$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/CbmZNXhqC0Js-4djNj-lbA71EJA.roa File: CbmZNXhqC0Js-4djNj-lbA71EJA.roa (raw, json) Hash identifier: 7K+OPPE/qQBnYxT0Zgy/yazzKTU6zKc0GMti7yxbRn8= Subject key identifier: 09:B9:99:35:78:6A:0B:42:6C:FB:87:63:36:3F:A5:6C:0E:F5:10:90 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 0FD8 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/CbmZNXhqC0Js-4djNj-lbA71EJA.roa Signing time: Wed 13 Sep 2023 07:52:47 +0000 ROA not before: Wed 13 Sep 2023 07:52:47 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 57976 IP address blocks: 150.116.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 19:57:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4056 (0xfd8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Sep 13 07:52:47 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=09B99935786A0B426CFB8763363FA56C0EF51090 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:5a:a9:63:cc:08:2e:a2:db:7f:3e:93:3f:24: 13:d3:0f:45:0c:79:a4:f5:88:85:1f:11:1a:03:e4: f4:db:e0:3d:c0:a3:4c:02:b9:07:a9:5e:ab:6a:09: 0e:b2:ea:6e:b7:9c:5f:6d:3f:b1:08:4f:5b:c9:4e: 21:58:94:b2:15:00:07:ea:bf:c4:03:12:3f:da:34: e6:36:43:d1:a2:95:2d:0d:b7:a3:6d:a1:e2:6a:57: 05:cb:de:0c:6c:80:d7:10:d8:55:68:98:dc:27:3e: 20:67:e5:b4:e2:c1:ca:d2:ac:7e:08:0a:56:7b:a7: 09:ee:71:db:31:a9:4d:3a:86:35:8e:88:a0:2a:4e: 23:84:b3:fb:ec:d0:89:72:3a:b9:5a:0f:ed:b6:39: 3a:11:14:13:4d:26:a6:18:29:94:38:5f:b4:86:8b: fa:5a:ac:7e:f1:43:34:9c:e8:6f:6b:ac:0c:32:32: cc:45:43:5f:66:0e:9e:37:98:57:18:1a:dc:2d:2b: 4e:1b:00:5e:3d:43:c8:3a:f8:1f:e6:c6:4f:22:de: 64:43:4d:9c:24:c9:6a:49:69:d0:8d:87:fa:7e:6b: 0f:e5:94:b0:69:3c:99:c8:d4:a8:27:12:5b:3c:08: 3b:28:15:d1:98:f9:a0:9b:e9:29:4b:7d:ae:8a:90: 20:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:B9:99:35:78:6A:0B:42:6C:FB:87:63:36:3F:A5:6C:0E:F5:10:90 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/CbmZNXhqC0Js-4djNj-lbA71EJA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.9.0/24 Signature Algorithm: sha256WithRSAEncryption 63:08:79:11:d6:0c:19:19:a3:68:43:41:4a:4c:b4:ee:a5:5c: 8d:53:49:ba:7d:8d:ec:c4:f5:2a:71:3a:ae:f1:06:ce:10:cc: 09:d6:b6:f8:b5:56:d2:1a:8a:92:5c:d8:70:85:99:95:8a:00: f5:0e:3d:de:bd:ad:47:ff:e7:08:f1:aa:b8:ed:6f:12:0c:04: 8c:fa:3d:81:43:42:ed:52:7d:54:1c:66:ff:59:ef:5b:70:16: 54:02:44:4b:46:ec:eb:6b:19:d8:41:cd:63:a1:43:41:17:f0: 26:6a:c0:dc:4a:65:1f:3f:e6:42:4b:44:62:6d:4b:97:ee:37: 20:31:e9:0c:9f:34:de:cb:21:c7:94:30:d1:15:f9:b3:12:2e: ab:a5:ad:57:02:82:43:ea:e9:2e:6d:9b:ce:7c:c7:ed:35:35: 17:34:ad:ff:62:80:23:15:1f:a9:d9:9e:02:4f:a5:a2:50:56: ed:18:b0:61:79:03:93:37:3e:ad:8d:16:fe:f5:15:94:9f:1e: f1:e7:46:69:7a:22:0a:8f:2e:44:2f:be:7d:78:dd:da:87:3c: 64:b9:4c:d0:7b:02:77:4e:42:16:51:35:97:1d:a6:d7:0c:12: dc:10:96:59:37:e0:f5:ad:35:41:f0:3d:f4:95:f5:03:a2:f9: cb:1b:2c:0a -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICD9gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMzA5MTMw NzUyNDdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDA5Qjk5OTM1Nzg2QTBC NDI2Q0ZCODc2MzM2M0ZBNTZDMEVGNTEwOTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSWqljzAguott/PpM/JBPTD0UMeaT1iIUfERoD5PTb4D3Ao0wC uQepXqtqCQ6y6m63nF9tP7EIT1vJTiFYlLIVAAfqv8QDEj/aNOY2Q9GilS0Nt6Nt oeJqVwXL3gxsgNcQ2FVomNwnPiBn5bTiwcrSrH4IClZ7pwnucdsxqU06hjWOiKAq TiOEs/vs0IlyOrlaD+22OToRFBNNJqYYKZQ4X7SGi/parH7xQzSc6G9rrAwyMsxF Q19mDp43mFcYGtwtK04bAF49Q8g6+B/mxk8i3mRDTZwkyWpJadCNh/p+aw/llLBp PJnI1KgnEls8CDsoFdGY+aCb6SlLfa6KkCCFAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUCbmZNXhqC0Js+4djNj+lbA71EJAwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9DYm1aTlhocUMwSnMt NGRqTmotbGJBNzFFSkEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAlnQJMA0GCSqGSIb3DQEBCwUAA4IBAQBjCHkR1gwZGaNoQ0FKTLTupVyNU0m6 fY3sxPUqcTqu8QbOEMwJ1rb4tVbSGoqSXNhwhZmVigD1Dj3eva1H/+cI8aq47W8S DASM+j2BQ0LtUn1UHGb/We9bcBZUAkRLRuzraxnYQc1joUNBF/AmasDcSmUfP+ZC S0RibUuX7jcgMekMnzTeyyHHlDDRFfmzEi6rpa1XAoJD6ukubZvOfMftNTUXNK3/ YoAjFR+p2Z4CT6WiUFbtGLBheQOTNz6tjRb+9RWUnx7x50ZpeiIKjy5EL759eN3a hzxkuUzQewJ3TkIWUTWXHabXDBLcEJZZN+D1rTVB8D30lfUDovnLGywK -----END CERTIFICATE-----Generated at Sun Jun 2 07:14:19 2024 by rpki-client on console-fra.rpki-client.org