$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/b9HZTy8muq6023lDPgELb_nQjxQ.roa File: b9HZTy8muq6023lDPgELb_nQjxQ.roa (raw, json) Hash identifier: QHF5qS6RwfR+yhngpG4PhhqDOVapr8IsnEXwnImz55I= Subject key identifier: 6F:D1:D9:4F:2F:26:BA:AE:B4:DB:79:43:3E:01:0B:6F:F9:D0:8F:14 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 1252 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/b9HZTy8muq6023lDPgELb_nQjxQ.roa Signing time: Mon 10 Feb 2025 14:14:42 +0000 ROA not before: Mon 10 Feb 2025 14:14:42 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131627 IP address blocks: 150.116.140.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Apr 2025 17:36:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4690 (0x1252) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Feb 10 14:14:42 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6FD1D94F2F26BAAEB4DB79433E010B6FF9D08F14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:5c:16:1d:01:ba:9d:b4:df:2a:49:9c:95:9d: fa:1b:62:1a:cb:4b:c3:4d:24:2e:97:c9:21:05:39: e4:fc:86:ae:a2:85:7b:12:08:c0:8b:00:4a:4c:62: 11:17:38:13:bd:e5:03:1c:b5:3a:d5:d0:39:1d:d1: 97:f6:53:bd:b4:ac:e3:f6:95:a4:ea:56:f2:02:5a: 7c:d7:ba:dd:68:8a:fe:36:a6:47:f8:0b:39:52:2e: 1b:b4:0e:aa:9b:07:38:8a:af:2c:89:51:ff:21:c3: 9f:91:b8:7d:6d:ab:20:38:20:ec:57:43:18:75:ea: d6:61:2f:51:f4:37:c0:1b:60:a8:ae:d9:a6:a5:c0: 91:01:5e:21:0d:2c:ae:f3:86:1b:26:bc:12:7a:f6: 89:ae:e7:de:40:94:9c:16:4e:00:75:a8:a8:30:01: 5f:78:33:ac:c0:c0:29:16:d0:d2:d2:6e:66:a9:9a: de:5d:6a:97:3d:97:2c:ef:f2:59:26:c5:a6:d3:a9: f3:2e:d6:de:fd:95:ca:32:2c:a6:c7:f2:9f:0f:62: 51:a5:6a:7b:f1:93:11:e9:32:62:35:9e:00:cb:61: 9c:da:e2:31:2b:47:78:c3:b0:55:5c:2d:48:4d:2b: 4d:a3:b9:77:06:30:ed:70:c0:f9:98:b6:95:98:b1: ef:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:D1:D9:4F:2F:26:BA:AE:B4:DB:79:43:3E:01:0B:6F:F9:D0:8F:14 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/b9HZTy8muq6023lDPgELb_nQjxQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.140.0/22 Signature Algorithm: sha256WithRSAEncryption 68:16:45:28:27:51:41:7f:c6:0f:da:37:07:d6:02:a8:60:d2: bd:91:4a:19:24:94:6d:45:83:69:6a:ac:a5:b0:26:9d:13:7f: cd:03:ce:d4:d1:7f:14:f4:35:1d:90:af:da:33:30:fd:14:91: ff:10:f4:4d:79:2c:d3:4a:4c:a6:d5:b3:60:0b:16:65:1f:fd: 9a:61:c5:94:41:ae:38:c7:19:fe:76:da:59:af:d9:f1:46:94: e3:a2:75:5e:39:d2:cc:f9:36:fb:c4:24:9d:b1:54:21:b5:09: 39:0d:fd:e5:1d:bb:77:24:53:ee:25:3b:e5:b0:e6:c4:24:42: 4d:49:80:48:d0:19:c2:87:91:76:9d:6a:c0:67:73:36:2e:07: 55:f9:ef:13:00:86:e6:ed:39:ee:bb:16:c2:1f:6a:21:06:39: 75:34:52:49:c5:33:e0:cc:fa:47:b5:89:f1:71:00:99:c7:91: 0c:89:ea:8c:4f:9a:76:fa:71:c9:94:b9:ea:9e:03:29:4c:68: 98:25:bc:9f:cf:0d:93:d1:37:ef:57:0e:da:9d:e6:f5:63:94: 04:6b:e2:a4:e9:5a:74:ea:d6:e9:19:c1:ea:37:4e:15:ad:99: 1c:36:89:a9:ac:a2:c4:c6:b1:e3:11:bc:7c:9c:e2:3d:d0:07: 6f:6e:93:cf -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICElIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNTAyMTAx NDE0NDJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZGRDFEOTRGMkYyNkJB QUVCNERCNzk0MzNFMDEwQjZGRjlEMDhGMTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDcXBYdAbqdtN8qSZyVnfobYhrLS8NNJC6XySEFOeT8hq6ihXsS CMCLAEpMYhEXOBO95QMctTrV0Dkd0Zf2U720rOP2laTqVvICWnzXut1oiv42pkf4 CzlSLhu0DqqbBziKryyJUf8hw5+RuH1tqyA4IOxXQxh16tZhL1H0N8AbYKiu2aal wJEBXiENLK7zhhsmvBJ69omu595AlJwWTgB1qKgwAV94M6zAwCkW0NLSbmapmt5d apc9lyzv8lkmxabTqfMu1t79lcoyLKbH8p8PYlGlanvxkxHpMmI1ngDLYZza4jEr R3jDsFVcLUhNK02juXcGMO1wwPmYtpWYse8jAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUb9HZTy8muq6023lDPgELb/nQjxQwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9iOUhaVHk4bXVxNjAy M2xEUGdFTGJfblFqeFEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQClnSMMA0GCSqGSIb3DQEBCwUAA4IBAQBoFkUoJ1FBf8YP2jcH1gKoYNK9kUoZ JJRtRYNpaqylsCadE3/NA87U0X8U9DUdkK/aMzD9FJH/EPRNeSzTSkym1bNgCxZl H/2aYcWUQa44xxn+dtpZr9nxRpTjonVeOdLM+Tb7xCSdsVQhtQk5Df3lHbt3JFPu JTvlsObEJEJNSYBI0BnCh5F2nWrAZ3M2LgdV+e8TAIbm7TnuuxbCH2ohBjl1NFJJ xTPgzPpHtYnxcQCZx5EMieqMT5p2+nHJlLnqngMpTGiYJbyfzw2T0TfvVw7aneb1 Y5QEa+Kk6Vp06tbpGcHqN04VrZkcNomprKLExrHjEbx8nOI90AdvbpPP -----END CERTIFICATE-----Generated at Sat Apr 5 16:36:21 2025 by rpki-client