$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HUSHENGXIN/MntC8PvhClYh-Tpz6Nr8SvKW4iQ.roa File: MntC8PvhClYh-Tpz6Nr8SvKW4iQ.roa (raw, json) Hash identifier: P9RFkkXDzTuxvV1+82+zzrtDzn0LaYmKg8/drtchrxI= Subject key identifier: 32:7B:42:F0:FB:E1:0A:56:21:F9:3A:73:E8:DA:FC:4A:F2:96:E2:24 Certificate issuer: /CN=6D1243152906B6566A2B3E19CC468E46DE709D04 Certificate serial: 0102 Authority key identifier: 6D:12:43:15:29:06:B6:56:6A:2B:3E:19:CC:46:8E:46:DE:70:9D:04 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/bRJDFSkGtlZqKz4ZzEaORt5wnQQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HUSHENGXIN/MntC8PvhClYh-Tpz6Nr8SvKW4iQ.roa Signing time: Mon 23 Sep 2024 05:18:43 +0000 ROA not before: Mon 23 Sep 2024 05:18:43 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131642 IP address blocks: 103.127.216.0/23 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HUSHENGXIN/bRJDFSkGtlZqKz4ZzEaORt5wnQQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HUSHENGXIN/bRJDFSkGtlZqKz4ZzEaORt5wnQQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/bRJDFSkGtlZqKz4ZzEaORt5wnQQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 258 (0x102) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6D1243152906B6566A2B3E19CC468E46DE709D04 Validity Not Before: Sep 23 05:18:43 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=327B42F0FBE10A5621F93A73E8DAFC4AF296E224 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:74:65:6c:2b:b7:ef:de:2c:70:c1:26:14:e6: f4:ef:30:2d:f9:aa:58:a9:8a:c2:40:05:c7:fc:1f: 36:ad:f9:81:53:4d:7d:d2:29:53:05:41:ee:21:43: 65:e9:72:01:ea:36:dd:42:c3:30:cc:53:0e:fd:1f: 64:31:1b:45:02:9b:a0:25:01:e3:5e:f3:2d:95:77: 8f:7d:db:e8:c2:9c:e9:ad:03:ba:cd:d2:3c:53:33: 05:f6:e8:24:9c:27:89:2b:48:d5:c1:68:ae:ba:86: b4:ae:cb:01:d5:36:60:1f:ec:85:4e:ae:c6:fe:ec: b8:00:70:fa:0a:96:e8:0c:09:c2:6c:ed:45:9e:f1: ed:5a:30:11:bd:b3:f1:89:a7:cc:5b:e0:0f:2b:0c: 93:db:41:61:e7:21:33:60:ff:c2:34:01:ce:8d:cb: 31:d1:69:ce:75:cb:bd:44:35:fa:19:c4:d7:34:9c: 2b:c9:c8:f1:89:64:fc:16:06:fc:73:5b:03:cd:eb: 35:55:e9:02:4d:e5:74:67:0e:49:01:da:6a:47:52: b5:0b:a4:f2:b8:13:e2:63:85:22:ff:98:96:a2:4c: 75:d3:bd:29:af:37:e2:52:69:e0:71:f4:91:e5:32: 83:56:51:24:5e:fc:b9:8a:e8:26:45:53:9e:e5:b3: 1f:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:7B:42:F0:FB:E1:0A:56:21:F9:3A:73:E8:DA:FC:4A:F2:96:E2:24 X509v3 Authority Key Identifier: keyid:6D:12:43:15:29:06:B6:56:6A:2B:3E:19:CC:46:8E:46:DE:70:9D:04 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HUSHENGXIN/bRJDFSkGtlZqKz4ZzEaORt5wnQQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/bRJDFSkGtlZqKz4ZzEaORt5wnQQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HUSHENGXIN/MntC8PvhClYh-Tpz6Nr8SvKW4iQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.127.216.0/23 Signature Algorithm: sha256WithRSAEncryption 7e:4a:dd:8f:90:87:a3:2f:30:73:f5:da:d0:de:a4:f8:48:50: 61:9d:8e:79:2a:24:c6:5b:39:5c:4e:fa:34:f0:6f:aa:cb:86: e8:82:31:03:22:29:b8:62:16:e1:f1:4f:5a:c2:75:5b:29:7a: 23:ea:ce:52:0c:2b:ef:a7:b1:15:f1:fa:5a:ca:b6:7d:42:32: 54:9d:25:dd:47:6e:5b:24:f8:2a:b2:2f:de:03:d1:92:e3:31: 4c:02:b9:71:f0:d2:f2:ac:32:aa:24:97:9b:e5:09:7d:6f:72: 7e:7d:2e:30:6c:fb:0f:59:89:a7:56:fc:d9:73:3f:81:a2:d4: 33:92:bb:60:ec:79:01:ba:3b:f8:c1:98:44:0f:1d:8a:70:e5: 76:bf:a2:d5:1a:b0:8e:1d:bd:87:89:23:b1:a6:ed:99:04:56: 03:a3:cb:15:b5:93:59:c1:07:a9:54:55:01:ee:65:19:20:77: 65:95:8b:86:98:c6:62:16:af:6b:e7:c4:c1:a7:26:c7:53:3f: ee:60:b0:3b:8b:e2:0b:e6:c2:74:f0:0b:67:43:28:1f:ca:37: 4c:cb:73:4e:04:77:3b:7d:01:c6:39:7d:e7:f6:da:92:63:fe: 67:d4:db:01:f9:c7:ef:15:aa:f6:b0:ee:cc:8e:a0:d8:8a:7f: 52:db:75:2c -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICAQIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkQx MjQzMTUyOTA2QjY1NjZBMkIzRTE5Q0M0NjhFNDZERTcwOUQwNDAeFw0yNDA5MjMw NTE4NDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDMyN0I0MkYwRkJFMTBB NTYyMUY5M0E3M0U4REFGQzRBRjI5NkUyMjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6dGVsK7fv3ixwwSYU5vTvMC35qlipisJABcf8Hzat+YFTTX3S KVMFQe4hQ2XpcgHqNt1CwzDMUw79H2QxG0UCm6AlAeNe8y2Vd4992+jCnOmtA7rN 0jxTMwX26CScJ4krSNXBaK66hrSuywHVNmAf7IVOrsb+7LgAcPoKlugMCcJs7UWe 8e1aMBG9s/GJp8xb4A8rDJPbQWHnITNg/8I0Ac6NyzHRac51y71ENfoZxNc0nCvJ yPGJZPwWBvxzWwPN6zVV6QJN5XRnDkkB2mpHUrULpPK4E+JjhSL/mJaiTHXTvSmv N+JSaeBx9JHlMoNWUSRe/LmK6CZFU57lsx89AgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUMntC8PvhClYh+Tpz6Nr8SvKW4iQwHwYDVR0jBBgwFoAUbRJDFSkGtlZqKz4Z zEaORt5wnQQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSFVTSEVO R1hJTi9iUkpERlNrR3RsWnFLejRaekVhT1J0NXduUVEuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL2JSSkRGU2tHdGxacUt6NFp6RWFPUnQ1d25RUS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0hVU0hFTkdYSU4vTW50QzhQdmhD bFloLVRwejZOcjhTdktXNGlRLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAWd/2DANBgkqhkiG9w0BAQsFAAOCAQEAfkrdj5CHoy8wc/Xa0N6k+EhQ YZ2OeSokxls5XE76NPBvqsuG6IIxAyIpuGIW4fFPWsJ1Wyl6I+rOUgwr76exFfH6 Wsq2fUIyVJ0l3UduWyT4KrIv3gPRkuMxTAK5cfDS8qwyqiSXm+UJfW9yfn0uMGz7 D1mJp1b82XM/gaLUM5K7YOx5Abo7+MGYRA8dinDldr+i1Rqwjh29h4kjsabtmQRW A6PLFbWTWcEHqVRVAe5lGSB3ZZWLhpjGYhava+fEwacmx1M/7mCwO4viC+bCdPAL Z0MoH8o3TMtzTgR3O30Bxjl95/bakmP+Z9TbAfnH7xWq9rDuzI6g2Ip/Utt1LA== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:32 2024 by rpki-client on console-ams.rpki-client.org