$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Xu63o6KNYYcVwwRRB9yEdGe89QQ.roa File: Xu63o6KNYYcVwwRRB9yEdGe89QQ.roa (raw, json) Hash identifier: CIissMLAzxQqvl/TVpb4EgxnVF7orheiqMq4tReyZ4o= Subject key identifier: 5E:EE:B7:A3:A2:8D:61:87:15:C3:04:51:07:DC:84:74:67:BC:F5:04 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 0FB8 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Xu63o6KNYYcVwwRRB9yEdGe89QQ.roa Signing time: Fri 01 Sep 2023 08:29:28 +0000 ROA not before: Fri 01 Sep 2023 08:29:28 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131627 IP address blocks: 150.117.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 08:21:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4024 (0xfb8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Sep 1 08:29:28 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=5EEEB7A3A28D618715C3045107DC847467BCF504 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:19:f9:47:6e:63:0b:71:9f:f0:29:cf:a1:0b: e6:67:c5:d7:7c:78:44:f7:b2:1b:01:ca:a2:ed:74: 03:3b:de:b6:ed:a8:bd:d3:78:77:09:12:68:3b:37: fc:42:44:8e:5b:8e:ad:98:87:13:6c:ac:d5:9a:26: de:9f:5b:a1:49:3b:58:de:1a:b4:5c:91:05:8a:35: fc:d5:94:78:b9:9e:55:ac:14:98:97:77:ee:7e:75: 1c:f7:be:0f:40:0b:cb:c1:d8:80:73:f5:fb:3c:90: a9:e4:39:9b:f1:b1:a8:d8:f7:80:29:9e:4f:b2:73: 1e:98:7f:de:7e:9c:2e:06:b9:df:86:92:d1:d4:6f: 35:3a:ea:4d:0d:c7:57:43:a5:42:87:69:d8:94:e7: c8:e0:6d:eb:b2:b0:2a:67:38:0c:a1:5a:79:ac:c1: 4d:fd:04:21:07:43:53:6c:73:79:1d:28:7b:28:36: fa:d1:74:26:ab:21:9b:91:2c:3c:68:23:53:92:60: ef:95:e2:e9:e2:da:86:5d:cd:bb:45:20:82:c3:f0: 0c:7e:a1:06:4f:77:ae:cd:2f:36:f5:b8:1b:b0:a9: d0:9c:35:28:cd:8c:7a:a3:fe:74:2c:93:b9:ed:be: 87:e9:55:8a:d0:85:45:f6:92:ca:4c:ea:e5:18:b5: be:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:EE:B7:A3:A2:8D:61:87:15:C3:04:51:07:DC:84:74:67:BC:F5:04 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Xu63o6KNYYcVwwRRB9yEdGe89QQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.117.128.0/19 Signature Algorithm: sha256WithRSAEncryption a8:8c:7b:5c:bc:f6:81:08:0b:cc:62:29:38:d5:68:80:5c:19: b6:5f:87:38:54:ca:0b:7f:f8:96:60:44:6f:ef:ef:4f:f0:36: 36:de:d3:bb:3e:ea:71:77:31:78:ef:7f:0f:06:83:15:c9:d5: ae:31:80:7c:42:8d:b9:e1:fa:c9:c1:b5:86:fc:a7:a3:33:c8: 71:ec:86:ba:ef:81:d6:f4:7d:35:b8:39:57:35:49:5f:4b:29: 1d:f5:57:c1:9a:b5:ff:28:5b:03:14:66:9c:b0:74:8f:89:1d: ab:2a:97:4e:52:7c:e8:d8:79:e8:9a:7f:07:3c:71:c0:28:09: 98:a9:49:17:eb:03:88:45:f4:6a:03:da:d4:7a:b2:f2:03:42: d8:9e:c2:ca:d6:26:87:08:5c:e4:49:ca:6d:ea:a0:65:29:b0: c5:21:a4:4e:33:dd:f0:c2:8b:67:ee:3a:47:d4:35:21:3a:8e: 3f:53:d6:79:92:b1:f1:19:73:40:7d:bb:6c:87:93:01:5c:a8: e5:16:cd:60:06:d6:6d:aa:22:91:0a:36:be:f5:6c:bd:08:ad: ff:ee:e4:7e:db:ac:d9:77:ac:f3:05:fa:43:bc:00:bf:07:df: 23:d2:22:b2:58:2c:86:50:84:c6:e1:ef:97:b0:1f:87:46:fb: 2b:c6:53:7a -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICD7gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMzA5MDEw ODI5MjhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDVFRUVCN0EzQTI4RDYx ODcxNUMzMDQ1MTA3REM4NDc0NjdCQ0Y1MDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCyGflHbmMLcZ/wKc+hC+Znxdd8eET3shsByqLtdAM73rbtqL3T eHcJEmg7N/xCRI5bjq2YhxNsrNWaJt6fW6FJO1jeGrRckQWKNfzVlHi5nlWsFJiX d+5+dRz3vg9AC8vB2IBz9fs8kKnkOZvxsajY94Apnk+ycx6Yf95+nC4Gud+GktHU bzU66k0Nx1dDpUKHadiU58jgbeuysCpnOAyhWnmswU39BCEHQ1Nsc3kdKHsoNvrR dCarIZuRLDxoI1OSYO+V4uni2oZdzbtFIILD8Ax+oQZPd67NLzb1uBuwqdCcNSjN jHqj/nQsk7ntvofpVYrQhUX2kspM6uUYtb7VAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUXu63o6KNYYcVwwRRB9yEdGe89QQwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9YdTYzbzZLTllZY1Z3 d1JSQjl5RWRHZTg5UVEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQFlnWAMA0GCSqGSIb3DQEBCwUAA4IBAQCojHtcvPaBCAvMYik41WiAXBm2X4c4 VMoLf/iWYERv7+9P8DY23tO7PupxdzF4738PBoMVydWuMYB8Qo254frJwbWG/Kej M8hx7Ia674HW9H01uDlXNUlfSykd9VfBmrX/KFsDFGacsHSPiR2rKpdOUnzo2Hno mn8HPHHAKAmYqUkX6wOIRfRqA9rUerLyA0LYnsLK1iaHCFzkScpt6qBlKbDFIaRO M93wwotn7jpH1DUhOo4/U9Z5krHxGXNAfbtsh5MBXKjlFs1gBtZtqiKRCja+9Wy9 CK3/7uR+26zZd6zzBfpDvAC/B98j0iKyWCyGUITG4e+XsB+HRvsrxlN6 -----END CERTIFICATE-----Generated at Tue Jun 18 13:13:36 2024 by rpki-client on console-fra.rpki-client.org