$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/XlgStMQlcPrC4amTGGAxVeYVc1s.roa File: XlgStMQlcPrC4amTGGAxVeYVc1s.roa (raw, json) Hash identifier: u5d3dGXaB9uZjF2IfqWcDBumjIJzThwWc95gyTU05Bw= Subject key identifier: 5E:58:12:B4:C4:25:70:FA:C2:E1:A9:93:18:60:31:55:E6:15:73:5B Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 0FAD Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/XlgStMQlcPrC4amTGGAxVeYVc1s.roa Signing time: Fri 01 Sep 2023 08:29:25 +0000 ROA not before: Fri 01 Sep 2023 08:29:25 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 17408 IP address blocks: 203.163.192.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 08:21:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4013 (0xfad) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Sep 1 08:29:25 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=5E5812B4C42570FAC2E1A99318603155E615735B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:95:c0:7b:fa:de:39:27:c4:e5:6f:36:a2:c5: b2:d2:35:36:7a:44:ad:dc:28:1b:1b:70:12:3f:bc: ab:ff:2e:c0:f4:41:fd:57:aa:ef:b6:4d:4d:54:3e: 43:12:4d:e6:98:ab:b9:dd:2b:b5:e2:8d:32:cb:b1: 44:5e:e8:79:90:2d:1d:79:32:cc:45:b8:dd:df:03: 09:55:81:00:d4:6e:96:79:aa:4b:58:2a:21:09:0e: d3:fd:9d:35:5f:14:dd:d7:9f:60:ce:3e:c5:7b:79: ad:5c:b4:0e:38:eb:67:37:08:4a:d9:aa:98:ee:ce: 4a:b5:65:f8:54:b4:f4:ba:a2:13:ed:a3:3e:f7:fc: 80:0a:7d:ef:ba:d8:02:e5:4d:26:2f:65:8f:dc:54: 81:e5:d7:47:69:c2:9e:b7:40:ba:7f:5d:34:84:50: 8d:db:73:d4:f1:6e:10:09:ee:9d:d7:41:dc:79:c5: 63:84:9a:30:72:b7:82:0f:d1:5b:d3:4d:43:79:ff: 8d:e3:ee:d4:15:74:69:2d:10:74:12:61:71:44:75: 1e:ec:4a:f1:60:dc:6a:da:50:10:80:e6:51:04:8c: 89:24:96:0a:81:10:11:c4:eb:6b:35:ae:02:c0:02: 60:05:9e:8e:ea:51:74:f5:2b:c3:42:43:34:aa:0f: 61:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:58:12:B4:C4:25:70:FA:C2:E1:A9:93:18:60:31:55:E6:15:73:5B X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/XlgStMQlcPrC4amTGGAxVeYVc1s.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.163.192.0/23 Signature Algorithm: sha256WithRSAEncryption 63:d2:9a:08:6c:07:e9:91:5b:4e:ef:27:4d:6b:77:93:15:9b: 04:73:13:28:3d:57:a6:6a:ef:31:11:66:c5:e6:02:ec:dd:83: 7d:9c:b8:fb:7a:80:0c:8f:95:95:88:c4:9c:04:0a:d7:02:f3: fb:35:e1:89:4e:3b:b2:1b:84:31:85:b5:c6:c4:fa:30:12:e8: 9e:44:f2:b8:84:95:16:a7:d2:4c:19:73:2c:7e:cf:6d:b8:ae: 3a:bb:68:4f:fd:3d:85:5a:fb:ed:14:49:5c:76:33:f7:75:7d: 20:7a:53:75:a9:ca:0f:48:84:06:47:16:1d:cf:9a:d6:e6:a6: d0:0a:b5:92:d1:ef:7e:3b:95:d3:88:dc:91:bd:cc:7a:df:90: 5d:d1:01:aa:06:c1:99:35:5e:e7:cb:75:eb:9b:84:95:bc:66: 04:81:1a:09:aa:68:ef:64:da:07:35:6c:d9:59:47:b3:95:e3: 4d:d3:c5:6a:39:6b:86:5c:00:54:c2:2f:84:cc:0e:d8:56:40: 3a:1e:cc:0a:ac:63:55:4a:64:a7:90:23:76:b7:b2:fc:68:da: 9d:21:c2:9c:8b:bb:e6:78:d1:78:eb:63:b0:09:7a:c9:ae:38: 3c:2b:5d:dd:45:4d:d4:75:49:dc:7a:fd:68:f9:aa:05:4e:47: 8e:04:fd:fe -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICD60wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMzA5MDEw ODI5MjVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDVFNTgxMkI0QzQyNTcw RkFDMkUxQTk5MzE4NjAzMTU1RTYxNTczNUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCylcB7+t45J8TlbzaixbLSNTZ6RK3cKBsbcBI/vKv/LsD0Qf1X qu+2TU1UPkMSTeaYq7ndK7XijTLLsURe6HmQLR15MsxFuN3fAwlVgQDUbpZ5qktY KiEJDtP9nTVfFN3Xn2DOPsV7ea1ctA4462c3CErZqpjuzkq1ZfhUtPS6ohPtoz73 /IAKfe+62ALlTSYvZY/cVIHl10dpwp63QLp/XTSEUI3bc9TxbhAJ7p3XQdx5xWOE mjByt4IP0VvTTUN5/43j7tQVdGktEHQSYXFEdR7sSvFg3GraUBCA5lEEjIkklgqB EBHE62s1rgLAAmAFno7qUXT1K8NCQzSqD2FvAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUXlgStMQlcPrC4amTGGAxVeYVc1swHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9YbGdTdE1RbGNQckM0 YW1UR0dBeFZlWVZjMXMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBy6PAMA0GCSqGSIb3DQEBCwUAA4IBAQBj0poIbAfpkVtO7ydNa3eTFZsEcxMo PVemau8xEWbF5gLs3YN9nLj7eoAMj5WViMScBArXAvP7NeGJTjuyG4QxhbXGxPow EuieRPK4hJUWp9JMGXMsfs9tuK46u2hP/T2FWvvtFElcdjP3dX0gelN1qcoPSIQG RxYdz5rW5qbQCrWS0e9+O5XTiNyRvcx635Bd0QGqBsGZNV7ny3Xrm4SVvGYEgRoJ qmjvZNoHNWzZWUezleNN08VqOWuGXABUwi+EzA7YVkA6HswKrGNVSmSnkCN2t7L8 aNqdIcKci7vmeNF462OwCXrJrjg8K13dRU3UdUncev1o+aoFTkeOBP3+ -----END CERTIFICATE-----Generated at Tue Jun 18 12:53:57 2024 by rpki-client on console-ams.rpki-client.org