$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MCK/HQjr_-T81Lf45gK4HrC_eREBHNk.roa File: HQjr_-T81Lf45gK4HrC_eREBHNk.roa (raw, json) Hash identifier: TB6+SEr9OxkSz6yFJLPrBvGCHEoXIrrhMB1tXkgN0E8= Subject key identifier: 1D:08:EB:FF:E4:FC:D4:B7:F8:E6:02:B8:1E:B0:BF:79:11:01:1C:D9 Certificate issuer: /CN=83CF8C19843BACDE6445D4BD4A1E66441B23F3E3 Certificate serial: 0821 Authority key identifier: 83:CF:8C:19:84:3B:AC:DE:64:45:D4:BD:4A:1E:66:44:1B:23:F3:E3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/g8-MGYQ7rN5kRdS9Sh5mRBsj8-M.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MCK/HQjr_-T81Lf45gK4HrC_eREBHNk.roa Signing time: Mon 26 Aug 2024 05:20:40 +0000 ROA not before: Mon 26 Aug 2024 05:20:40 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131618 IP address blocks: 103.148.68.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MCK/g8-MGYQ7rN5kRdS9Sh5mRBsj8-M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MCK/g8-MGYQ7rN5kRdS9Sh5mRBsj8-M.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/g8-MGYQ7rN5kRdS9Sh5mRBsj8-M.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 11:24:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2081 (0x821) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83CF8C19843BACDE6445D4BD4A1E66441B23F3E3 Validity Not Before: Aug 26 05:20:40 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1D08EBFFE4FCD4B7F8E602B81EB0BF7911011CD9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:38:d1:07:6f:e1:da:91:85:78:e2:7b:26:8e: 0e:23:04:ad:74:3e:36:4d:bc:72:5e:61:a6:3d:55: 65:56:67:b9:af:ec:b5:cc:f6:21:90:72:4d:43:d8: 90:53:ea:ef:17:6e:26:b5:a3:d8:d9:83:c3:f3:82: 2b:93:20:02:49:80:1b:45:89:5e:43:7a:cc:d9:3e: 02:31:18:0b:b9:9e:b2:9b:72:4e:c3:5a:de:67:88: fd:16:ef:a2:55:f5:ec:91:e5:4a:f2:a8:5b:1e:62: 84:73:0e:41:2c:55:c7:85:18:68:bc:0b:0c:6a:1b: fd:b4:6b:0c:80:5a:2d:ee:e4:71:de:1e:f4:7f:54: 0b:a3:5e:b3:f5:9d:df:9c:e8:5c:2b:6a:61:30:8b: 39:59:eb:66:fb:1c:c9:93:78:1e:2f:69:87:4d:fd: 63:10:7a:4b:9d:56:30:93:1c:2c:5f:eb:1c:70:6b: e4:2d:e7:cf:66:b0:55:a3:89:14:ef:96:a8:62:18: b1:18:da:00:8c:db:45:7a:e8:ff:5c:fa:df:db:38: 84:38:f3:a9:73:7e:dc:ae:71:6e:93:97:cb:d9:ae: 6a:e1:45:35:51:9d:2f:29:a9:78:a4:98:68:bb:23: a4:35:a6:7c:f3:7a:bb:71:6b:a5:5c:aa:6f:0c:dc: 08:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:08:EB:FF:E4:FC:D4:B7:F8:E6:02:B8:1E:B0:BF:79:11:01:1C:D9 X509v3 Authority Key Identifier: keyid:83:CF:8C:19:84:3B:AC:DE:64:45:D4:BD:4A:1E:66:44:1B:23:F3:E3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MCK/g8-MGYQ7rN5kRdS9Sh5mRBsj8-M.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/g8-MGYQ7rN5kRdS9Sh5mRBsj8-M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MCK/HQjr_-T81Lf45gK4HrC_eREBHNk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.148.68.0/23 Signature Algorithm: sha256WithRSAEncryption 95:9b:16:dc:5c:d4:68:63:92:0d:b0:97:bb:33:31:4b:42:00: 48:1c:b6:6d:8f:ff:27:0a:77:e0:06:71:fb:91:c5:5b:5e:28: c5:ff:d3:14:43:cf:0b:bd:32:5e:5b:fb:89:af:56:15:01:87: cd:5e:2f:8a:85:be:21:0d:27:51:8a:9a:7c:d0:2a:fc:24:9b: 86:8e:74:52:98:0a:9e:15:8b:57:8f:3e:f4:1d:20:ac:9b:f4: 26:0c:69:30:2d:b6:e8:2f:46:a5:0e:03:20:ea:06:80:7b:3a: 9c:d7:c7:ca:53:26:97:0c:fa:a6:83:93:2c:6f:f1:2d:69:df: 42:7c:cf:00:e4:a1:c1:cc:56:dd:9f:69:d2:10:94:bf:7d:61: e3:b6:5e:4a:1c:fc:c3:4d:27:0c:02:cb:37:fb:67:9a:6c:5c: 2e:5e:4f:3d:d7:79:94:f4:3d:c3:b5:d1:47:73:d2:03:b4:2a: fe:20:fe:c0:21:ff:3f:af:46:83:05:37:bc:eb:87:29:dd:21: ff:74:99:6d:c1:a1:62:3f:d6:cb:f0:fa:27:f2:f7:fb:29:7b: 9a:13:a4:2e:72:c3:d4:55:d2:8d:fb:fb:5c:96:fb:ed:e6:00: 5e:46:b1:7d:21:d8:3f:7d:35:63:10:75:c0:e3:f4:f5:d7:5a: 42:c2:df:df -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICCCEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODND RjhDMTk4NDNCQUNERTY0NDVENEJENEExRTY2NDQxQjIzRjNFMzAeFw0yNDA4MjYw NTIwNDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDFEMDhFQkZGRTRGQ0Q0 QjdGOEU2MDJCODFFQjBCRjc5MTEwMTFDRDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpONEHb+HakYV44nsmjg4jBK10PjZNvHJeYaY9VWVWZ7mv7LXM 9iGQck1D2JBT6u8Xbia1o9jZg8PzgiuTIAJJgBtFiV5DeszZPgIxGAu5nrKbck7D Wt5niP0W76JV9eyR5UryqFseYoRzDkEsVceFGGi8CwxqG/20awyAWi3u5HHeHvR/ VAujXrP1nd+c6FwramEwizlZ62b7HMmTeB4vaYdN/WMQekudVjCTHCxf6xxwa+Qt 589msFWjiRTvlqhiGLEY2gCM20V66P9c+t/bOIQ486lzftyucW6Tl8vZrmrhRTVR nS8pqXikmGi7I6Q1pnzzertxa6Vcqm8M3AiDAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUHQjr/+T81Lf45gK4HrC/eREBHNkwHwYDVR0jBBgwFoAUg8+MGYQ7rN5kRdS9 Sh5mRBsj8+MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUNLL2c4 LU1HWVE3ck41a1JkUzlTaDVtUkJzajgtTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev ZzgtTUdZUTdyTjVrUmRTOVNoNW1SQnNqOC1NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvTUNLL0hRanJfLVQ4MUxmNDVnSzRIckNfZVJF QkhOay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFnlEQwDQYJ KoZIhvcNAQELBQADggEBAJWbFtxc1Ghjkg2wl7szMUtCAEgctm2P/ycKd+AGcfuR xVteKMX/0xRDzwu9Ml5b+4mvVhUBh81eL4qFviENJ1GKmnzQKvwkm4aOdFKYCp4V i1ePPvQdIKyb9CYMaTAttugvRqUOAyDqBoB7OpzXx8pTJpcM+qaDkyxv8S1p30J8 zwDkocHMVt2fadIQlL99YeO2Xkoc/MNNJwwCyzf7Z5psXC5eTz3XeZT0PcO10Udz 0gO0Kv4g/sAh/z+vRoMFN7zrhyndIf90mW3BoWI/1svw+ify9/spe5oTpC5yw9RV 0o37+1yW++3mAF5GsX0h2D99NWMQdcDj9PXXWkLC398= -----END CERTIFICATE-----Generated at Mon Nov 25 06:08:01 2024 by rpki-client on console-ams.rpki-client.org