$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/5FPV19CSK9sBX9P0b72Zg-lpifM.roa File: 5FPV19CSK9sBX9P0b72Zg-lpifM.roa (raw, json) Hash identifier: 0ZBGLJ52X6YenRG5yoyJdlHjVatWityQYKo4ef9IMAs= Subject key identifier: E4:53:D5:D7:D0:92:2B:DB:01:5F:D3:F4:6F:BD:99:83:E9:69:89:F3 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 0F9C Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/5FPV19CSK9sBX9P0b72Zg-lpifM.roa Signing time: Fri 01 Sep 2023 08:29:21 +0000 ROA not before: Fri 01 Sep 2023 08:29:21 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 7532 IP address blocks: 150.116.54.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 08:21:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3996 (0xf9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Sep 1 08:29:21 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=E453D5D7D0922BDB015FD3F46FBD9983E96989F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:f3:de:b2:75:17:a3:65:84:cc:f5:22:80:2c: 0b:7d:40:08:fc:f1:ed:33:71:c0:dd:f9:54:b1:0c: d5:d5:f9:79:e3:d8:a8:18:ef:56:9b:57:42:a8:99: 65:e4:fc:84:59:4e:ff:33:d7:c6:b3:55:53:8e:b2: 67:7d:ef:cc:96:e5:60:df:b4:45:ac:a8:eb:70:7c: d6:00:4e:0d:1d:6d:da:a1:d0:fa:21:1e:c1:2b:d5: 91:5c:28:ab:4a:c1:b3:7a:b7:ee:31:c4:1f:21:08: d9:d4:25:27:5e:da:fd:ec:bd:7b:20:b0:1c:b4:ca: c6:b4:b5:10:e7:5a:74:9c:b3:dd:8c:3c:00:d2:6e: 44:f5:6d:59:ae:a7:78:1f:cb:7a:ef:95:35:d1:80: c8:41:a3:8a:68:8e:6e:d4:c6:69:c8:c1:16:27:08: 43:74:ea:a3:b7:0a:29:88:4a:fc:91:45:7a:6f:5f: 63:b6:df:3b:23:2e:9e:4d:40:55:2a:57:1a:48:40: 3b:69:32:b1:3d:6c:e7:1c:db:c0:d8:f7:d0:a8:06: fc:10:a0:d5:c9:f0:57:2c:89:4a:ea:c6:f2:49:a0: 6d:38:5f:06:dd:63:c5:28:cb:64:c9:ab:bb:94:1c: 83:90:e1:7b:3f:60:c3:2b:c8:82:ed:89:f3:e0:4c: 25:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:53:D5:D7:D0:92:2B:DB:01:5F:D3:F4:6F:BD:99:83:E9:69:89:F3 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/5FPV19CSK9sBX9P0b72Zg-lpifM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.54.0/24 Signature Algorithm: sha256WithRSAEncryption 97:e5:89:5b:28:97:e0:3c:d1:f2:ff:15:c7:e9:ed:b6:aa:3e: 7b:a6:d5:47:62:a2:ab:b4:65:3c:b9:99:18:0e:ff:28:bb:ce: 20:f7:ef:4d:f4:d1:54:2c:23:d7:c6:da:ab:6d:8a:e5:8a:e4: 56:c6:42:09:ff:03:77:b1:00:b1:f3:92:33:5a:e6:71:5c:18: 4f:6f:1f:26:ca:54:4b:b4:9e:43:dc:a5:5b:45:2e:c8:8b:0e: 95:8c:f6:78:fe:35:ab:10:7c:ba:31:72:f3:8a:31:bc:91:cd: 4a:50:3b:01:6e:bd:16:1a:62:ea:20:99:31:f3:bc:e8:17:43: 4c:00:8c:36:0b:59:df:84:2b:b6:77:dc:4e:20:6f:f4:7f:66: eb:f2:d7:fc:57:63:5e:25:8d:c3:8b:1c:97:ae:73:0b:3f:76: ed:13:ff:78:63:b0:bc:30:5b:f6:63:3d:85:ee:e6:c2:52:ca: 7a:c1:d5:10:f0:86:e6:d6:34:40:a7:22:17:72:5e:b1:6e:88: f3:af:a1:2f:1f:f5:8d:43:36:fa:80:2a:61:2b:96:08:e0:ab: c2:41:cd:0d:44:9e:65:19:9b:d6:4e:ee:62:1c:ab:80:1e:4b: 1d:82:03:00:c4:15:c9:cb:74:b4:91:22:8c:81:a2:80:b9:10: c0:e3:07:7a -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICD5wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMzA5MDEw ODI5MjFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEU0NTNENUQ3RDA5MjJC REIwMTVGRDNGNDZGQkQ5OTgzRTk2OTg5RjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCq896ydRejZYTM9SKALAt9QAj88e0zccDd+VSxDNXV+Xnj2KgY 71abV0KomWXk/IRZTv8z18azVVOOsmd978yW5WDftEWsqOtwfNYATg0dbdqh0Poh HsEr1ZFcKKtKwbN6t+4xxB8hCNnUJSde2v3svXsgsBy0ysa0tRDnWnScs92MPADS bkT1bVmup3gfy3rvlTXRgMhBo4pojm7UxmnIwRYnCEN06qO3CimISvyRRXpvX2O2 3zsjLp5NQFUqVxpIQDtpMrE9bOcc28DY99CoBvwQoNXJ8FcsiUrqxvJJoG04Xwbd Y8Uoy2TJq7uUHIOQ4Xs/YMMryILtifPgTCUlAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU5FPV19CSK9sBX9P0b72Zg+lpifMwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy81RlBWMTlDU0s5c0JY OVAwYjcyWmctbHBpZk0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAlnQ2MA0GCSqGSIb3DQEBCwUAA4IBAQCX5YlbKJfgPNHy/xXH6e22qj57ptVH YqKrtGU8uZkYDv8ou84g9+9N9NFULCPXxtqrbYrliuRWxkIJ/wN3sQCx85IzWuZx XBhPbx8mylRLtJ5D3KVbRS7Iiw6VjPZ4/jWrEHy6MXLzijG8kc1KUDsBbr0WGmLq IJkx87zoF0NMAIw2C1nfhCu2d9xOIG/0f2br8tf8V2NeJY3DixyXrnMLP3btE/94 Y7C8MFv2Yz2F7ubCUsp6wdUQ8Ibm1jRApyIXcl6xbojzr6EvH/WNQzb6gCphK5YI 4KvCQc0NRJ5lGZvWTu5iHKuAHksdggMAxBXJy3S0kSKMgaKAuRDA4wd6 -----END CERTIFICATE-----Generated at Tue Jun 18 13:13:36 2024 by rpki-client on console-fra.rpki-client.org