$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGDA/zHMsDm7qtXYM-2krADSMFQVnT4Y.roa File: zHMsDm7qtXYM-2krADSMFQVnT4Y.roa (raw, json) Hash identifier: If+/t6A7vQ93AipSfd9M6ai8/H0LoersNPJfmieIq7w= Subject key identifier: CC:73:2C:0E:6E:EA:B5:76:0C:FB:69:2B:00:34:8C:15:05:67:4F:86 Certificate issuer: /CN=257DB7B9919975697366B7014F8CFE28EF364E73 Certificate serial: 06C8 Authority key identifier: 25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/zHMsDm7qtXYM-2krADSMFQVnT4Y.roa Signing time: Mon 26 Aug 2024 05:18:27 +0000 ROA not before: Mon 26 Aug 2024 05:18:27 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131657 IP address blocks: 103.153.176.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1736 (0x6c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=257DB7B9919975697366B7014F8CFE28EF364E73 Validity Not Before: Aug 26 05:18:27 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=CC732C0E6EEAB5760CFB692B00348C1505674F86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:47:16:a3:24:30:97:df:12:fd:b4:55:6f:81: 42:4d:4f:a5:f6:cb:ab:a0:70:27:32:67:ec:43:c0: c7:dd:6d:25:4f:eb:df:30:d9:b0:00:9c:3c:52:fd: f2:88:91:46:ff:64:7e:49:fa:72:e9:c6:29:3f:d3: 18:a4:52:13:bd:8f:6a:03:89:03:c2:1d:63:39:11: 3e:3e:ae:d5:a6:1c:cd:e2:9d:16:0d:a7:26:c4:e2: 76:a8:ba:44:47:e7:3d:b2:6b:9e:a9:41:70:37:84: 6f:03:6e:17:82:e3:9d:17:eb:8d:2d:b3:d4:c3:d6: 31:94:cf:30:83:a5:9c:7d:84:98:53:ec:b8:36:13: 15:7b:54:25:34:b4:13:ca:a5:58:7a:00:7e:05:2e: b6:9d:93:c0:b7:00:45:07:3e:c7:0b:c3:1f:9a:ea: 45:3e:30:5a:ab:5b:4b:fd:74:51:82:7a:17:1d:c8: 44:b0:2a:37:68:9e:9b:5b:86:52:32:f6:da:8b:66: 21:28:c1:ed:02:32:87:e7:34:00:be:0e:13:58:02: bd:ee:4d:37:76:69:cf:0a:02:e5:16:5b:bc:58:82: fc:09:22:a6:93:d3:63:d8:d9:4f:ee:da:5d:ef:a5: 30:21:bd:4d:06:8c:b7:47:26:ee:e4:b4:5a:09:22: b6:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:73:2C:0E:6E:EA:B5:76:0C:FB:69:2B:00:34:8C:15:05:67:4F:86 X509v3 Authority Key Identifier: keyid:25:7D:B7:B9:91:99:75:69:73:66:B7:01:4F:8C:FE:28:EF:36:4E:73 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/JX23uZGZdWlzZrcBT4z-KO82TnM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JX23uZGZdWlzZrcBT4z-KO82TnM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGDA/zHMsDm7qtXYM-2krADSMFQVnT4Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.153.176.0/23 Signature Algorithm: sha256WithRSAEncryption ab:4a:23:ae:dd:7a:75:a3:c9:73:4c:5e:6b:5a:e8:f5:d4:06: 7c:0c:2f:fe:e2:5e:0a:65:25:5c:1b:d3:ee:57:62:6e:e5:45: 16:37:e7:5d:47:5b:6d:9d:e5:0b:f7:0b:86:29:84:74:82:ce: 48:f0:9d:ff:e9:c2:94:14:6b:bd:20:4b:b0:67:cf:e2:06:2a: da:aa:31:68:ec:0c:26:91:d0:da:e3:ec:b4:ed:d9:6d:0b:09: d0:2e:f0:e0:6b:6c:2f:14:90:8b:ef:b9:cf:6b:de:15:e8:ba: f4:0e:bd:43:d8:01:5d:f3:ea:ec:88:42:78:69:98:89:84:53: 70:77:4c:9a:8e:4a:14:91:86:ab:09:85:fc:9b:d4:44:33:62: 01:d2:6e:d6:89:78:8d:fc:b9:30:a9:64:99:77:26:d4:e4:a2: 5b:bb:3d:74:27:ae:51:ad:75:e2:11:c3:14:73:69:38:89:b3: 7a:b9:32:b4:34:f4:85:ff:ab:bd:29:67:66:ae:77:9a:68:20: 23:63:38:df:6c:e9:9b:fa:22:fe:cf:2d:a0:32:e6:15:da:b0: 26:f9:29:0c:bb:50:4d:df:30:92:43:41:bd:44:48:80:f4:9b: f8:73:3a:c1:68:64:02:c6:a8:a8:21:62:4c:23:d2:aa:d2:bd: c2:a3:f4:8b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICBsgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjU3 REI3Qjk5MTk5NzU2OTczNjZCNzAxNEY4Q0ZFMjhFRjM2NEU3MzAeFw0yNDA4MjYw NTE4MjdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKENDNzMyQzBFNkVFQUI1 NzYwQ0ZCNjkyQjAwMzQ4QzE1MDU2NzRGODYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRRxajJDCX3xL9tFVvgUJNT6X2y6ugcCcyZ+xDwMfdbSVP698w 2bAAnDxS/fKIkUb/ZH5J+nLpxik/0xikUhO9j2oDiQPCHWM5ET4+rtWmHM3inRYN pybE4naoukRH5z2ya56pQXA3hG8DbheC450X640ts9TD1jGUzzCDpZx9hJhT7Lg2 ExV7VCU0tBPKpVh6AH4FLradk8C3AEUHPscLwx+a6kU+MFqrW0v9dFGCehcdyESw KjdonptbhlIy9tqLZiEowe0CMofnNAC+DhNYAr3uTTd2ac8KAuUWW7xYgvwJIqaT 02PY2U/u2l3vpTAhvU0GjLdHJu7ktFoJIrb9AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUzHMsDm7qtXYM+2krADSMFQVnT4YwHwYDVR0jBBgwFoAUJX23uZGZdWlzZrcB T4z+KO82TnMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RB L0pYMjN1WkdaZFdselpyY0JUNHotS084MlRuTS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSlgyM3VaR1pkV2x6WnJjQlQ0ei1LTzgyVG5NLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0RBL3pITXNEbTdxdFhZTS0ya3JB RFNNRlFWblQ0WS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFn mbAwDQYJKoZIhvcNAQELBQADggEBAKtKI67denWjyXNMXmta6PXUBnwML/7iXgpl JVwb0+5XYm7lRRY3511HW22d5Qv3C4YphHSCzkjwnf/pwpQUa70gS7Bnz+IGKtqq MWjsDCaR0Nrj7LTt2W0LCdAu8OBrbC8UkIvvuc9r3hXouvQOvUPYAV3z6uyIQnhp mImEU3B3TJqOShSRhqsJhfyb1EQzYgHSbtaJeI38uTCpZJl3JtTkolu7PXQnrlGt deIRwxRzaTiJs3q5MrQ09IX/q70pZ2aud5poICNjON9s6Zv6Iv7PLaAy5hXasCb5 KQy7UE3fMJJDQb1ESID0m/hzOsFoZALGqKghYkwj0qrSvcKj9Is= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:08 2024 by rpki-client on console-ams.rpki-client.org