$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/H_hG3YnC4ZR5pYMDOS1JK3EWj0Q.roa File: H_hG3YnC4ZR5pYMDOS1JK3EWj0Q.roa (raw, json) Hash identifier: v9Wc86iqvE6dkP90Pxb18YOGRBafH2h/h9opi+V5y28= Subject key identifier: 1F:F8:46:DD:89:C2:E1:94:79:A5:83:03:39:2D:49:2B:71:16:8F:44 Certificate issuer: /CN=0DF94AB0728C7A38C50F0D61554D49D651F33AA2 Certificate serial: 0C5C Authority key identifier: 0D:F9:4A:B0:72:8C:7A:38:C5:0F:0D:61:55:4D:49:D6:51:F3:3A:A2 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DflKsHKMejjFDw1hVU1J1lHzOqI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/H_hG3YnC4ZR5pYMDOS1JK3EWj0Q.roa Signing time: Mon 26 Aug 2024 05:23:57 +0000 ROA not before: Mon 26 Aug 2024 05:23:57 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131593 IP address blocks: 103.42.148.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/DflKsHKMejjFDw1hVU1J1lHzOqI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3164 (0xc5c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0DF94AB0728C7A38C50F0D61554D49D651F33AA2 Validity Not Before: Aug 26 05:23:57 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1FF846DD89C2E19479A58303392D492B71168F44 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:ea:fb:1e:68:57:c4:6b:66:9a:13:6b:11:8a: 9f:09:22:1b:a4:40:d0:54:09:00:86:f0:7c:10:2c: 48:96:85:5b:09:ec:11:9d:5e:17:b3:72:a5:36:b4: cf:d3:87:52:a1:09:e8:5e:4a:ed:fa:8a:9d:9e:16: 9d:1a:50:a7:e4:df:8b:0f:0e:b7:16:9b:b2:2d:5d: 36:1a:8e:eb:b5:af:e2:8a:d7:6a:c9:ab:f3:42:e0: 44:ca:73:4a:06:16:13:c3:62:9e:4e:b6:c4:c2:9e: a2:f8:3b:24:38:60:07:81:ac:b1:d3:e8:f4:0a:94: b3:ac:3f:de:20:fc:fc:77:e7:5b:29:fe:8e:f1:e9: 36:9f:e2:30:87:52:d1:a6:a9:75:ef:0d:f9:e5:2c: 14:6a:08:21:a2:e2:a0:df:c7:9f:36:a4:0b:f7:56: 2e:91:30:5d:85:65:07:5b:c5:63:20:f3:40:8d:57: 9b:7e:d4:2f:d0:95:3f:7a:6f:0d:d5:98:23:9e:3f: 5e:51:45:9c:2b:45:1d:b1:3c:fc:ec:91:53:e9:53: c0:cc:35:3e:08:4a:a1:96:b9:e7:82:41:96:95:f6: 39:91:a1:4d:ee:0b:e1:3a:d6:d9:6b:7f:88:d4:6f: 81:29:e6:8e:2c:80:2e:4c:3f:90:aa:cd:d7:1c:44: ad:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:F8:46:DD:89:C2:E1:94:79:A5:83:03:39:2D:49:2B:71:16:8F:44 X509v3 Authority Key Identifier: keyid:0D:F9:4A:B0:72:8C:7A:38:C5:0F:0D:61:55:4D:49:D6:51:F3:3A:A2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/DflKsHKMejjFDw1hVU1J1lHzOqI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DflKsHKMejjFDw1hVU1J1lHzOqI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PEGATRON/H_hG3YnC4ZR5pYMDOS1JK3EWj0Q.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.42.148.0/22 Signature Algorithm: sha256WithRSAEncryption 57:8f:ac:8f:92:e2:6b:b1:80:87:17:82:70:2e:07:c2:ff:11: c3:b3:d4:a8:c5:a4:ee:e3:b1:b4:2a:b8:de:ea:1a:57:64:01: 50:7f:85:d7:13:f0:f2:46:42:83:02:4a:80:f6:45:30:4c:77: c2:9f:0a:fe:90:5a:33:7d:ff:ec:de:c0:21:a1:03:23:64:4a: 6d:60:11:08:9a:7d:96:cb:e2:96:0a:94:b9:19:33:f1:8d:43: 26:38:92:82:7b:ca:bc:5f:41:96:98:1f:3e:b0:09:f7:5d:01: 73:b4:2a:b3:43:0d:d3:8c:47:18:4a:19:14:97:bf:23:14:5b: 5e:83:74:4a:52:1c:39:6b:59:2f:41:0a:5b:db:4a:4f:13:0d: 78:35:4c:89:c9:ab:32:26:e8:b2:39:bc:71:14:34:4d:9a:bb: 50:b5:ed:40:0e:c0:c6:23:09:be:4e:8f:aa:d6:06:37:0e:92: b6:2e:c5:e7:7e:57:a2:05:99:a5:37:29:fd:2e:6f:39:1a:db: 16:f2:06:e2:76:70:32:d7:2a:82:af:5b:2a:ac:be:02:04:b9: 67:fb:2d:82:89:3a:d2:a2:c4:9e:b8:21:b9:4b:dd:e5:0e:ec: ea:49:37:0f:75:33:3e:8d:82:5a:5e:34:78:62:3b:38:87:fe: bb:2d:c8:34 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICDFwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMERG OTRBQjA3MjhDN0EzOEM1MEYwRDYxNTU0RDQ5RDY1MUYzM0FBMjAeFw0yNDA4MjYw NTIzNTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDFGRjg0NkREODlDMkUx OTQ3OUE1ODMwMzM5MkQ0OTJCNzExNjhGNDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCq6vseaFfEa2aaE2sRip8JIhukQNBUCQCG8HwQLEiWhVsJ7BGd XhezcqU2tM/Th1KhCeheSu36ip2eFp0aUKfk34sPDrcWm7ItXTYajuu1r+KK12rJ q/NC4ETKc0oGFhPDYp5OtsTCnqL4OyQ4YAeBrLHT6PQKlLOsP94g/Px351sp/o7x 6Taf4jCHUtGmqXXvDfnlLBRqCCGi4qDfx582pAv3Vi6RMF2FZQdbxWMg80CNV5t+ 1C/QlT96bw3VmCOeP15RRZwrRR2xPPzskVPpU8DMNT4ISqGWueeCQZaV9jmRoU3u C+E61tlrf4jUb4Ep5o4sgC5MP5CqzdccRK2dAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUH/hG3YnC4ZR5pYMDOS1JK3EWj0QwHwYDVR0jBBgwFoAUDflKsHKMejjFDw1h VU1J1lHzOqIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUEVHQVRS T04vRGZsS3NIS01lampGRHcxaFZVMUoxbEh6T3FJLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9EZmxLc0hLTWVqakZEdzFoVlUxSjFsSHpPcUkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9QRUdBVFJPTi9IX2hHM1luQzRaUjVw WU1ET1MxSkszRVdqMFEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCZyqUMA0GCSqGSIb3DQEBCwUAA4IBAQBXj6yPkuJrsYCHF4JwLgfC/xHDs9So xaTu47G0Krje6hpXZAFQf4XXE/DyRkKDAkqA9kUwTHfCnwr+kFozff/s3sAhoQMj ZEptYBEImn2Wy+KWCpS5GTPxjUMmOJKCe8q8X0GWmB8+sAn3XQFztCqzQw3TjEcY ShkUl78jFFteg3RKUhw5a1kvQQpb20pPEw14NUyJyasyJuiyObxxFDRNmrtQte1A DsDGIwm+To+q1gY3DpK2LsXnfleiBZmlNyn9Lm85GtsW8gbidnAy1yqCr1sqrL4C BLln+y2CiTrSosSeuCG5S93lDuzqSTcPdTM+jYJaXjR4Yjs4h/67Lcg0 -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:12 2024 by rpki-client on console-ams.rpki-client.org