$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/8rvZ4fxcaw_eLj1v8vV0AvkrFBw.roa File: 8rvZ4fxcaw_eLj1v8vV0AvkrFBw.roa (raw, json) Hash identifier: xCwOaTU8q93rDost7mTSAS4z/UXTcZYW5dtlV0cwIDY= Subject key identifier: F2:BB:D9:E1:FC:5C:6B:0F:DE:2E:3D:6F:F2:F5:74:02:F9:2B:14:1C Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 1185 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/8rvZ4fxcaw_eLj1v8vV0AvkrFBw.roa Signing time: Mon 26 Aug 2024 05:10:52 +0000 ROA not before: Mon 26 Aug 2024 05:10:52 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 63199 IP address blocks: 150.116.2.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4485 (0x1185) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 26 05:10:52 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F2BBD9E1FC5C6B0FDE2E3D6FF2F57402F92B141C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:89:ff:0f:52:18:63:13:9e:ad:68:3c:d7:74: 96:bc:1e:fc:c9:78:33:62:68:8b:ce:24:15:99:06: 34:6f:6f:7b:50:6a:4c:cc:6c:8d:04:22:89:d8:c6: 50:e5:65:a8:6b:db:bf:2c:18:ff:b8:53:42:5b:95: 42:86:05:06:f2:9c:9e:25:d5:fa:09:0b:90:d4:aa: 1b:b0:a0:29:66:23:18:e8:a8:d0:7c:45:69:83:97: 63:7a:e3:3f:3a:39:2f:c4:5c:06:2f:2d:ba:4d:2c: 42:ad:e5:b9:85:fe:92:d8:c0:c1:16:4e:fb:3c:2e: 73:e5:23:1d:e3:c2:4e:82:70:6e:39:e5:24:b4:cf: 2a:33:66:4a:ed:bb:b2:07:4b:37:02:81:c2:6f:5e: e8:5f:16:99:0c:02:e6:81:9a:46:20:f2:ed:0e:2d: e9:53:75:84:fa:70:98:44:6c:6f:8d:ce:01:06:0d: 9d:e9:10:b9:43:57:bd:26:59:14:7f:67:22:25:fa: 4f:7d:50:e7:54:56:ce:1f:97:83:72:9e:30:65:87: 0a:ca:6a:21:02:30:4d:78:bf:9b:f4:2a:b7:63:41: 5e:66:fd:35:eb:40:56:78:39:e2:88:48:aa:16:d6: 35:6c:a1:ed:97:e3:eb:66:67:d5:d8:14:e6:34:8a: 76:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:BB:D9:E1:FC:5C:6B:0F:DE:2E:3D:6F:F2:F5:74:02:F9:2B:14:1C X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/8rvZ4fxcaw_eLj1v8vV0AvkrFBw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.2.0/23 Signature Algorithm: sha256WithRSAEncryption 3b:e6:6b:c0:14:ab:b3:f9:b6:f8:a1:41:91:03:5b:72:42:e2: aa:fb:f7:dd:4b:82:d5:4c:13:0a:6c:78:6c:e7:f2:57:4a:6e: a7:92:7e:39:7c:50:9f:43:25:26:77:9c:ee:f6:63:bf:59:37: ee:da:97:81:21:1d:77:6b:b8:2e:f4:05:88:e3:11:8d:29:ca: e2:fe:81:70:49:9d:a1:a4:03:4d:f7:6c:80:01:74:cf:cb:00: 95:f8:c6:47:c8:fe:ab:d0:bd:25:30:22:58:90:d8:5a:a5:73: 1c:a0:47:c4:2e:f9:6d:0d:66:5a:7c:ee:70:d4:e3:18:f3:67: 48:67:86:05:92:ed:51:d4:8f:fc:3b:64:7c:44:cc:a1:ba:65: 3a:83:7e:27:b0:ad:42:f0:0d:f7:6a:5e:e3:b7:18:06:e4:67: 88:e4:94:80:04:b2:27:3c:ad:4d:4a:d0:f2:f3:4f:dd:5f:39: a5:2b:18:2c:d7:6a:31:7c:d9:1b:ed:40:c6:eb:89:4c:93:39: 3f:8e:40:f0:2e:8a:d9:40:de:dc:91:27:df:ca:27:b8:97:9b: 80:4b:dd:81:1b:e0:9b:87:c4:61:23:0e:5e:6b:c2:23:53:fd: 4e:2a:b4:3c:7f:c8:e1:7f:f8:78:a3:81:89:61:ed:cc:f0:62: a4:ec:2a:dc -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEYUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNDA4MjYw NTEwNTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEYyQkJEOUUxRkM1QzZC MEZERTJFM0Q2RkYyRjU3NDAyRjkyQjE0MUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDnif8PUhhjE56taDzXdJa8HvzJeDNiaIvOJBWZBjRvb3tQakzM bI0EIonYxlDlZahr278sGP+4U0JblUKGBQbynJ4l1foJC5DUqhuwoClmIxjoqNB8 RWmDl2N64z86OS/EXAYvLbpNLEKt5bmF/pLYwMEWTvs8LnPlIx3jwk6CcG455SS0 zyozZkrtu7IHSzcCgcJvXuhfFpkMAuaBmkYg8u0OLelTdYT6cJhEbG+NzgEGDZ3p ELlDV70mWRR/ZyIl+k99UOdUVs4fl4NynjBlhwrKaiECME14v5v0KrdjQV5m/TXr QFZ4OeKISKoW1jVsoe2X4+tmZ9XYFOY0inYfAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU8rvZ4fxcaw/eLj1v8vV0AvkrFBwwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy84cnZaNGZ4Y2F3X2VM ajF2OHZWMEF2a3JGQncucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBlnQCMA0GCSqGSIb3DQEBCwUAA4IBAQA75mvAFKuz+bb4oUGRA1tyQuKq+/fd S4LVTBMKbHhs5/JXSm6nkn45fFCfQyUmd5zu9mO/WTfu2peBIR13a7gu9AWI4xGN Kcri/oFwSZ2hpANN92yAAXTPywCV+MZHyP6r0L0lMCJYkNhapXMcoEfELvltDWZa fO5w1OMY82dIZ4YFku1R1I/8O2R8RMyhumU6g34nsK1C8A33al7jtxgG5GeI5JSA BLInPK1NStDy80/dXzmlKxgs12oxfNkb7UDG64lMkzk/jkDwLorZQN7ckSffyie4 l5uAS92BG+Cbh8RhIw5ea8IjU/1OKrQ8f8jhf/h4o4GJYe3M8GKk7Crc -----END CERTIFICATE-----Generated at Fri Nov 22 07:03:23 2024 by rpki-client on console-fra.rpki-client.org