$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/YjcqpUef-uMh6AlhDYCZH65I5Sc.roa File: YjcqpUef-uMh6AlhDYCZH65I5Sc.roa (raw, json) Hash identifier: FT0fba2+iVBac6RrqQ7w6EFbXXFYFEvH60gS6SUcKAk= Subject key identifier: 62:37:2A:A5:47:9F:FA:E3:21:E8:09:61:0D:80:99:1F:AE:48:E5:27 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 11B7 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/YjcqpUef-uMh6AlhDYCZH65I5Sc.roa Signing time: Mon 26 Aug 2024 05:11:04 +0000 ROA not before: Mon 26 Aug 2024 05:11:04 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 132157 IP address blocks: 150.116.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Sep 2024 03:51:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4535 (0x11b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 26 05:11:04 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=62372AA5479FFAE321E809610D80991FAE48E527 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:b2:1e:72:3c:6d:bb:84:51:3c:9c:2e:1f:d4: 16:1e:53:f4:f9:71:40:7b:0c:5a:1b:44:4c:6c:dd: 97:0a:0c:2e:31:f4:8b:a6:78:a4:ef:26:a5:54:16: 98:0f:45:95:96:f1:dc:78:42:45:00:d8:12:86:d3: dc:9f:0e:da:0a:d5:a5:31:b5:56:c6:54:35:68:e6: ba:fd:3b:bd:1c:19:df:74:24:9b:c0:02:4f:00:d6: 8a:9d:d9:3b:cf:98:f4:83:00:9f:ff:f5:fb:f9:10: 7c:77:fe:07:97:13:ae:8a:37:07:37:ed:a3:27:b8: d2:03:66:85:c7:6e:1a:b3:98:43:82:e7:03:1f:65: a3:27:dd:a4:58:a3:90:36:93:6b:f9:df:a0:d2:6d: 55:d6:ac:e0:d7:e7:29:56:ba:c3:b1:6a:de:fe:6f: dd:6f:f0:8e:97:f5:42:f9:3a:84:9e:0b:a4:8d:14: 2d:39:4c:20:06:95:93:71:05:1d:a2:2c:70:45:cd: 78:89:5e:80:95:28:9d:e0:7c:d7:9f:5d:13:77:d6: 82:cd:6d:76:ae:1e:fb:5a:70:37:bc:5d:0b:1c:92: 81:5e:78:6f:b0:f7:61:a6:42:d8:a9:3c:f3:7e:7e: 93:bf:94:1b:65:bd:9f:bc:c9:b0:c2:8a:8c:96:49: 99:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:37:2A:A5:47:9F:FA:E3:21:E8:09:61:0D:80:99:1F:AE:48:E5:27 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/YjcqpUef-uMh6AlhDYCZH65I5Sc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.118.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:b8:2d:1b:b6:93:dc:67:8c:6b:ff:84:2f:e7:fa:b5:e6:22: 6d:02:8a:29:7d:ef:37:a7:51:44:03:e4:23:4f:74:7a:e0:f8: 3d:fe:48:2f:b7:79:a3:3e:e4:9e:ca:36:93:e3:4d:d0:55:b9: 05:66:65:59:1c:04:3e:ca:36:68:88:d3:f3:d4:07:03:49:4b: 07:63:47:60:f5:11:9f:c4:72:4d:5e:00:f8:8e:89:6e:ac:da: 82:2e:ed:42:b7:c2:de:4b:a9:34:c8:27:7b:96:ad:c2:f2:fa: c4:05:66:3e:63:b8:b7:9f:d2:30:7d:92:c8:4a:18:06:a6:e8: c4:97:79:56:5a:9e:12:57:89:8e:dc:50:fc:f3:55:ae:24:b7: 21:95:13:05:aa:9c:41:91:11:b1:c3:56:89:8b:e4:6a:5e:42: 6e:b6:28:69:b9:e0:9f:1a:74:02:26:aa:d6:b7:74:50:d7:ac: 75:61:ea:40:6d:6e:e6:2a:59:50:ec:2e:67:5f:21:c9:5c:29: 95:6d:d7:6d:b0:fb:34:2b:1f:e7:fa:04:6c:10:43:b8:75:1c: 3f:8b:6c:93:87:8b:d5:64:4e:2d:b4:b8:26:27:d8:3b:77:0c: 79:f2:ed:dd:4c:60:cc:5d:6b:73:97:64:00:b7:45:6f:ef:90: c0:46:62:69 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEbcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNDA4MjYw NTExMDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDYyMzcyQUE1NDc5RkZB RTMyMUU4MDk2MTBEODA5OTFGQUU0OEU1MjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVsh5yPG27hFE8nC4f1BYeU/T5cUB7DFobRExs3ZcKDC4x9Ium eKTvJqVUFpgPRZWW8dx4QkUA2BKG09yfDtoK1aUxtVbGVDVo5rr9O70cGd90JJvA Ak8A1oqd2TvPmPSDAJ//9fv5EHx3/geXE66KNwc37aMnuNIDZoXHbhqzmEOC5wMf ZaMn3aRYo5A2k2v536DSbVXWrODX5ylWusOxat7+b91v8I6X9UL5OoSeC6SNFC05 TCAGlZNxBR2iLHBFzXiJXoCVKJ3gfNefXRN31oLNbXauHvtacDe8XQsckoFeeG+w 92GmQtipPPN+fpO/lBtlvZ+8ybDCioyWSZnjAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUYjcqpUef+uMh6AlhDYCZH65I5ScwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9ZamNxcFVlZi11TWg2 QWxoRFlDWkg2NUk1U2Mucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAlnR2MA0GCSqGSIb3DQEBCwUAA4IBAQCeuC0btpPcZ4xr/4Qv5/q15iJtAoop fe83p1FEA+QjT3R64Pg9/kgvt3mjPuSeyjaT403QVbkFZmVZHAQ+yjZoiNPz1AcD SUsHY0dg9RGfxHJNXgD4jolurNqCLu1Ct8LeS6k0yCd7lq3C8vrEBWY+Y7i3n9Iw fZLIShgGpujEl3lWWp4SV4mO3FD881WuJLchlRMFqpxBkRGxw1aJi+RqXkJutihp ueCfGnQCJqrWt3RQ16x1YepAbW7mKllQ7C5nXyHJXCmVbddtsPs0Kx/n+gRsEEO4 dRw/i2yTh4vVZE4ttLgmJ9g7dwx58u3dTGDMXWtzl2QAt0Vv75DARmJp -----END CERTIFICATE-----Generated at Fri Sep 27 23:52:47 2024 by rpki-client on console-ams.rpki-client.org