$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/hxgju_K0owTlKOXz1R1C07XQV-g.roa File: hxgju_K0owTlKOXz1R1C07XQV-g.roa (raw, json) Hash identifier: eLQO5UYhXCqkiFZ/ZiKCnrM3M+D5eTf+TDeSc7X+s4o= Subject key identifier: 87:18:23:BB:F2:B4:A3:04:E5:28:E5:F3:D5:1D:42:D3:B5:D0:57:E8 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 0F69 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/hxgju_K0owTlKOXz1R1C07XQV-g.roa Signing time: Fri 01 Sep 2023 08:29:06 +0000 ROA not before: Fri 01 Sep 2023 08:29:06 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 132157 IP address blocks: 150.116.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 08:21:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3945 (0xf69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Sep 1 08:29:06 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=871823BBF2B4A304E528E5F3D51D42D3B5D057E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:33:26:b4:52:ae:cf:ab:f6:c0:84:56:c3:87: fb:d1:1c:3b:07:12:9d:d1:61:d3:ac:7a:b1:69:d4: 72:cb:56:fd:f2:bb:2c:90:87:8f:8a:35:4a:de:72: 9f:9f:13:72:18:f8:d6:6c:28:83:57:30:4c:bf:58: 28:7e:75:d5:44:ee:01:c8:84:4d:11:81:ca:97:5d: c1:e2:10:2d:be:6a:91:20:d6:c6:4c:64:90:5a:12: 1a:ff:9d:72:2a:44:29:51:16:8a:d2:4b:e9:95:9c: b8:26:82:ca:3d:a7:86:38:f1:ae:6e:7c:23:65:02: 8b:ba:3a:58:14:8b:2e:c0:28:3a:56:96:f3:4c:bb: e4:06:0f:a3:f2:9b:70:2b:7e:1a:01:2c:3d:8e:53: 79:27:b1:bc:4a:b4:0f:8a:54:c7:59:c7:3a:88:99: 7a:8c:c3:d9:a1:7c:a8:c6:08:a7:22:72:6f:01:ea: b5:2f:70:78:05:48:cd:22:ec:40:c4:ce:73:46:3a: e4:03:b9:04:b4:cd:c6:ec:e5:26:34:9d:05:46:fc: e9:b0:8c:d1:f3:db:e2:50:03:cb:4d:c4:db:24:0a: 02:7d:14:04:1c:4f:32:f7:35:b0:d9:9f:cc:07:2b: e4:e7:e0:09:5c:53:41:4d:d9:18:4f:13:ce:b0:8d: 22:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:18:23:BB:F2:B4:A3:04:E5:28:E5:F3:D5:1D:42:D3:B5:D0:57:E8 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/hxgju_K0owTlKOXz1R1C07XQV-g.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.118.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:3b:ef:4e:b9:c9:48:0e:79:5e:72:15:a3:bb:7e:bd:e3:b8: db:0c:9a:ac:f3:1d:87:c1:db:ef:31:3f:a3:14:45:c2:aa:8b: ab:b1:ad:ac:b8:6a:51:7a:67:f8:04:11:94:e2:39:05:78:16: 45:19:f9:37:67:2f:bd:46:c6:cb:e3:59:00:7b:e1:43:cc:af: 2c:37:2e:29:8c:22:46:b5:cc:ef:52:30:89:fb:1c:86:bd:c9: 27:f2:5e:ec:ce:b2:99:48:7d:33:15:40:94:32:d1:d1:42:23: bb:7c:b2:d8:b3:2d:29:02:23:76:85:1f:6e:06:02:4d:e6:39: 65:56:e1:f2:86:ae:53:9c:c1:cc:12:d8:6f:95:3f:20:fa:e2: f3:70:d8:f8:46:32:b4:0a:f5:39:60:2d:fd:5f:b1:9e:c0:ea: 34:86:fa:3b:46:1d:d7:c7:21:37:83:71:73:2b:34:ae:b3:78: f1:a4:ed:85:64:35:ee:80:55:96:11:0b:2c:7d:a9:3b:82:c9: 7a:e5:0e:92:c6:ed:0e:b0:ac:38:06:54:a0:c1:16:bf:02:1f: da:e4:6e:5d:72:69:16:fc:cc:70:94:10:2d:57:fc:84:d2:25: 32:ac:ea:1a:58:f2:a0:b6:48:87:a2:56:01:fb:6d:31:17:2f: 6c:95:f8:f7 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICD2kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMzA5MDEw ODI5MDZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDg3MTgyM0JCRjJCNEEz MDRFNTI4RTVGM0Q1MUQ0MkQzQjVEMDU3RTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXMya0Uq7Pq/bAhFbDh/vRHDsHEp3RYdOserFp1HLLVv3yuyyQ h4+KNUrecp+fE3IY+NZsKINXMEy/WCh+ddVE7gHIhE0RgcqXXcHiEC2+apEg1sZM ZJBaEhr/nXIqRClRForSS+mVnLgmgso9p4Y48a5ufCNlAou6OlgUiy7AKDpWlvNM u+QGD6Pym3ArfhoBLD2OU3knsbxKtA+KVMdZxzqImXqMw9mhfKjGCKcicm8B6rUv cHgFSM0i7EDEznNGOuQDuQS0zcbs5SY0nQVG/OmwjNHz2+JQA8tNxNskCgJ9FAQc TzL3NbDZn8wHK+Tn4AlcU0FN2RhPE86wjSJnAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUhxgju/K0owTlKOXz1R1C07XQV+gwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9oeGdqdV9LMG93VGxL T1h6MVIxQzA3WFFWLWcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAlnR2MA0GCSqGSIb3DQEBCwUAA4IBAQAPO+9OuclIDnlechWju36947jbDJqs 8x2HwdvvMT+jFEXCqoursa2suGpRemf4BBGU4jkFeBZFGfk3Zy+9RsbL41kAe+FD zK8sNy4pjCJGtczvUjCJ+xyGvckn8l7szrKZSH0zFUCUMtHRQiO7fLLYsy0pAiN2 hR9uBgJN5jllVuHyhq5TnMHMEthvlT8g+uLzcNj4RjK0CvU5YC39X7GewOo0hvo7 Rh3XxyE3g3FzKzSus3jxpO2FZDXugFWWEQssfak7gsl65Q6Sxu0OsKw4BlSgwRa/ Ah/a5G5dcmkW/MxwlBAtV/yE0iUyrOoaWPKgtkiHolYB+20xFy9slfj3 -----END CERTIFICATE-----Generated at Tue Jun 18 13:13:36 2024 by rpki-client on console-fra.rpki-client.org