$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/-dyQzaQoWTtfjEwCSYTYd8h6Xc8.roa File: -dyQzaQoWTtfjEwCSYTYd8h6Xc8.roa (raw, json) Hash identifier: YkGFPTkCSCXdqK0nVLkhbqA0qlDlANl/+B3SDanJTMs= Subject key identifier: F9:DC:90:CD:A4:28:59:3B:5F:8C:4C:02:49:84:D8:77:C8:7A:5D:CF Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 0F8B Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/-dyQzaQoWTtfjEwCSYTYd8h6Xc8.roa Signing time: Fri 01 Sep 2023 08:29:16 +0000 ROA not before: Fri 01 Sep 2023 08:29:16 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131627 IP address blocks: 150.116.172.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 08:21:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3979 (0xf8b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Sep 1 08:29:16 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=F9DC90CDA428593B5F8C4C024984D877C87A5DCF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:6b:bb:6a:13:2d:d8:45:5d:67:b6:b6:eb:b4: a8:e5:1b:4d:79:f1:d8:90:1c:8c:65:c6:e7:76:e1: 22:a8:a3:e7:98:fb:10:6c:d4:ae:9d:b0:17:08:d2: a7:77:db:8f:f5:a9:01:d1:e9:39:80:a7:7c:75:b0: 3c:ea:c4:d9:95:3f:93:dd:1e:90:fc:96:83:7d:6e: 93:61:e5:92:28:08:27:ec:cb:79:fc:97:de:d8:91: d4:48:a1:78:47:95:23:23:78:4c:95:4f:79:d6:a9: 25:0a:b4:1a:14:45:ec:63:57:37:18:24:5e:97:e0: f7:96:f3:21:0c:6d:ad:95:a4:2e:90:60:8f:24:cb: 17:f9:e4:ae:6a:71:44:73:81:90:4d:07:c8:c1:ad: fa:3b:96:84:a1:a8:dd:87:7c:2f:1c:b4:2e:87:67: 70:3e:ac:f5:21:02:62:93:dc:e5:dc:0a:97:b9:57: 7d:f2:09:de:64:05:de:da:b4:bb:b0:67:f6:61:f3: de:82:17:68:a3:13:59:3b:7e:f1:eb:d1:2d:c7:78: 86:f1:d1:9d:39:2d:e3:ea:ed:9a:17:73:65:a2:2f: 76:d4:5e:bf:54:66:4f:d2:07:04:99:f9:d4:64:bc: 7c:65:51:eb:5d:d1:41:a6:8d:11:af:1b:e8:4c:1f: 9c:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:DC:90:CD:A4:28:59:3B:5F:8C:4C:02:49:84:D8:77:C8:7A:5D:CF X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/-dyQzaQoWTtfjEwCSYTYd8h6Xc8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.172.0/22 Signature Algorithm: sha256WithRSAEncryption 49:ec:10:6b:c7:f4:2c:82:19:be:41:96:6b:d7:3a:dc:5f:95: 9d:9a:be:d5:d0:62:c0:e8:24:3e:cf:56:f4:d3:76:f0:a0:8a: 4d:17:7d:96:b5:c0:10:e8:0f:2a:f8:64:20:5e:eb:7a:a1:b8: fd:8f:21:14:05:6c:ff:fd:aa:d0:70:94:ce:6f:56:ba:44:d9: 43:f1:8d:ff:bb:eb:74:e5:c0:8a:c0:3f:c1:33:e0:37:4d:f3: 1a:97:9d:a2:85:7f:c8:62:9b:fd:8a:27:b8:22:d6:2d:71:1f: bd:d9:b4:d2:42:dc:20:77:ce:30:18:1a:84:21:99:29:8b:df: 7c:f3:75:41:8e:7a:6f:0a:f1:f0:d4:b1:b5:51:89:1d:21:4e: f3:1c:c4:5a:4d:10:7f:99:80:26:ec:46:df:a4:34:9e:90:56: 7c:42:0b:19:76:5a:b2:cb:e5:eb:e1:27:1d:88:db:4c:c4:24: 82:0d:ff:89:dd:23:2f:d0:1d:75:cc:0e:a2:4a:16:11:4e:72: 5b:ba:fd:40:3e:f9:1f:c8:48:cb:e3:48:d9:2d:73:f8:a7:ee: c6:0f:10:ad:6a:75:c8:cb:d9:a4:72:9d:c9:9c:02:19:c9:92: a5:8c:ed:7b:5a:42:fa:16:26:7a:a8:c9:7f:08:8a:0b:1f:7e: bc:8d:09:3b -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICD4swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMzA5MDEw ODI5MTZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEY5REM5MENEQTQyODU5 M0I1RjhDNEMwMjQ5ODREODc3Qzg3QTVEQ0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIa7tqEy3YRV1ntrbrtKjlG0158diQHIxlxud24SKoo+eY+xBs 1K6dsBcI0qd324/1qQHR6TmAp3x1sDzqxNmVP5PdHpD8loN9bpNh5ZIoCCfsy3n8 l97YkdRIoXhHlSMjeEyVT3nWqSUKtBoURexjVzcYJF6X4PeW8yEMba2VpC6QYI8k yxf55K5qcURzgZBNB8jBrfo7loShqN2HfC8ctC6HZ3A+rPUhAmKT3OXcCpe5V33y Cd5kBd7atLuwZ/Zh896CF2ijE1k7fvHr0S3HeIbx0Z05LePq7ZoXc2WiL3bUXr9U Zk/SBwSZ+dRkvHxlUetd0UGmjRGvG+hMH5x1AgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU+dyQzaQoWTtfjEwCSYTYd8h6Xc8wHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy8tZHlRemFRb1dUdGZq RXdDU1lUWWQ4aDZYYzgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQClnSsMA0GCSqGSIb3DQEBCwUAA4IBAQBJ7BBrx/Qsghm+QZZr1zrcX5Wdmr7V 0GLA6CQ+z1b003bwoIpNF32WtcAQ6A8q+GQgXut6obj9jyEUBWz//arQcJTOb1a6 RNlD8Y3/u+t05cCKwD/BM+A3TfMal52ihX/IYpv9iie4ItYtcR+92bTSQtwgd84w GBqEIZkpi99883VBjnpvCvHw1LG1UYkdIU7zHMRaTRB/mYAm7EbfpDSekFZ8QgsZ dlqyy+Xr4ScdiNtMxCSCDf+J3SMv0B11zA6iShYRTnJbuv1APvkfyEjL40jZLXP4 p+7GDxCtanXIy9mkcp3JnAIZyZKljO17WkL6FiZ6qMl/CIoLH368jQk7 -----END CERTIFICATE-----Generated at Tue Jun 18 13:13:36 2024 by rpki-client on console-fra.rpki-client.org