$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGJAY/2-PLzklDy3bcoumoG75jm3kRrHk.roa File: 2-PLzklDy3bcoumoG75jm3kRrHk.roa (raw, json) Hash identifier: /tyquXYK1QZwU21C2wtz2DYZp0N/DmWraBsqcuaofJM= Subject key identifier: DB:E3:CB:CE:49:43:CB:76:DC:A2:E9:A8:1B:BE:63:9B:79:11:AC:79 Certificate issuer: /CN=324A7E6EBF678F98B87228EC8466C3690A43DDB6 Certificate serial: 0B11 Authority key identifier: 32:4A:7E:6E:BF:67:8F:98:B8:72:28:EC:84:66:C3:69:0A:43:DD:B6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Mkp-br9nj5i4cijshGbDaQpD3bY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGJAY/2-PLzklDy3bcoumoG75jm3kRrHk.roa Signing time: Fri 01 Sep 2023 09:00:04 +0000 ROA not before: Fri 01 Sep 2023 09:00:04 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 38851 IP address blocks: 103.197.174.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGJAY/Mkp-br9nj5i4cijshGbDaQpD3bY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGJAY/Mkp-br9nj5i4cijshGbDaQpD3bY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Mkp-br9nj5i4cijshGbDaQpD3bY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 12:18:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2833 (0xb11) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=324A7E6EBF678F98B87228EC8466C3690A43DDB6 Validity Not Before: Sep 1 09:00:04 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=DBE3CBCE4943CB76DCA2E9A81BBE639B7911AC79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:d7:41:9c:70:ff:b5:19:05:ab:3c:f2:67:5c: 1f:2b:22:f5:2b:01:c9:32:78:0f:1d:29:05:6a:ca: f5:6e:57:3f:19:a9:15:08:33:94:6e:6c:ab:98:83: f3:95:85:ac:c9:17:b6:92:44:28:3b:85:06:ea:ba: 5d:21:3b:60:1a:ef:0b:29:73:b2:05:74:4a:8f:03: 45:c5:4f:49:b7:69:08:24:b4:cb:ae:df:69:c7:ce: c3:ce:cb:c0:7e:8c:a9:d6:6e:76:02:25:f3:ba:1d: dc:26:c7:81:22:72:bb:39:7c:fc:9c:3f:e9:35:fa: 94:2a:b9:31:46:c4:65:42:99:01:b6:ce:5f:1a:ea: 3c:52:c8:73:e2:56:83:37:14:91:bd:af:ac:4b:fd: 47:d0:84:87:f5:a8:34:5c:72:76:06:db:1d:b6:1b: 9e:c5:2d:34:da:b6:52:96:83:43:7c:d9:77:72:78: d3:f7:00:c9:9d:d9:3b:2a:8b:e9:32:56:92:46:94: 6a:6f:00:1f:82:26:f3:49:f3:ed:f3:2b:e5:a2:00: 41:41:91:ee:5e:0f:e7:fe:ef:f8:d0:ba:72:da:1a: fc:83:ad:76:cf:9a:31:76:05:6c:70:7c:a5:64:69: 63:55:37:a0:92:94:cd:57:35:bb:40:e9:03:3e:2e: 18:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:E3:CB:CE:49:43:CB:76:DC:A2:E9:A8:1B:BE:63:9B:79:11:AC:79 X509v3 Authority Key Identifier: keyid:32:4A:7E:6E:BF:67:8F:98:B8:72:28:EC:84:66:C3:69:0A:43:DD:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGJAY/Mkp-br9nj5i4cijshGbDaQpD3bY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Mkp-br9nj5i4cijshGbDaQpD3bY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGJAY/2-PLzklDy3bcoumoG75jm3kRrHk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.197.174.0/23 Signature Algorithm: sha256WithRSAEncryption b1:c0:dc:ff:b7:f3:80:a4:1e:60:c4:8f:70:88:4c:b3:37:17: c8:dc:f9:ff:7f:4b:9a:1c:71:70:22:6e:0b:88:de:3e:b8:f7: d7:77:90:d0:85:13:23:4a:c6:00:23:7e:e5:0a:7f:c6:93:7e: 75:3d:c3:d0:e5:57:a9:b0:61:9a:6c:13:c9:b1:ef:02:0f:fc: 86:ea:2c:13:78:d6:23:ec:17:d5:4d:12:ad:c4:e6:9b:2f:22: 15:e0:b1:22:b3:5e:56:c2:21:08:6d:1f:50:d4:41:ba:b7:a7: 53:67:ce:a9:34:6d:9f:b9:70:df:e3:e5:17:bb:8d:3a:25:ac: 7b:7d:64:bd:d2:0e:18:f6:72:8e:16:a1:4a:ff:49:73:9c:2d: a0:d8:02:d8:ae:cb:9c:1e:1f:2d:73:1d:e9:c2:a0:74:c5:e2: d7:da:04:0a:39:9e:ac:a4:64:18:00:77:b2:c5:5e:0f:8f:c1: f2:a7:f6:d1:67:66:d1:84:52:8b:9f:62:03:17:7a:30:5b:2e: 09:b9:55:af:1a:9e:e8:91:e2:78:4c:69:1e:05:53:d8:c0:d8: 5a:82:43:66:ee:b5:39:4e:f2:af:3e:fa:ba:f0:6d:91:d1:da: 44:18:94:d1:43:bc:52:ad:b4:6b:f5:39:4f:72:6c:ef:49:95: 17:51:d5:2f -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICCxEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzI0 QTdFNkVCRjY3OEY5OEI4NzIyOEVDODQ2NkMzNjkwQTQzRERCNjAeFw0yMzA5MDEw OTAwMDRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKERCRTNDQkNFNDk0M0NC NzZEQ0EyRTlBODFCQkU2MzlCNzkxMUFDNzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCw10GccP+1GQWrPPJnXB8rIvUrAckyeA8dKQVqyvVuVz8ZqRUI M5RubKuYg/OVhazJF7aSRCg7hQbqul0hO2Aa7wspc7IFdEqPA0XFT0m3aQgktMuu 32nHzsPOy8B+jKnWbnYCJfO6Hdwmx4Eicrs5fPycP+k1+pQquTFGxGVCmQG2zl8a 6jxSyHPiVoM3FJG9r6xL/UfQhIf1qDRccnYG2x22G57FLTTatlKWg0N82XdyeNP3 AMmd2Tsqi+kyVpJGlGpvAB+CJvNJ8+3zK+WiAEFBke5eD+f+7/jQunLaGvyDrXbP mjF2BWxwfKVkaWNVN6CSlM1XNbtA6QM+LhhvAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU2+PLzklDy3bcoumoG75jm3kRrHkwHwYDVR0jBBgwFoAUMkp+br9nj5i4cijs hGbDaQpD3bYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0pB WS9Na3AtYnI5bmo1aTRjaWpzaEdiRGFRcEQzYlkuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL01rcC1icjluajVpNGNpanNoR2JEYVFwRDNiWS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0hPTkdKQVkvMi1QTHprbER5M2Jjb3Vt b0c3NWptM2tSckhrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AWfFrjANBgkqhkiG9w0BAQsFAAOCAQEAscDc/7fzgKQeYMSPcIhMszcXyNz5/39L mhxxcCJuC4jePrj313eQ0IUTI0rGACN+5Qp/xpN+dT3D0OVXqbBhmmwTybHvAg/8 huosE3jWI+wX1U0SrcTmmy8iFeCxIrNeVsIhCG0fUNRBurenU2fOqTRtn7lw3+Pl F7uNOiWse31kvdIOGPZyjhahSv9Jc5wtoNgC2K7LnB4fLXMd6cKgdMXi19oECjme rKRkGAB3ssVeD4/B8qf20Wdm0YRSi59iAxd6MFsuCblVrxqe6JHieExpHgVT2MDY WoJDZu61OU7yrz76uvBtkdHaRBiU0UO8Uq20a/U5T3Js70mVF1HVLw== -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:01 2024 by rpki-client on console-fra.rpki-client.org