$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/z2GjUbiJwuU6nFg78iYO4r9hehQ.roa File: z2GjUbiJwuU6nFg78iYO4r9hehQ.roa (raw, json) Hash identifier: 0fJXiTFVtvLDBb3QE8a02ItK/Oiyp/tu80SJN3zFn5A= Subject key identifier: CF:61:A3:51:B8:89:C2:E5:3A:9C:58:3B:F2:26:0E:E2:BF:61:7A:14 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 0F83 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/z2GjUbiJwuU6nFg78iYO4r9hehQ.roa Signing time: Fri 01 Sep 2023 08:29:13 +0000 ROA not before: Fri 01 Sep 2023 08:29:13 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131627 IP address blocks: 150.116.84.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 08:21:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3971 (0xf83) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Sep 1 08:29:13 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=CF61A351B889C2E53A9C583BF2260EE2BF617A14 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:19:5f:6d:3b:18:46:d6:69:d7:eb:d1:9d:2c: 3f:ef:46:92:6c:c7:1d:12:b1:37:e8:41:d7:62:02: 59:dd:0f:1b:2c:3b:95:cc:a6:b6:bf:06:92:e6:1a: 64:a7:8a:54:04:11:69:ac:7a:50:15:ab:58:49:e0: 4a:70:cb:d2:0f:1f:51:f3:9a:74:bf:33:b0:20:44: fc:7c:7b:66:8d:c2:6e:8b:bd:03:d1:23:53:65:cb: 8c:92:c9:95:41:35:e4:9a:6c:d4:5d:fa:23:df:4a: 13:f4:a3:22:f4:72:c7:80:35:af:db:20:3b:b3:04: c5:1d:a5:62:16:ac:6e:1b:35:ec:2d:6c:73:87:1c: 8c:af:f6:2e:0f:16:0c:c6:94:04:03:68:82:02:68: 62:7e:5a:16:58:e3:4d:0a:ea:0c:1a:21:c3:de:e8: 9b:12:5e:dd:10:30:74:a0:e0:1f:ee:05:c6:ec:90: e8:a5:11:70:e1:5d:58:55:6e:ae:b2:5c:5e:06:1e: 2e:13:94:fd:f8:d0:31:5a:76:4f:a3:82:3f:8d:43: b6:06:c8:1f:1b:fe:9d:a0:7c:4b:66:c4:68:12:81: a6:59:2d:3b:07:3e:b5:1b:11:76:6e:ea:8e:27:5a: 87:e8:76:60:d4:aa:c5:30:32:d2:aa:e0:bd:29:c7: 9a:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:61:A3:51:B8:89:C2:E5:3A:9C:58:3B:F2:26:0E:E2:BF:61:7A:14 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/z2GjUbiJwuU6nFg78iYO4r9hehQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.84.0/22 Signature Algorithm: sha256WithRSAEncryption 45:b8:e1:4e:8f:35:da:2e:ad:20:50:17:6d:0c:22:ec:9f:bf: ce:f9:e2:3f:8f:6a:12:69:20:00:66:2a:1a:a5:27:cd:0b:73: 51:1c:b2:0a:25:c8:0b:0c:9e:80:d3:9f:6b:22:7b:c2:94:27: 7e:b0:6f:d6:12:d5:5e:21:1b:d8:6c:3c:98:a0:61:f5:a8:d9: ca:2d:93:b1:fa:0b:e1:aa:68:4a:78:93:81:07:35:f4:9e:a7: ee:92:c3:af:e3:e0:86:6e:30:dd:ec:a2:7c:be:78:93:53:c8: 26:6c:26:c5:03:0d:14:01:15:66:8f:ef:7b:f3:e8:c2:2a:6b: 49:be:bc:3e:8b:1d:f4:b4:01:f1:4d:32:88:29:d6:38:4f:ea: 51:01:a6:37:a4:39:a0:2f:f8:62:59:04:f2:45:4c:65:0d:bb: 17:39:88:fe:7e:e3:18:67:c3:8d:fc:a2:15:78:bd:a6:9b:b7: 2f:83:74:36:0e:12:5f:85:55:d3:dc:3e:3b:8b:00:40:36:50: f1:b0:a8:33:00:81:fb:c4:58:65:09:26:90:97:c7:64:9c:da: 90:fb:d2:e0:40:98:fb:d1:81:77:7d:7d:3f:60:50:d0:b0:ff: ff:e3:6c:89:d4:d8:56:4c:7d:6e:7c:c9:8f:cc:ca:1d:bf:b3: fe:b5:57:7c -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICD4MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMzA5MDEw ODI5MTNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKENGNjFBMzUxQjg4OUMy RTUzQTlDNTgzQkYyMjYwRUUyQkY2MTdBMTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDuGV9tOxhG1mnX69GdLD/vRpJsxx0SsTfoQddiAlndDxssO5XM pra/BpLmGmSnilQEEWmselAVq1hJ4Epwy9IPH1HzmnS/M7AgRPx8e2aNwm6LvQPR I1Nly4ySyZVBNeSabNRd+iPfShP0oyL0cseANa/bIDuzBMUdpWIWrG4bNewtbHOH HIyv9i4PFgzGlAQDaIICaGJ+WhZY400K6gwaIcPe6JsSXt0QMHSg4B/uBcbskOil EXDhXVhVbq6yXF4GHi4TlP340DFadk+jgj+NQ7YGyB8b/p2gfEtmxGgSgaZZLTsH PrUbEXZu6o4nWofodmDUqsUwMtKq4L0px5ppAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUz2GjUbiJwuU6nFg78iYO4r9hehQwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy96MkdqVWJpSnd1VTZu Rmc3OGlZTzRyOWhlaFEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQClnRUMA0GCSqGSIb3DQEBCwUAA4IBAQBFuOFOjzXaLq0gUBdtDCLsn7/O+eI/ j2oSaSAAZioapSfNC3NRHLIKJcgLDJ6A059rInvClCd+sG/WEtVeIRvYbDyYoGH1 qNnKLZOx+gvhqmhKeJOBBzX0nqfuksOv4+CGbjDd7KJ8vniTU8gmbCbFAw0UARVm j+978+jCKmtJvrw+ix30tAHxTTKIKdY4T+pRAaY3pDmgL/hiWQTyRUxlDbsXOYj+ fuMYZ8ON/KIVeL2mm7cvg3Q2DhJfhVXT3D47iwBANlDxsKgzAIH7xFhlCSaQl8dk nNqQ+9LgQJj70YF3fX0/YFDQsP//42yJ1NhWTH1ufMmPzModv7P+tVd8 -----END CERTIFICATE-----Generated at Tue Jun 18 12:53:57 2024 by rpki-client on console-ams.rpki-client.org