$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/IsFJvofMAFqIZ7Cnx5mjj6_nSJ0.roa File: IsFJvofMAFqIZ7Cnx5mjj6_nSJ0.roa (raw, json) Hash identifier: H1Sgnc7CwoRaEghRwutcbs+A8j9H5A2gNer//OeX2bM= Subject key identifier: 22:C1:49:BE:87:CC:00:5A:88:67:B0:A7:C7:99:A3:8F:AF:E7:48:9D Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 1161 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/IsFJvofMAFqIZ7Cnx5mjj6_nSJ0.roa Signing time: Mon 26 Aug 2024 05:10:43 +0000 ROA not before: Mon 26 Aug 2024 05:10:43 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 10085 IP address blocks: 203.163.204.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Sep 2024 03:51:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4449 (0x1161) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 26 05:10:43 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=22C149BE87CC005A8867B0A7C799A38FAFE7489D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:96:86:e5:21:a4:25:65:03:e7:d1:fa:09:00: b3:fe:cc:4d:fd:e2:0f:ad:fd:ba:6d:e8:f0:e8:db: 2d:43:1c:6e:85:2d:f3:60:e7:0f:e1:23:b8:a9:5b: c8:7b:73:c3:92:29:87:c6:67:9e:39:5e:87:d7:27: c9:70:95:e3:11:af:43:c6:6e:25:19:4b:39:24:a1: 47:73:76:14:c5:2e:df:4e:b3:5e:47:1a:e8:a6:32: ff:fa:8c:fd:76:15:4e:19:b5:42:2c:69:59:13:6a: 76:06:72:f4:2c:05:a3:15:0f:7d:9a:27:41:1c:f9: a5:f6:38:2a:84:cc:1b:46:37:82:99:ec:86:a4:c8: 4e:fe:f7:72:f8:55:68:ee:d6:68:93:d2:36:b8:5d: 30:d2:43:8c:72:06:1f:82:dd:9a:43:90:d8:c3:99: d1:fc:12:b2:3a:d6:f5:1d:2e:e7:25:f8:1a:1a:70: 82:74:8f:e3:f3:97:5f:d7:d0:2d:43:84:e4:50:9d: 62:88:0b:14:ba:d3:c5:6f:31:72:ff:d2:51:7e:0e: bb:00:cc:77:ab:a8:7c:ec:e2:f9:f2:5d:0c:95:a9: 97:2f:90:c2:b7:d1:6f:57:76:c1:07:d1:26:25:87: ab:6e:11:3f:11:94:fa:bb:15:ae:f8:25:16:77:16: 38:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:C1:49:BE:87:CC:00:5A:88:67:B0:A7:C7:99:A3:8F:AF:E7:48:9D X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/IsFJvofMAFqIZ7Cnx5mjj6_nSJ0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.163.204.0/22 Signature Algorithm: sha256WithRSAEncryption 1a:8d:20:1d:77:cb:ee:53:ab:25:8c:27:52:0b:ea:1e:9c:08: c7:3a:3b:2b:f8:64:df:d8:03:bc:11:72:22:83:8e:4a:50:7c: 44:a5:35:b2:1c:7c:7b:a7:9b:8d:98:06:f0:37:b3:33:06:5a: 4d:5f:c0:59:bc:c5:4f:9a:51:0d:76:35:c0:41:22:55:da:a3: 77:6b:5c:35:21:2d:29:29:31:0a:e0:06:b1:b1:04:6b:cd:16: 16:63:fd:68:02:71:86:19:0b:93:3d:30:98:9e:a1:50:84:b3: 87:c0:61:06:27:d4:09:91:eb:10:76:cc:ea:fa:d3:24:f7:66: e2:81:68:ef:ee:a5:99:4d:4b:c9:eb:bf:65:ad:05:e0:05:d2: 8e:53:cb:9b:8a:e9:e8:a4:83:c3:78:22:5e:9e:38:21:4c:99: c9:a1:3a:65:99:7c:98:21:7b:04:ff:cf:b9:a0:82:7c:47:7c: f9:5c:49:d4:42:9e:3c:be:cf:bc:63:1a:cd:77:2b:d4:eb:b9: 58:20:b7:bf:68:01:a2:a5:5b:01:1f:c4:36:13:99:8e:d4:64: 2d:37:ab:a1:49:32:82:19:32:4b:42:b8:48:8c:8c:64:f5:98: d1:fc:c2:3d:45:5d:f7:62:37:30:f4:97:0f:67:5f:9e:ad:68: 6c:47:52:cb -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEWEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNDA4MjYw NTEwNDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDIyQzE0OUJFODdDQzAw NUE4ODY3QjBBN0M3OTlBMzhGQUZFNzQ4OUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5loblIaQlZQPn0foJALP+zE394g+t/bpt6PDo2y1DHG6FLfNg 5w/hI7ipW8h7c8OSKYfGZ545XofXJ8lwleMRr0PGbiUZSzkkoUdzdhTFLt9Os15H GuimMv/6jP12FU4ZtUIsaVkTanYGcvQsBaMVD32aJ0Ec+aX2OCqEzBtGN4KZ7Iak yE7+93L4VWju1miT0ja4XTDSQ4xyBh+C3ZpDkNjDmdH8ErI61vUdLucl+BoacIJ0 j+Pzl1/X0C1DhORQnWKICxS608VvMXL/0lF+DrsAzHerqHzs4vnyXQyVqZcvkMK3 0W9XdsEH0SYlh6tuET8RlPq7Fa74JRZ3FjjHAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUIsFJvofMAFqIZ7Cnx5mjj6/nSJ0wHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9Jc0ZKdm9mTUFGcUla N0NueDVtamo2X25TSjAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCy6PMMA0GCSqGSIb3DQEBCwUAA4IBAQAajSAdd8vuU6sljCdSC+oenAjHOjsr +GTf2AO8EXIig45KUHxEpTWyHHx7p5uNmAbwN7MzBlpNX8BZvMVPmlENdjXAQSJV 2qN3a1w1IS0pKTEK4AaxsQRrzRYWY/1oAnGGGQuTPTCYnqFQhLOHwGEGJ9QJkesQ dszq+tMk92bigWjv7qWZTUvJ679lrQXgBdKOU8ubiunopIPDeCJenjghTJnJoTpl mXyYIXsE/8+5oIJ8R3z5XEnUQp48vs+8YxrNdyvU67lYILe/aAGipVsBH8Q2E5mO 1GQtN6uhSTKCGTJLQrhIjIxk9ZjR/MI9RV33Yjcw9JcPZ1+erWhsR1LL -----END CERTIFICATE-----Generated at Fri Sep 27 23:36:41 2024 by rpki-client on console-fra.rpki-client.org