$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/_AEBvZBYtgmplqXJT8ptLp1Skzo.roa File: _AEBvZBYtgmplqXJT8ptLp1Skzo.roa (raw, json) Hash identifier: 7lzpiULeVjQKW/8I6DWGDxKtSXBkzuZnsFmb6YKfaCY= Subject key identifier: FC:01:01:BD:90:58:B6:09:A9:96:A5:C9:4F:CA:6D:2E:9D:52:93:3A Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 0F74 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/_AEBvZBYtgmplqXJT8ptLp1Skzo.roa Signing time: Fri 01 Sep 2023 08:29:09 +0000 ROA not before: Fri 01 Sep 2023 08:29:09 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18049 IP address blocks: 223.26.84.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 08:21:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3956 (0xf74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Sep 1 08:29:09 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=FC0101BD9058B609A996A5C94FCA6D2E9D52933A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:73:d4:63:9c:e8:6a:ed:37:b9:8e:ff:82:ee: bc:99:61:2a:8f:f1:66:1f:2d:ad:8d:04:b2:f3:49: 42:35:b5:b1:f0:a5:3b:d3:70:1b:24:b8:e7:e1:5d: 8f:49:0f:d2:ab:e1:42:db:e4:57:a7:07:22:01:cc: 93:7a:d2:b6:70:65:7e:bb:0d:18:72:c2:69:40:bf: 01:55:92:50:50:85:5b:98:2e:94:af:16:c6:ac:17: 12:2c:68:21:0e:87:58:5d:9e:3e:04:26:fa:f6:54: e7:c1:14:98:00:30:30:c3:8e:b1:d8:be:df:9e:82: 3f:ae:3c:86:bb:25:03:c8:6c:fc:b1:de:db:01:72: 61:6e:dd:01:1f:cb:22:df:97:56:62:6a:4b:82:9d: 1d:3e:d9:a5:19:07:39:56:f2:36:13:18:6b:8c:dd: 0a:17:ec:94:42:fb:8e:9a:d3:81:0a:d0:3f:12:e2: 9c:47:c0:38:b2:78:a8:89:3e:2c:b5:50:ec:aa:d9: 77:6b:4d:e1:24:b3:ee:79:d8:03:5e:6d:84:0c:27: fb:5e:b7:4f:1a:54:af:7a:67:3d:ec:86:80:fe:0f: 55:b2:9c:c3:6d:d2:32:c2:38:96:79:65:e1:9b:81: 15:fb:7f:b2:33:cc:85:2f:12:39:44:90:73:7b:b1: bb:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:01:01:BD:90:58:B6:09:A9:96:A5:C9:4F:CA:6D:2E:9D:52:93:3A X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/_AEBvZBYtgmplqXJT8ptLp1Skzo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.26.84.0/22 Signature Algorithm: sha256WithRSAEncryption 89:fa:7b:d3:6f:53:df:58:61:ff:7e:78:13:32:57:ca:79:df: 6e:ee:c0:33:32:69:9b:25:b8:c6:d7:ef:2a:20:91:5e:f1:56: 3e:1a:2e:5e:b5:84:7d:09:25:d4:f4:97:22:db:76:1d:39:8f: af:41:78:72:18:f9:6e:b1:f7:c1:1c:eb:72:c3:80:a5:92:7a: fb:db:1c:14:4e:e3:d0:eb:6b:98:e7:7c:d9:0a:41:da:6a:b1: aa:52:36:20:dc:40:02:d4:6b:89:fc:10:77:4b:32:92:83:c3: f6:c9:7c:b5:58:3f:97:a1:88:c2:43:95:19:03:45:1e:3f:e5: 3a:c0:d6:e2:b1:5d:98:92:e3:df:b3:42:05:ac:9c:f1:8f:3b: 7f:a3:7e:29:36:99:4e:71:72:82:1f:29:d2:de:79:a8:b1:26: 2d:d1:e4:aa:20:10:eb:64:d5:8b:61:c0:e8:98:84:dc:b7:42: ee:4a:4b:2d:73:18:91:7f:f5:83:21:4d:6e:94:03:43:05:e1: fe:8a:94:6b:63:63:e5:4b:47:41:45:3e:10:9c:ef:10:6b:97: 3c:ee:6b:f4:64:da:5b:9b:17:dc:aa:93:37:f9:4b:4a:5c:71: e2:7a:76:d3:92:5e:11:b3:e7:f6:92:1e:f8:4d:de:72:2a:56: fe:37:e1:52 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICD3QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMzA5MDEw ODI5MDlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEZDMDEwMUJEOTA1OEI2 MDlBOTk2QTVDOTRGQ0E2RDJFOUQ1MjkzM0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDjc9RjnOhq7Te5jv+C7ryZYSqP8WYfLa2NBLLzSUI1tbHwpTvT cBskuOfhXY9JD9Kr4ULb5FenByIBzJN60rZwZX67DRhywmlAvwFVklBQhVuYLpSv FsasFxIsaCEOh1hdnj4EJvr2VOfBFJgAMDDDjrHYvt+egj+uPIa7JQPIbPyx3tsB cmFu3QEfyyLfl1ZiakuCnR0+2aUZBzlW8jYTGGuM3QoX7JRC+46a04EK0D8S4pxH wDiyeKiJPiy1UOyq2XdrTeEks+552ANebYQMJ/tet08aVK96Zz3shoD+D1WynMNt 0jLCOJZ5ZeGbgRX7f7IzzIUvEjlEkHN7sbvdAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU/AEBvZBYtgmplqXJT8ptLp1SkzowHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9fQUVCdlpCWXRnbXBs cVhKVDhwdExwMVNrem8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQC3xpUMA0GCSqGSIb3DQEBCwUAA4IBAQCJ+nvTb1PfWGH/fngTMlfKed9u7sAz MmmbJbjG1+8qIJFe8VY+Gi5etYR9CSXU9Jci23YdOY+vQXhyGPlusffBHOtyw4Cl knr72xwUTuPQ62uY53zZCkHaarGqUjYg3EAC1GuJ/BB3SzKSg8P2yXy1WD+XoYjC Q5UZA0UeP+U6wNbisV2YkuPfs0IFrJzxjzt/o34pNplOcXKCHynS3nmosSYt0eSq IBDrZNWLYcDomITct0LuSkstcxiRf/WDIU1ulANDBeH+ipRrY2PlS0dBRT4QnO8Q a5c87mv0ZNpbmxfcqpM3+UtKXHHienbTkl4Rs+f2kh74Td5yKlb+N+FS -----END CERTIFICATE-----Generated at Tue Jun 18 13:13:36 2024 by rpki-client on console-fra.rpki-client.org