$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/1kNmSU1JusyuRz0MEGoQXqrbz6s.roa File: 1kNmSU1JusyuRz0MEGoQXqrbz6s.roa (raw, json) Hash identifier: FObzYWfWL+h4/mXwwW6GySXjFXixO6oN+3WLd96SXDc= Subject key identifier: D6:43:66:49:4D:49:BA:CC:AE:47:3D:0C:10:6A:10:5E:AA:DB:CF:AB Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 0F5B Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/1kNmSU1JusyuRz0MEGoQXqrbz6s.roa Signing time: Fri 01 Sep 2023 08:29:01 +0000 ROA not before: Fri 01 Sep 2023 08:29:01 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131273 IP address blocks: 150.116.53.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 08:21:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3931 (0xf5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Sep 1 08:29:01 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=D64366494D49BACCAE473D0C106A105EAADBCFAB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:7d:b0:aa:5d:b2:fa:01:f5:8d:8d:cc:c6:e3: 2d:18:42:12:01:c5:9f:14:dc:fb:5f:14:05:b4:d5: 86:3e:4c:a3:fa:d2:28:1d:2e:83:70:8b:c0:9b:50: 8c:d1:86:56:5d:40:8e:7d:f7:e9:f3:6f:ad:29:c2: a2:c7:2b:64:53:2a:2b:f1:f8:31:bb:64:49:73:e5: 1d:7d:77:69:de:31:7f:1c:f6:01:3d:86:f3:f9:3c: de:2f:53:8c:9f:5c:5f:91:b6:70:a3:07:35:af:94: 56:a6:15:9c:eb:9b:1e:db:0d:bd:6b:f9:84:4d:19: fd:10:f7:36:75:2e:7f:14:b7:16:2e:bf:c0:6a:82: f4:a6:7b:2b:9f:18:35:b9:37:c0:68:24:74:3e:75: e9:78:5a:8a:d0:23:ec:99:a1:70:32:93:64:dd:90: cc:84:62:f8:46:b5:4c:20:ba:e5:ca:89:30:65:93: e5:d6:3c:bd:8b:24:ba:d5:63:4b:66:86:10:81:3c: 62:17:ab:50:62:b2:34:c0:21:2a:a7:98:8b:84:84: 86:7b:ef:bf:c6:4f:00:c1:5e:23:6e:09:37:37:62: 43:95:29:61:41:b4:89:55:85:32:13:eb:1a:fc:3d: 17:91:04:bf:b7:b4:e3:37:e9:4d:2c:00:4c:56:84: b2:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:43:66:49:4D:49:BA:CC:AE:47:3D:0C:10:6A:10:5E:AA:DB:CF:AB X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/1kNmSU1JusyuRz0MEGoQXqrbz6s.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.53.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:a5:38:62:ac:31:8b:64:ae:12:26:ce:0f:ca:bb:83:20:1e: 2e:c4:54:4f:ce:aa:e0:ce:a9:13:d9:1e:b7:2f:9b:b0:cb:d1: b2:70:0d:34:88:c6:ed:b2:f5:59:70:2a:06:07:2f:af:c2:8d: 57:cd:dd:2c:b8:70:8d:26:17:8b:f8:a6:c5:23:0c:38:00:4e: d9:fc:4c:76:46:0b:58:f3:9d:91:25:16:b2:cd:e7:53:00:92: 85:4b:8c:26:00:12:e8:33:97:6c:f6:9a:67:8e:12:d2:b5:93: a0:9a:7c:52:03:0d:11:4b:ab:93:ac:f8:0e:3c:9a:4e:ab:96: cd:9e:ab:f3:80:c4:43:44:16:bd:05:33:d0:22:dd:85:13:b5: 76:e5:50:f7:77:f9:04:74:aa:8a:d2:03:9d:01:41:69:14:8f: fb:e2:8d:45:16:72:40:dd:b9:2b:ce:21:68:46:6e:6c:43:f3: e4:c5:61:20:83:96:23:ab:c3:1a:9c:df:1c:79:ef:14:4c:48: 93:01:c2:5e:f0:c7:c2:76:d1:ba:86:54:c2:f8:19:38:21:11: 81:39:13:0a:d9:2c:57:ad:39:b5:f3:1e:34:38:af:7a:5e:da: 13:a7:4e:48:92:c1:4f:03:94:37:b2:59:00:db:9f:d6:fc:0c: 3f:62:d6:e3 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICD1swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMzA5MDEw ODI5MDFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEQ2NDM2NjQ5NEQ0OUJB Q0NBRTQ3M0QwQzEwNkExMDVFQUFEQkNGQUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCufbCqXbL6AfWNjczG4y0YQhIBxZ8U3PtfFAW01YY+TKP60igd LoNwi8CbUIzRhlZdQI599+nzb60pwqLHK2RTKivx+DG7ZElz5R19d2neMX8c9gE9 hvP5PN4vU4yfXF+RtnCjBzWvlFamFZzrmx7bDb1r+YRNGf0Q9zZ1Ln8UtxYuv8Bq gvSmeyufGDW5N8BoJHQ+del4WorQI+yZoXAyk2TdkMyEYvhGtUwguuXKiTBlk+XW PL2LJLrVY0tmhhCBPGIXq1BisjTAISqnmIuEhIZ777/GTwDBXiNuCTc3YkOVKWFB tIlVhTIT6xr8PReRBL+3tOM36U0sAExWhLKbAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU1kNmSU1JusyuRz0MEGoQXqrbz6swHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy8xa05tU1UxSnVzeXVS ejBNRUdvUVhxcmJ6NnMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAlnQ1MA0GCSqGSIb3DQEBCwUAA4IBAQCepThirDGLZK4SJs4PyruDIB4uxFRP zqrgzqkT2R63L5uwy9GycA00iMbtsvVZcCoGBy+vwo1Xzd0suHCNJheL+KbFIww4 AE7Z/Ex2RgtY852RJRayzedTAJKFS4wmABLoM5ds9ppnjhLStZOgmnxSAw0RS6uT rPgOPJpOq5bNnqvzgMRDRBa9BTPQIt2FE7V25VD3d/kEdKqK0gOdAUFpFI/74o1F FnJA3bkrziFoRm5sQ/PkxWEgg5Yjq8ManN8cee8UTEiTAcJe8MfCdtG6hlTC+Bk4 IRGBORMK2SxXrTm18x40OK96XtoTp05IksFPA5Q3slkA25/W/Aw/Ytbj -----END CERTIFICATE-----Generated at Tue Jun 18 12:53:57 2024 by rpki-client on console-ams.rpki-client.org