$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HUSHENGXIN/sfmLB7_bc8spMtvdKHVHUryijc0.roa File: sfmLB7_bc8spMtvdKHVHUryijc0.roa (raw, json) Hash identifier: e0JowVOLd6LfT7V3lfWtqKv3Z69Wp0UDGDYIwLm9WXQ= Subject key identifier: B1:F9:8B:07:BF:DB:73:CB:29:32:DB:DD:28:75:47:52:BC:A2:8D:CD Certificate issuer: /CN=6D1243152906B6566A2B3E19CC468E46DE709D04 Certificate serial: F0 Authority key identifier: 6D:12:43:15:29:06:B6:56:6A:2B:3E:19:CC:46:8E:46:DE:70:9D:04 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/bRJDFSkGtlZqKz4ZzEaORt5wnQQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HUSHENGXIN/sfmLB7_bc8spMtvdKHVHUryijc0.roa Signing time: Wed 04 Sep 2024 09:16:39 +0000 ROA not before: Wed 04 Sep 2024 09:16:39 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131642 IP address blocks: 103.127.216.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HUSHENGXIN/bRJDFSkGtlZqKz4ZzEaORt5wnQQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HUSHENGXIN/bRJDFSkGtlZqKz4ZzEaORt5wnQQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/bRJDFSkGtlZqKz4ZzEaORt5wnQQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Sep 2024 11:19:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 240 (0xf0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6D1243152906B6566A2B3E19CC468E46DE709D04 Validity Not Before: Sep 4 09:16:39 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B1F98B07BFDB73CB2932DBDD28754752BCA28DCD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:67:9e:5b:b2:5c:92:fd:4b:5c:f2:98:99:89: 74:dc:2e:0d:15:89:43:76:9d:d1:f6:c5:17:d8:91: c4:38:a4:23:df:4a:3b:75:f4:5a:aa:13:33:aa:6e: c3:55:af:74:2e:cd:06:1c:7a:6f:0a:aa:e8:20:73: b5:d7:81:3c:41:e6:10:70:65:53:0d:72:75:04:87: f5:16:22:82:40:ad:88:37:dd:1d:51:98:c5:bb:39: 81:5f:95:3d:e9:42:d0:7e:67:3c:99:53:8d:c6:28: f4:b1:bd:53:13:12:0e:24:4e:6b:95:51:c5:82:7f: 4b:ff:d6:46:75:b1:e3:c5:eb:8d:9c:02:ec:2a:41: 8b:51:ff:c8:29:d3:06:0d:91:b3:17:e0:5f:a3:5e: fc:3f:34:95:c0:92:25:76:bc:62:fb:33:ee:b1:a8: a7:c9:80:d1:de:1e:b6:1d:79:db:22:ef:71:46:5c: 22:74:4e:09:12:2b:9a:f1:1f:fc:2f:06:42:58:dc: 9f:dc:60:b0:65:c7:09:8e:d1:02:30:f5:8e:d1:0e: 95:d8:be:da:08:48:87:c1:56:53:b5:71:a9:f9:a2: 82:d1:10:b4:6c:38:32:34:41:02:5b:4f:73:01:33: 8d:b6:11:d1:35:8d:9b:0a:06:0b:e4:17:85:81:b8: e4:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:F9:8B:07:BF:DB:73:CB:29:32:DB:DD:28:75:47:52:BC:A2:8D:CD X509v3 Authority Key Identifier: keyid:6D:12:43:15:29:06:B6:56:6A:2B:3E:19:CC:46:8E:46:DE:70:9D:04 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HUSHENGXIN/bRJDFSkGtlZqKz4ZzEaORt5wnQQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/bRJDFSkGtlZqKz4ZzEaORt5wnQQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HUSHENGXIN/sfmLB7_bc8spMtvdKHVHUryijc0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.127.216.0/23 Signature Algorithm: sha256WithRSAEncryption 10:25:ec:ea:55:d8:63:11:2a:fc:8a:3a:e5:eb:a3:e3:78:87: 08:82:f9:8a:42:66:66:81:76:b6:35:9a:fc:73:14:18:4a:55: f4:4c:3f:2f:bf:c2:c0:20:38:f3:f5:7c:af:cc:b0:a9:e0:15: 70:a8:cb:fe:96:c8:3d:10:e1:2c:76:a8:5c:e3:17:ec:f3:b5: e3:47:19:a3:3d:ef:84:8b:44:e9:c7:8a:f5:f5:f2:93:e3:bc: f6:a5:77:b0:63:a3:51:ec:32:46:d4:97:8f:1b:18:44:5e:56: dc:1d:9a:11:74:7c:67:ca:1b:41:f5:64:9c:9f:94:d6:d9:af: 4b:4d:dc:c1:06:55:47:fa:e6:ff:a9:c6:74:dd:50:f7:62:81: a6:a1:02:a2:13:9b:e6:15:36:47:a8:7d:d9:59:35:cf:e7:2d: dd:1f:70:78:62:0b:5a:b0:f0:60:8d:9f:af:d7:ee:08:0a:d5: 1f:2e:73:94:28:18:d1:68:3a:07:fa:8b:67:32:d9:bf:0a:8a: ff:27:71:07:5e:0f:97:e7:0c:78:c7:82:c7:32:01:e1:c0:8b: f1:03:7f:ab:95:a6:97:80:53:b9:11:c7:4c:8c:8e:3e:b6:a6: 0c:36:f4:ef:a2:92:2c:b9:28:1f:cb:7c:13:4c:3c:6f:04:1c: a0:92:ba:8f -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICAPAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkQx MjQzMTUyOTA2QjY1NjZBMkIzRTE5Q0M0NjhFNDZERTcwOUQwNDAeFw0yNDA5MDQw OTE2MzlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEIxRjk4QjA3QkZEQjcz Q0IyOTMyREJERDI4NzU0NzUyQkNBMjhEQ0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOZ55bslyS/Utc8piZiXTcLg0ViUN2ndH2xRfYkcQ4pCPfSjt1 9FqqEzOqbsNVr3QuzQYcem8Kquggc7XXgTxB5hBwZVMNcnUEh/UWIoJArYg33R1R mMW7OYFflT3pQtB+ZzyZU43GKPSxvVMTEg4kTmuVUcWCf0v/1kZ1sePF642cAuwq QYtR/8gp0wYNkbMX4F+jXvw/NJXAkiV2vGL7M+6xqKfJgNHeHrYdedsi73FGXCJ0 TgkSK5rxH/wvBkJY3J/cYLBlxwmO0QIw9Y7RDpXYvtoISIfBVlO1can5ooLRELRs ODI0QQJbT3MBM422EdE1jZsKBgvkF4WBuOTlAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUsfmLB7/bc8spMtvdKHVHUryijc0wHwYDVR0jBBgwFoAUbRJDFSkGtlZqKz4Z zEaORt5wnQQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSFVTSEVO R1hJTi9iUkpERlNrR3RsWnFLejRaekVhT1J0NXduUVEuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL2JSSkRGU2tHdGxacUt6NFp6RWFPUnQ1d25RUS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0hVU0hFTkdYSU4vc2ZtTEI3X2Jj OHNwTXR2ZEtIVkhVcnlpamMwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAWd/2DANBgkqhkiG9w0BAQsFAAOCAQEAECXs6lXYYxEq/Io65euj43iH CIL5ikJmZoF2tjWa/HMUGEpV9Ew/L7/CwCA48/V8r8ywqeAVcKjL/pbIPRDhLHao XOMX7PO140cZoz3vhItE6ceK9fXyk+O89qV3sGOjUewyRtSXjxsYRF5W3B2aEXR8 Z8obQfVknJ+U1tmvS03cwQZVR/rm/6nGdN1Q92KBpqECohOb5hU2R6h92Vk1z+ct 3R9weGILWrDwYI2fr9fuCArVHy5zlCgY0Wg6B/qLZzLZvwqK/ydxB14Pl+cMeMeC xzIB4cCL8QN/q5Wml4BTuRHHTIyOPramDDb076KSLLkoH8t8E0w8bwQcoJK6jw== -----END CERTIFICATE-----Generated at Fri Sep 20 09:06:42 2024 by rpki-client on console-ams.rpki-client.org