$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/TdSBNKK0X90bnw_Yt104vOuCUCU.roa File: TdSBNKK0X90bnw_Yt104vOuCUCU.roa (raw, json) Hash identifier: 4ba9O9X+lGUC3fr6G2+4Yl81Uy/Kqmi5mm7UHUA538Q= Subject key identifier: 4D:D4:81:34:A2:B4:5F:DD:1B:9F:0F:D8:B7:5D:38:BC:EB:82:50:25 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 0F9E Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/TdSBNKK0X90bnw_Yt104vOuCUCU.roa Signing time: Fri 01 Sep 2023 08:29:21 +0000 ROA not before: Fri 01 Sep 2023 08:29:21 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 10085 IP address blocks: 203.163.214.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 08:21:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3998 (0xf9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Sep 1 08:29:21 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=4DD48134A2B45FDD1B9F0FD8B75D38BCEB825025 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:55:a3:ed:9d:4f:0f:cf:ce:76:59:7f:d7:40: e1:dd:d8:40:56:3e:88:fd:29:5c:96:85:35:43:7e: 4d:b7:96:97:a9:64:3d:2a:0c:9b:26:c2:3d:a2:15: fc:80:5a:79:1a:dd:df:fe:1d:e1:34:85:53:f5:39: 7c:b2:a1:86:97:49:1c:c6:71:06:ca:5e:8e:40:39: 1a:af:de:ac:ba:e6:8e:aa:55:34:fe:d0:f0:3c:ed: 4b:3b:5e:b8:17:da:45:32:07:b7:b2:97:ed:22:b9: f6:5c:47:4d:d7:43:71:33:71:65:b8:4b:26:bc:03: c7:63:53:59:00:8b:8c:bf:20:74:bd:f3:5c:5d:db: 1a:03:96:72:dd:ef:f5:b8:47:e1:3c:37:db:3d:41: f1:7b:7a:9b:1f:4f:58:8f:17:b2:91:02:96:9d:47: 32:af:c3:c7:de:09:7d:ca:76:2b:08:c9:02:6b:91: 29:ee:63:45:00:a1:bb:ce:aa:13:a3:42:1e:90:4f: 86:2e:90:88:05:b1:a7:4c:4e:20:d6:c3:b1:cb:67: 60:53:65:08:ea:49:2e:d5:28:c1:8b:b4:62:8f:8b: 63:d0:05:95:2c:ff:62:30:3c:47:f0:4c:8e:5d:a6: 91:6e:4f:70:5e:31:d2:14:5a:b7:da:ee:34:39:dc: 95:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:D4:81:34:A2:B4:5F:DD:1B:9F:0F:D8:B7:5D:38:BC:EB:82:50:25 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/TdSBNKK0X90bnw_Yt104vOuCUCU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.163.214.0/24 Signature Algorithm: sha256WithRSAEncryption 87:01:fd:2b:58:1d:c0:9e:e1:80:1e:c0:77:5e:e4:75:ae:17: da:b9:70:99:1f:7f:b2:ee:1c:83:61:26:27:13:81:77:22:c8: 5c:16:77:35:a5:d8:a5:6b:a8:19:22:ca:2c:1a:1e:f9:6c:c9: 48:69:75:c1:e7:76:08:df:bf:bf:3a:87:96:e3:2d:fd:01:4a: ab:c6:82:44:4a:12:b7:60:5c:84:3a:99:20:56:16:be:56:14: 81:75:56:7c:ed:38:c7:fb:75:d3:50:5b:7d:f9:3d:d1:89:08: b7:87:a7:16:b8:91:4a:1b:af:1a:e9:12:7a:50:f9:b5:e3:94: e7:ce:e8:ac:4d:36:83:4d:d1:f1:f4:d0:08:0c:51:e5:8c:07: 73:f0:45:96:12:d1:9d:7a:03:46:03:e3:41:1f:12:4e:cb:26: ab:a9:7a:15:f5:2d:2c:ae:41:12:61:90:94:df:68:17:4c:d9: e8:0e:e7:6c:a6:5d:fd:ce:28:2d:c9:8f:98:8d:0e:e4:5f:74: 35:60:8e:27:4c:70:fc:07:33:4b:ef:86:66:e2:0f:81:30:75: eb:9c:84:e0:d6:29:81:79:5c:78:d2:dd:76:7c:7c:53:44:34: 95:2e:f7:ea:3d:12:5a:80:4b:57:5d:3a:6b:99:7a:3b:c8:1f: 8d:71:f8:8b -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICD54wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMzA5MDEw ODI5MjFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDRERDQ4MTM0QTJCNDVG REQxQjlGMEZEOEI3NUQzOEJDRUI4MjUwMjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDbVaPtnU8Pz852WX/XQOHd2EBWPoj9KVyWhTVDfk23lpepZD0q DJsmwj2iFfyAWnka3d/+HeE0hVP1OXyyoYaXSRzGcQbKXo5AORqv3qy65o6qVTT+ 0PA87Us7XrgX2kUyB7eyl+0iufZcR03XQ3EzcWW4Sya8A8djU1kAi4y/IHS981xd 2xoDlnLd7/W4R+E8N9s9QfF7epsfT1iPF7KRApadRzKvw8feCX3KdisIyQJrkSnu Y0UAobvOqhOjQh6QT4YukIgFsadMTiDWw7HLZ2BTZQjqSS7VKMGLtGKPi2PQBZUs /2IwPEfwTI5dppFuT3BeMdIUWrfa7jQ53JVZAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUTdSBNKK0X90bnw/Yt104vOuCUCUwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9UZFNCTktLMFg5MGJu d19ZdDEwNHZPdUNVQ1Uucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAy6PWMA0GCSqGSIb3DQEBCwUAA4IBAQCHAf0rWB3AnuGAHsB3XuR1rhfauXCZ H3+y7hyDYSYnE4F3IshcFnc1pdila6gZIsosGh75bMlIaXXB53YI37+/OoeW4y39 AUqrxoJEShK3YFyEOpkgVha+VhSBdVZ87TjH+3XTUFt9+T3RiQi3h6cWuJFKG68a 6RJ6UPm145TnzuisTTaDTdHx9NAIDFHljAdz8EWWEtGdegNGA+NBHxJOyyarqXoV 9S0srkESYZCU32gXTNnoDudspl39zigtyY+YjQ7kX3Q1YI4nTHD8BzNL74Zm4g+B MHXrnITg1imBeVx40t12fHxTRDSVLvfqPRJagEtXXTprmXo7yB+NcfiL -----END CERTIFICATE-----Generated at Tue Jun 18 13:13:36 2024 by rpki-client on console-fra.rpki-client.org