$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/mQM3NK1XA8mnb84fGIs8XLlg9oc.roa File: mQM3NK1XA8mnb84fGIs8XLlg9oc.roa (raw, json) Hash identifier: b1Te+U5t7CoKFd0BZGqyTjaUWpGSiZrYkEFPaVLIx1w= Subject key identifier: 99:03:37:34:AD:57:03:C9:A7:6F:CE:1F:18:8B:3C:5C:B9:60:F6:87 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 0F98 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/mQM3NK1XA8mnb84fGIs8XLlg9oc.roa Signing time: Fri 01 Sep 2023 08:29:20 +0000 ROA not before: Fri 01 Sep 2023 08:29:20 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131607 IP address blocks: 150.117.56.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 08:21:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3992 (0xf98) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Sep 1 08:29:20 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=99033734AD5703C9A76FCE1F188B3C5CB960F687 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:91:65:00:2f:77:3a:f7:be:23:13:20:48:8e: cd:39:f5:0a:85:4f:2d:04:be:ad:8d:56:59:1a:1e: b0:59:67:0b:26:f0:a4:a6:fb:88:66:c7:b1:22:1d: 37:8d:e0:52:2d:4e:b3:06:f6:54:43:29:04:27:2a: 0e:b1:c6:46:64:34:66:8b:a7:d0:8f:a2:ba:12:87: d2:91:46:62:9b:a8:65:8e:d0:59:d0:c4:50:da:48: c7:93:29:cb:03:0a:18:ee:d7:5e:15:0c:d1:33:cd: 1b:53:fc:c7:cb:d9:39:d5:2c:f5:28:c1:50:30:9f: 04:61:fb:d1:42:d5:8e:2a:2d:9e:0d:bd:b0:be:65: d9:43:51:62:bc:56:7e:0b:98:19:40:a6:21:ae:37: d6:fa:5e:f0:65:a9:c8:0b:e9:8d:e0:1f:79:94:0f: a4:cb:d8:89:28:6a:58:0b:06:86:b7:38:fe:08:ca: 9a:c6:68:80:a5:ea:ee:e1:e5:04:4d:3f:3f:a6:a6: 03:18:2e:df:35:8f:0e:a3:c0:0c:6a:96:d1:c8:71: 7a:27:7c:92:38:37:25:e0:a8:ee:27:bd:69:1a:67: bd:78:c9:f7:67:f2:85:8e:dc:82:e7:49:9c:77:70: 52:75:4a:d1:13:01:da:fd:fd:67:0e:0d:ab:49:cc: 30:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:03:37:34:AD:57:03:C9:A7:6F:CE:1F:18:8B:3C:5C:B9:60:F6:87 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/mQM3NK1XA8mnb84fGIs8XLlg9oc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.117.56.0/21 Signature Algorithm: sha256WithRSAEncryption 84:01:46:5c:ba:bb:7b:74:01:13:86:b3:23:90:92:b6:60:99: f0:6b:41:ff:5e:dd:79:f5:d8:95:24:9d:1a:43:02:91:00:74: 3c:31:7c:2c:ac:f3:3b:a7:ff:70:2e:00:83:7f:e4:fb:de:1e: 78:a9:6b:b8:10:cc:c1:af:0c:5b:b9:8a:62:31:c1:67:6e:8c: eb:9c:9e:c8:7a:d4:44:c8:5f:e3:21:a9:66:8a:9a:5c:88:f5: d0:9e:8e:ac:91:8e:b0:67:2d:15:56:b3:03:93:c5:af:ba:6b: e4:87:67:8d:0e:0f:70:cd:60:29:2d:b2:4a:19:6f:76:82:d0: c0:33:80:8a:b1:1e:1d:77:b6:48:4b:54:f4:18:5c:cf:6c:9a: 42:2d:83:cd:d0:93:59:2d:a6:1a:d2:4c:0f:36:d3:c0:7a:ad: 85:d9:9b:ff:c1:fa:3e:78:f6:fb:ce:6a:aa:95:e8:6b:4b:75: a4:a0:70:48:fb:f5:72:6d:ff:0f:49:d2:d4:ed:75:3c:26:49: 61:c7:57:b2:34:f4:f8:56:e6:56:b0:05:6a:1e:06:36:50:b4: 05:bc:8d:a5:ce:c3:5a:88:a1:16:eb:7c:26:22:55:a9:f1:69: 2f:ad:a4:ec:7d:47:a5:87:f2:2f:f4:97:86:75:a1:03:eb:d8: 0a:a7:1e:92 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICD5gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMzA5MDEw ODI5MjBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDk5MDMzNzM0QUQ1NzAz QzlBNzZGQ0UxRjE4OEIzQzVDQjk2MEY2ODcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8kWUAL3c6974jEyBIjs059QqFTy0Evq2NVlkaHrBZZwsm8KSm +4hmx7EiHTeN4FItTrMG9lRDKQQnKg6xxkZkNGaLp9CPoroSh9KRRmKbqGWO0FnQ xFDaSMeTKcsDChju114VDNEzzRtT/MfL2TnVLPUowVAwnwRh+9FC1Y4qLZ4NvbC+ ZdlDUWK8Vn4LmBlApiGuN9b6XvBlqcgL6Y3gH3mUD6TL2IkoalgLBoa3OP4IyprG aICl6u7h5QRNPz+mpgMYLt81jw6jwAxqltHIcXonfJI4NyXgqO4nvWkaZ714yfdn 8oWO3ILnSZx3cFJ1StETAdr9/WcODatJzDBDAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUmQM3NK1XA8mnb84fGIs8XLlg9ocwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9tUU0zTksxWEE4bW5i ODRmR0lzOFhMbGc5b2Mucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQDlnU4MA0GCSqGSIb3DQEBCwUAA4IBAQCEAUZcurt7dAEThrMjkJK2YJnwa0H/ Xt159diVJJ0aQwKRAHQ8MXwsrPM7p/9wLgCDf+T73h54qWu4EMzBrwxbuYpiMcFn bozrnJ7IetREyF/jIalmippciPXQno6skY6wZy0VVrMDk8Wvumvkh2eNDg9wzWAp LbJKGW92gtDAM4CKsR4dd7ZIS1T0GFzPbJpCLYPN0JNZLaYa0kwPNtPAeq2F2Zv/ wfo+ePb7zmqqlehrS3WkoHBI+/Vybf8PSdLU7XU8Jklhx1eyNPT4VuZWsAVqHgY2 ULQFvI2lzsNaiKEW63wmIlWp8WkvraTsfUelh/Iv9JeGdaED69gKpx6S -----END CERTIFICATE-----Generated at Tue Jun 18 12:53:57 2024 by rpki-client on console-ams.rpki-client.org