$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/tjpO2IcR6M7Qf1T5lYVfBuLLhJ8.roa File: tjpO2IcR6M7Qf1T5lYVfBuLLhJ8.roa (raw, json) Hash identifier: R1cTDU1uG/HDuXmAY4uzUSW7AL0LfTP5EPHPI/W/rZ4= Subject key identifier: B6:3A:4E:D8:87:11:E8:CE:D0:7F:54:F9:95:85:5F:06:E2:CB:84:9F Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 0F93 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/tjpO2IcR6M7Qf1T5lYVfBuLLhJ8.roa Signing time: Fri 01 Sep 2023 08:29:19 +0000 ROA not before: Fri 01 Sep 2023 08:29:19 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131607 IP address blocks: 150.117.208.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 08:21:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3987 (0xf93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Sep 1 08:29:19 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=B63A4ED88711E8CED07F54F995855F06E2CB849F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:d8:fc:e9:cc:da:f5:39:e1:99:43:7d:fa:61: 2c:fa:98:2f:05:0a:7e:d3:80:ee:da:03:96:42:c2: 83:0a:7f:90:0b:55:e1:ba:db:69:4a:d6:aa:70:80: e5:94:b1:46:83:db:47:58:a0:39:23:f9:15:d1:f6: 43:cb:bc:5a:55:3f:5b:d3:72:d0:87:fc:32:82:71: 26:e4:4a:6d:63:2c:21:fa:7a:6e:3d:a8:c8:33:5e: 8e:3e:4e:61:51:cc:8e:18:b4:42:bb:85:9e:0d:19: 25:25:ff:53:87:9d:4a:33:7f:95:a0:51:13:6b:52: 78:7f:37:7f:ca:79:53:fc:74:7f:7a:34:6c:9a:1b: bd:24:fd:2f:3e:27:40:98:e0:0c:dd:1f:01:1b:c8: c2:c4:77:f0:85:9c:a3:56:b6:a4:21:11:d6:9d:99: 87:d0:69:13:a1:eb:0d:55:f2:ee:d7:3a:17:8e:90: ac:d1:03:17:98:aa:7d:cc:a7:76:7f:4b:55:f8:c5: 02:78:2c:62:6b:86:72:7c:3c:5f:23:fa:db:0a:1c: b4:09:92:5c:02:93:70:44:50:ac:79:f6:22:43:d3: 2e:7d:e6:70:c0:b1:00:6a:06:48:6c:c0:15:e0:df: 46:93:a9:ac:2f:94:96:19:8b:71:2e:b5:5d:40:78: 76:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:3A:4E:D8:87:11:E8:CE:D0:7F:54:F9:95:85:5F:06:E2:CB:84:9F X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/tjpO2IcR6M7Qf1T5lYVfBuLLhJ8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.117.208.0/20 Signature Algorithm: sha256WithRSAEncryption 39:14:9f:c8:67:cd:b9:68:86:2e:e8:5b:c9:41:62:2f:75:02: f6:9b:a3:78:d0:4c:7c:8c:12:19:7e:7b:7f:05:5d:f1:87:c3: b0:95:08:44:6e:2b:c0:6f:cb:ed:03:b6:b6:2b:e0:a6:1e:d5: 92:53:df:27:5f:14:dc:4c:69:3a:94:49:30:2a:05:e3:4b:76: 10:f5:da:d9:cb:18:b2:1a:e1:c5:0e:24:aa:68:61:73:63:65: ef:91:8e:97:cb:ee:9f:0d:05:f2:65:7c:1f:fb:4c:2a:7e:e2: 52:6c:6d:0c:41:c0:86:69:1d:c9:b4:00:6f:54:b8:75:cc:ef: aa:7d:c9:d3:47:c2:80:b9:5f:5c:d3:cc:92:a3:04:14:9e:ba: d9:5a:3f:1f:39:dd:5d:cd:b0:d8:0f:91:fc:18:23:ce:7a:44: ae:67:f7:76:f8:cd:b5:0a:c5:40:38:be:a9:c2:59:58:cb:17: 4a:39:5b:eb:72:a0:04:25:b4:a3:9d:eb:56:20:80:78:21:8d: 16:a3:d0:b3:ca:56:d2:a6:f6:10:b8:57:68:0e:77:7a:8a:45: 6c:ad:fb:1a:a0:90:c8:c7:ae:29:42:b2:18:be:c0:a6:fe:1d: 88:1f:5b:45:d6:b6:9e:17:e9:d4:36:3d:45:2c:0b:8f:2d:cf: 5b:10:6b:4e -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICD5MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMzA5MDEw ODI5MTlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEI2M0E0RUQ4ODcxMUU4 Q0VEMDdGNTRGOTk1ODU1RjA2RTJDQjg0OUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDj2PzpzNr1OeGZQ336YSz6mC8FCn7TgO7aA5ZCwoMKf5ALVeG6 22lK1qpwgOWUsUaD20dYoDkj+RXR9kPLvFpVP1vTctCH/DKCcSbkSm1jLCH6em49 qMgzXo4+TmFRzI4YtEK7hZ4NGSUl/1OHnUozf5WgURNrUnh/N3/KeVP8dH96NGya G70k/S8+J0CY4AzdHwEbyMLEd/CFnKNWtqQhEdadmYfQaROh6w1V8u7XOheOkKzR AxeYqn3Mp3Z/S1X4xQJ4LGJrhnJ8PF8j+tsKHLQJklwCk3BEUKx59iJD0y595nDA sQBqBkhswBXg30aTqawvlJYZi3EutV1AeHbhAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUtjpO2IcR6M7Qf1T5lYVfBuLLhJ8wHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy90anBPMkljUjZNN1Fm MVQ1bFlWZkJ1TExoSjgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQElnXQMA0GCSqGSIb3DQEBCwUAA4IBAQA5FJ/IZ825aIYu6FvJQWIvdQL2m6N4 0Ex8jBIZfnt/BV3xh8OwlQhEbivAb8vtA7a2K+CmHtWSU98nXxTcTGk6lEkwKgXj S3YQ9drZyxiyGuHFDiSqaGFzY2XvkY6Xy+6fDQXyZXwf+0wqfuJSbG0MQcCGaR3J tABvVLh1zO+qfcnTR8KAuV9c08ySowQUnrrZWj8fOd1dzbDYD5H8GCPOekSuZ/d2 +M21CsVAOL6pwllYyxdKOVvrcqAEJbSjnetWIIB4IY0Wo9CzylbSpvYQuFdoDnd6 ikVsrfsaoJDIx64pQrIYvsCm/h2IH1tF1raeF+nUNj1FLAuPLc9bEGtO -----END CERTIFICATE-----Generated at Tue Jun 18 12:53:57 2024 by rpki-client on console-ams.rpki-client.org