$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/bSfUpnn5P14A6lUUxN34vq-Yi9Y.roa File: bSfUpnn5P14A6lUUxN34vq-Yi9Y.roa (raw, json) Hash identifier: HzPLdik67OVBk0r2nFBmkgZRo7fX3DpZTPI9kU8xHaQ= Subject key identifier: 6D:27:D4:A6:79:F9:3F:5E:00:EA:55:14:C4:DD:F8:BE:AF:98:8B:D6 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 0FED Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/bSfUpnn5P14A6lUUxN34vq-Yi9Y.roa Signing time: Wed 11 Oct 2023 15:38:38 +0000 ROA not before: Wed 11 Oct 2023 15:38:38 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18186 IP address blocks: 223.26.76.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 08:21:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4077 (0xfed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Oct 11 15:38:38 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=6D27D4A679F93F5E00EA5514C4DDF8BEAF988BD6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:e3:28:2b:20:58:87:b1:2b:04:b1:dc:29:d7: 98:cc:91:62:1a:b1:43:0d:93:f7:92:24:a7:2b:72: 1e:6b:eb:48:54:8e:d1:35:ed:a4:e7:a4:66:8a:2f: 03:27:a4:e8:7b:aa:e5:2c:76:17:73:ac:fd:cc:1e: ea:de:7b:0f:87:b9:fd:ed:bc:f7:b5:2c:be:91:2c: eb:ab:32:04:bc:fb:cd:b4:63:00:28:61:1e:ae:43: 46:ab:3c:ca:e7:fe:0f:89:6d:7b:13:5e:d4:c8:d0: ff:ab:3a:54:48:c0:2e:20:15:ca:1c:38:f8:c9:0f: f9:a4:3b:35:e9:1e:e3:e1:75:75:52:1e:b6:56:7c: 36:aa:20:7f:ee:6b:43:91:ae:4e:c0:7b:cd:f8:02: fa:d4:86:41:96:e2:9a:dc:cf:73:bc:d1:09:1a:80: fc:23:60:66:38:30:be:75:2b:92:08:66:6c:fb:8c: fb:b5:52:6a:01:65:62:df:cc:80:d8:81:df:87:7b: 32:b0:cd:1c:c3:ba:fd:40:bf:69:54:e0:37:37:ee: e6:1c:fb:83:99:0c:a1:a2:c8:65:72:a0:52:75:a3: 8f:b5:6e:4c:6a:fc:8a:97:dd:56:22:8f:37:32:9a: 1f:e7:fb:24:2c:e8:7c:88:a3:6f:f7:0f:b7:25:8a: 86:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:27:D4:A6:79:F9:3F:5E:00:EA:55:14:C4:DD:F8:BE:AF:98:8B:D6 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/bSfUpnn5P14A6lUUxN34vq-Yi9Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.26.76.0/22 Signature Algorithm: sha256WithRSAEncryption 66:1d:66:8e:84:65:00:58:8e:bb:d9:eb:16:db:3b:c0:bd:6d: 2f:d0:ca:e8:bf:0c:16:d3:0d:7c:6c:06:41:a0:6d:2f:7e:4b: 2b:1f:f6:ee:28:47:14:af:42:b7:e7:b9:ee:e5:e4:bf:11:d8: 45:55:5e:c3:dc:26:ab:f4:94:46:a2:05:e3:ad:80:32:1d:9b: e5:b8:7e:b1:cf:06:01:78:73:84:c7:c5:0e:4d:3d:8c:1b:43: c7:27:83:ee:9c:a3:35:ce:70:79:16:2d:eb:61:3f:9d:c1:0f: e1:fc:ae:ff:d5:89:9b:ef:99:5b:f1:f9:5a:d3:1f:6f:ba:10: c1:19:f4:1a:2b:9e:8a:49:a7:3e:65:78:b9:7c:4e:b6:e4:7d: fb:67:b1:94:b4:26:ef:76:fc:4f:d0:29:90:e2:bc:db:70:08: 86:cb:f7:8e:07:27:2f:e2:a5:b2:6b:a0:a4:8f:89:b8:83:c4: fa:68:e6:0b:38:10:03:f6:0d:8c:08:c6:31:30:b1:6f:28:db: 9d:7a:b4:72:12:02:43:f8:16:a0:bb:6d:b9:c4:8a:55:ca:21: 70:35:48:f1:32:67:4a:62:6c:91:a5:c7:e6:95:9a:df:30:6d: bc:f4:44:f4:1b:52:a6:6e:31:e9:55:41:14:95:d8:78:f5:03: 97:7e:10:65 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICD+0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMzEwMTEx NTM4MzhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDZEMjdENEE2NzlGOTNG NUUwMEVBNTUxNEM0RERGOEJFQUY5ODhCRDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCr4ygrIFiHsSsEsdwp15jMkWIasUMNk/eSJKcrch5r60hUjtE1 7aTnpGaKLwMnpOh7quUsdhdzrP3MHureew+Huf3tvPe1LL6RLOurMgS8+820YwAo YR6uQ0arPMrn/g+JbXsTXtTI0P+rOlRIwC4gFcocOPjJD/mkOzXpHuPhdXVSHrZW fDaqIH/ua0ORrk7Ae834AvrUhkGW4prcz3O80QkagPwjYGY4ML51K5IIZmz7jPu1 UmoBZWLfzIDYgd+HezKwzRzDuv1Av2lU4Dc37uYc+4OZDKGiyGVyoFJ1o4+1bkxq /IqX3VYijzcymh/n+yQs6HyIo2/3D7clioZpAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUbSfUpnn5P14A6lUUxN34vq+Yi9YwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9iU2ZVcG5uNVAxNEE2 bFVVeE4zNHZxLVlpOVkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQC3xpMMA0GCSqGSIb3DQEBCwUAA4IBAQBmHWaOhGUAWI672esW2zvAvW0v0Mro vwwW0w18bAZBoG0vfksrH/buKEcUr0K357nu5eS/EdhFVV7D3Car9JRGogXjrYAy HZvluH6xzwYBeHOEx8UOTT2MG0PHJ4PunKM1znB5Fi3rYT+dwQ/h/K7/1Ymb75lb 8fla0x9vuhDBGfQaK56KSac+ZXi5fE625H37Z7GUtCbvdvxP0CmQ4rzbcAiGy/eO Bycv4qWya6Ckj4m4g8T6aOYLOBAD9g2MCMYxMLFvKNuderRyEgJD+Bagu225xIpV yiFwNUjxMmdKYmyRpcfmlZrfMG289ET0G1KmbjHpVUEUldh49QOXfhBl -----END CERTIFICATE-----Generated at Tue Jun 18 13:13:36 2024 by rpki-client on console-fra.rpki-client.org