$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/gWCywVv-JgNDGLjHH5oKk-4QAzw.roa File: gWCywVv-JgNDGLjHH5oKk-4QAzw.roa (raw, json) Hash identifier: TQKg7XXUibmnEHLXaQq/Dn+L6gxNJIqcgj3cUFnSCjk= Subject key identifier: 81:60:B2:C1:5B:FE:26:03:43:18:B8:C7:1F:9A:0A:93:EE:10:03:3C Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 0F91 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/gWCywVv-JgNDGLjHH5oKk-4QAzw.roa Signing time: Fri 01 Sep 2023 08:29:18 +0000 ROA not before: Fri 01 Sep 2023 08:29:18 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 17408 IP address blocks: 113.21.80.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 08:21:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3985 (0xf91) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Sep 1 08:29:18 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=8160B2C15BFE26034318B8C71F9A0A93EE10033C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:b3:94:11:83:d5:86:75:07:bf:72:5d:f3:50: 1b:02:93:61:eb:bb:ef:cd:36:02:69:7c:d7:ba:3e: a2:00:4a:56:b0:ee:24:e1:9c:bc:ca:b4:f6:54:62: 35:cd:d3:b1:14:ad:bc:b3:b7:bd:2f:5b:63:83:51: 3d:fa:e0:e9:42:6c:21:e0:6b:4e:a9:2f:39:f0:39: 9c:f6:cd:df:2f:7a:33:e8:e7:9e:20:ec:02:6c:2e: 29:34:42:9f:12:f2:75:f4:6c:50:4e:35:c7:b2:55: e3:de:e6:9f:d6:1e:5a:a6:54:2e:97:36:26:a2:5a: ef:8c:36:8c:82:40:e8:15:eb:d1:a9:f4:ad:35:1a: f5:d3:1f:44:bd:7a:84:42:d6:7d:27:74:b8:98:f7: 70:27:b2:59:c1:5f:66:e8:b5:22:b1:0e:a1:be:4d: c5:55:e5:62:8c:12:e7:09:30:91:8c:58:48:67:4c: 6e:91:b3:2e:dc:8f:99:e4:a6:88:48:b2:07:04:11: 29:17:d5:37:1c:92:81:b8:00:28:c9:ec:37:a1:75: b7:25:5c:ee:e1:93:2a:9e:f3:7e:a8:f5:c7:be:19: fa:9f:12:23:ee:4e:db:ec:58:82:87:1a:47:96:73: d9:46:c4:53:d7:22:67:21:a8:29:ab:c5:15:88:32: 6b:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 81:60:B2:C1:5B:FE:26:03:43:18:B8:C7:1F:9A:0A:93:EE:10:03:3C X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/gWCywVv-JgNDGLjHH5oKk-4QAzw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.21.80.0/21 Signature Algorithm: sha256WithRSAEncryption 1e:e6:5b:5b:70:09:71:2d:93:bc:b8:5d:af:f0:a5:39:66:44: b2:84:fc:64:2a:a3:f2:94:6c:30:70:fc:38:30:57:fb:a6:ec: 17:35:a0:af:fb:12:2a:01:41:84:7d:09:4a:d3:be:a2:7d:3c: 56:09:09:c8:b9:9f:71:93:b5:51:0e:fb:4b:e0:04:87:e2:f1: b1:4b:28:15:4c:b0:1b:6e:d1:96:92:57:b4:8d:f5:0e:89:74: 40:7d:ed:d3:f1:40:aa:33:66:c7:58:8f:90:c2:c8:4e:43:5e: 29:33:60:b6:c2:d1:ba:25:05:5a:25:d7:e1:bd:db:ea:f7:a4: 0f:05:e5:c0:b3:80:f3:fc:06:22:1b:15:8a:cb:b0:22:ae:89: 37:3b:28:fb:77:8f:39:02:5d:c3:04:62:50:92:b2:27:07:d2: ef:1f:87:52:3d:50:a4:53:09:d2:be:39:d7:45:a6:55:bb:48: 27:49:e5:42:3b:f3:e0:9b:d1:73:af:f3:8a:17:6a:70:bc:09: 5c:ba:26:17:68:80:d4:bc:3c:27:1d:2c:d9:a5:e5:8c:2a:3c: 60:ed:dd:31:b9:a8:b6:8d:53:6a:e0:25:1b:85:9e:73:8b:5a: 06:21:2d:d3:09:22:a0:90:74:80:12:c6:bd:89:1c:da:8a:e8: d9:1f:00:2d -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICD5EwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMzA5MDEw ODI5MThaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDgxNjBCMkMxNUJGRTI2 MDM0MzE4QjhDNzFGOUEwQTkzRUUxMDAzM0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1s5QRg9WGdQe/cl3zUBsCk2Hru+/NNgJpfNe6PqIASlaw7iTh nLzKtPZUYjXN07EUrbyzt70vW2ODUT364OlCbCHga06pLznwOZz2zd8vejPo554g 7AJsLik0Qp8S8nX0bFBONceyVePe5p/WHlqmVC6XNiaiWu+MNoyCQOgV69Gp9K01 GvXTH0S9eoRC1n0ndLiY93AnslnBX2botSKxDqG+TcVV5WKMEucJMJGMWEhnTG6R sy7cj5nkpohIsgcEESkX1TcckoG4ACjJ7DehdbclXO7hkyqe836o9ce+GfqfEiPu TtvsWIKHGkeWc9lGxFPXImchqCmrxRWIMmujAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUgWCywVv+JgNDGLjHH5oKk+4QAzwwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9nV0N5d1Z2LUpnTkRH TGpISDVvS2stNFFBencucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQDcRVQMA0GCSqGSIb3DQEBCwUAA4IBAQAe5ltbcAlxLZO8uF2v8KU5ZkSyhPxk KqPylGwwcPw4MFf7puwXNaCv+xIqAUGEfQlK076ifTxWCQnIuZ9xk7VRDvtL4ASH 4vGxSygVTLAbbtGWkle0jfUOiXRAfe3T8UCqM2bHWI+QwshOQ14pM2C2wtG6JQVa Jdfhvdvq96QPBeXAs4Dz/AYiGxWKy7Airok3Oyj7d485Al3DBGJQkrInB9LvH4dS PVCkUwnSvjnXRaZVu0gnSeVCO/Pgm9Fzr/OKF2pwvAlcuiYXaIDUvDwnHSzZpeWM Kjxg7d0xuai2jVNq4CUbhZ5zi1oGIS3TCSKgkHSAEsa9iRzaiujZHwAt -----END CERTIFICATE-----Generated at Tue Jun 18 13:13:36 2024 by rpki-client on console-fra.rpki-client.org