$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/-LF5KIeJksO4O09aOq8m6n_Jz64.roa File: -LF5KIeJksO4O09aOq8m6n_Jz64.roa (raw, json) Hash identifier: SGtkDoCI5+M3q7G9NT0ns6R9I3/KEo/YiPmXe0Tr5pA= Subject key identifier: F8:B1:79:28:87:89:92:C3:B8:3B:4F:5A:3A:AF:26:EA:7F:C9:CF:AE Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 1188 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/-LF5KIeJksO4O09aOq8m6n_Jz64.roa Signing time: Mon 26 Aug 2024 05:10:52 +0000 ROA not before: Mon 26 Aug 2024 05:10:52 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131607 IP address blocks: 150.117.56.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4488 (0x1188) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 26 05:10:52 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F8B17928878992C3B83B4F5A3AAF26EA7FC9CFAE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:d9:f5:38:ea:1c:91:08:2b:1d:f4:34:b1:20: 0a:13:b7:f0:bb:03:c1:51:1e:e4:e7:e0:72:7e:7d: cf:90:a0:e2:af:1f:b2:a6:25:e1:10:a4:1d:9a:97: db:64:e3:88:76:2c:de:9d:85:aa:21:91:3f:71:96: 58:d3:ea:8c:02:66:1b:3d:39:eb:46:28:f7:bb:70: a2:40:a7:42:3a:82:83:42:c3:76:22:f2:fb:f2:c9: b0:83:c2:28:68:96:87:30:68:ad:c4:ae:7e:fe:6d: c2:09:ae:45:db:d2:95:5e:11:83:52:b8:99:d0:1b: cb:83:4a:0c:85:8c:2a:0a:eb:33:1c:32:26:a3:2f: 68:81:3e:b4:a0:b9:00:97:f4:5e:dd:eb:3b:44:e6: ac:c2:eb:1f:2a:f7:d2:09:79:2f:26:05:e2:30:87: 30:3e:fe:3d:4c:25:80:d1:31:a4:92:5e:2b:59:fa: 48:81:06:04:93:69:75:63:13:f1:28:5a:2d:ff:c3: e1:c1:0a:1f:5d:9f:fb:eb:e0:7b:8d:62:f0:c5:4f: 69:cf:bf:bb:80:0c:93:d3:2f:68:8c:65:93:70:0d: d3:87:67:b7:69:4d:53:52:77:fc:65:41:ce:e6:57: 68:dc:84:7b:d5:e5:bb:b4:93:8f:5b:5a:a4:29:b4: c3:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:B1:79:28:87:89:92:C3:B8:3B:4F:5A:3A:AF:26:EA:7F:C9:CF:AE X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/-LF5KIeJksO4O09aOq8m6n_Jz64.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.117.56.0/21 Signature Algorithm: sha256WithRSAEncryption 3f:27:a7:eb:6b:08:4d:0e:bc:5c:61:df:fe:e3:bd:b7:b0:b4: d3:12:46:2c:31:4c:27:13:93:6c:48:ba:6c:88:9e:7b:cf:fd: 4e:ab:e4:72:b8:30:66:10:a3:ba:f1:b7:24:5c:19:8e:51:07: f2:33:f2:40:25:20:1f:7c:45:9b:41:d2:dd:a9:65:7c:22:28: 14:a9:44:70:a8:3e:15:74:72:26:6c:ae:f6:a0:46:69:07:f5: 93:31:44:02:6f:f8:95:1d:b1:86:a3:b9:3d:a9:7e:81:03:02: 43:48:d9:fe:bd:86:17:ae:05:db:30:96:7e:33:ef:e9:7d:3f: 7c:47:d9:48:2c:c7:c7:fd:25:83:93:12:4f:2e:55:ed:ab:36: 71:21:b0:c0:87:4a:95:ad:13:01:99:7a:05:bb:79:1e:53:54: 40:84:c0:bc:ab:08:25:11:4d:e1:ce:5a:77:2b:23:22:41:44: a0:2b:ec:21:e3:b8:36:9f:50:5e:4a:43:9c:68:d5:c7:34:b3: b3:58:c4:78:95:fb:a1:84:28:99:7d:45:d7:84:c4:38:15:dc: 7c:35:d3:d7:00:8e:33:50:66:d1:53:73:20:c3:a6:62:39:a5: f5:06:33:ca:0c:f9:fe:46:2e:6e:5c:d7:8a:bf:48:af:27:70: 54:ad:7f:82 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEYgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNDA4MjYw NTEwNTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEY4QjE3OTI4ODc4OTky QzNCODNCNEY1QTNBQUYyNkVBN0ZDOUNGQUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDb2fU46hyRCCsd9DSxIAoTt/C7A8FRHuTn4HJ+fc+QoOKvH7Km JeEQpB2al9tk44h2LN6dhaohkT9xlljT6owCZhs9OetGKPe7cKJAp0I6goNCw3Yi 8vvyybCDwiholocwaK3Ern7+bcIJrkXb0pVeEYNSuJnQG8uDSgyFjCoK6zMcMiaj L2iBPrSguQCX9F7d6ztE5qzC6x8q99IJeS8mBeIwhzA+/j1MJYDRMaSSXitZ+kiB BgSTaXVjE/EoWi3/w+HBCh9dn/vr4HuNYvDFT2nPv7uADJPTL2iMZZNwDdOHZ7dp TVNSd/xlQc7mV2jchHvV5bu0k49bWqQptMPtAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU+LF5KIeJksO4O09aOq8m6n/Jz64wHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy8tTEY1S0llSmtzTzRP MDlhT3E4bTZuX0p6NjQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQDlnU4MA0GCSqGSIb3DQEBCwUAA4IBAQA/J6frawhNDrxcYd/+4723sLTTEkYs MUwnE5NsSLpsiJ57z/1Oq+RyuDBmEKO68bckXBmOUQfyM/JAJSAffEWbQdLdqWV8 IigUqURwqD4VdHImbK72oEZpB/WTMUQCb/iVHbGGo7k9qX6BAwJDSNn+vYYXrgXb MJZ+M+/pfT98R9lILMfH/SWDkxJPLlXtqzZxIbDAh0qVrRMBmXoFu3keU1RAhMC8 qwglEU3hzlp3KyMiQUSgK+wh47g2n1BeSkOcaNXHNLOzWMR4lfuhhCiZfUXXhMQ4 Fdx8NdPXAI4zUGbRU3Mgw6ZiOaX1BjPKDPn+Ri5uXNeKv0ivJ3BUrX+C -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:49 2024 by rpki-client on console-fra.rpki-client.org