$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/2fqQ5cN_Gau0lQ4h3MGDKhGE5co.roa File: 2fqQ5cN_Gau0lQ4h3MGDKhGE5co.roa (raw, json) Hash identifier: vaVCxg5bBGBTcZLrHVTvEZTjRyju3ZWnROVjWrv/ZbM= Subject key identifier: D9:FA:90:E5:C3:7F:19:AB:B4:95:0E:21:DC:C1:83:2A:11:84:E5:CA Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 1198 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/2fqQ5cN_Gau0lQ4h3MGDKhGE5co.roa Signing time: Mon 26 Aug 2024 05:10:57 +0000 ROA not before: Mon 26 Aug 2024 05:10:57 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9831 IP address blocks: 203.163.201.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Sep 2024 03:51:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4504 (0x1198) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 26 05:10:57 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D9FA90E5C37F19ABB4950E21DCC1832A1184E5CA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:da:5b:e2:47:47:51:a0:b3:63:99:e4:bb:20: 8d:88:6e:bd:2e:b1:e4:81:cb:0b:64:85:f4:3d:69: 1c:85:9a:aa:e7:85:fa:26:37:cb:a9:8f:c7:b9:54: 85:ff:f3:c7:cc:cc:7e:0e:d5:42:4c:7a:c2:37:71: d8:69:72:ea:49:d2:db:4c:5d:83:7d:dc:28:9f:db: 4e:f5:b0:d8:96:2d:66:df:11:28:5e:36:86:ae:b6: d8:80:8b:ef:3e:4c:fa:a5:c1:8e:9a:4e:fc:15:c3: a9:f6:86:0c:fb:90:2c:38:55:a5:a7:4b:75:a8:91: ed:b0:46:93:dc:ac:14:1c:19:9e:21:54:52:cd:1c: 69:c3:73:be:51:82:d5:f1:b0:bc:00:4c:2f:ae:76: 81:85:82:c5:72:ca:0f:a5:84:0e:8a:8f:6a:5f:14: 34:40:44:fe:d2:af:5d:4c:21:02:e4:7a:32:cb:b5: a1:3d:1b:88:e9:bd:87:8d:eb:92:f9:9c:61:e4:d1: 20:eb:94:31:1e:c2:70:37:e1:e5:07:c1:80:83:9c: 1c:88:2e:9a:1e:be:a4:f5:4e:3c:b4:91:6c:a1:cd: 65:d8:14:34:e0:d4:9d:de:b4:8c:1f:41:88:c4:29: 8f:5a:84:05:cc:b8:e3:b8:05:59:30:c6:9e:de:37: e6:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:FA:90:E5:C3:7F:19:AB:B4:95:0E:21:DC:C1:83:2A:11:84:E5:CA X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/2fqQ5cN_Gau0lQ4h3MGDKhGE5co.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.163.201.0/24 Signature Algorithm: sha256WithRSAEncryption 41:da:87:53:a9:ae:e0:bd:79:06:d8:25:8e:f8:22:88:76:de: 19:f6:3d:5f:9e:92:a1:70:b0:36:77:8c:09:d5:9f:1f:23:17: ee:5a:5e:37:6f:99:1d:57:b2:21:b1:e1:28:db:9f:10:7d:f1: de:75:89:6e:e1:0b:63:81:8d:9c:8d:1a:f4:61:3e:27:9e:b5: a5:2c:08:c5:5d:46:e3:a1:b8:32:a4:c4:f8:87:68:eb:5e:6f: 25:16:63:73:7c:59:9e:f3:02:35:7d:8a:27:a0:80:61:21:e2: e4:32:b8:c5:1d:dc:aa:7e:08:56:6a:87:f7:9e:e7:40:26:2e: 4e:48:f8:71:57:45:85:b4:77:9b:32:c7:6a:01:f6:0f:47:7b: bf:19:61:a5:4e:b4:89:52:3e:19:10:b1:20:95:06:02:f9:b1: 8f:e0:50:b6:cd:8c:0f:e2:db:c1:e7:2b:ee:69:b9:50:b1:1e: 82:3e:79:f1:50:2a:d5:d7:c0:0c:37:97:cf:03:42:46:f1:b4: 63:7c:a2:1f:f6:eb:9b:58:0d:5d:a0:09:e9:00:ba:ec:0c:09: 10:f2:3d:6f:17:3c:7f:db:e8:c6:7d:ff:3b:1d:2a:e7:20:dd: 65:84:bb:f5:97:79:f0:32:ef:05:f9:61:cb:03:83:26:e6:31: 45:f9:43:66 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEZgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNDA4MjYw NTEwNTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQ5RkE5MEU1QzM3RjE5 QUJCNDk1MEUyMURDQzE4MzJBMTE4NEU1Q0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCr2lviR0dRoLNjmeS7II2Ibr0useSBywtkhfQ9aRyFmqrnhfom N8upj8e5VIX/88fMzH4O1UJMesI3cdhpcupJ0ttMXYN93Cif2071sNiWLWbfEShe NoauttiAi+8+TPqlwY6aTvwVw6n2hgz7kCw4VaWnS3Woke2wRpPcrBQcGZ4hVFLN HGnDc75RgtXxsLwATC+udoGFgsVyyg+lhA6Kj2pfFDRARP7Sr11MIQLkejLLtaE9 G4jpvYeN65L5nGHk0SDrlDEewnA34eUHwYCDnByILpoevqT1Tjy0kWyhzWXYFDTg 1J3etIwfQYjEKY9ahAXMuOO4BVkwxp7eN+YvAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU2fqQ5cN/Gau0lQ4h3MGDKhGE5cowHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy8yZnFRNWNOX0dhdTBs UTRoM01HREtoR0U1Y28ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAy6PJMA0GCSqGSIb3DQEBCwUAA4IBAQBB2odTqa7gvXkG2CWO+CKIdt4Z9j1f npKhcLA2d4wJ1Z8fIxfuWl43b5kdV7IhseEo258QffHedYlu4QtjgY2cjRr0YT4n nrWlLAjFXUbjobgypMT4h2jrXm8lFmNzfFme8wI1fYonoIBhIeLkMrjFHdyqfghW aof3nudAJi5OSPhxV0WFtHebMsdqAfYPR3u/GWGlTrSJUj4ZELEglQYC+bGP4FC2 zYwP4tvB5yvuablQsR6CPnnxUCrV18AMN5fPA0JG8bRjfKIf9uubWA1doAnpALrs DAkQ8j1vFzx/2+jGff87HSrnIN1lhLv1l3nwMu8F+WHLA4Mm5jFF+UNm -----END CERTIFICATE-----Generated at Fri Sep 27 23:52:47 2024 by rpki-client on console-ams.rpki-client.org