$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/-GLD1p90OOE5ogfGYDgDrMAuvCo.roa File: -GLD1p90OOE5ogfGYDgDrMAuvCo.roa (raw, json) Hash identifier: bD/g0EtmRuxJlk/zLpvOLGLYmPeCtu9yR6wpGmzqJfI= Subject key identifier: F8:62:C3:D6:9F:74:38:E1:39:A2:07:C6:60:38:03:AC:C0:2E:BC:2A Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 0F6C Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/-GLD1p90OOE5ogfGYDgDrMAuvCo.roa Signing time: Fri 01 Sep 2023 08:29:07 +0000 ROA not before: Fri 01 Sep 2023 08:29:07 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18419 IP address blocks: 118.150.224.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 08:21:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3948 (0xf6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Sep 1 08:29:07 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=F862C3D69F7438E139A207C6603803ACC02EBC2A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:eb:83:30:d5:ca:71:16:d6:a5:4b:37:aa:ac: 39:8a:5b:d4:1d:c9:d7:cc:8f:35:de:b4:b9:a4:4b: f2:56:8a:5b:1d:63:36:10:a6:e1:29:f7:37:85:5d: b5:bf:c6:8d:23:73:10:75:9d:6b:3a:13:5a:ca:30: 28:20:e4:7a:86:41:f1:89:ac:fb:a3:b5:b6:2c:f3: e8:2f:98:19:02:c1:53:70:73:cc:45:50:c3:44:31: c9:a2:9b:1c:e7:54:e3:cd:81:cb:85:4c:a2:d8:a5: d0:17:c4:77:a3:15:a2:a8:cd:89:41:5e:53:9e:27: fe:72:ab:e8:55:83:3e:b5:3d:79:3d:72:2b:97:2f: a5:d9:e1:23:ec:8f:ca:e9:e2:fd:98:09:c9:d2:ca: 19:e7:b9:05:d3:18:6d:f3:d6:f4:b7:4a:a6:75:20: 6c:88:76:77:11:a7:41:69:51:ba:cf:32:64:20:cc: bb:90:54:92:a8:3c:0a:61:6d:64:57:16:fc:8d:b3: dd:63:b9:08:36:0c:8f:c6:39:3e:08:a5:10:ce:c5: 3c:67:d3:c5:a1:2e:f4:2b:bb:e3:67:0b:dd:b8:db: 6e:ef:9d:2f:d8:c2:da:f8:59:ee:2a:f8:02:ab:69: 78:26:4a:6b:7f:ff:8b:d4:ac:1e:11:11:32:e0:bb: 8f:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:62:C3:D6:9F:74:38:E1:39:A2:07:C6:60:38:03:AC:C0:2E:BC:2A X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/-GLD1p90OOE5ogfGYDgDrMAuvCo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.150.224.0/21 Signature Algorithm: sha256WithRSAEncryption b7:60:fe:09:e8:48:51:d1:ee:da:e5:df:fb:b0:7a:68:e7:fc: d3:ff:44:4b:33:39:0c:f1:48:6b:cc:9c:8b:84:91:8d:55:d4: 20:cd:38:54:13:db:74:77:05:01:99:12:ae:0f:2d:22:b9:8f: a2:91:ea:24:6a:0b:0b:30:d2:77:4f:3f:a4:e7:5e:db:f8:19: 16:dc:65:78:11:4d:56:f0:e8:68:94:97:61:ef:17:b3:b6:02: 41:65:53:32:49:1e:ab:39:41:e8:2e:52:5c:71:6a:1b:44:8f: 72:24:ea:65:80:5a:20:ff:cf:fc:6f:f0:a9:84:bd:2c:70:ec: 56:d6:66:2a:70:1e:76:f8:40:94:40:d0:4a:ec:f6:95:82:e4: 1b:6b:88:9f:5e:e4:9a:c5:19:f9:e5:f4:86:94:e7:86:d0:1b: 0a:5b:bd:23:1c:20:81:91:00:ca:49:5e:64:d1:f9:61:12:a7: 15:39:a4:cb:57:db:84:ef:61:5e:af:f4:8a:b2:fa:49:4e:da: d9:27:3b:ee:2f:67:00:43:44:c3:c0:a9:2f:21:1b:23:ce:3f: 0a:5b:e0:87:68:89:ad:89:6b:d0:9e:cc:3e:90:f1:3e:e5:fd: 86:00:a9:71:13:cb:15:4b:27:db:59:32:4d:71:2d:2e:65:6b: 8a:03:91:00 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICD2wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMzA5MDEw ODI5MDdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEY4NjJDM0Q2OUY3NDM4 RTEzOUEyMDdDNjYwMzgwM0FDQzAyRUJDMkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDN64Mw1cpxFtalSzeqrDmKW9QdydfMjzXetLmkS/JWilsdYzYQ puEp9zeFXbW/xo0jcxB1nWs6E1rKMCgg5HqGQfGJrPujtbYs8+gvmBkCwVNwc8xF UMNEMcmimxznVOPNgcuFTKLYpdAXxHejFaKozYlBXlOeJ/5yq+hVgz61PXk9ciuX L6XZ4SPsj8rp4v2YCcnSyhnnuQXTGG3z1vS3SqZ1IGyIdncRp0FpUbrPMmQgzLuQ VJKoPAphbWRXFvyNs91juQg2DI/GOT4IpRDOxTxn08WhLvQru+NnC924227vnS/Y wtr4We4q+AKraXgmSmt//4vUrB4RETLgu4/VAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU+GLD1p90OOE5ogfGYDgDrMAuvCowHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy8tR0xEMXA5ME9PRTVv Z2ZHWURnRHJNQXV2Q28ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQDdpbgMA0GCSqGSIb3DQEBCwUAA4IBAQC3YP4J6EhR0e7a5d/7sHpo5/zT/0RL MzkM8UhrzJyLhJGNVdQgzThUE9t0dwUBmRKuDy0iuY+ikeokagsLMNJ3Tz+k517b +BkW3GV4EU1W8OholJdh7xeztgJBZVMySR6rOUHoLlJccWobRI9yJOplgFog/8/8 b/CphL0scOxW1mYqcB52+ECUQNBK7PaVguQba4ifXuSaxRn55fSGlOeG0BsKW70j HCCBkQDKSV5k0flhEqcVOaTLV9uE72Fer/SKsvpJTtrZJzvuL2cAQ0TDwKkvIRsj zj8KW+CHaImtiWvQnsw+kPE+5f2GAKlxE8sVSyfbWTJNcS0uZWuKA5EA -----END CERTIFICATE-----Generated at Tue Jun 18 12:53:57 2024 by rpki-client on console-ams.rpki-client.org