$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HONGJAY/pPFpbrvXmhRKQBxpylZx-F43C34.roa File: pPFpbrvXmhRKQBxpylZx-F43C34.roa (raw, json) Hash identifier: 6CkJ2Rvl0X3iJzXU5gDF/7epPNt+acpJpDEK9WsBHZw= Subject key identifier: A4:F1:69:6E:BB:D7:9A:14:4A:40:1C:69:CA:56:71:F8:5E:37:0B:7E Certificate issuer: /CN=324A7E6EBF678F98B87228EC8466C3690A43DDB6 Certificate serial: 0C0C Authority key identifier: 32:4A:7E:6E:BF:67:8F:98:B8:72:28:EC:84:66:C3:69:0A:43:DD:B6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Mkp-br9nj5i4cijshGbDaQpD3bY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGJAY/pPFpbrvXmhRKQBxpylZx-F43C34.roa Signing time: Mon 26 Aug 2024 05:18:35 +0000 ROA not before: Mon 26 Aug 2024 05:18:35 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18046 IP address blocks: 103.197.172.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGJAY/Mkp-br9nj5i4cijshGbDaQpD3bY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGJAY/Mkp-br9nj5i4cijshGbDaQpD3bY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Mkp-br9nj5i4cijshGbDaQpD3bY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3084 (0xc0c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=324A7E6EBF678F98B87228EC8466C3690A43DDB6 Validity Not Before: Aug 26 05:18:35 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A4F1696EBBD79A144A401C69CA5671F85E370B7E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:7a:c5:e4:fa:ac:d5:d4:d9:77:71:0d:c5:92: 1a:4f:69:31:49:ea:fc:1c:41:4d:e9:f8:59:d4:7e: 36:a7:7b:72:7e:1e:2b:d5:cf:4f:a8:8f:5d:8b:b6: 48:d3:97:54:4c:c1:fc:09:d1:e4:a3:04:e7:96:51: 9c:92:a6:14:b1:11:97:2a:75:16:e9:a5:aa:87:e5: b7:00:83:85:94:a3:e9:e7:46:9e:c1:32:67:ba:03: 41:44:59:6a:dd:d2:b0:d7:a1:c1:5d:d7:1b:23:bb: 0f:d1:40:0e:6b:1f:9c:45:8b:ee:2c:1c:d8:13:31: 11:b2:d0:b1:ec:ba:8c:93:6d:0e:b0:d9:33:26:66: 60:76:d7:b2:af:6c:2f:3c:2b:4e:ed:63:06:dc:1a: 78:df:86:f6:29:e1:c9:7f:48:eb:bb:36:39:c3:4a: a3:44:81:81:f6:20:6f:97:6b:0e:04:df:c5:81:72: 86:53:5d:50:be:0b:b5:56:db:fb:f4:4d:f2:1e:aa: 62:d0:cc:2b:7b:94:fc:e2:0e:9e:93:13:4b:a9:34: 3e:94:52:2a:50:9a:74:a2:d0:b2:7b:08:57:b9:e6: 40:93:70:a6:c3:e8:bd:2e:fe:0a:2c:47:e9:ea:1e: fe:71:91:47:83:5f:c1:8d:b4:f4:5e:f9:84:56:16: cf:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:F1:69:6E:BB:D7:9A:14:4A:40:1C:69:CA:56:71:F8:5E:37:0B:7E X509v3 Authority Key Identifier: keyid:32:4A:7E:6E:BF:67:8F:98:B8:72:28:EC:84:66:C3:69:0A:43:DD:B6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGJAY/Mkp-br9nj5i4cijshGbDaQpD3bY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Mkp-br9nj5i4cijshGbDaQpD3bY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HONGJAY/pPFpbrvXmhRKQBxpylZx-F43C34.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.197.172.0/23 Signature Algorithm: sha256WithRSAEncryption 82:0a:b7:8b:5b:ab:4f:cd:bb:12:a0:28:1d:e6:51:41:b8:82: 31:fe:53:bb:f7:9e:69:f7:5b:05:66:49:af:a4:32:49:18:51: ed:ef:5c:05:46:8c:ac:34:6c:94:5b:46:ab:7b:dc:a3:72:6f: d7:51:ec:9a:ab:4f:b6:3e:bf:91:92:9a:f2:cd:e0:38:ee:86: 82:d9:83:95:cc:15:6a:45:d2:8d:b3:47:47:a8:8a:17:c5:1c: ac:a3:1b:54:2d:75:a1:76:55:9f:01:52:a8:eb:ac:ea:e4:51: f5:9e:87:f2:a5:db:68:7f:05:e3:b1:06:14:41:49:2b:14:2b: 89:ce:a2:d6:3b:d2:44:eb:39:8a:6a:c2:b0:bd:70:76:d3:0a: 4b:86:24:a4:5a:50:e1:6c:3e:03:56:40:a5:99:9b:ba:03:6a: fe:fc:4c:cb:28:6d:b2:4f:e3:25:c7:91:c5:8a:da:b8:30:30: 09:54:0d:ef:33:b6:3e:ba:21:8d:e4:3e:4d:04:23:85:f4:0c: da:3a:86:ad:eb:53:24:b1:76:a0:e1:7c:54:d0:eb:1c:44:ff: c6:77:76:63:4a:bc:01:13:b4:dd:9d:a4:9f:1c:a3:93:8b:05: 45:54:9f:2f:36:5a:f2:59:f8:21:9b:29:29:1d:51:b1:15:3a: 2d:2c:8f:d5 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDAwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzI0 QTdFNkVCRjY3OEY5OEI4NzIyOEVDODQ2NkMzNjkwQTQzRERCNjAeFw0yNDA4MjYw NTE4MzVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE0RjE2OTZFQkJENzlB MTQ0QTQwMUM2OUNBNTY3MUY4NUUzNzBCN0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxesXk+qzV1Nl3cQ3FkhpPaTFJ6vwcQU3p+FnUfjane3J+HivV z0+oj12LtkjTl1RMwfwJ0eSjBOeWUZySphSxEZcqdRbppaqH5bcAg4WUo+nnRp7B Mme6A0FEWWrd0rDXocFd1xsjuw/RQA5rH5xFi+4sHNgTMRGy0LHsuoyTbQ6w2TMm ZmB217KvbC88K07tYwbcGnjfhvYp4cl/SOu7NjnDSqNEgYH2IG+Xaw4E38WBcoZT XVC+C7VW2/v0TfIeqmLQzCt7lPziDp6TE0upND6UUipQmnSi0LJ7CFe55kCTcKbD 6L0u/gosR+nqHv5xkUeDX8GNtPRe+YRWFs+fAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUpPFpbrvXmhRKQBxpylZx+F43C34wHwYDVR0jBBgwFoAUMkp+br9nj5i4cijs hGbDaQpD3bYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSE9OR0pB WS9Na3AtYnI5bmo1aTRjaWpzaEdiRGFRcEQzYlkuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL01rcC1icjluajVpNGNpanNoR2JEYVFwRDNiWS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0hPTkdKQVkvcFBGcGJydlhtaFJLUUJ4 cHlsWngtRjQzQzM0LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME AWfFrDANBgkqhkiG9w0BAQsFAAOCAQEAggq3i1urT827EqAoHeZRQbiCMf5Tu/ee afdbBWZJr6QySRhR7e9cBUaMrDRslFtGq3vco3Jv11HsmqtPtj6/kZKa8s3gOO6G gtmDlcwVakXSjbNHR6iKF8UcrKMbVC11oXZVnwFSqOus6uRR9Z6H8qXbaH8F47EG FEFJKxQric6i1jvSROs5imrCsL1wdtMKS4YkpFpQ4Ww+A1ZApZmbugNq/vxMyyht sk/jJceRxYrauDAwCVQN7zO2ProhjeQ+TQQjhfQM2jqGretTJLF2oOF8VNDrHET/ xnd2Y0q8ARO03Z2knxyjk4sFRVSfLzZa8ln4IZspKR1RsRU6LSyP1Q== -----END CERTIFICATE-----Generated at Fri Nov 22 06:41:33 2024 by rpki-client on console-ams.rpki-client.org