$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/kXG1QQ-7lywTXKpXwGAOyaz14ZM.roa File: kXG1QQ-7lywTXKpXwGAOyaz14ZM.roa (raw, json) Hash identifier: CBHH/Os1Oz5f4aAYukJCfzPOMfbupXsVVERDlAopsBo= Subject key identifier: 91:71:B5:41:0F:BB:97:2C:13:5C:AA:57:C0:60:0E:C9:AC:F5:E1:93 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 0F90 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/kXG1QQ-7lywTXKpXwGAOyaz14ZM.roa Signing time: Fri 01 Sep 2023 08:29:18 +0000 ROA not before: Fri 01 Sep 2023 08:29:18 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131607 IP address blocks: 150.117.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 08:21:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3984 (0xf90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Sep 1 08:29:18 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=9171B5410FBB972C135CAA57C0600EC9ACF5E193 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:f6:83:0d:fe:8a:29:45:34:d1:00:de:30:3e: d8:58:52:2c:8a:6c:f8:82:2b:d3:5c:6d:95:3a:7e: 20:af:cb:18:2e:81:28:25:0f:a5:01:a6:69:e1:b3: bf:a2:85:1c:cb:3e:0c:ca:80:b2:72:6b:de:c5:4b: b4:0c:42:22:5e:f3:40:a1:42:d3:0b:f1:15:cf:4d: a0:89:2d:aa:9e:c7:27:76:68:ac:c3:c3:c4:18:42: 16:d1:07:b9:b0:16:2a:d0:10:dc:74:fa:da:21:4e: cf:43:22:c0:3d:d3:c1:4a:32:f6:7d:5d:72:04:8e: ab:22:fb:ad:57:77:0f:ca:50:c6:38:5a:b3:93:60: a5:71:d7:10:db:6a:23:51:92:00:db:5e:d8:c4:94: e6:bb:92:53:36:87:ac:3e:b7:0c:6a:1e:17:c4:48: 61:58:b0:6b:6a:c0:c5:39:8c:22:5e:f5:3c:41:11: e7:b5:a2:52:a2:18:f2:81:59:74:d3:cc:2e:83:31: fc:fd:24:dc:81:70:ca:53:59:a7:eb:98:ce:a8:f6: 3d:c5:6f:81:a5:68:f2:31:6d:71:f9:16:4f:4f:a9: 16:60:95:4a:f5:15:be:40:5b:6c:08:7f:85:54:f8: d7:59:0e:44:a2:1b:0c:ae:05:2d:7c:6e:f7:e6:4a: 63:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:71:B5:41:0F:BB:97:2C:13:5C:AA:57:C0:60:0E:C9:AC:F5:E1:93 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/kXG1QQ-7lywTXKpXwGAOyaz14ZM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.117.192.0/19 Signature Algorithm: sha256WithRSAEncryption 53:a4:a2:82:7a:d2:80:02:1a:af:74:37:8e:0c:88:fe:06:bc: 63:10:6d:f6:67:fe:5c:43:32:8f:cf:f6:84:9e:0a:b4:0a:a3: 17:bb:8c:05:29:7b:e5:ab:e4:1d:e0:4f:53:ea:4b:c0:82:76: c4:ef:66:35:0c:64:5f:27:b5:fd:80:50:6e:41:74:c3:11:79: 87:fe:7f:a5:cc:ab:d5:c1:21:0d:0f:fb:84:ec:6c:97:52:03: 08:1c:7a:02:a9:bb:8f:bb:f7:7f:97:dc:78:6f:86:31:b2:2d: de:50:c5:7f:68:cd:cc:17:34:8e:5b:6b:3c:ad:9a:bd:38:66: 59:cc:70:bf:37:4b:29:3c:1c:93:35:7b:94:a6:a7:68:90:4b: c7:20:d3:d7:ba:a7:de:64:1b:bc:a5:d2:d3:bb:c6:82:a5:14: bc:b0:e7:03:a3:72:bc:40:1b:06:27:a3:12:f9:d1:bd:44:c5: 39:b2:79:88:97:99:40:6c:fa:fb:39:9c:a5:3e:36:f6:23:9e: 50:4c:16:25:10:21:c4:e8:03:02:2b:dd:42:0d:28:41:66:07: af:6a:1b:cc:8e:7e:be:c4:32:c0:8c:6d:45:d3:3a:01:0d:78: 07:aa:c6:8f:e1:36:a7:8d:e3:d8:43:37:83:74:40:99:35:d7: 38:c8:ec:b5 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICD5AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMzA5MDEw ODI5MThaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDkxNzFCNTQxMEZCQjk3 MkMxMzVDQUE1N0MwNjAwRUM5QUNGNUUxOTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDK9oMN/oopRTTRAN4wPthYUiyKbPiCK9NcbZU6fiCvyxgugSgl D6UBpmnhs7+ihRzLPgzKgLJya97FS7QMQiJe80ChQtML8RXPTaCJLaqexyd2aKzD w8QYQhbRB7mwFirQENx0+tohTs9DIsA908FKMvZ9XXIEjqsi+61Xdw/KUMY4WrOT YKVx1xDbaiNRkgDbXtjElOa7klM2h6w+twxqHhfESGFYsGtqwMU5jCJe9TxBEee1 olKiGPKBWXTTzC6DMfz9JNyBcMpTWafrmM6o9j3Fb4GlaPIxbXH5Fk9PqRZglUr1 Fb5AW2wIf4VU+NdZDkSiGwyuBS18bvfmSmMPAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUkXG1QQ+7lywTXKpXwGAOyaz14ZMwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9rWEcxUVEtN2x5d1RY S3BYd0dBT3lhejE0Wk0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQFlnXAMA0GCSqGSIb3DQEBCwUAA4IBAQBTpKKCetKAAhqvdDeODIj+BrxjEG32 Z/5cQzKPz/aEngq0CqMXu4wFKXvlq+Qd4E9T6kvAgnbE72Y1DGRfJ7X9gFBuQXTD EXmH/n+lzKvVwSEND/uE7GyXUgMIHHoCqbuPu/d/l9x4b4Yxsi3eUMV/aM3MFzSO W2s8rZq9OGZZzHC/N0spPByTNXuUpqdokEvHINPXuqfeZBu8pdLTu8aCpRS8sOcD o3K8QBsGJ6MS+dG9RMU5snmIl5lAbPr7OZylPjb2I55QTBYlECHE6AMCK91CDShB ZgevahvMjn6+xDLAjG1F0zoBDXgHqsaP4TanjePYQzeDdECZNdc4yOy1 -----END CERTIFICATE-----Generated at Tue Jun 18 12:53:57 2024 by rpki-client on console-ams.rpki-client.org