$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/K5jT6gkK3Tnf4o6TCoVp9ItwNCg.roa File: K5jT6gkK3Tnf4o6TCoVp9ItwNCg.roa (raw, json) Hash identifier: z9+0MdeB1YfH52iu6NrtZS3xxMfaYQmy9VkIvxVlumw= Subject key identifier: 2B:98:D3:EA:09:0A:DD:39:DF:E2:8E:93:0A:85:69:F4:8B:70:34:28 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 0F87 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/K5jT6gkK3Tnf4o6TCoVp9ItwNCg.roa Signing time: Fri 01 Sep 2023 08:29:15 +0000 ROA not before: Fri 01 Sep 2023 08:29:15 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131627 IP address blocks: 150.116.224.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 08:21:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3975 (0xf87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Sep 1 08:29:15 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=2B98D3EA090ADD39DFE28E930A8569F48B703428 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:1b:f0:43:22:01:f8:6c:ef:71:03:86:14:d8: 02:fb:7f:0b:08:14:36:c5:f6:02:b7:1b:ac:6a:e9: b3:6c:1e:89:be:78:af:ec:db:86:2e:de:99:66:b8: 7d:f8:81:4c:b2:5c:b7:ab:7e:0f:3f:c4:90:e5:dc: 78:b2:ee:49:06:78:7d:32:ff:11:79:f8:96:b5:bd: 6d:d1:22:60:70:9c:0e:87:10:dd:55:51:10:8f:ed: 73:84:fe:38:5f:6d:55:9c:c0:07:ed:b8:50:83:ba: be:76:ba:35:49:3e:39:82:85:97:ff:8a:df:2a:3a: ff:21:3f:ee:45:6b:8a:ab:95:06:e7:85:0c:49:7d: da:49:ff:9e:dc:81:ab:53:c4:8d:e9:8d:3a:28:bf: 3a:82:d5:08:fa:fc:be:56:ce:5e:a2:81:2e:be:0c: e0:28:69:97:02:8f:dc:ec:cc:f4:05:e7:2e:ba:f8: e0:96:9b:a6:c4:b7:5b:da:14:c4:07:e9:19:26:97: 0b:8e:82:3d:ad:ee:fe:28:5f:4e:9a:f4:12:05:35: cf:de:c4:07:58:c2:b1:74:ba:cd:e3:13:7a:01:17: 4f:91:cf:3f:04:d4:8b:f0:76:e9:06:64:48:bb:ae: 78:1e:c5:1c:d0:3a:61:7c:45:19:ed:08:5c:0b:47: b4:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:98:D3:EA:09:0A:DD:39:DF:E2:8E:93:0A:85:69:F4:8B:70:34:28 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/K5jT6gkK3Tnf4o6TCoVp9ItwNCg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.224.0/21 Signature Algorithm: sha256WithRSAEncryption b4:68:6b:86:14:2a:f9:e6:71:ff:23:ad:61:20:27:57:98:f5: 8f:64:67:4c:80:eb:c2:54:47:48:44:15:0a:b5:e5:c2:c3:6e: 63:a3:47:71:89:aa:89:0d:1e:62:7c:f9:37:9f:cb:94:3e:3e: 67:32:32:23:e4:e2:19:0d:37:fa:5b:47:02:e9:93:c1:5e:90: 01:2e:88:e7:fa:3f:c7:ac:15:b0:7a:15:f4:3b:46:91:8b:3b: 7e:e2:93:6c:c6:21:c3:10:0e:c2:9f:e5:9b:5e:29:c8:47:78: fc:7a:07:29:06:82:87:46:18:cf:58:a5:b4:e8:8b:0f:3c:b9: 44:33:08:fb:39:f1:aa:35:76:37:b7:3e:af:d3:d4:c7:71:64: ab:d3:0d:81:44:09:8d:60:3a:c9:5b:b4:d9:db:61:55:78:77: 17:07:a2:00:af:5d:ee:6c:05:3f:3c:c0:c6:71:68:00:e4:ea: fe:02:88:7d:e6:cf:87:ea:11:74:3a:14:bb:69:d9:f4:77:08: f2:30:44:bb:6a:67:da:a3:9d:9c:33:7c:27:2f:2e:0d:4a:3e: f8:bb:20:45:6a:98:71:09:e4:a9:79:a1:f1:f5:0b:af:de:2a: a9:40:a4:5f:a1:f3:48:51:cd:f1:03:31:1e:0b:d5:75:80:3d: ed:dc:ed:77 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICD4cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMzA5MDEw ODI5MTVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDJCOThEM0VBMDkwQURE MzlERkUyOEU5MzBBODU2OUY0OEI3MDM0MjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCaG/BDIgH4bO9xA4YU2AL7fwsIFDbF9gK3G6xq6bNsHom+eK/s 24Yu3plmuH34gUyyXLerfg8/xJDl3Hiy7kkGeH0y/xF5+Ja1vW3RImBwnA6HEN1V URCP7XOE/jhfbVWcwAftuFCDur52ujVJPjmChZf/it8qOv8hP+5Fa4qrlQbnhQxJ fdpJ/57cgatTxI3pjToovzqC1Qj6/L5Wzl6igS6+DOAoaZcCj9zszPQF5y66+OCW m6bEt1vaFMQH6RkmlwuOgj2t7v4oX06a9BIFNc/exAdYwrF0us3jE3oBF0+Rzz8E 1IvwdukGZEi7rngexRzQOmF8RRntCFwLR7TdAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUK5jT6gkK3Tnf4o6TCoVp9ItwNCgwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9LNWpUNmdrSzNUbmY0 bzZUQ29WcDlJdHdOQ2cucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQDlnTgMA0GCSqGSIb3DQEBCwUAA4IBAQC0aGuGFCr55nH/I61hICdXmPWPZGdM gOvCVEdIRBUKteXCw25jo0dxiaqJDR5ifPk3n8uUPj5nMjIj5OIZDTf6W0cC6ZPB XpABLojn+j/HrBWwehX0O0aRizt+4pNsxiHDEA7Cn+WbXinIR3j8egcpBoKHRhjP WKW06IsPPLlEMwj7OfGqNXY3tz6v09THcWSr0w2BRAmNYDrJW7TZ22FVeHcXB6IA r13ubAU/PMDGcWgA5Or+Aoh95s+H6hF0OhS7adn0dwjyMES7amfao52cM3wnLy4N Sj74uyBFaphxCeSpeaHx9Quv3iqpQKRfofNIUc3xAzEeC9V1gD3t3O13 -----END CERTIFICATE-----Generated at Tue Jun 18 12:53:57 2024 by rpki-client on console-ams.rpki-client.org