$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/_TfIJszB5Fitk0pKSQmfGusTqik.roa File: _TfIJszB5Fitk0pKSQmfGusTqik.roa (raw, json) Hash identifier: VghZ7CjAiwr8E4pVH9JjpCMy3zFx3IPOrbGFvWRiYYk= Subject key identifier: FD:37:C8:26:CC:C1:E4:58:AD:93:4A:4A:49:09:9F:1A:EB:13:AA:29 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 0FC7 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/_TfIJszB5Fitk0pKSQmfGusTqik.roa Signing time: Fri 01 Sep 2023 08:29:32 +0000 ROA not before: Fri 01 Sep 2023 08:29:32 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131600 IP address blocks: 223.26.68.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 08:21:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4039 (0xfc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Sep 1 08:29:32 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=FD37C826CCC1E458AD934A4A49099F1AEB13AA29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:71:ec:b0:3f:96:6c:a1:6a:a8:7d:72:e7:52: 53:b6:80:fe:c9:df:c2:45:61:f0:7d:11:0d:df:d8: b3:0b:6b:39:d6:46:25:a1:eb:c6:93:c0:0b:62:b9: 7b:8b:29:4e:6c:c1:de:47:9b:f4:8a:16:1e:22:67: af:85:47:d9:eb:40:01:f3:4f:44:f6:16:c5:ae:db: 83:9d:48:de:db:12:84:1b:1b:6a:b1:ad:a9:dc:87: b6:c0:6e:46:e5:d7:11:58:5c:ff:72:6f:f2:4b:78: b0:ed:83:06:78:df:c6:69:1e:2f:bf:9b:73:06:da: e6:ec:67:5f:de:cb:7a:b7:1c:2c:23:10:9c:b6:19: b6:de:8e:87:a1:dd:a1:fb:fd:0e:89:c1:6b:30:e0: 6b:a7:21:20:6f:5c:7a:9d:e9:61:08:6f:fc:f4:9f: cf:21:43:44:dd:70:f4:a1:7a:72:bc:2d:9b:c7:42: 72:3a:aa:bb:ab:81:4b:05:16:75:9d:22:85:92:71: a8:76:b3:dc:a2:97:93:3f:43:4e:3f:b4:bb:02:c0: ed:e7:b6:74:fc:a3:a7:de:c8:ca:81:a8:51:d5:56: bb:30:0c:22:36:ab:72:af:68:10:63:59:a7:fe:e4: 19:58:b4:5f:75:49:42:76:02:71:e8:d5:91:53:39: de:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:37:C8:26:CC:C1:E4:58:AD:93:4A:4A:49:09:9F:1A:EB:13:AA:29 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/_TfIJszB5Fitk0pKSQmfGusTqik.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.26.68.0/24 Signature Algorithm: sha256WithRSAEncryption 44:20:0e:74:94:34:94:f1:92:e0:50:75:33:c2:d0:5e:7b:47: b3:88:ce:61:be:7b:88:7a:2b:13:90:5b:ae:ff:54:7f:c8:44: 31:b8:e0:9b:de:5c:11:74:30:8f:bf:21:20:e5:08:2c:55:ce: f9:c0:57:71:5f:d9:87:1b:28:f5:4c:fa:20:43:af:c2:c3:9b: df:27:62:83:09:1d:e6:91:c3:d1:f5:1b:37:6f:23:16:b5:fd: 8d:0b:dd:fe:80:7a:c7:c3:6b:a3:41:1a:df:cb:8e:a8:e5:70: 55:f5:fc:b5:8a:1e:3a:f4:4c:75:fb:de:bd:83:26:ec:99:55: 81:83:80:3b:4c:7f:43:8a:68:c1:40:30:c2:8c:04:ba:7a:a6: 10:f3:62:45:bb:ad:ef:e3:56:8f:42:5f:ca:37:e8:a3:e4:75: 5a:d9:55:2b:de:97:08:92:0e:71:d9:c6:03:f2:14:4b:9c:48: 3c:b8:b4:7b:59:e5:9f:82:47:e6:f0:15:ab:0f:67:ef:92:63: 77:0b:3f:5f:69:4f:0b:c0:eb:8c:8f:f2:91:7c:a3:10:3f:4c: 96:45:fb:5e:5d:a8:43:db:46:d7:bd:75:67:95:f8:af:0c:d1: b2:3a:fb:6a:95:1b:9d:4c:48:86:5e:74:05:4a:a0:2d:fb:a8: 55:0b:ab:d0 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICD8cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMzA5MDEw ODI5MzJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEZEMzdDODI2Q0NDMUU0 NThBRDkzNEE0QTQ5MDk5RjFBRUIxM0FBMjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCfceywP5ZsoWqofXLnUlO2gP7J38JFYfB9EQ3f2LMLaznWRiWh 68aTwAtiuXuLKU5swd5Hm/SKFh4iZ6+FR9nrQAHzT0T2FsWu24OdSN7bEoQbG2qx ranch7bAbkbl1xFYXP9yb/JLeLDtgwZ438ZpHi+/m3MG2ubsZ1/ey3q3HCwjEJy2 Gbbejoeh3aH7/Q6JwWsw4GunISBvXHqd6WEIb/z0n88hQ0TdcPShenK8LZvHQnI6 qrurgUsFFnWdIoWScah2s9yil5M/Q04/tLsCwO3ntnT8o6feyMqBqFHVVrswDCI2 q3KvaBBjWaf+5BlYtF91SUJ2AnHo1ZFTOd6FAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU/TfIJszB5Fitk0pKSQmfGusTqikwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9fVGZJSnN6QjVGaXRr MHBLU1FtZkd1c1RxaWsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQA3xpEMA0GCSqGSIb3DQEBCwUAA4IBAQBEIA50lDSU8ZLgUHUzwtBee0eziM5h vnuIeisTkFuu/1R/yEQxuOCb3lwRdDCPvyEg5QgsVc75wFdxX9mHGyj1TPogQ6/C w5vfJ2KDCR3mkcPR9Rs3byMWtf2NC93+gHrHw2ujQRrfy46o5XBV9fy1ih469Ex1 +969gybsmVWBg4A7TH9DimjBQDDCjAS6eqYQ82JFu63v41aPQl/KN+ij5HVa2VUr 3pcIkg5x2cYD8hRLnEg8uLR7WeWfgkfm8BWrD2fvkmN3Cz9faU8LwOuMj/KRfKMQ P0yWRfteXahD20bXvXVnlfivDNGyOvtqlRudTEiGXnQFSqAt+6hVC6vQ -----END CERTIFICATE-----Generated at Tue Jun 18 12:53:57 2024 by rpki-client on console-ams.rpki-client.org