$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/5m8V933sgSlXXTuaELSNfi0n3Ys.roa File: 5m8V933sgSlXXTuaELSNfi0n3Ys.roa (raw, json) Hash identifier: 8MA3rm1xhtYXOVLY2OJNN756acIpZJ9374aDiE9ICCw= Subject key identifier: E6:6F:15:F7:7D:EC:81:29:57:5D:3B:9A:10:B4:8D:7E:2D:27:DD:8B Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 1184 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/5m8V933sgSlXXTuaELSNfi0n3Ys.roa Signing time: Mon 26 Aug 2024 05:10:51 +0000 ROA not before: Mon 26 Aug 2024 05:10:51 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 7532 IP address blocks: 150.116.54.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4484 (0x1184) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 26 05:10:51 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E66F15F77DEC8129575D3B9A10B48D7E2D27DD8B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:f8:78:49:55:a1:d4:06:b0:35:2a:64:33:8b: 27:0a:58:88:cf:aa:4b:0d:7a:9a:83:3a:d7:5d:10: 97:79:77:4b:a4:4d:44:a3:73:b8:6f:a0:c4:13:57: d5:93:c4:f0:94:83:59:33:83:fe:32:74:82:82:61: 62:34:f0:63:00:62:bd:99:90:63:f6:c6:2c:36:47: f4:f6:b2:8c:23:a1:fd:04:96:36:d2:b2:ed:56:1d: aa:b4:45:84:1f:c6:10:e0:7d:0a:d0:a6:f5:06:e4: a9:29:7d:30:bb:be:6a:09:fc:1d:41:36:14:72:b6: 5b:1b:c3:3b:e5:c0:c6:54:23:f8:86:a5:ea:f5:5c: e3:69:61:19:09:96:ad:e7:bc:86:fd:5c:ea:39:e4: 61:d6:a0:aa:ea:a0:d1:cd:e1:49:2b:c8:c6:5a:42: 79:9b:80:9c:f8:e9:51:9b:73:64:22:d8:3b:c0:ca: 16:33:9d:ba:66:22:d8:25:d9:b2:e8:25:c4:90:8a: e9:59:8d:bf:cf:a2:84:d9:c7:82:8a:20:f9:e0:92: 1c:83:80:37:18:e7:a9:4a:9e:da:8b:03:73:a3:92: 13:9d:70:1a:32:28:17:32:50:34:eb:d5:69:37:dc: 61:2f:ea:d8:34:cb:db:8f:1c:ed:5a:e1:b5:c1:a5: e5:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:6F:15:F7:7D:EC:81:29:57:5D:3B:9A:10:B4:8D:7E:2D:27:DD:8B X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/5m8V933sgSlXXTuaELSNfi0n3Ys.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.54.0/24 Signature Algorithm: sha256WithRSAEncryption 5f:c1:4d:6f:2b:d6:6b:e4:a2:44:07:dd:bb:95:f0:6e:e1:e9: 22:3a:79:14:9f:9b:08:be:a7:7d:b0:5c:8e:d3:89:82:02:43: 13:50:b0:b4:1d:18:5b:bd:06:89:ef:2f:7f:3c:0f:37:7a:94: 88:c6:91:e0:6f:7a:61:4b:a1:4a:be:22:80:d9:be:be:37:38: cf:32:8f:88:e9:d2:87:2e:71:58:ad:dd:1f:d0:dd:84:f7:75: 1c:4c:c8:62:38:a8:55:a5:30:54:20:de:f3:8f:66:ab:6c:37: 01:73:5f:53:c5:7e:d6:30:a1:75:fe:ff:37:c7:ab:cd:06:66: 59:ee:86:a0:23:45:af:f0:51:72:b5:94:42:c1:22:ee:46:e8: 2a:08:47:bc:f8:a7:f3:39:98:29:71:3c:6d:88:2e:42:1c:ee: 63:b9:74:d1:f3:f0:fe:8f:a7:de:c3:ec:a9:bf:4b:ad:c9:5c: e5:6d:9b:86:a6:63:36:47:e0:ad:36:e2:26:fe:e6:e6:f9:46: 9e:19:fc:1c:9e:e6:80:a9:cb:79:75:d0:1f:61:93:8f:03:32: 36:17:96:19:fa:75:28:97:83:fb:fe:fa:ea:e5:cd:bc:6d:32: 55:32:3b:df:ac:5e:57:fb:94:9a:c1:d6:9f:25:6b:fb:d5:52: 12:01:1d:1e -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEYQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNDA4MjYw NTEwNTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEU2NkYxNUY3N0RFQzgx Mjk1NzVEM0I5QTEwQjQ4RDdFMkQyN0REOEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8+HhJVaHUBrA1KmQziycKWIjPqksNepqDOtddEJd5d0ukTUSj c7hvoMQTV9WTxPCUg1kzg/4ydIKCYWI08GMAYr2ZkGP2xiw2R/T2sowjof0EljbS su1WHaq0RYQfxhDgfQrQpvUG5KkpfTC7vmoJ/B1BNhRytlsbwzvlwMZUI/iGper1 XONpYRkJlq3nvIb9XOo55GHWoKrqoNHN4UkryMZaQnmbgJz46VGbc2Qi2DvAyhYz nbpmItgl2bLoJcSQiulZjb/PooTZx4KKIPngkhyDgDcY56lKntqLA3OjkhOdcBoy KBcyUDTr1Wk33GEv6tg0y9uPHO1a4bXBpeW1AgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU5m8V933sgSlXXTuaELSNfi0n3YswHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy81bThWOTMzc2dTbFhY VHVhRUxTTmZpMG4zWXMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAlnQ2MA0GCSqGSIb3DQEBCwUAA4IBAQBfwU1vK9Zr5KJEB927lfBu4ekiOnkU n5sIvqd9sFyO04mCAkMTULC0HRhbvQaJ7y9/PA83epSIxpHgb3phS6FKviKA2b6+ NzjPMo+I6dKHLnFYrd0f0N2E93UcTMhiOKhVpTBUIN7zj2arbDcBc19TxX7WMKF1 /v83x6vNBmZZ7oagI0Wv8FFytZRCwSLuRugqCEe8+KfzOZgpcTxtiC5CHO5juXTR 8/D+j6few+ypv0utyVzlbZuGpmM2R+CtNuIm/ubm+UaeGfwcnuaAqct5ddAfYZOP AzI2F5YZ+nUol4P7/vrq5c28bTJVMjvfrF5X+5SawdafJWv71VISAR0e -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:35 2024 by rpki-client on console-fra.rpki-client.org