$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGJAY/liNw3ey4pk7ehJpH22KAKAc6q7k.roa File: liNw3ey4pk7ehJpH22KAKAc6q7k.roa (raw, json) Hash identifier: EFWecUwBKSV+6bW13i6ViN6gzicc1anIu/KyZcpcCMs= Subject key identifier: 96:23:70:DD:EC:B8:A6:4E:DE:84:9A:47:DB:62:80:28:07:3A:AB:B9 Certificate issuer: /CN=324A7E6EBF678F98B87228EC8466C3690A43DDB6 Certificate serial: 0C0D Authority key identifier: 32:4A:7E:6E:BF:67:8F:98:B8:72:28:EC:84:66:C3:69:0A:43:DD:B6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Mkp-br9nj5i4cijshGbDaQpD3bY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGJAY/liNw3ey4pk7ehJpH22KAKAc6q7k.roa Signing time: Mon 26 Aug 2024 05:18:36 +0000 ROA not before: Mon 26 Aug 2024 05:18:36 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18046 IP address blocks: 220.158.228.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGJAY/Mkp-br9nj5i4cijshGbDaQpD3bY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGJAY/Mkp-br9nj5i4cijshGbDaQpD3bY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Mkp-br9nj5i4cijshGbDaQpD3bY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3085 (0xc0d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=324A7E6EBF678F98B87228EC8466C3690A43DDB6 Validity Not Before: Aug 26 05:18:36 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=962370DDECB8A64EDE849A47DB628028073AABB9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:88:f6:b8:55:15:1f:d9:d2:75:9f:af:9c:37: ed:d3:94:2e:d6:b2:e5:b7:fa:20:cd:9a:93:48:28: 0e:10:a9:06:31:96:94:7b:ce:58:88:39:72:2a:4d: cf:c8:3e:c3:7c:54:7b:19:ae:ab:00:1a:46:00:16: 3c:77:47:89:d9:67:1f:3b:55:6f:14:a8:80:d4:b5: 77:4e:dd:54:63:3f:8f:fc:c2:1d:23:23:4d:0d:1e: 4c:59:e7:c0:44:5e:43:85:40:bf:43:59:b6:96:b8: df:a9:0f:5b:74:ff:f2:61:2b:b7:af:c0:c3:83:78: 3c:f1:96:f3:09:90:3e:b2:e3:60:c5:de:f8:7f:9c: cf:f8:2f:aa:21:95:e9:60:5f:ce:31:94:15:a2:8b: 0a:79:c4:f7:5e:32:fd:26:5f:cd:97:83:a3:6b:ff: c3:9c:9f:13:b4:ae:a3:42:0a:3f:e3:5c:9b:23:cd: 13:f1:56:61:67:6e:a8:fc:f0:9f:42:75:3f:c4:bc: d1:da:e0:d2:bd:dd:4c:93:45:7a:2c:9d:b0:c7:77: b3:dc:23:91:fd:2d:ae:4e:d1:8a:ed:47:35:7a:c3: 79:cb:29:29:67:35:7a:a5:76:46:75:c5:ce:ca:c6: 19:85:87:b8:aa:39:19:d4:14:e9:30:3f:ad:a0:71: 27:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:23:70:DD:EC:B8:A6:4E:DE:84:9A:47:DB:62:80:28:07:3A:AB:B9 X509v3 Authority Key Identifier: keyid:32:4A:7E:6E:BF:67:8F:98:B8:72:28:EC:84:66:C3:69:0A:43:DD:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGJAY/Mkp-br9nj5i4cijshGbDaQpD3bY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Mkp-br9nj5i4cijshGbDaQpD3bY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGJAY/liNw3ey4pk7ehJpH22KAKAc6q7k.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 220.158.228.0/22 Signature Algorithm: sha256WithRSAEncryption 19:d6:f2:a3:90:33:99:c8:65:3f:25:ec:cc:36:22:8b:b9:59: 11:5f:69:cc:9b:0e:2b:1a:cf:7c:dd:cb:97:a1:cf:fc:ef:74: 85:81:9d:de:cd:63:b5:b0:43:fa:aa:e6:52:aa:7d:5d:ed:b0: c1:bf:75:e3:1b:4f:70:35:26:82:f3:a6:f3:f7:c2:5d:44:35: 34:0c:4b:a6:c9:be:9f:1c:06:ee:5a:5d:05:45:96:11:c1:57: ab:ab:02:2e:07:4e:13:b0:12:2e:08:5e:36:04:df:04:22:a0: d8:ea:db:90:ab:3d:30:55:6d:ff:19:e6:b7:94:eb:3e:14:19: 8b:bf:5e:f2:98:f1:40:91:1e:dd:b6:fe:14:0a:a6:fc:20:7f: e6:ef:b7:3a:77:38:05:31:6e:f7:ba:a5:bf:59:8e:18:79:92: b8:53:22:eb:4e:b8:3d:85:39:44:0c:59:98:64:d0:2b:9b:ad: 4c:e2:1d:fc:6a:93:39:f9:10:27:2c:4d:6f:74:b1:62:63:e0: 20:98:84:b4:72:4c:1b:64:2e:bf:54:5f:25:1c:8c:06:c9:71: 28:f6:16:54:20:db:34:97:fd:52:ab:53:0e:36:94:04:9c:06: d7:48:3c:90:a6:ee:01:6a:ad:8c:bd:97:3c:e2:10:f3:60:27: f0:08:33:37 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDA0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzI0 QTdFNkVCRjY3OEY5OEI4NzIyOEVDODQ2NkMzNjkwQTQzRERCNjAeFw0yNDA4MjYw NTE4MzZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDk2MjM3MERERUNCOEE2 NEVERTg0OUE0N0RCNjI4MDI4MDczQUFCQjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCviPa4VRUf2dJ1n6+cN+3TlC7WsuW3+iDNmpNIKA4QqQYxlpR7 zliIOXIqTc/IPsN8VHsZrqsAGkYAFjx3R4nZZx87VW8UqIDUtXdO3VRjP4/8wh0j I00NHkxZ58BEXkOFQL9DWbaWuN+pD1t0//JhK7evwMODeDzxlvMJkD6y42DF3vh/ nM/4L6ohlelgX84xlBWiiwp5xPdeMv0mX82Xg6Nr/8OcnxO0rqNCCj/jXJsjzRPx VmFnbqj88J9CdT/EvNHa4NK93UyTRXosnbDHd7PcI5H9La5O0YrtRzV6w3nLKSln NXqldkZ1xc7KxhmFh7iqORnUFOkwP62gcSf/AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUliNw3ey4pk7ehJpH22KAKAc6q7kwHwYDVR0jBBgwFoAUMkp+br9nj5i4cijs hGbDaQpD3bYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0pB WS9Na3AtYnI5bmo1aTRjaWpzaEdiRGFRcEQzYlkuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL01rcC1icjluajVpNGNpanNoR2JEYVFwRDNiWS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0hPTkdKQVkvbGlOdzNleTRwazdlaEpw SDIyS0FLQWM2cTdrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME Atye5DANBgkqhkiG9w0BAQsFAAOCAQEAGdbyo5AzmchlPyXszDYii7lZEV9pzJsO KxrPfN3Ll6HP/O90hYGd3s1jtbBD+qrmUqp9Xe2wwb914xtPcDUmgvOm8/fCXUQ1 NAxLpsm+nxwG7lpdBUWWEcFXq6sCLgdOE7ASLgheNgTfBCKg2OrbkKs9MFVt/xnm t5TrPhQZi79e8pjxQJEe3bb+FAqm/CB/5u+3Onc4BTFu97qlv1mOGHmSuFMi6064 PYU5RAxZmGTQK5utTOId/GqTOfkQJyxNb3SxYmPgIJiEtHJMG2Quv1RfJRyMBslx KPYWVCDbNJf9UqtTDjaUBJwG10g8kKbuAWqtjL2XPOIQ82An8AgzNw== -----END CERTIFICATE-----Generated at Fri Nov 22 06:41:33 2024 by rpki-client on console-ams.rpki-client.org