$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/JwTSFw2xnGvES8qVN0tnjL_42W8.roa File: JwTSFw2xnGvES8qVN0tnjL_42W8.roa (raw, json) Hash identifier: FE+nv30m5v+fh4Uizjdk0YhlMn990b96dx1jK3c7gFY= Subject key identifier: 27:04:D2:17:0D:B1:9C:6B:C4:4B:CA:95:37:4B:67:8C:BF:F8:D9:6F Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 0FBC Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/JwTSFw2xnGvES8qVN0tnjL_42W8.roa Signing time: Fri 01 Sep 2023 08:29:29 +0000 ROA not before: Fri 01 Sep 2023 08:29:29 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131627 IP address blocks: 150.116.88.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 08:21:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4028 (0xfbc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Sep 1 08:29:29 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=2704D2170DB19C6BC44BCA95374B678CBFF8D96F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:ee:42:86:c4:88:14:c4:23:01:f1:73:1c:4c: 47:33:8c:55:c7:f6:c2:aa:0e:6b:37:91:89:92:42: 45:f5:6c:07:d1:7f:cc:e7:dd:c9:12:2e:cd:62:06: 30:47:c4:bd:80:b1:31:fa:e0:c5:e5:9c:ad:95:12: 5a:68:20:83:97:3a:0d:5e:89:a9:1d:d5:bc:b6:9f: db:b7:8f:e1:07:74:7e:46:40:36:b0:60:a8:02:2c: d5:4e:5b:38:48:4a:63:be:26:eb:a2:14:ba:a0:af: 3a:8a:da:87:c1:01:f4:2e:c6:4d:35:e3:5b:60:ff: 30:e5:b7:59:6d:65:1d:36:50:49:49:7c:cf:ff:b0: 74:b4:f2:3f:59:ac:2f:cc:8e:fe:4d:8f:1b:44:ad: d5:94:77:7e:f0:16:c4:82:e4:b8:e1:53:4d:44:a8: 61:19:bc:0d:bd:66:ec:38:bd:7f:b2:19:95:18:a0: cd:b6:2f:87:34:ef:07:ce:10:1c:34:14:eb:40:59: f8:fc:7d:24:3c:e3:72:f2:04:28:fe:20:10:b5:74: 82:2a:54:17:23:1b:56:c7:f4:6c:5f:87:2a:49:7c: 22:f7:56:92:35:05:3b:f8:05:ce:a8:9e:ae:a9:74: b2:fc:78:a8:9d:cc:e9:a3:dd:19:36:c9:6a:b6:14: 3a:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:04:D2:17:0D:B1:9C:6B:C4:4B:CA:95:37:4B:67:8C:BF:F8:D9:6F X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/JwTSFw2xnGvES8qVN0tnjL_42W8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.88.0/22 Signature Algorithm: sha256WithRSAEncryption 8c:db:e0:df:67:51:61:c4:5d:44:9f:9b:99:64:76:c7:77:18: fd:33:52:2c:c6:c8:55:03:67:1a:1f:c7:64:39:45:f3:19:f1: 67:c7:ea:03:5e:10:d8:b2:1a:66:88:e5:ab:d9:b0:01:e7:26: 39:16:33:79:85:3b:ee:47:ca:72:f5:aa:79:e4:4c:22:29:eb: d5:4a:86:84:de:e6:bc:7e:01:07:39:a3:ec:d0:29:c1:93:7c: 1e:a2:25:90:31:78:6b:fe:c7:2d:17:e1:b5:e5:d3:f9:4e:cf: a7:a8:78:77:36:cc:bd:45:07:a8:7f:1d:71:8f:8e:17:7c:be: b1:d9:97:5a:5f:e6:6a:c8:b2:0e:73:d1:a1:0a:90:3f:8a:54: 41:64:ce:40:0c:a9:55:40:30:eb:db:df:80:65:29:44:6f:36: 06:20:1a:e7:1c:b4:b2:e4:fd:77:2f:d7:d9:b3:a8:2a:ae:be: 43:2b:05:5b:71:29:85:ba:aa:13:7a:e4:6b:b5:00:91:de:24: 64:db:75:b2:23:b5:07:59:0f:71:cc:53:d8:99:9f:a9:5c:e3: fa:06:d6:35:26:69:96:05:96:6e:b9:80:96:55:c1:10:2c:57: 78:b2:58:86:6a:87:25:55:fd:e9:a5:ba:17:ac:11:9a:41:04: 44:82:5f:c8 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICD7wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMzA5MDEw ODI5MjlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDI3MDREMjE3MERCMTlD NkJDNDRCQ0E5NTM3NEI2NzhDQkZGOEQ5NkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCm7kKGxIgUxCMB8XMcTEczjFXH9sKqDms3kYmSQkX1bAfRf8zn 3ckSLs1iBjBHxL2AsTH64MXlnK2VElpoIIOXOg1eiakd1by2n9u3j+EHdH5GQDaw YKgCLNVOWzhISmO+JuuiFLqgrzqK2ofBAfQuxk0141tg/zDlt1ltZR02UElJfM// sHS08j9ZrC/Mjv5NjxtErdWUd37wFsSC5LjhU01EqGEZvA29Zuw4vX+yGZUYoM22 L4c07wfOEBw0FOtAWfj8fSQ843LyBCj+IBC1dIIqVBcjG1bH9GxfhypJfCL3VpI1 BTv4Bc6onq6pdLL8eKidzOmj3Rk2yWq2FDq3AgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUJwTSFw2xnGvES8qVN0tnjL/42W8wHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9Kd1RTRncyeG5HdkVT OHFWTjB0bmpMXzQyVzgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQClnRYMA0GCSqGSIb3DQEBCwUAA4IBAQCM2+DfZ1FhxF1En5uZZHbHdxj9M1Is xshVA2caH8dkOUXzGfFnx+oDXhDYshpmiOWr2bAB5yY5FjN5hTvuR8py9ap55Ewi KevVSoaE3ua8fgEHOaPs0CnBk3weoiWQMXhr/sctF+G15dP5Ts+nqHh3Nsy9RQeo fx1xj44XfL6x2ZdaX+ZqyLIOc9GhCpA/ilRBZM5ADKlVQDDr29+AZSlEbzYGIBrn HLSy5P13L9fZs6gqrr5DKwVbcSmFuqoTeuRrtQCR3iRk23WyI7UHWQ9xzFPYmZ+p XOP6BtY1JmmWBZZuuYCWVcEQLFd4sliGaoclVf3ppboXrBGaQQREgl/I -----END CERTIFICATE-----Generated at Tue Jun 18 12:53:57 2024 by rpki-client on console-ams.rpki-client.org