$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/0p0zy7_xAiwhGmnvRCmabbCMBTY.roa File: 0p0zy7_xAiwhGmnvRCmabbCMBTY.roa (raw, json) Hash identifier: mrAMPlx0tPkGhePPew0N8hFyylVw3cPw1riok+M4aNg= Subject key identifier: D2:9D:33:CB:BF:F1:02:2C:21:1A:69:EF:44:29:9A:6D:B0:8C:05:36 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 116F Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/0p0zy7_xAiwhGmnvRCmabbCMBTY.roa Signing time: Mon 26 Aug 2024 05:10:46 +0000 ROA not before: Mon 26 Aug 2024 05:10:46 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18419 IP address blocks: 118.150.240.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4463 (0x116f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 26 05:10:46 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D29D33CBBFF1022C211A69EF44299A6DB08C0536 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:a2:36:db:06:22:e8:c5:10:d2:1c:ca:b9:f5: f6:50:3f:d7:ee:a1:8e:ec:ef:1e:3d:d1:fa:59:21: c8:dc:5c:08:e2:22:80:5e:d3:36:92:a9:2e:2d:09: c6:67:86:fb:9e:ab:84:c8:ce:eb:22:b4:31:49:2e: 13:82:18:52:6c:1c:25:80:0f:b1:e5:22:cb:5c:49: af:f3:04:7d:47:8d:9d:80:4a:6a:2e:c3:35:e4:44: 09:79:4e:1b:2d:17:7a:41:71:0a:12:7b:ae:c7:c4: 6b:5d:e8:ae:d8:97:bb:15:82:16:d1:e4:69:3a:03: 0f:68:b2:7a:ca:c5:6e:b9:4d:30:d6:f5:80:b1:03: 59:26:f0:fa:05:fc:aa:82:5c:66:24:27:7b:7c:11: 18:ad:73:24:dd:06:ff:86:6a:21:af:b9:54:15:a1: c9:a3:5f:aa:61:12:31:0f:71:bb:f0:9a:f0:4c:39: fa:d0:8b:43:35:17:e9:00:6c:f4:65:7f:ed:34:fc: 75:5b:91:dc:91:8a:6a:aa:51:38:d0:4e:ec:29:02: 7d:67:35:e8:9b:b9:ed:83:8b:2b:63:a3:a1:43:b4: 8a:fa:0d:92:ad:51:41:8d:96:fa:bc:90:68:77:9a: 8a:91:47:bf:5b:96:12:e4:f6:fb:c1:1e:c8:7f:b0: 00:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:9D:33:CB:BF:F1:02:2C:21:1A:69:EF:44:29:9A:6D:B0:8C:05:36 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/0p0zy7_xAiwhGmnvRCmabbCMBTY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.150.240.0/21 Signature Algorithm: sha256WithRSAEncryption aa:5d:36:f8:61:9a:4c:53:92:96:a5:25:83:82:47:b0:39:a4: 5b:86:05:3d:d9:bf:d4:b6:5c:da:93:66:b1:c7:ba:c2:a9:d5: d0:61:d2:50:4b:f9:52:97:5a:2d:41:75:68:f6:d7:e1:19:62: 33:86:b0:1d:41:9c:72:81:af:0d:03:5d:51:4b:8e:92:94:4d: 6c:a2:7f:05:30:b8:f1:bb:69:8c:95:48:90:11:81:89:fa:39: 95:95:fc:24:ff:33:9e:73:a6:84:b0:7e:2e:c4:3e:1d:d2:8f: 02:2e:d8:9f:09:4e:29:0b:49:74:88:13:d5:e3:0c:f2:1c:f4: 56:62:3d:e4:7b:d9:14:94:a1:e4:76:28:c0:e5:83:1f:d2:dc: dc:77:76:11:29:c6:11:53:c7:da:4a:49:5f:08:42:1b:f1:0c: 64:f4:6a:06:ff:82:48:e1:96:6f:a8:0a:80:15:12:85:c7:2b: a5:b9:b4:3b:19:2c:d2:4a:40:44:c1:bf:8d:2a:fa:15:cf:3a: cf:63:e8:6a:e1:fc:9d:03:e8:b5:d4:55:5c:31:a6:e4:7e:53: e6:28:2f:ac:e4:ae:97:81:bb:6d:99:52:f5:b4:ce:38:f8:df: c2:79:1e:10:20:36:8a:89:a0:f7:54:91:b7:35:a7:15:29:44: 09:2a:5b:af -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEW8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNDA4MjYw NTEwNDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQyOUQzM0NCQkZGMTAy MkMyMTFBNjlFRjQ0Mjk5QTZEQjA4QzA1MzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMojbbBiLoxRDSHMq59fZQP9fuoY7s7x490fpZIcjcXAjiIoBe 0zaSqS4tCcZnhvueq4TIzusitDFJLhOCGFJsHCWAD7HlIstcSa/zBH1HjZ2ASmou wzXkRAl5ThstF3pBcQoSe67HxGtd6K7Yl7sVghbR5Gk6Aw9osnrKxW65TTDW9YCx A1km8PoF/KqCXGYkJ3t8ERitcyTdBv+GaiGvuVQVocmjX6phEjEPcbvwmvBMOfrQ i0M1F+kAbPRlf+00/HVbkdyRimqqUTjQTuwpAn1nNeibue2Diytjo6FDtIr6DZKt UUGNlvq8kGh3moqRR79blhLk9vvBHsh/sACrAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU0p0zy7/xAiwhGmnvRCmabbCMBTYwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy8wcDB6eTdfeEFpd2hH bW52UkNtYWJiQ01CVFkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQDdpbwMA0GCSqGSIb3DQEBCwUAA4IBAQCqXTb4YZpMU5KWpSWDgkewOaRbhgU9 2b/Utlzak2axx7rCqdXQYdJQS/lSl1otQXVo9tfhGWIzhrAdQZxyga8NA11RS46S lE1son8FMLjxu2mMlUiQEYGJ+jmVlfwk/zOec6aEsH4uxD4d0o8CLtifCU4pC0l0 iBPV4wzyHPRWYj3ke9kUlKHkdijA5YMf0tzcd3YRKcYRU8faSklfCEIb8Qxk9GoG /4JI4ZZvqAqAFRKFxyulubQ7GSzSSkBEwb+NKvoVzzrPY+hq4fydA+i11FVcMabk flPmKC+s5K6XgbttmVL1tM44+N/CeR4QIDaKiaD3VJG3NacVKUQJKluv -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:30 2024 by rpki-client on console-ams.rpki-client.org