 48:84:18:28:ef:18:b6:7a:d4:8c:fa:8e:ca:09:36:52:71:77: 44:57:0f:8c:78:fd:e6:9b:f9:8c:c3:45:8e:5a:fa:ba:34:45: 84:60:9f:24:e5:f8:db:bc:30:d2:38:52:32:4d:b7:45:31:e4: 94:b6:fc:fe:d1:33:56:5f:e8:fb:e8:78:f3:97:72:81:92:df: aa:6e:a3:94:0a:66:85:c0:df:23:8c:ca:78:58:93:a8:9e:85: a6:89:55:2c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICBtQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yNDA4MjYw NTE4MzBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM4NUIzQzZGNDNFRDc5 NzU3OEM0NjM4NkFCNjNFMEMxRjRBMDI0REUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQClW+Npg8P0WoII6F+P/2Dg6G+8Ig4xGO9VMXsqw4jDsR3gr7uH jOfPV5BmPhBnR52TYYFjU8TFcIr8PxlYQU7iHiK3pS7+3XSg4CSsG7XuaYZfYzyJ WIHv0B9dLjHhEOqgVbx+goUwmHZbHcfBTFftyO+7jCCX6lRx7JPE09lLgL36HB+K bihs2QHNNGFkL9EZitH1k6+3nhYZkcNpOgG346nM6CSq8XvbDY0/4eaImgFkQOHj lW5uCjUZQpujarG4PVs9sh/IIbca2AQRObv7UKPQRlGemj9d+N2aXtYgQZyC9XQl YheoErmrbbM3Ct6of5YBwVEOchcIxwmK7UCvAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUyFs8b0PteXV4xGOGq2PgwfSgJN4wHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL3lGczhiMFB0ZVhWNHhHT0dx MlBnd2ZTZ0pONC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn er0wDQYJKoZIhvcNAQELBQADggEBAIi/bPLhxbXsoq+V2tSCTbRGdKRaYusz/9JH KyT4L3UwBGICZssfC1XDq95bjCsmGKaDrgn+Dml0sDictzv3FGJZwltXx0omWbgN UgzGBnnslmWJ0zomy3xUvT7gaxvwS4Vw1PljgaoY75L1r31xFyNsr7/rDiAPjhYP cZL/Jh5GL9DFtkl5Z3XR2g1RTgOaYXSAtUF9PmsE+465/Gp1UVSqgUiEGCjvGLZ6 1Iz6jsoJNlJxd0RXD4x4/eab+YzDRY5a+ro0RYRgnyTl+Nu8MNI4UjJNt0Ux5JS2 /P7RM1Zf6PvoePOXcoGS36puo5QKZoXA3yOMynhYk6iehaaJVSw= -----END CERTIFICATE-----Generated at Mon Nov 25 06:08:00 2024 by rpki-client on console-ams.rpki-client.org