$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/GiYmpmsm56tOrikT5sFlOpgZAeo.roa File: GiYmpmsm56tOrikT5sFlOpgZAeo.roa (raw, json) Hash identifier: KoFtJM3DUjFjVY7h6PePi+jubCFuZgSp5qw10qWS5KE= Subject key identifier: 1A:26:26:A6:6B:26:E7:AB:4E:AE:29:13:E6:C1:65:3A:98:19:01:EA Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 0FC5 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/GiYmpmsm56tOrikT5sFlOpgZAeo.roa Signing time: Fri 01 Sep 2023 08:29:31 +0000 ROA not before: Fri 01 Sep 2023 08:29:31 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131627 IP address blocks: 150.116.140.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 08:21:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4037 (0xfc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Sep 1 08:29:31 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=1A2626A66B26E7AB4EAE2913E6C1653A981901EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:46:7b:3f:8a:13:07:0d:38:62:53:72:3c:19: f5:fb:7b:4f:b0:be:07:d1:58:3d:2a:18:d0:a1:20: eb:94:43:7d:da:3f:87:91:3a:b9:0c:16:85:bd:46: c8:22:68:97:e0:1d:c1:3e:c8:45:dc:4b:77:84:10: ea:83:64:a7:69:88:d3:cf:3d:43:b0:b1:4c:5d:8d: 15:e5:18:56:77:af:b3:e5:76:b0:ac:7a:a7:ab:88: 62:53:e2:e1:87:fd:78:4e:a7:f9:8a:e3:f6:ed:af: 52:ba:9d:9b:63:dc:a9:6b:73:51:36:30:57:4f:0d: 08:44:3e:71:f1:a2:76:ab:51:0b:bb:7a:ad:ff:b3: ab:66:30:91:73:e2:ee:63:19:03:73:e3:49:0f:71: bf:7f:cf:7e:57:8e:42:f9:cc:dd:8b:ad:67:fb:44: f5:0d:94:09:08:68:b2:09:e5:71:f9:32:34:3c:2f: 61:fd:1d:e7:ee:f8:96:17:ba:5b:0d:b2:39:56:04: ea:91:c2:62:fc:7d:44:b9:91:1f:e2:17:0c:cb:63: f9:71:70:94:21:ed:22:b1:08:72:ba:e8:44:c6:a0: 51:7c:97:15:aa:6b:19:aa:86:f4:1b:7f:bd:3c:42: 48:09:b8:a0:bb:5d:af:84:a2:d3:8d:10:ed:c7:fe: b3:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:26:26:A6:6B:26:E7:AB:4E:AE:29:13:E6:C1:65:3A:98:19:01:EA X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/GiYmpmsm56tOrikT5sFlOpgZAeo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.140.0/22 Signature Algorithm: sha256WithRSAEncryption 94:b9:b3:8f:2e:06:b6:74:34:2a:d8:d0:9a:eb:cf:85:8c:4f: 53:ee:93:77:d2:8d:14:91:f8:c3:5f:c9:46:17:e8:38:d2:1c: 62:91:d4:a1:e9:cb:5d:a0:3f:9e:0a:fd:e0:76:fb:59:f4:9b: 8b:d5:22:7b:b9:42:ec:9e:84:33:ce:69:34:5e:cb:00:d8:c2: 27:f2:29:61:40:84:ba:25:9d:ae:ab:02:3f:4f:4b:d7:e8:4d: cd:ba:1c:90:88:a6:99:b7:61:eb:81:10:f0:73:d6:c8:b1:ec: 39:06:59:02:21:b0:1e:af:26:37:db:ba:6a:d5:36:af:c6:38: 19:95:7d:1c:2c:69:77:09:74:55:a5:9c:02:de:31:70:b4:03: d7:d0:d8:cf:78:44:6e:92:e0:9e:e1:75:f5:9e:c4:dc:6f:3e: 18:e0:6f:18:37:b0:cc:b9:af:8b:7e:84:26:80:86:0e:ee:35: ed:a0:26:76:a8:3e:2b:7e:36:93:e0:16:12:ab:ec:68:c4:81: a0:34:d6:8f:64:74:a4:2a:d5:a7:9b:4f:d5:7f:d1:b9:9a:80: 55:a3:62:a8:47:dd:1f:6a:a9:a5:4e:a6:c3:3a:2c:b3:77:8d: e0:ba:e3:09:ad:21:9a:22:d4:92:f2:36:14:d2:a6:bb:c5:16: 7f:e5:fd:0d -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICD8UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMzA5MDEw ODI5MzFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDFBMjYyNkE2NkIyNkU3 QUI0RUFFMjkxM0U2QzE2NTNBOTgxOTAxRUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDORns/ihMHDThiU3I8GfX7e0+wvgfRWD0qGNChIOuUQ33aP4eR OrkMFoW9RsgiaJfgHcE+yEXcS3eEEOqDZKdpiNPPPUOwsUxdjRXlGFZ3r7PldrCs eqeriGJT4uGH/XhOp/mK4/btr1K6nZtj3Klrc1E2MFdPDQhEPnHxonarUQu7eq3/ s6tmMJFz4u5jGQNz40kPcb9/z35XjkL5zN2LrWf7RPUNlAkIaLIJ5XH5MjQ8L2H9 Hefu+JYXulsNsjlWBOqRwmL8fUS5kR/iFwzLY/lxcJQh7SKxCHK66ETGoFF8lxWq axmqhvQbf708QkgJuKC7Xa+EotONEO3H/rODAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUGiYmpmsm56tOrikT5sFlOpgZAeowHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9HaVltcG1zbTU2dE9y aWtUNXNGbE9wZ1pBZW8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQClnSMMA0GCSqGSIb3DQEBCwUAA4IBAQCUubOPLga2dDQq2NCa68+FjE9T7pN3 0o0UkfjDX8lGF+g40hxikdSh6ctdoD+eCv3gdvtZ9JuL1SJ7uULsnoQzzmk0XssA 2MIn8ilhQIS6JZ2uqwI/T0vX6E3NuhyQiKaZt2HrgRDwc9bIsew5BlkCIbAeryY3 27pq1TavxjgZlX0cLGl3CXRVpZwC3jFwtAPX0NjPeERukuCe4XX1nsTcbz4Y4G8Y N7DMua+LfoQmgIYO7jXtoCZ2qD4rfjaT4BYSq+xoxIGgNNaPZHSkKtWnm0/Vf9G5 moBVo2KoR90faqmlTqbDOiyzd43guuMJrSGaItSS8jYU0qa7xRZ/5f0N -----END CERTIFICATE-----Generated at Tue Jun 18 13:13:36 2024 by rpki-client on console-fra.rpki-client.org