$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/3PM_AGCGF6yXee-LvkHNPRGbiVc.roa File: 3PM_AGCGF6yXee-LvkHNPRGbiVc.roa (raw, json) Hash identifier: m6rbypVvyVeJr7Z4hT5JZEabM4PAc3QgZSB6yCjXPSI= Subject key identifier: DC:F3:3F:00:60:86:17:AC:97:79:EF:8B:BE:41:CD:3D:11:9B:89:57 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 0FA7 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/3PM_AGCGF6yXee-LvkHNPRGbiVc.roa Signing time: Fri 01 Sep 2023 08:29:23 +0000 ROA not before: Fri 01 Sep 2023 08:29:23 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 63199 IP address blocks: 150.116.4.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 08:21:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4007 (0xfa7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Sep 1 08:29:23 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=DCF33F00608617AC9779EF8BBE41CD3D119B8957 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:af:e2:84:7d:fe:f4:da:b4:b0:e4:dd:4c:a6: bb:f9:e9:21:d3:75:a7:b8:c3:13:af:3e:fd:ad:27: d0:df:ec:73:24:d3:df:85:ee:b7:e8:48:21:e7:4d: ef:e8:6c:ed:78:e8:e1:51:68:b4:9d:56:8c:47:aa: 61:1c:f6:0c:ea:dc:68:dd:35:e6:a6:9b:24:87:41: d6:53:e2:78:69:70:cc:68:e7:79:ea:b6:8e:cb:a3: b0:85:bb:39:d2:2f:5e:fe:21:1c:76:d3:08:ba:1e: e0:ab:3d:41:3e:0d:21:84:f7:e1:0d:37:22:ac:5b: fe:71:a1:66:55:4a:ba:f5:38:59:62:2d:00:68:c4: 35:9c:8e:21:12:20:b1:c1:1f:8b:44:dd:11:6d:2d: 11:7a:5b:fb:40:43:c1:bd:e0:8d:7c:42:85:25:27: d8:0f:ef:ce:f7:c7:40:72:ac:e6:e3:a7:26:41:3d: 4a:1a:a9:9e:00:60:03:5e:20:5d:6c:f1:9d:81:a8: 61:5c:29:a3:c9:d2:16:28:07:7a:b1:1d:c2:69:4f: e8:28:2d:09:17:bc:b6:56:29:d3:76:ed:b3:22:53: 4a:b1:bc:cf:a0:99:f6:e9:d5:68:82:e3:88:cd:65: d6:b4:13:66:9a:6e:b9:3c:08:e9:1d:5d:46:27:9f: ce:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:F3:3F:00:60:86:17:AC:97:79:EF:8B:BE:41:CD:3D:11:9B:89:57 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/3PM_AGCGF6yXee-LvkHNPRGbiVc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.4.0/23 Signature Algorithm: sha256WithRSAEncryption 9e:e3:27:0e:49:b2:aa:69:28:f6:31:b1:74:f4:0e:49:06:f1: 8f:a8:c2:d1:58:4b:3d:c9:e9:c3:c5:6a:36:a8:df:a6:5e:4d: a1:7e:f0:7d:ee:3f:e9:c5:cc:ed:e9:35:73:45:47:be:9e:49: 76:0b:eb:9e:e4:71:2b:d8:a2:d8:43:31:bc:e0:30:bf:06:00: de:db:e2:f0:38:2b:d0:04:65:b6:9c:b4:81:0e:19:a7:8e:fe: 81:f3:19:7d:e8:07:20:fd:a3:55:c9:42:2a:a6:d1:a0:63:6e: 6d:c3:6b:8d:c9:c1:8e:a8:e6:7f:2d:bc:9b:cb:fd:1b:bc:b5: 06:5a:8f:f1:23:8e:03:d1:39:91:67:2f:73:d6:c1:11:c0:a5: ad:50:61:e6:9a:e2:d2:ac:6a:3e:7f:08:18:8a:75:51:12:6e: 70:61:34:c9:ec:32:58:5d:7e:a7:96:8f:17:a2:1f:54:7d:86: 44:e5:99:56:ad:ef:9f:7c:87:ef:26:d9:d5:b3:13:fc:a6:f4: 7b:96:43:dc:e3:df:66:a0:7b:fb:eb:70:f1:bb:f5:16:6a:a3: ad:89:ee:8b:48:a8:22:10:73:b2:ed:4d:83:c7:b6:3b:d7:9c: 4f:86:81:c3:e4:ab:27:11:53:95:bd:a3:42:9e:97:47:b2:7c: f7:60:b2:70 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICD6cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMzA5MDEw ODI5MjNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKERDRjMzRjAwNjA4NjE3 QUM5Nzc5RUY4QkJFNDFDRDNEMTE5Qjg5NTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRr+KEff702rSw5N1Mprv56SHTdae4wxOvPv2tJ9Df7HMk09+F 7rfoSCHnTe/obO146OFRaLSdVoxHqmEc9gzq3GjdNeammySHQdZT4nhpcMxo53nq to7Lo7CFuznSL17+IRx20wi6HuCrPUE+DSGE9+ENNyKsW/5xoWZVSrr1OFliLQBo xDWcjiESILHBH4tE3RFtLRF6W/tAQ8G94I18QoUlJ9gP7873x0ByrObjpyZBPUoa qZ4AYANeIF1s8Z2BqGFcKaPJ0hYoB3qxHcJpT+goLQkXvLZWKdN27bMiU0qxvM+g mfbp1WiC44jNZda0E2aabrk8COkdXUYnn87rAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU3PM/AGCGF6yXee+LvkHNPRGbiVcwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy8zUE1fQUdDR0Y2eVhl ZS1MdmtITlBSR2JpVmMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBlnQEMA0GCSqGSIb3DQEBCwUAA4IBAQCe4ycOSbKqaSj2MbF09A5JBvGPqMLR WEs9yenDxWo2qN+mXk2hfvB97j/pxczt6TVzRUe+nkl2C+ue5HEr2KLYQzG84DC/ BgDe2+LwOCvQBGW2nLSBDhmnjv6B8xl96Acg/aNVyUIqptGgY25tw2uNycGOqOZ/ Lbyby/0bvLUGWo/xI44D0TmRZy9z1sERwKWtUGHmmuLSrGo+fwgYinVREm5wYTTJ 7DJYXX6nlo8Xoh9UfYZE5ZlWre+ffIfvJtnVsxP8pvR7lkPc499moHv763Dxu/UW aqOtie6LSKgiEHOy7U2Dx7Y715xPhoHD5KsnEVOVvaNCnpdHsnz3YLJw -----END CERTIFICATE-----Generated at Tue Jun 18 12:53:57 2024 by rpki-client on console-ams.rpki-client.org