$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/1YxTXSQzPxPhMO_neID3jGqbI9Q.roa File: 1YxTXSQzPxPhMO_neID3jGqbI9Q.roa (raw, json) Hash identifier: jDpnfrkxseNFQsby358vEHYQbNtJNJIog2nI+IP0hDw= Subject key identifier: D5:8C:53:5D:24:33:3F:13:E1:30:EF:E7:78:80:F7:8C:6A:9B:23:D4 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 11B9 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/1YxTXSQzPxPhMO_neID3jGqbI9Q.roa Signing time: Mon 26 Aug 2024 05:11:04 +0000 ROA not before: Mon 26 Aug 2024 05:11:04 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17408 IP address blocks: 150.117.160.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4537 (0x11b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 26 05:11:04 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D58C535D24333F13E130EFE77880F78C6A9B23D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:88:c3:86:97:48:11:35:d0:db:67:1a:6b:4a: 20:72:2f:05:11:48:a4:a0:d8:b6:79:ae:6e:d8:0e: 44:b7:e0:74:4e:26:08:c8:d5:a7:01:62:20:e1:49: 54:e6:93:ec:1c:b9:a5:40:85:3b:85:37:60:ca:08: 89:08:40:73:c2:4f:22:e3:4b:36:d3:9b:bb:c0:0c: d1:e1:42:aa:af:57:6a:e0:dc:00:5a:d7:70:c4:54: 7f:ab:5d:4c:33:f5:78:3d:5d:58:46:9a:b3:3c:45: 35:19:ca:b9:c5:9b:36:0f:93:a5:8c:2b:a7:95:a1: 87:50:2e:e9:f7:b0:86:58:cb:d0:41:e3:bf:27:e5: 2c:32:f3:30:ff:cf:f8:d9:98:f9:22:da:3a:51:cb: 87:75:cc:07:d4:0a:7f:56:e6:3d:f3:95:19:36:6d: 0d:4a:1b:f3:02:8c:4e:f3:98:6d:62:87:58:a1:0f: eb:f2:35:30:31:09:82:71:ee:16:a1:64:14:d2:33: d4:3c:73:74:20:08:ee:6f:5e:b4:4f:70:2e:c6:58: 5b:e6:c7:23:ef:43:d0:0e:53:00:9c:62:66:b3:20: 10:82:ac:da:3f:4d:8c:b9:8d:34:8c:78:4d:92:8e: 7d:bf:d2:e0:be:ca:f3:13:1e:45:96:af:62:21:3e: de:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:8C:53:5D:24:33:3F:13:E1:30:EF:E7:78:80:F7:8C:6A:9B:23:D4 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/1YxTXSQzPxPhMO_neID3jGqbI9Q.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.117.160.0/21 Signature Algorithm: sha256WithRSAEncryption 9b:d1:2a:7c:2e:c7:61:31:cb:7b:21:75:c5:12:f6:e2:3b:20: 65:8f:4c:28:b0:13:6b:40:af:26:ea:c3:fe:7f:b0:80:c3:75: 42:4e:8a:96:95:cf:8e:59:8f:fb:f0:28:be:c5:07:12:a8:5e: 2c:2e:00:6f:f3:df:f5:14:b9:62:3c:5c:39:7f:ce:3d:04:fb: 33:9b:55:6d:87:b7:2f:ff:f9:d7:94:cc:69:e2:65:0c:53:87: 95:87:7b:8d:00:cf:35:a3:f2:68:df:25:17:4e:94:a8:68:23: 46:60:06:74:7f:19:0a:b9:9b:eb:85:f2:ba:78:0c:47:cd:a2: 15:a4:19:6a:88:48:ad:a4:d6:b3:6b:82:5c:26:cc:3e:91:b1: cf:5b:46:9e:a5:0f:b5:2b:c4:68:f9:60:e1:c5:88:62:62:30: 82:ac:f4:f4:c2:7d:19:b3:0c:9c:ae:ca:1a:c6:d4:57:62:b5: fe:a8:62:6e:f6:d7:4d:48:06:a3:fa:73:21:b5:f8:55:16:29: cd:d9:3a:e1:31:45:74:7e:ae:f3:e9:19:d3:56:24:d1:00:79: 13:61:13:81:9e:c6:f2:6c:4c:b7:8b:59:d3:96:33:31:cd:fc: 1d:bb:11:9e:ff:bf:53:df:fe:ff:f3:40:01:ac:92:bf:49:5b: bb:33:d2:e7 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEbkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNDA4MjYw NTExMDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQ1OEM1MzVEMjQzMzNG MTNFMTMwRUZFNzc4ODBGNzhDNkE5QjIzRDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCiMOGl0gRNdDbZxprSiByLwURSKSg2LZ5rm7YDkS34HROJgjI 1acBYiDhSVTmk+wcuaVAhTuFN2DKCIkIQHPCTyLjSzbTm7vADNHhQqqvV2rg3ABa 13DEVH+rXUwz9Xg9XVhGmrM8RTUZyrnFmzYPk6WMK6eVoYdQLun3sIZYy9BB478n 5Swy8zD/z/jZmPki2jpRy4d1zAfUCn9W5j3zlRk2bQ1KG/MCjE7zmG1ih1ihD+vy NTAxCYJx7hahZBTSM9Q8c3QgCO5vXrRPcC7GWFvmxyPvQ9AOUwCcYmazIBCCrNo/ TYy5jTSMeE2Sjn2/0uC+yvMTHkWWr2IhPt61AgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU1YxTXSQzPxPhMO/neID3jGqbI9QwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy8xWXhUWFNRelB4UGhN T19uZUlEM2pHcWJJOVEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQDlnWgMA0GCSqGSIb3DQEBCwUAA4IBAQCb0Sp8LsdhMct7IXXFEvbiOyBlj0wo sBNrQK8m6sP+f7CAw3VCToqWlc+OWY/78Ci+xQcSqF4sLgBv89/1FLliPFw5f849 BPszm1Vth7cv//nXlMxp4mUMU4eVh3uNAM81o/Jo3yUXTpSoaCNGYAZ0fxkKuZvr hfK6eAxHzaIVpBlqiEitpNaza4JcJsw+kbHPW0aepQ+1K8Ro+WDhxYhiYjCCrPT0 wn0ZswycrsoaxtRXYrX+qGJu9tdNSAaj+nMhtfhVFinN2TrhMUV0fq7z6RnTViTR AHkTYROBnsbybEy3i1nTljMxzfwduxGe/79T3/7/80ABrJK/SVu7M9Ln -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:49 2024 by rpki-client on console-fra.rpki-client.org