$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/E48xnCjxxQRBVmtD3FYTKmeME4w.roa File: E48xnCjxxQRBVmtD3FYTKmeME4w.roa (raw, json) Hash identifier: aOH4+rAPYvf1K2AvLimYaRHljIAhPQqjo2GR/BhSqnk= Subject key identifier: 13:8F:31:9C:28:F1:C5:04:41:56:6B:43:DC:56:13:2A:67:8C:13:8C Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 0F61 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/E48xnCjxxQRBVmtD3FYTKmeME4w.roa Signing time: Fri 01 Sep 2023 08:29:04 +0000 ROA not before: Fri 01 Sep 2023 08:29:04 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18419 IP address blocks: 118.150.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 08:21:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3937 (0xf61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Sep 1 08:29:04 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=138F319C28F1C50441566B43DC56132A678C138C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:b3:d5:c5:0c:c2:93:5f:b8:fe:b3:e0:fa:d2: 82:23:25:9a:db:ef:ad:f1:38:ae:60:72:cf:94:d3: c0:3e:ef:b0:21:b5:a0:30:3a:6a:43:0d:53:a3:bd: a6:f8:6a:fc:5e:2b:bc:6d:14:84:4e:f6:1b:7c:0e: 0d:0c:be:f2:d7:82:52:d2:09:97:aa:ae:91:46:33: e3:f9:16:ad:11:99:f2:3a:8e:91:ae:e8:1d:3a:bc: 75:68:98:38:19:f2:5e:9d:46:d5:9c:17:b0:97:2a: 71:10:02:8a:cd:9f:46:00:54:fa:58:83:6f:33:23: 59:d8:b5:93:bf:cc:ef:b4:f7:f6:04:bd:f4:e8:fa: 1a:c8:30:7f:ab:6e:ea:40:63:2c:94:63:c3:0e:99: 3a:5a:8a:ef:4a:4f:4d:6b:11:2d:6b:3b:c0:fe:dd: cb:9c:03:a6:39:85:21:32:29:cd:69:b6:b7:16:f0: 25:a2:18:a8:15:b6:01:7d:66:1c:96:8a:ae:b6:5a: 60:80:96:f5:56:7c:eb:98:a7:55:86:bf:f6:52:1e: 53:f0:c3:07:bb:41:e1:2a:9c:81:e5:cb:4f:59:3d: f7:38:78:80:51:58:c7:ab:26:f7:b6:9c:b3:59:ea: 6b:5a:46:3e:8a:a1:eb:26:0f:b1:6a:94:8d:30:1c: c7:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:8F:31:9C:28:F1:C5:04:41:56:6B:43:DC:56:13:2A:67:8C:13:8C X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/E48xnCjxxQRBVmtD3FYTKmeME4w.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.150.0.0/16 Signature Algorithm: sha256WithRSAEncryption 35:12:0e:bc:4e:1e:0a:05:4b:73:35:12:f7:de:1e:ad:38:23: 77:c1:53:00:55:df:6c:6e:0c:0b:02:86:0c:29:18:cd:a0:32: 86:34:6a:ef:31:d4:53:64:f4:77:98:b8:37:d4:dd:15:10:83: 3d:73:d2:38:76:81:db:8f:b4:42:19:a3:1b:b5:84:37:a2:b4: 04:50:eb:3c:b7:c3:67:e7:68:cb:a7:f2:f8:8e:fa:52:5f:b9: 24:6f:eb:9a:c0:4c:77:4a:dc:25:63:95:ee:1c:46:e2:ba:5b: b9:d6:78:8d:33:d5:95:71:40:37:10:9c:ec:3e:9c:52:6d:ca: 2a:c8:36:86:35:54:05:5c:1c:70:f5:3e:29:fe:36:19:48:2d: 74:41:5b:de:00:a3:9f:fa:f2:ed:be:68:9a:46:f6:57:1e:41: b3:19:82:97:2b:58:e1:99:bd:f3:36:45:58:1b:45:e6:47:6e: cb:19:ae:21:8b:f1:7f:6b:2b:cf:b0:36:4f:00:78:0d:61:09: a1:a1:e4:8e:e7:94:aa:0a:23:cc:83:21:54:9e:97:b1:98:23: c6:b6:ca:47:df:08:af:b6:22:ce:5c:5d:28:36:99:77:db:a5: 51:e9:e4:ba:20:53:27:64:4b:79:4d:81:95:7c:e2:66:d6:1c: 0e:29:cf:f4 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICD2EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMzA5MDEw ODI5MDRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDEzOEYzMTlDMjhGMUM1 MDQ0MTU2NkI0M0RDNTYxMzJBNjc4QzEzOEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRs9XFDMKTX7j+s+D60oIjJZrb763xOK5gcs+U08A+77AhtaAw OmpDDVOjvab4avxeK7xtFIRO9ht8Dg0MvvLXglLSCZeqrpFGM+P5Fq0RmfI6jpGu 6B06vHVomDgZ8l6dRtWcF7CXKnEQAorNn0YAVPpYg28zI1nYtZO/zO+09/YEvfTo +hrIMH+rbupAYyyUY8MOmTpaiu9KT01rES1rO8D+3cucA6Y5hSEyKc1ptrcW8CWi GKgVtgF9ZhyWiq62WmCAlvVWfOuYp1WGv/ZSHlPwwwe7QeEqnIHly09ZPfc4eIBR WMerJve2nLNZ6mtaRj6KoesmD7FqlI0wHMc9AgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUE48xnCjxxQRBVmtD3FYTKmeME4wwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9FNDh4bkNqeHhRUkJW bXREM0ZZVEttZU1FNHcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAF AwMAdpYwDQYJKoZIhvcNAQELBQADggEBADUSDrxOHgoFS3M1EvfeHq04I3fBUwBV 32xuDAsChgwpGM2gMoY0au8x1FNk9HeYuDfU3RUQgz1z0jh2gduPtEIZoxu1hDei tARQ6zy3w2fnaMun8viO+lJfuSRv65rATHdK3CVjle4cRuK6W7nWeI0z1ZVxQDcQ nOw+nFJtyirINoY1VAVcHHD1Pin+NhlILXRBW94Ao5/68u2+aJpG9lceQbMZgpcr WOGZvfM2RVgbReZHbssZriGL8X9rK8+wNk8AeA1hCaGh5I7nlKoKI8yDIVSel7GY I8a2ykffCK+2Is5cXSg2mXfbpVHp5LogUydkS3lNgZV84mbWHA4pz/Q= -----END CERTIFICATE-----Generated at Tue Jun 18 13:13:36 2024 by rpki-client on console-fra.rpki-client.org