$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/yHWJb-ErYMMtOOdAQs3wVR7FEQg.roa File: yHWJb-ErYMMtOOdAQs3wVR7FEQg.roa (raw, json) Hash identifier: PFMTJ6nG9mqrZr7enzZn6kAldrhZ06/PuYNxXxNksaA= Subject key identifier: C8:75:89:6F:E1:2B:60:C3:2D:38:E7:40:42:CD:F0:55:1E:C5:11:08 Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 06C4 Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/yHWJb-ErYMMtOOdAQs3wVR7FEQg.roa Signing time: Mon 26 Aug 2024 05:18:26 +0000 ROA not before: Mon 26 Aug 2024 05:18:26 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131657 IP address blocks: 103.153.177.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1732 (0x6c4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Aug 26 05:18:26 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C875896FE12B60C32D38E74042CDF0551EC51108 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:3e:60:de:34:9b:91:bc:30:51:a4:fa:1f:43: b0:bf:35:58:56:4f:2b:6c:69:01:ef:51:5a:f0:ac: 4d:cb:05:cd:18:08:55:c8:04:e3:6e:31:40:30:63: 4f:fc:ad:a4:5b:e0:33:59:e7:b5:5e:b3:f6:60:e7: 32:39:8b:f4:d4:46:00:40:cf:48:5d:af:7b:f2:68: 35:3f:96:4e:f6:ae:59:4a:62:44:b5:9c:7a:d7:6b: 28:88:8e:8d:13:d5:ab:61:17:f7:77:c2:37:fd:11: de:71:53:09:47:fd:2d:08:63:51:97:1e:97:b6:cb: b3:a2:46:cf:a6:47:10:e2:71:8e:c1:a5:02:4c:af: 0e:f7:94:fb:9d:24:dc:6e:9f:94:2c:ca:a7:dc:9d: 43:1e:0e:77:e5:91:0b:9e:f3:9e:50:ad:6c:61:80: 23:0b:7a:eb:f6:85:7a:18:fa:f1:cd:2c:94:d1:72: 5f:8f:2e:4e:ac:0d:79:15:8e:e6:36:33:3d:2e:28: 17:65:e5:8b:21:ca:22:2d:21:01:64:1b:56:01:fd: a5:29:11:87:7c:26:53:3f:c3:76:88:95:84:8e:11: ea:f9:55:7a:ad:1f:39:ef:0e:a8:e5:4a:e8:80:e0: ab:c3:10:0f:e5:f7:e9:ca:fd:ef:75:05:2c:84:f8: 9a:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:75:89:6F:E1:2B:60:C3:2D:38:E7:40:42:CD:F0:55:1E:C5:11:08 X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/yHWJb-ErYMMtOOdAQs3wVR7FEQg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.153.177.0/24 Signature Algorithm: sha256WithRSAEncryption 9a:81:83:6e:22:58:fa:77:19:6d:f0:cc:d4:e8:63:42:b8:ae: f3:69:17:76:8a:aa:26:5d:e4:34:54:d0:ce:78:e4:11:7e:8e: 82:b1:fb:76:3a:2d:1e:76:78:27:0b:fe:49:45:fa:72:b8:7e: 75:f4:14:2d:61:f2:c4:57:a8:ad:31:b6:0c:be:cf:6b:31:a3: 10:13:b6:c5:15:8a:53:7f:49:02:60:5a:c1:62:a0:2e:ce:93: e8:ab:31:37:6a:62:d6:f1:43:d5:29:cd:b2:a1:b1:f9:9c:76: d5:29:cd:92:84:7c:c3:b0:f5:a5:a4:55:b9:50:1e:18:95:5b: 4a:37:eb:a3:ab:c9:a0:94:32:86:f4:95:35:99:f7:40:3f:2c: 06:58:a1:af:02:e5:5f:c2:67:c5:b9:d6:ff:34:35:8b:48:5b: 6f:94:a3:98:ea:60:97:11:d9:b5:6d:8e:ac:b7:bb:98:8b:c7: 69:74:48:e4:cb:b4:52:fa:1d:f1:48:ee:cb:1d:87:3b:47:68: 07:bb:b1:11:7b:21:91:5a:6c:4b:ef:07:de:71:fc:fe:29:bc: 79:a4:2b:d7:ae:39:35:fb:96:4b:36:f5:70:76:4e:cd:06:22: 2f:9d:50:f1:21:16:95:62:a2:95:a3:72:b3:d2:89:a4:b5:48: 25:59:de:47 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICBsQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yNDA4MjYw NTE4MjZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM4NzU4OTZGRTEyQjYw QzMyRDM4RTc0MDQyQ0RGMDU1MUVDNTExMDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqPmDeNJuRvDBRpPofQ7C/NVhWTytsaQHvUVrwrE3LBc0YCFXI BONuMUAwY0/8raRb4DNZ57Ves/Zg5zI5i/TURgBAz0hdr3vyaDU/lk72rllKYkS1 nHrXayiIjo0T1athF/d3wjf9Ed5xUwlH/S0IY1GXHpe2y7OiRs+mRxDicY7BpQJM rw73lPudJNxun5QsyqfcnUMeDnflkQue855QrWxhgCMLeuv2hXoY+vHNLJTRcl+P Lk6sDXkVjuY2Mz0uKBdl5YshyiItIQFkG1YB/aUpEYd8JlM/w3aIlYSOEer5VXqt HznvDqjlSuiA4KvDEA/l9+nK/e91BSyE+JoPAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUyHWJb+ErYMMtOOdAQs3wVR7FEQgwHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL3lIV0piLUVyWU1NdE9PZEFR czN3VlI3RkVRZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn mbEwDQYJKoZIhvcNAQELBQADggEBAJqBg24iWPp3GW3wzNToY0K4rvNpF3aKqiZd 5DRU0M545BF+joKx+3Y6LR52eCcL/klF+nK4fnX0FC1h8sRXqK0xtgy+z2sxoxAT tsUVilN/SQJgWsFioC7Ok+irMTdqYtbxQ9UpzbKhsfmcdtUpzZKEfMOw9aWkVblQ HhiVW0o366OryaCUMob0lTWZ90A/LAZYoa8C5V/CZ8W51v80NYtIW2+Uo5jqYJcR 2bVtjqy3u5iLx2l0SOTLtFL6HfFI7ssdhztHaAe7sRF7IZFabEvvB95x/P4pvHmk K9euOTX7lks29XB2Ts0GIi+dUPEhFpViopWjcrPSiaS1SCVZ3kc= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:39 2024 by rpki-client on console-fra.rpki-client.org