$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/LhiKgq7HkXZWDAUpPP_JtMq1Wyw.roa File: LhiKgq7HkXZWDAUpPP_JtMq1Wyw.roa (raw, json) Hash identifier: txY9gqdwuAloWwR0WhX/ViQS918LedhUcGYYN4ptOKE= Subject key identifier: 2E:18:8A:82:AE:C7:91:76:56:0C:05:29:3C:FF:C9:B4:CA:B5:5B:2C Certificate issuer: /CN=ADFE6E56DAF8492EC7DE88B3A906B3139B55B864 Certificate serial: 06DD Authority key identifier: AD:FE:6E:56:DA:F8:49:2E:C7:DE:88:B3:A9:06:B3:13:9B:55:B8:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/rf5uVtr4SS7H3oizqQazE5tVuGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/LhiKgq7HkXZWDAUpPP_JtMq1Wyw.roa Signing time: Mon 26 Aug 2024 05:20:58 +0000 ROA not before: Mon 26 Aug 2024 05:20:58 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17415 IP address blocks: 103.152.202.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/rf5uVtr4SS7H3oizqQazE5tVuGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/rf5uVtr4SS7H3oizqQazE5tVuGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/rf5uVtr4SS7H3oizqQazE5tVuGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1757 (0x6dd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ADFE6E56DAF8492EC7DE88B3A906B3139B55B864 Validity Not Before: Aug 26 05:20:58 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2E188A82AEC79176560C05293CFFC9B4CAB55B2C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:54:57:e6:64:89:35:eb:d4:86:6e:67:b1:de: 11:12:71:8e:47:c5:13:88:cf:bc:2f:b2:22:3d:24: ea:65:56:03:ab:3f:9b:19:0a:38:52:33:b9:37:55: 6d:38:8d:a4:b4:af:f2:a1:cf:37:aa:69:1c:02:df: 4b:84:a1:81:f9:fc:d7:ed:62:56:ca:29:9a:32:7e: b9:32:70:b5:29:52:7d:96:2a:dc:1e:74:fb:e4:6f: 1d:2b:98:a0:2e:87:fc:3d:7a:f4:35:69:64:81:2d: d2:cd:c0:0a:d3:a7:d9:01:90:b3:26:dc:c4:a6:ea: 08:d4:74:07:53:f2:64:dd:3b:69:01:24:58:3f:19: 02:c4:00:37:42:62:da:29:7d:c4:94:59:ab:fe:74: 25:32:06:77:37:fa:91:4d:63:52:ba:d5:ca:f4:28: a9:a9:d6:0d:15:b5:25:89:6c:41:f9:eb:e0:f1:ad: df:b2:9f:c7:31:35:df:92:3f:ea:ab:34:b3:5c:ec: 5b:d0:72:c8:85:ec:80:47:f6:c9:29:2c:16:3b:4f: 61:cd:9c:6c:b2:62:2f:ae:aa:3e:89:83:c0:23:7f: 58:fe:cf:62:a0:83:6c:0d:49:38:34:94:fa:90:c2: e1:de:b0:3a:c2:d1:87:46:71:2d:a5:a3:c3:6d:c5: 4c:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:18:8A:82:AE:C7:91:76:56:0C:05:29:3C:FF:C9:B4:CA:B5:5B:2C X509v3 Authority Key Identifier: keyid:AD:FE:6E:56:DA:F8:49:2E:C7:DE:88:B3:A9:06:B3:13:9B:55:B8:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/rf5uVtr4SS7H3oizqQazE5tVuGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/rf5uVtr4SS7H3oizqQazE5tVuGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGYITEA/LhiKgq7HkXZWDAUpPP_JtMq1Wyw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.152.202.0/24 Signature Algorithm: sha256WithRSAEncryption 58:64:fd:21:2b:4d:40:f0:b2:5b:a6:d6:f7:a0:b8:06:f2:5d: ed:90:15:e9:34:bc:3b:58:9d:10:0c:a6:b8:cd:70:eb:58:9c: 86:b1:26:b4:ab:7a:59:86:18:bc:e4:da:f9:7f:92:69:36:a5: 6f:05:fd:bd:ad:ef:b0:c9:e3:42:23:c6:00:1d:91:ff:ad:1a: 9f:2f:19:e4:ce:58:b6:45:fa:ca:df:58:51:35:f5:00:f0:5a: 15:6e:94:9e:36:50:49:40:b6:c4:37:c7:ea:b8:f0:b9:15:37: 0b:53:1b:40:09:f7:e8:ab:af:f7:33:cb:b2:b7:14:8c:34:56: ba:d8:90:bc:44:af:c1:ab:97:b4:ae:b4:39:94:1c:1d:cc:a9: 74:8f:59:9e:9b:ce:7f:7a:c5:c6:f0:97:21:28:32:8d:10:6f: b4:92:4a:1f:8f:d0:9a:f8:b8:52:29:f6:7c:ec:07:50:d6:e9: 33:d5:a2:1f:c2:e4:f4:0f:7d:2e:72:c9:49:ae:87:c7:78:d1: 15:68:fe:e6:35:f8:43:1e:b3:48:8a:a5:fe:6a:6f:e4:66:db: f1:0c:53:58:df:57:d2:99:5c:65:59:56:52:28:c8:56:f3:fc: 99:66:12:44:10:f9:fa:0a:1e:d4:7b:30:a3:34:df:45:10:17: c8:86:1b:aa -----BEGIN CERTIFICATE----- MIIE2DCCA8CgAwIBAgICBt0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQURG RTZFNTZEQUY4NDkyRUM3REU4OEIzQTkwNkIzMTM5QjU1Qjg2NDAeFw0yNDA4MjYw NTIwNThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDJFMTg4QTgyQUVDNzkx NzY1NjBDMDUyOTNDRkZDOUI0Q0FCNTVCMkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCVVFfmZIk169SGbmex3hEScY5HxROIz7wvsiI9JOplVgOrP5sZ CjhSM7k3VW04jaS0r/KhzzeqaRwC30uEoYH5/NftYlbKKZoyfrkycLUpUn2WKtwe dPvkbx0rmKAuh/w9evQ1aWSBLdLNwArTp9kBkLMm3MSm6gjUdAdT8mTdO2kBJFg/ GQLEADdCYtopfcSUWav+dCUyBnc3+pFNY1K61cr0KKmp1g0VtSWJbEH56+Dxrd+y n8cxNd+SP+qrNLNc7FvQcsiF7IBH9skpLBY7T2HNnGyyYi+uqj6Jg8Ajf1j+z2Kg g2wNSTg0lPqQwuHesDrC0YdGcS2lo8NtxUwlAgMBAAGjggH0MIIB8DAdBgNVHQ4E FgQULhiKgq7HkXZWDAUpPP/JtMq1WywwHwYDVR0jBBgwFoAUrf5uVtr4SS7H3oiz qQazE5tVuGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUlOR1lJ VEVBL3JmNXVWdHI0U1M3SDNvaXpxUWF6RTV0VnVHUS5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvcmY1dVZ0cjRTUzdIM29penFRYXpFNXRWdUdRLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUlOR1lJVEVBL0xoaUtncTdIa1ha V0RBVXBQUF9KdE1xMVd5dy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABnmMowDQYJKoZIhvcNAQELBQADggEBAFhk/SErTUDwslum1veguAbyXe2Q Fek0vDtYnRAMprjNcOtYnIaxJrSrelmGGLzk2vl/kmk2pW8F/b2t77DJ40IjxgAd kf+tGp8vGeTOWLZF+srfWFE19QDwWhVulJ42UElAtsQ3x+q48LkVNwtTG0AJ9+ir r/czy7K3FIw0VrrYkLxEr8Grl7SutDmUHB3MqXSPWZ6bzn96xcbwlyEoMo0Qb7SS Sh+P0Jr4uFIp9nzsB1DW6TPVoh/C5PQPfS5yyUmuh8d40RVo/uY1+EMes0iKpf5q b+Rm2/EMU1jfV9KZXGVZVlIoyFbz/JlmEkQQ+foKHtR7MKM030UQF8iGG6o= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:09 2024 by rpki-client on console-ams.rpki-client.org