$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/k6R6f8pr_0rlRE1tCA0tCknSTUM.roa File: k6R6f8pr_0rlRE1tCA0tCknSTUM.roa (raw, json) Hash identifier: qd24MGdhQ/mgzFBGwq/SjN/Od1NldVm1rHiStjJjJ5w= Subject key identifier: 93:A4:7A:7F:CA:6B:FF:4A:E5:44:4D:6D:08:0D:2D:0A:49:D2:4D:43 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 11C9 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/k6R6f8pr_0rlRE1tCA0tCknSTUM.roa Signing time: Mon 26 Aug 2024 05:11:08 +0000 ROA not before: Mon 26 Aug 2024 05:11:08 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 10085 IP address blocks: 203.163.208.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Sep 2024 03:51:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4553 (0x11c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 26 05:11:08 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=93A47A7FCA6BFF4AE5444D6D080D2D0A49D24D43 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:88:e7:e5:c7:16:d1:3d:5c:cd:df:f8:40:4e: a4:dc:a3:bb:33:96:cf:74:86:84:41:c0:c6:ca:1d: bf:c3:81:df:be:59:50:75:29:ea:c3:80:73:98:eb: d4:73:e4:e4:df:e4:d7:77:01:a4:63:bc:5c:64:0b: d0:83:1a:e7:b7:05:4d:be:fc:8d:b0:52:7c:1f:b6: 77:ff:f0:4c:e4:d9:9e:c5:87:6b:98:26:40:eb:19: 49:99:ac:0a:33:99:a5:e0:73:92:78:43:d0:70:39: d0:6f:e7:c7:65:5e:57:e6:ba:ad:1a:ee:12:47:03: bc:ed:78:a9:f0:57:48:e5:41:04:58:a4:9b:56:2c: 03:d2:98:ae:89:ea:55:0a:1e:74:6f:f9:1f:63:d5: 1c:6d:f4:de:51:82:df:4f:98:3b:49:1b:d1:fb:bd: b4:8c:7f:3b:31:07:80:af:d9:01:42:d3:06:ad:43: 26:1e:88:a2:9b:cb:3c:a5:b1:06:59:f8:fc:c9:6f: 36:73:86:73:d0:82:be:19:10:d5:8d:e1:73:5c:9c: d7:ac:21:4e:c2:64:04:f7:ea:af:57:30:84:53:9a: 02:ee:51:f8:d8:14:42:bf:25:a7:cd:ee:de:26:4f: 58:8a:52:30:46:83:9c:c6:01:29:b0:d3:08:6a:9f: ab:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:A4:7A:7F:CA:6B:FF:4A:E5:44:4D:6D:08:0D:2D:0A:49:D2:4D:43 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/k6R6f8pr_0rlRE1tCA0tCknSTUM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.163.208.0/22 Signature Algorithm: sha256WithRSAEncryption 4e:9d:a9:87:69:e3:96:fd:88:a7:10:1a:0d:2a:6a:82:ea:96: 08:4e:b0:3e:52:cf:d5:ae:f6:fe:bb:7f:3a:0e:c6:df:d3:97: 88:23:d6:f0:da:f2:a2:04:7f:80:74:23:59:40:a8:69:e3:3a: fd:8a:64:b4:bb:20:68:a8:59:eb:16:8d:fc:41:cc:a0:6c:49: 0a:cd:c2:3f:78:f2:1e:5c:0a:8d:08:1a:f0:76:98:95:4e:41: 14:a5:89:21:15:02:1d:53:95:8f:bc:67:1d:54:95:a5:0c:6d: 12:76:13:58:82:a7:af:74:5b:8c:72:71:eb:b0:90:b9:7e:8d: 4f:53:ea:16:0c:0b:a2:d2:b3:c0:10:36:62:a2:12:e8:7f:51: 17:ab:de:1f:5a:e7:b3:f5:81:45:8e:19:1b:fb:32:45:97:0e: dc:a1:34:17:cc:c6:e6:af:a1:7e:1f:b1:eb:16:2d:cb:b4:51: 8e:d2:cf:10:d4:18:71:77:51:e7:73:9f:19:2a:92:af:c6:47: af:c1:1d:14:5a:2c:22:70:d0:ff:4b:7f:f5:6e:52:1b:60:62: 20:85:78:2d:08:c7:24:20:c2:28:06:8c:35:d1:b1:e6:9f:9b: f9:a6:6b:d5:77:61:b5:b8:bf:45:34:a0:d1:40:28:b3:71:67: 53:9e:dc:d6 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEckwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNDA4MjYw NTExMDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDkzQTQ3QTdGQ0E2QkZG NEFFNTQ0NEQ2RDA4MEQyRDBBNDlEMjRENDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9iOflxxbRPVzN3/hATqTco7szls90hoRBwMbKHb/Dgd++WVB1 KerDgHOY69Rz5OTf5Nd3AaRjvFxkC9CDGue3BU2+/I2wUnwftnf/8Ezk2Z7Fh2uY JkDrGUmZrAozmaXgc5J4Q9BwOdBv58dlXlfmuq0a7hJHA7zteKnwV0jlQQRYpJtW LAPSmK6J6lUKHnRv+R9j1Rxt9N5Rgt9PmDtJG9H7vbSMfzsxB4Cv2QFC0watQyYe iKKbyzylsQZZ+PzJbzZzhnPQgr4ZENWN4XNcnNesIU7CZAT36q9XMIRTmgLuUfjY FEK/JafN7t4mT1iKUjBGg5zGASmw0whqn6upAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUk6R6f8pr/0rlRE1tCA0tCknSTUMwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9rNlI2Zjhwcl8wcmxS RTF0Q0EwdENrblNUVU0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCy6PQMA0GCSqGSIb3DQEBCwUAA4IBAQBOnamHaeOW/YinEBoNKmqC6pYITrA+ Us/Vrvb+u386Dsbf05eII9bw2vKiBH+AdCNZQKhp4zr9imS0uyBoqFnrFo38Qcyg bEkKzcI/ePIeXAqNCBrwdpiVTkEUpYkhFQIdU5WPvGcdVJWlDG0SdhNYgqevdFuM cnHrsJC5fo1PU+oWDAui0rPAEDZiohLof1EXq94fWuez9YFFjhkb+zJFlw7coTQX zMbmr6F+H7HrFi3LtFGO0s8Q1Bhxd1Hnc58ZKpKvxkevwR0UWiwicND/S3/1blIb YGIghXgtCMckIMIoBow10bHmn5v5pmvVd2G1uL9FNKDRQCizcWdTntzW -----END CERTIFICATE-----Generated at Fri Sep 27 23:52:47 2024 by rpki-client on console-ams.rpki-client.org