$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIAOCHIAO/-2Aw1vk5bYbW5GXZrLAmyW2lAiE.roa File: -2Aw1vk5bYbW5GXZrLAmyW2lAiE.roa (raw, json) Hash identifier: jyjhpdbjyIZ+8g6NnyFpVcQt2yumJARHrtJyc3A2+Eg= Subject key identifier: FB:60:30:D6:F9:39:6D:86:D6:E4:65:D9:AC:B0:26:C9:6D:A5:02:21 Certificate issuer: /CN=8A3FD89CE70A14F13ED0A86459224D007DD0A148 Certificate serial: 0829 Authority key identifier: 8A:3F:D8:9C:E7:0A:14:F1:3E:D0:A8:64:59:22:4D:00:7D:D0:A1:48 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ij_YnOcKFPE-0KhkWSJNAH3QoUg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIAOCHIAO/-2Aw1vk5bYbW5GXZrLAmyW2lAiE.roa Signing time: Mon 26 Aug 2024 05:10:35 +0000 ROA not before: Mon 26 Aug 2024 05:10:35 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 7483 IP address blocks: 103.148.146.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIAOCHIAO/ij_YnOcKFPE-0KhkWSJNAH3QoUg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIAOCHIAO/ij_YnOcKFPE-0KhkWSJNAH3QoUg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/ij_YnOcKFPE-0KhkWSJNAH3QoUg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2089 (0x829) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8A3FD89CE70A14F13ED0A86459224D007DD0A148 Validity Not Before: Aug 26 05:10:35 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=FB6030D6F9396D86D6E465D9ACB026C96DA50221 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:3f:c2:a1:3b:e3:e6:4f:87:7a:1d:af:43:a5: 18:04:e5:54:70:2f:80:5f:81:88:96:c2:63:c5:26: 51:02:5b:73:8f:f1:c8:7d:89:fd:5f:b2:41:f9:69: f0:44:45:f6:92:f4:8f:cc:9b:b2:4c:38:69:3f:2e: 14:b7:b1:83:48:8a:50:80:7a:24:52:bf:00:f5:76: 5a:30:18:fb:7f:5f:1d:93:a8:74:bd:3b:5d:b1:b2: 42:e1:7e:00:c6:53:28:62:1c:6d:9a:2f:db:b4:29: 5d:e1:ca:40:39:c1:82:71:2c:55:05:a8:50:d6:db: 51:38:05:9f:d7:bf:fe:13:7d:c1:d3:cb:b6:42:b4: eb:7a:62:6b:10:d7:3b:16:b7:7a:0e:8b:67:e9:54: 36:ba:07:f9:66:b9:a5:85:5f:3c:78:03:f9:8b:f2: 6c:90:fb:7a:85:a2:b3:dd:2c:b8:ea:27:54:a3:86: c6:6e:d5:7e:95:68:f0:80:1a:79:56:c9:73:c1:93: 16:2a:81:6b:84:f4:68:a6:5c:70:4a:8e:3d:a3:16: c4:7e:bd:8e:25:8c:f3:8c:73:81:6d:17:48:f9:b3: e4:9e:77:f1:3e:30:da:10:33:57:48:80:bb:8f:14: 23:5b:46:19:fc:c7:15:fd:9e:44:3c:c2:27:18:84: d5:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:60:30:D6:F9:39:6D:86:D6:E4:65:D9:AC:B0:26:C9:6D:A5:02:21 X509v3 Authority Key Identifier: keyid:8A:3F:D8:9C:E7:0A:14:F1:3E:D0:A8:64:59:22:4D:00:7D:D0:A1:48 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIAOCHIAO/ij_YnOcKFPE-0KhkWSJNAH3QoUg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ij_YnOcKFPE-0KhkWSJNAH3QoUg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIAOCHIAO/-2Aw1vk5bYbW5GXZrLAmyW2lAiE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.148.146.0/23 Signature Algorithm: sha256WithRSAEncryption 12:78:37:1f:1f:a5:51:bf:40:cb:7d:62:ca:b1:d6:e7:dc:66: 07:cc:39:b9:dd:a2:05:f5:26:9f:00:42:84:c6:f4:fd:a0:d0: 8f:40:57:d1:2c:e7:e5:6a:15:8c:80:4f:3f:04:54:75:f6:58: 81:7d:97:60:e4:79:e3:df:0c:21:65:00:91:0f:e5:ed:84:7b: 42:10:ca:b8:f9:13:7c:c1:87:a1:eb:96:3a:f5:78:9e:5f:e5: ed:2f:d4:5c:29:d5:0b:3c:3a:08:ba:0a:10:9c:72:33:ef:3c: cb:4d:04:0a:6e:fa:02:69:3a:3b:80:3e:bc:04:47:ae:4b:44: 83:be:9b:d0:69:45:6a:7a:34:a4:c8:cc:5d:96:ae:d5:fb:d6: 77:d5:54:13:e4:da:32:a8:88:d9:77:c6:71:8e:56:27:ad:aa: 3a:34:82:b8:9d:08:99:61:d7:d1:65:7f:48:86:36:08:74:b2: 7b:e9:bf:cf:13:83:7b:5c:86:fd:35:ac:e5:95:23:47:b6:51: bc:ee:2f:52:b2:8b:7f:41:08:2f:9e:f9:56:4d:15:0b:d8:c8: 3f:96:06:03:ab:ad:cc:13:73:cd:c6:4d:18:23:ca:87:e6:29: 72:1a:72:ca:ba:ad:a7:d3:7e:8e:f2:ac:f6:50:9c:8d:e5:f0: 78:e5:75:b1 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICCCkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEEz RkQ4OUNFNzBBMTRGMTNFRDBBODY0NTkyMjREMDA3REQwQTE0ODAeFw0yNDA4MjYw NTEwMzVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEZCNjAzMEQ2RjkzOTZE ODZENkU0NjVEOUFDQjAyNkM5NkRBNTAyMjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDpP8KhO+PmT4d6Ha9DpRgE5VRwL4BfgYiWwmPFJlECW3OP8ch9 if1fskH5afBERfaS9I/Mm7JMOGk/LhS3sYNIilCAeiRSvwD1dlowGPt/Xx2TqHS9 O12xskLhfgDGUyhiHG2aL9u0KV3hykA5wYJxLFUFqFDW21E4BZ/Xv/4TfcHTy7ZC tOt6YmsQ1zsWt3oOi2fpVDa6B/lmuaWFXzx4A/mL8myQ+3qForPdLLjqJ1SjhsZu 1X6VaPCAGnlWyXPBkxYqgWuE9GimXHBKjj2jFsR+vY4ljPOMc4FtF0j5s+Sed/E+ MNoQM1dIgLuPFCNbRhn8xxX9nkQ8wicYhNUpAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQU+2Aw1vk5bYbW5GXZrLAmyW2lAiEwHwYDVR0jBBgwFoAUij/YnOcKFPE+0Khk WSJNAH3QoUgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJQU9D SElBTy9pal9Zbk9jS0ZQRS0wS2hrV1NKTkFIM1FvVWcuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL2lqX1luT2NLRlBFLTBLaGtXU0pOQUgzUW9VZy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NISUFPQ0hJQU8vLTJBdzF2azVi WWJXNUdYWnJMQW15VzJsQWlFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAWeUkjANBgkqhkiG9w0BAQsFAAOCAQEAEng3Hx+lUb9Ay31iyrHW59xm B8w5ud2iBfUmnwBChMb0/aDQj0BX0Szn5WoVjIBPPwRUdfZYgX2XYOR5498MIWUA kQ/l7YR7QhDKuPkTfMGHoeuWOvV4nl/l7S/UXCnVCzw6CLoKEJxyM+88y00ECm76 Amk6O4A+vARHrktEg76b0GlFano0pMjMXZau1fvWd9VUE+TaMqiI2XfGcY5WJ62q OjSCuJ0ImWHX0WV/SIY2CHSye+m/zxODe1yG/TWs5ZUjR7ZRvO4vUrKLf0EIL575 Vk0VC9jIP5YGA6utzBNzzcZNGCPKh+Ypchpyyrqtp9N+jvKs9lCcjeXweOV1sQ== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:49 2024 by rpki-client on console-fra.rpki-client.org