$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/nBoigw58MpLw9INOPQ4y2gY1yOM.roa File: nBoigw58MpLw9INOPQ4y2gY1yOM.roa (raw, json) Hash identifier: Zx37NIhvUmS6MVyPrxylZ8qZFThICDWeIQOsqFrkipg= Subject key identifier: 9C:1A:22:83:0E:7C:32:92:F0:F4:83:4E:3D:0E:32:DA:06:35:C8:E3 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 0FC9 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/nBoigw58MpLw9INOPQ4y2gY1yOM.roa Signing time: Fri 01 Sep 2023 08:29:33 +0000 ROA not before: Fri 01 Sep 2023 08:29:33 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 17408 IP address blocks: 150.116.168.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 08:21:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4041 (0xfc9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Sep 1 08:29:33 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=9C1A22830E7C3292F0F4834E3D0E32DA0635C8E3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:d4:aa:f2:af:a8:8c:1f:f3:21:e2:2d:71:fd: 9c:fb:ad:c7:c5:9a:9a:dc:a0:a2:ce:15:e6:59:2e: d0:50:9d:58:89:0b:86:46:c9:9f:95:57:48:1e:f5: 98:86:f0:cf:fd:ec:3c:25:99:9c:68:5d:3f:b3:c1: 21:e7:08:dd:c7:e1:48:c1:6f:93:cb:4c:b0:f4:7b: 70:2a:0a:b7:9a:15:ed:e5:7d:fd:08:d1:e3:55:28: 7c:95:23:7a:29:d5:73:30:6f:a4:84:4f:9e:9a:3e: d2:15:28:20:75:88:f7:80:c7:c5:2f:f5:ba:7c:92: 84:4b:59:7a:d2:1a:90:d3:df:8f:9d:f9:4a:b8:1c: 68:82:ed:8e:ea:e3:d0:3e:de:9b:ba:69:85:92:ac: d7:35:cc:45:5e:58:a0:63:1a:8c:e3:ea:2c:92:d9: 0d:45:64:15:88:9b:e1:ef:8a:7a:f9:76:6f:41:23: bd:b0:81:bf:25:8e:f8:0a:44:2e:97:f6:90:53:f5: 36:f4:f9:2d:17:09:52:d1:be:04:35:74:77:bf:b5: a0:a2:ad:d9:5a:57:70:63:f7:bb:32:af:10:38:e6: a3:30:43:a5:24:38:81:37:74:cf:7b:32:b4:09:4d: f0:c6:6c:21:ed:03:44:80:a3:d0:65:33:b2:a3:72: 3a:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:1A:22:83:0E:7C:32:92:F0:F4:83:4E:3D:0E:32:DA:06:35:C8:E3 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/nBoigw58MpLw9INOPQ4y2gY1yOM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.168.0/23 Signature Algorithm: sha256WithRSAEncryption 5d:1e:c8:df:e9:11:e2:ff:2d:42:21:6b:1f:ee:c4:a3:1d:67: 46:36:0c:d9:40:df:b5:1c:96:f5:b9:01:f9:91:d4:c2:c7:bc: 79:b7:f1:61:02:bb:6c:c8:0a:b2:1c:8e:e2:7f:99:f6:58:94: 28:18:53:31:8a:70:ee:44:fb:2c:83:ce:ef:4c:03:e1:7e:e3: 8d:a4:8e:1e:60:aa:79:cc:25:21:7c:c8:7e:cb:c0:dd:91:ff: d1:b2:68:06:f5:93:42:c7:51:de:88:2f:93:29:b8:18:83:0d: 48:a8:aa:54:5f:31:d8:26:7e:ff:b0:3f:8a:c8:d5:4b:5f:d1: 4e:d1:55:94:81:18:d7:55:fa:6c:f2:e4:c2:08:9b:97:e3:9f: 9c:ef:dc:24:25:00:3b:59:5c:58:ea:c0:3a:29:82:15:52:28: fe:19:68:91:14:aa:82:86:6e:85:a2:2a:3d:37:66:a8:4d:31: e2:5e:0e:55:e7:6f:79:70:66:50:cd:34:81:35:6b:e2:79:f0: 2b:eb:2b:d9:7d:d7:6d:0f:99:9d:64:3b:19:79:5f:32:96:c0: a2:39:52:18:fb:0f:6e:98:4f:f2:26:4a:f6:5d:b6:7a:fb:ad: c2:ab:80:d2:c5:f6:d6:e1:25:0f:d3:60:28:e5:c1:5b:93:3b: 72:25:8e:89 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICD8kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMzA5MDEw ODI5MzNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDlDMUEyMjgzMEU3QzMy OTJGMEY0ODM0RTNEMEUzMkRBMDYzNUM4RTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQ1Kryr6iMH/Mh4i1x/Zz7rcfFmprcoKLOFeZZLtBQnViJC4ZG yZ+VV0ge9ZiG8M/97DwlmZxoXT+zwSHnCN3H4UjBb5PLTLD0e3AqCreaFe3lff0I 0eNVKHyVI3op1XMwb6SET56aPtIVKCB1iPeAx8Uv9bp8koRLWXrSGpDT34+d+Uq4 HGiC7Y7q49A+3pu6aYWSrNc1zEVeWKBjGozj6iyS2Q1FZBWIm+Hvinr5dm9BI72w gb8ljvgKRC6X9pBT9Tb0+S0XCVLRvgQ1dHe/taCirdlaV3Bj97syrxA45qMwQ6Uk OIE3dM97MrQJTfDGbCHtA0SAo9BlM7KjcjpHAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUnBoigw58MpLw9INOPQ4y2gY1yOMwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9uQm9pZ3c1OE1wTHc5 SU5PUFE0eTJnWTF5T00ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBlnSoMA0GCSqGSIb3DQEBCwUAA4IBAQBdHsjf6RHi/y1CIWsf7sSjHWdGNgzZ QN+1HJb1uQH5kdTCx7x5t/FhArtsyAqyHI7if5n2WJQoGFMxinDuRPssg87vTAPh fuONpI4eYKp5zCUhfMh+y8Ddkf/RsmgG9ZNCx1HeiC+TKbgYgw1IqKpUXzHYJn7/ sD+KyNVLX9FO0VWUgRjXVfps8uTCCJuX45+c79wkJQA7WVxY6sA6KYIVUij+GWiR FKqChm6Foio9N2aoTTHiXg5V5295cGZQzTSBNWviefAr6yvZfddtD5mdZDsZeV8y lsCiOVIY+w9umE/yJkr2XbZ6+63Cq4DSxfbW4SUP02Ao5cFbkztyJY6J -----END CERTIFICATE-----Generated at Tue Jun 18 13:13:36 2024 by rpki-client on console-fra.rpki-client.org