$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/1nB_GnYRjiK_pgqT9X5edmvOaRs.roa File: 1nB_GnYRjiK_pgqT9X5edmvOaRs.roa (raw, json) Hash identifier: gX21d+HYkwwNup04ylAi+GY3VhZorMzHlLjbhLl5rWE= Subject key identifier: D6:70:7F:1A:76:11:8E:22:BF:A6:0A:93:F5:7E:5E:76:6B:CE:69:1B Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 0F70 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/1nB_GnYRjiK_pgqT9X5edmvOaRs.roa Signing time: Fri 01 Sep 2023 08:29:08 +0000 ROA not before: Fri 01 Sep 2023 08:29:08 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131607 IP address blocks: 150.117.168.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 19:57:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3952 (0xf70) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Sep 1 08:29:08 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=D6707F1A76118E22BFA60A93F57E5E766BCE691B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:3e:67:2b:48:ec:60:f2:68:3c:36:85:ef:49: 7f:b8:92:c6:65:ca:6a:35:d6:88:a4:f3:37:7a:b1: 25:8d:2b:27:67:71:80:d1:5a:85:f0:80:c0:4a:51: 5c:0f:5c:6d:83:c8:1f:b6:0b:3a:af:5f:d9:df:19: 06:99:97:a3:13:a4:44:d1:4a:50:98:91:3a:15:a1: 7c:db:3b:81:d4:0d:b1:6d:ee:ed:e5:0e:41:a0:0a: 65:68:69:91:e7:54:69:87:91:2f:20:24:74:1b:ef: a1:93:a7:2f:d3:b7:a3:b4:ed:17:20:41:8f:21:a3: c1:ac:c3:99:82:fb:5e:a7:c0:ea:af:4b:15:fe:62: 3b:59:2b:9c:22:46:ae:ba:02:6b:04:f4:eb:82:a5: ee:3e:80:e8:be:24:99:24:1f:a2:cb:a4:29:34:06: 5e:44:99:aa:dc:c5:b4:71:f7:32:67:f7:54:c5:e9: 8c:4a:b5:ff:7c:d1:21:c6:e5:3c:01:6d:f5:c0:3c: 1f:98:9f:ce:e3:03:21:c7:4e:45:57:8f:52:79:a3: de:99:f8:3e:d8:dd:53:45:d2:8d:16:b2:9f:e0:5a: c2:46:da:16:e2:b3:aa:92:13:17:3b:45:1e:bb:68: ff:26:80:c6:27:d0:b3:0d:da:1d:37:b5:bf:c1:4a: e8:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:70:7F:1A:76:11:8E:22:BF:A6:0A:93:F5:7E:5E:76:6B:CE:69:1B X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/1nB_GnYRjiK_pgqT9X5edmvOaRs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.117.168.0/21 Signature Algorithm: sha256WithRSAEncryption 03:d2:a9:ee:d1:34:ab:14:01:37:5d:11:31:5d:bc:28:d2:71: 32:5c:42:38:95:38:d4:7c:f9:d0:48:89:c0:c9:6a:fe:ef:b4: 47:12:20:10:17:7b:fc:d3:51:b7:b7:e2:4d:89:1e:cd:c6:2b: cf:2a:52:52:67:63:11:89:c0:43:17:9b:8f:30:3e:78:45:93: ab:a6:99:ca:27:b2:51:bd:cd:d9:06:26:e4:07:b8:7e:e6:87: ce:d4:4d:fd:f5:8f:8e:e1:c0:8d:5f:c9:19:4c:b0:cc:a7:ce: 3f:cd:3a:89:de:9f:9a:5e:92:cc:33:96:dc:3c:cd:9e:e1:7f: 9d:f6:b0:98:02:63:1d:9b:6c:ce:24:40:cd:27:a7:5a:00:1b: df:8f:a2:6b:ba:bf:da:44:84:fb:22:eb:d3:c1:86:e2:c6:90: 2b:e6:e6:71:31:8b:e3:4e:48:41:7f:b6:43:2f:d6:2b:59:b6: 55:b9:5b:88:8e:5d:07:77:fb:64:30:0e:c9:90:4f:0e:e5:cc: 65:8f:da:e9:b1:dd:5a:b6:c9:fd:49:ea:65:63:9f:dd:ec:1a: e1:8e:49:12:b2:a4:c9:d4:81:13:e3:97:bc:28:c8:da:78:cb: 79:1f:95:90:4a:5e:1f:b8:c9:44:e8:5e:a0:a7:df:f5:dd:1f: fd:de:3e:7b -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICD3AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMzA5MDEw ODI5MDhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEQ2NzA3RjFBNzYxMThF MjJCRkE2MEE5M0Y1N0U1RTc2NkJDRTY5MUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCsPmcrSOxg8mg8NoXvSX+4ksZlymo11oik8zd6sSWNKydncYDR WoXwgMBKUVwPXG2DyB+2CzqvX9nfGQaZl6MTpETRSlCYkToVoXzbO4HUDbFt7u3l DkGgCmVoaZHnVGmHkS8gJHQb76GTpy/Tt6O07RcgQY8ho8Gsw5mC+16nwOqvSxX+ YjtZK5wiRq66AmsE9OuCpe4+gOi+JJkkH6LLpCk0Bl5EmarcxbRx9zJn91TF6YxK tf980SHG5TwBbfXAPB+Yn87jAyHHTkVXj1J5o96Z+D7Y3VNF0o0Wsp/gWsJG2hbi s6qSExc7RR67aP8mgMYn0LMN2h03tb/BSujxAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU1nB/GnYRjiK/pgqT9X5edmvOaRswHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy8xbkJfR25ZUmppS19w Z3FUOVg1ZWRtdk9hUnMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQDlnWoMA0GCSqGSIb3DQEBCwUAA4IBAQAD0qnu0TSrFAE3XRExXbwo0nEyXEI4 lTjUfPnQSInAyWr+77RHEiAQF3v801G3t+JNiR7NxivPKlJSZ2MRicBDF5uPMD54 RZOrppnKJ7JRvc3ZBibkB7h+5ofO1E399Y+O4cCNX8kZTLDMp84/zTqJ3p+aXpLM M5bcPM2e4X+d9rCYAmMdm2zOJEDNJ6daABvfj6Jrur/aRIT7IuvTwYbixpAr5uZx MYvjTkhBf7ZDL9YrWbZVuVuIjl0Hd/tkMA7JkE8O5cxlj9rpsd1atsn9SeplY5/d 7BrhjkkSsqTJ1IET45e8KMjaeMt5H5WQSl4fuMlE6F6gp9/13R/93j57 -----END CERTIFICATE-----Generated at Sat Jun 1 23:25:28 2024 by rpki-client on console-ams.rpki-client.org