$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/1v1cRoBZCfdUrW3z35K_9xC_8dI.roa File: 1v1cRoBZCfdUrW3z35K_9xC_8dI.roa (raw, json) Hash identifier: 7gu+/d80m20KEs5B9jnlEwErU/reJ5wFFGBc3xyTxtk= Subject key identifier: D6:FD:5C:46:80:59:09:F7:54:AD:6D:F3:DF:92:BF:F7:10:BF:F1:D2 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 0F8F Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/1v1cRoBZCfdUrW3z35K_9xC_8dI.roa Signing time: Fri 01 Sep 2023 08:29:18 +0000 ROA not before: Fri 01 Sep 2023 08:29:18 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 137263 IP address blocks: 113.21.92.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 19:40:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3983 (0xf8f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Sep 1 08:29:18 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=D6FD5C46805909F754AD6DF3DF92BFF710BFF1D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:60:1d:32:b0:3a:e9:82:b0:d8:94:5e:e0:03: 75:4d:9e:0d:da:0e:ca:48:02:f4:85:62:a5:96:62: bc:c4:95:d5:31:5a:34:40:c3:13:98:01:de:81:18: 28:1d:df:0e:de:92:47:f0:68:15:39:f2:0b:e0:18: 85:8f:96:25:c1:5e:f5:2e:84:45:25:9b:0c:e8:be: d9:e8:10:88:1a:2a:7e:6b:cf:e6:e6:41:a5:40:19: cd:e3:a2:04:09:b5:95:06:da:20:f4:31:ba:c1:ef: 9d:ea:7e:b4:25:0c:cf:75:58:65:98:cb:da:e6:d1: 1b:67:e5:d9:21:29:b1:10:b8:d7:76:53:12:c2:d1: a8:08:22:68:e8:1f:59:1f:8f:29:cd:c5:90:bf:21: 21:48:6f:c8:5d:f3:5c:02:d5:86:04:4b:64:7d:5b: 45:ed:1d:e1:f8:63:b1:95:fb:ea:0f:63:a7:f6:a9: 22:f9:7e:66:30:10:2f:b0:ae:55:f5:1e:e2:b1:63: 75:19:94:c0:e9:5e:73:0e:48:ff:dc:4a:e1:a8:17: 1a:a6:3d:ac:31:f2:fb:07:f0:ce:80:14:e8:2a:cc: ad:d1:06:9f:11:a5:5a:2e:17:58:e9:3d:c7:08:ae: b7:16:b8:ee:dc:50:e9:e4:02:55:fd:74:58:a6:de: 13:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:FD:5C:46:80:59:09:F7:54:AD:6D:F3:DF:92:BF:F7:10:BF:F1:D2 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/1v1cRoBZCfdUrW3z35K_9xC_8dI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.21.92.0/24 Signature Algorithm: sha256WithRSAEncryption 96:52:ea:b2:96:d7:15:d2:a5:c7:a1:2a:2c:7c:1a:d8:86:a6: c6:79:b5:62:74:39:69:69:93:ad:36:9c:9d:69:bf:7b:e2:1a: 5c:6a:c9:1e:79:51:7b:8b:b4:5a:e5:33:42:d5:44:55:09:c5: f0:96:78:79:9e:e7:3b:c4:b7:9f:c8:08:6b:d5:5b:a2:32:b7: 48:c8:63:75:00:30:c3:9c:86:f8:86:77:70:26:07:5f:58:9f: b1:b6:e7:41:ca:13:e8:e6:95:7f:3f:ec:87:c4:b6:b6:35:e7: 9f:8d:99:db:9d:b0:f7:1c:dd:65:98:40:d0:73:d7:97:bc:39: f6:53:36:3a:2f:37:8b:63:c8:d9:fa:f4:f9:44:33:39:c4:5d: 5b:a4:20:18:47:a5:e4:03:0f:5f:d8:67:6c:e5:93:cf:7c:2e: cc:0e:38:cd:9c:cf:56:97:92:55:00:74:65:7b:e6:84:19:9d: 76:38:5b:25:27:19:fa:d6:41:a4:63:56:4d:8e:36:50:d2:72: 6e:04:c1:0b:16:a9:7f:09:2e:f1:46:1c:cc:82:9e:fa:79:58: 5f:e9:9b:9c:fb:54:99:8f:fe:bc:d8:7a:9f:65:60:56:8e:21: b5:47:4b:85:e2:d6:5b:c0:9e:85:45:65:d9:49:d1:04:83:9e: cf:f9:31:ec -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICD48wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMzA5MDEw ODI5MThaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEQ2RkQ1QzQ2ODA1OTA5 Rjc1NEFENkRGM0RGOTJCRkY3MTBCRkYxRDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYYB0ysDrpgrDYlF7gA3VNng3aDspIAvSFYqWWYrzEldUxWjRA wxOYAd6BGCgd3w7ekkfwaBU58gvgGIWPliXBXvUuhEUlmwzovtnoEIgaKn5rz+bm QaVAGc3jogQJtZUG2iD0MbrB753qfrQlDM91WGWYy9rm0Rtn5dkhKbEQuNd2UxLC 0agIImjoH1kfjynNxZC/ISFIb8hd81wC1YYES2R9W0XtHeH4Y7GV++oPY6f2qSL5 fmYwEC+wrlX1HuKxY3UZlMDpXnMOSP/cSuGoFxqmPawx8vsH8M6AFOgqzK3RBp8R pVouF1jpPccIrrcWuO7cUOnkAlX9dFim3hMTAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU1v1cRoBZCfdUrW3z35K/9xC/8dIwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy8xdjFjUm9CWkNmZFVy VzN6MzVLXzl4Q184ZEkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAcRVcMA0GCSqGSIb3DQEBCwUAA4IBAQCWUuqyltcV0qXHoSosfBrYhqbGebVi dDlpaZOtNpydab974hpcaskeeVF7i7Ra5TNC1URVCcXwlnh5nuc7xLefyAhr1Vui MrdIyGN1ADDDnIb4hndwJgdfWJ+xtudByhPo5pV/P+yHxLa2NeefjZnbnbD3HN1l mEDQc9eXvDn2UzY6LzeLY8jZ+vT5RDM5xF1bpCAYR6XkAw9f2Gds5ZPPfC7MDjjN nM9Wl5JVAHRle+aEGZ12OFslJxn61kGkY1ZNjjZQ0nJuBMELFql/CS7xRhzMgp76 eVhf6Zuc+1SZj/682HqfZWBWjiG1R0uF4tZbwJ6FRWXZSdEEg57P+THs -----END CERTIFICATE-----Generated at Mon May 20 22:04:46 2024 by rpki-client on console-fra.rpki-client.org