$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ZUOr29opJ4ADTZwYS-EzY9AWmq0.roa File: ZUOr29opJ4ADTZwYS-EzY9AWmq0.roa (raw, json) Hash identifier: 2axAufWChWhZ6zgCqOTckD4vRywH5GBH/qTimDbgdM8= Subject key identifier: 65:43:AB:DB:DA:29:27:80:03:4D:9C:18:4B:E1:33:63:D0:16:9A:AD Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 0FAB Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ZUOr29opJ4ADTZwYS-EzY9AWmq0.roa Signing time: Fri 01 Sep 2023 08:29:24 +0000 ROA not before: Fri 01 Sep 2023 08:29:24 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 10085 IP address blocks: 203.163.194.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 08:21:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4011 (0xfab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Sep 1 08:29:24 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=6543ABDBDA292780034D9C184BE13363D0169AAD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:7f:4c:a1:79:12:4d:df:c0:2d:d1:ce:b0:f4: 4d:88:36:15:e2:01:9b:2b:c2:d0:d8:5e:9a:61:f7: 61:6e:11:9b:35:78:03:32:8b:9c:34:3c:51:73:9e: 6a:7f:e0:d3:e3:f7:80:66:3b:60:26:84:9d:8b:a4: a7:cc:db:a4:68:c0:28:49:eb:5a:30:a2:38:52:69: 41:7b:35:2a:c7:46:99:42:fb:c7:4b:ae:b7:eb:6f: 19:9f:a4:be:4a:a8:f9:bc:e9:92:56:5c:fc:76:74: 09:01:53:ca:17:87:5a:a5:45:fa:60:6e:9b:c9:9a: f2:69:e8:c4:cd:49:75:25:c0:0f:9d:23:48:0d:1a: 3f:ba:c3:45:7b:b2:a1:fa:f4:93:4f:22:3e:d6:22: ff:29:fa:a0:4b:0f:01:6c:1a:72:c9:fe:26:57:14: 83:0b:d5:ba:d8:7f:ba:39:f4:11:76:40:f8:89:a2: 51:77:43:2f:f0:d3:d3:f4:10:fc:24:43:f9:d3:9e: d5:5b:1e:5c:fc:6e:33:c1:6a:39:b8:0e:45:fc:f7: fc:f8:0e:fc:9e:50:90:2d:b8:1b:38:c3:bc:f2:67: f5:c8:ca:11:d6:4a:89:73:3e:b3:2c:38:d8:ef:af: 4f:b9:ac:86:af:c2:5c:ee:b2:57:5b:40:2e:56:0d: 97:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:43:AB:DB:DA:29:27:80:03:4D:9C:18:4B:E1:33:63:D0:16:9A:AD X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/ZUOr29opJ4ADTZwYS-EzY9AWmq0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.163.194.0/23 Signature Algorithm: sha256WithRSAEncryption 95:92:8c:38:35:b3:38:2e:60:ed:9a:e9:92:e0:76:99:a9:c9: f9:73:91:11:7f:70:91:ab:03:93:33:1f:ad:26:1e:8e:ea:59: a3:94:44:98:f8:84:88:8b:9b:b9:ee:4d:16:28:89:15:f3:8f: 22:99:35:79:b1:40:4e:4f:8b:ad:bb:05:50:f1:0d:4b:5b:94: 87:b4:07:22:d0:ac:b3:d1:82:c8:53:3e:ff:ad:aa:24:73:10: 85:bb:02:ef:c8:6a:6d:f2:64:09:f8:d5:b3:72:e0:de:3b:e7: f6:dc:c7:e4:3c:1b:a8:c5:41:d1:a3:7b:8c:cf:59:ea:ce:10: 24:f8:0d:a2:bf:46:5c:d8:6e:46:31:2b:9f:e5:12:09:6f:35: e9:11:a1:c0:33:66:ca:5a:14:f5:97:b5:03:07:0a:d7:af:cd: 38:c9:ba:02:73:a1:52:e5:da:00:ea:2b:10:41:3a:86:aa:b8: c1:39:30:e8:17:fb:d3:f0:cc:d3:e6:c2:83:df:03:ba:f4:bc: d5:65:2b:b8:c4:f6:aa:6b:38:8a:13:a1:74:86:15:e2:36:1c: 30:67:fb:b8:32:9c:86:26:4d:be:14:d3:ef:f1:b3:ce:5b:ab: db:f2:08:fd:7a:d0:01:e3:97:a2:d9:53:0a:8a:c1:1a:b0:b3: d0:0c:ba:18 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICD6swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMzA5MDEw ODI5MjRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDY1NDNBQkRCREEyOTI3 ODAwMzREOUMxODRCRTEzMzYzRDAxNjlBQUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqf0yheRJN38At0c6w9E2INhXiAZsrwtDYXpph92FuEZs1eAMy i5w0PFFznmp/4NPj94BmO2AmhJ2LpKfM26RowChJ61owojhSaUF7NSrHRplC+8dL rrfrbxmfpL5KqPm86ZJWXPx2dAkBU8oXh1qlRfpgbpvJmvJp6MTNSXUlwA+dI0gN Gj+6w0V7sqH69JNPIj7WIv8p+qBLDwFsGnLJ/iZXFIML1brYf7o59BF2QPiJolF3 Qy/w09P0EPwkQ/nTntVbHlz8bjPBajm4DkX89/z4DvyeUJAtuBs4w7zyZ/XIyhHW SolzPrMsONjvr0+5rIavwlzusldbQC5WDZdrAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUZUOr29opJ4ADTZwYS+EzY9AWmq0wHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9aVU9yMjlvcEo0QURU WndZUy1Felk5QVdtcTAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBy6PCMA0GCSqGSIb3DQEBCwUAA4IBAQCVkow4NbM4LmDtmumS4HaZqcn5c5ER f3CRqwOTMx+tJh6O6lmjlESY+ISIi5u57k0WKIkV848imTV5sUBOT4utuwVQ8Q1L W5SHtAci0Kyz0YLIUz7/raokcxCFuwLvyGpt8mQJ+NWzcuDeO+f23MfkPBuoxUHR o3uMz1nqzhAk+A2iv0Zc2G5GMSuf5RIJbzXpEaHAM2bKWhT1l7UDBwrXr804yboC c6FS5doA6isQQTqGqrjBOTDoF/vT8MzT5sKD3wO69LzVZSu4xPaqaziKE6F0hhXi NhwwZ/u4MpyGJk2+FNPv8bPOW6vb8gj9etAB45ei2VMKisEasLPQDLoY -----END CERTIFICATE-----Generated at Tue Jun 18 12:53:57 2024 by rpki-client on console-ams.rpki-client.org