$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/yevWzleE3arDxQnXiHkqC9KsWg4.roa File: yevWzleE3arDxQnXiHkqC9KsWg4.roa (raw, json) Hash identifier: mrVjXXWy05RbV9x6Ugao4a5GWtE+17Qf5gx5bciwPZk= Subject key identifier: C9:EB:D6:CE:57:84:DD:AA:C3:C5:09:D7:88:79:2A:0B:D2:AC:5A:0E Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 06CF Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/yevWzleE3arDxQnXiHkqC9KsWg4.roa Signing time: Mon 26 Aug 2024 05:18:29 +0000 ROA not before: Mon 26 Aug 2024 05:18:29 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131657 IP address blocks: 103.122.188.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1743 (0x6cf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Aug 26 05:18:29 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C9EBD6CE5784DDAAC3C509D788792A0BD2AC5A0E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:3a:41:89:bf:3c:25:55:16:5d:76:1e:85:e8: 16:80:7f:35:a9:72:f9:86:24:da:72:4c:a4:20:33: aa:de:6c:8d:d9:b9:48:07:e7:ff:0d:40:7c:2e:f5: 37:f3:eb:fc:67:07:c6:72:fb:13:09:f0:80:72:f1: f5:7c:40:80:26:06:5a:07:e0:cf:e2:17:6a:37:39: 40:9b:5a:52:4a:9d:10:b8:3e:14:a1:3a:8e:87:45: 0f:d1:31:15:82:7b:19:1a:3b:93:bb:6d:1e:43:b1: 00:a6:7c:a7:e9:ab:3f:1d:aa:c5:53:27:57:ab:42: 66:3c:4c:05:51:40:68:62:16:9d:ee:91:a2:ad:d3: 7a:b4:0e:5e:94:9d:c4:12:86:2d:dc:aa:58:8d:fe: fa:58:36:8f:7c:b6:26:92:10:a5:13:50:ac:50:93: 75:0d:c9:0c:25:eb:77:9b:bd:9d:66:e7:21:57:29: 40:ce:88:97:b0:cf:ca:b7:de:65:e2:73:69:cb:5f: a5:a7:50:84:37:85:3f:b3:7b:e5:31:0c:35:f6:2e: ee:b5:29:73:7f:c3:7d:fe:91:8b:7b:f0:08:0a:c6: e7:9d:58:a9:93:82:07:5e:dd:f9:77:06:d3:3e:99: 4a:d0:73:6c:7c:ef:9a:35:3c:2f:44:30:51:bf:86: 11:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:EB:D6:CE:57:84:DD:AA:C3:C5:09:D7:88:79:2A:0B:D2:AC:5A:0E X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/yevWzleE3arDxQnXiHkqC9KsWg4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.122.188.0/22 Signature Algorithm: sha256WithRSAEncryption c1:74:70:75:21:56:d1:5c:24:2d:b4:42:5b:c3:69:44:2a:bf: 96:00:88:c1:7b:d2:7b:1f:c9:e9:84:9a:cb:3d:ef:64:40:6b: 7e:9d:c1:08:0e:9b:d3:8f:da:b1:84:48:f7:f8:c9:50:e9:eb: e6:af:3a:f0:99:32:bd:a7:0b:8a:8a:6c:c2:55:ec:4e:1d:8a: 4b:72:fb:c6:11:46:f6:18:65:bd:7f:ce:ec:cb:48:73:23:42: ee:41:c4:8f:6b:17:94:b3:e4:92:ad:2d:68:fd:f0:4f:9e:80: 86:b0:f8:56:43:1f:fd:d4:7c:70:e8:ca:46:02:2c:a1:1a:af: 56:e3:a5:0a:72:5d:2f:f4:ba:f1:b4:dd:77:d7:bb:92:0c:7e: 58:15:4b:b7:ca:94:05:42:e1:1d:f9:47:fa:d5:ce:36:30:fb: 2e:e6:1c:e5:38:55:fd:6f:3c:cd:30:f4:be:d0:5d:2e:95:6d: 16:e2:51:ec:c3:cc:e0:ae:de:49:ce:df:92:60:98:ae:d0:2a: f4:93:a1:b9:ce:9e:de:2f:01:33:48:1c:d6:b4:51:32:1a:b4: 60:dd:3f:1e:fb:30:bc:e8:00:ec:28:0b:23:1a:73:88:aa:18: a0:27:96:4f:9f:8f:4e:00:c3:c8:69:4f:f8:4a:18:d3:de:4f: 4e:57:e0:fb -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICBs8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yNDA4MjYw NTE4MjlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM5RUJENkNFNTc4NERE QUFDM0M1MDlENzg4NzkyQTBCRDJBQzVBMEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGOkGJvzwlVRZddh6F6BaAfzWpcvmGJNpyTKQgM6rebI3ZuUgH 5/8NQHwu9Tfz6/xnB8Zy+xMJ8IBy8fV8QIAmBloH4M/iF2o3OUCbWlJKnRC4PhSh Oo6HRQ/RMRWCexkaO5O7bR5DsQCmfKfpqz8dqsVTJ1erQmY8TAVRQGhiFp3ukaKt 03q0Dl6UncQShi3cqliN/vpYNo98tiaSEKUTUKxQk3UNyQwl63ebvZ1m5yFXKUDO iJewz8q33mXic2nLX6WnUIQ3hT+ze+UxDDX2Lu61KXN/w33+kYt78AgKxuedWKmT ggde3fl3BtM+mUrQc2x875o1PC9EMFG/hhGdAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUyevWzleE3arDxQnXiHkqC9KsWg4wHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL3lldld6bGVFM2FyRHhRblhp SGtxQzlLc1dnNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn erwwDQYJKoZIhvcNAQELBQADggEBAMF0cHUhVtFcJC20QlvDaUQqv5YAiMF70nsf yemEmss972RAa36dwQgOm9OP2rGESPf4yVDp6+avOvCZMr2nC4qKbMJV7E4dikty +8YRRvYYZb1/zuzLSHMjQu5BxI9rF5Sz5JKtLWj98E+egIaw+FZDH/3UfHDoykYC LKEar1bjpQpyXS/0uvG03XfXu5IMflgVS7fKlAVC4R35R/rVzjYw+y7mHOU4Vf1v PM0w9L7QXS6VbRbiUezDzOCu3knO35JgmK7QKvSTobnOnt4vATNIHNa0UTIatGDd Px77MLzoAOwoCyMac4iqGKAnlk+fj04Aw8hpT/hKGNPeT05X4Ps= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:08 2024 by rpki-client on console-ams.rpki-client.org