$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/UlEcMh9ABYmcuuit0vNkgT1U83c.roa File: UlEcMh9ABYmcuuit0vNkgT1U83c.roa (raw, json) Hash identifier: OE4Ud24PMMG8ELWxf1zjVI9RPlA6QoRBE4NGlu4cZ9I= Subject key identifier: 52:51:1C:32:1F:40:05:89:9C:BA:E8:AD:D2:F3:64:81:3D:54:F3:77 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 0F81 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/UlEcMh9ABYmcuuit0vNkgT1U83c.roa Signing time: Fri 01 Sep 2023 08:29:13 +0000 ROA not before: Fri 01 Sep 2023 08:29:13 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 63199 IP address blocks: 203.163.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 08:21:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3969 (0xf81) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Sep 1 08:29:13 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=52511C321F4005899CBAE8ADD2F364813D54F377 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:8c:6d:1b:54:51:5f:ee:ab:90:03:22:07:51: 9b:28:83:0e:e6:a4:b6:16:c7:38:a7:d6:16:0b:fe: f9:7c:ce:fe:79:96:f0:57:56:b0:e5:19:d0:1f:30: 83:89:4f:1c:e1:5e:07:1f:35:7b:92:90:ea:44:52: 82:42:30:d2:96:65:4c:f4:86:b7:8b:23:65:d9:e6: 47:58:9b:b5:2f:58:41:a2:68:7c:b2:bd:77:e4:25: 94:a2:cc:8a:47:fb:11:09:1d:5c:3b:40:7e:85:d6: 3f:f3:d2:11:76:26:d8:40:02:9c:23:b4:8b:30:27: f3:7b:af:02:11:2b:03:ef:fb:be:3b:f1:ad:2f:88: 5f:1d:a1:e6:26:40:4e:0c:2a:a9:da:88:33:9d:90: 18:ad:02:6e:60:04:4d:3b:7e:cc:a0:6f:eb:32:ae: 4f:64:b9:e6:7b:0b:c0:ae:a2:b5:4b:73:9b:e7:58: d0:78:b4:01:2b:61:bb:ae:fb:a9:26:48:4c:12:0c: 73:a1:e0:e4:46:c8:b9:d0:ed:25:87:81:da:89:62: ca:d3:55:5c:bb:a6:48:ad:3f:14:67:d6:b5:60:1d: 7f:bb:dc:3d:f8:70:73:73:7d:50:b0:9f:7a:56:ef: d0:44:9a:44:25:e4:5e:a7:83:e7:f5:3e:d9:1a:e2: 33:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:51:1C:32:1F:40:05:89:9C:BA:E8:AD:D2:F3:64:81:3D:54:F3:77 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/UlEcMh9ABYmcuuit0vNkgT1U83c.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.163.216.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:9c:b9:72:a5:de:d1:e2:23:86:e7:76:5e:45:de:4f:24:eb: 21:4b:6f:19:0f:8c:bf:18:9e:32:aa:ab:58:06:c2:0a:73:14: 2d:de:8a:58:4d:fe:1f:ca:03:7b:71:48:4d:af:36:79:bc:d2: c1:2e:64:8e:05:82:cf:a0:c4:cb:93:75:8f:1b:34:8d:67:e4: cb:39:a5:2f:44:48:6f:54:75:ba:83:5b:cc:90:a8:8a:83:30: 1f:f5:fb:6d:61:37:ee:7b:38:ab:99:fd:94:1c:b1:7f:c2:b3: b9:58:15:4b:17:54:0a:9b:9e:2b:e1:97:4e:cf:e4:b7:07:48: 5f:fe:56:9e:16:9e:bb:46:c6:a0:17:de:06:b1:9b:8d:4f:7e: 4c:89:ae:26:bd:08:ea:3f:26:40:6e:08:b4:6c:54:9b:c4:ca: 74:78:cf:3a:67:3c:db:e8:a1:a6:35:12:44:8c:03:68:85:f3: 3e:e6:20:de:41:ab:5e:4e:67:a8:67:ce:fc:3c:88:ba:82:d9: a6:1f:d9:e2:e9:a8:c5:64:a1:41:1e:c1:7d:ac:66:08:1f:37: 58:93:55:a2:14:fb:01:7b:6f:2d:b0:3c:fd:32:a0:19:0a:85: c2:7a:d3:b2:3d:5c:7b:2f:1e:79:ca:b7:a9:1e:75:41:e4:89: 85:8a:9b:b2 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICD4EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMzA5MDEw ODI5MTNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDUyNTExQzMyMUY0MDA1 ODk5Q0JBRThBREQyRjM2NDgxM0Q1NEYzNzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCejG0bVFFf7quQAyIHUZsogw7mpLYWxzin1hYL/vl8zv55lvBX VrDlGdAfMIOJTxzhXgcfNXuSkOpEUoJCMNKWZUz0hreLI2XZ5kdYm7UvWEGiaHyy vXfkJZSizIpH+xEJHVw7QH6F1j/z0hF2JthAApwjtIswJ/N7rwIRKwPv+7478a0v iF8doeYmQE4MKqnaiDOdkBitAm5gBE07fsygb+syrk9kueZ7C8CuorVLc5vnWNB4 tAErYbuu+6kmSEwSDHOh4ORGyLnQ7SWHgdqJYsrTVVy7pkitPxRn1rVgHX+73D34 cHNzfVCwn3pW79BEmkQl5F6ng+f1Ptka4jOfAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUUlEcMh9ABYmcuuit0vNkgT1U83cwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9VbEVjTWg5QUJZbWN1 dWl0MHZOa2dUMVU4M2Mucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAy6PYMA0GCSqGSIb3DQEBCwUAA4IBAQB6nLlypd7R4iOG53ZeRd5PJOshS28Z D4y/GJ4yqqtYBsIKcxQt3opYTf4fygN7cUhNrzZ5vNLBLmSOBYLPoMTLk3WPGzSN Z+TLOaUvREhvVHW6g1vMkKiKgzAf9fttYTfuezirmf2UHLF/wrO5WBVLF1QKm54r 4ZdOz+S3B0hf/laeFp67RsagF94GsZuNT35Mia4mvQjqPyZAbgi0bFSbxMp0eM86 Zzzb6KGmNRJEjANohfM+5iDeQateTmeoZ878PIi6gtmmH9ni6ajFZKFBHsF9rGYI HzdYk1WiFPsBe28tsDz9MqAZCoXCetOyPVx7Lx55yrepHnVB5ImFipuy -----END CERTIFICATE-----Generated at Tue Jun 18 13:13:36 2024 by rpki-client on console-fra.rpki-client.org