$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/DtFO1n-xMQe1Ry1yZ1DfMTWkd0g.roa File: DtFO1n-xMQe1Ry1yZ1DfMTWkd0g.roa (raw, json) Hash identifier: Iof/tGcb3zaBBvlBjMtOfMqiC/xiPHebsrpkmasuF2Q= Subject key identifier: 0E:D1:4E:D6:7F:B1:31:07:B5:47:2D:72:67:50:DF:31:35:A4:77:48 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 1180 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/DtFO1n-xMQe1Ry1yZ1DfMTWkd0g.roa Signing time: Mon 26 Aug 2024 05:10:51 +0000 ROA not before: Mon 26 Aug 2024 05:10:51 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 138915 IP address blocks: 150.116.117.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4480 (0x1180) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 26 05:10:51 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=0ED14ED67FB13107B5472D726750DF3135A47748 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:bd:6e:6b:3f:85:30:71:ba:eb:1f:f5:34:38: 7e:5f:f3:e7:86:47:23:cf:e0:04:11:60:77:d1:15: fd:77:25:b1:b8:72:14:b1:82:69:c2:9f:0f:cb:3e: 6c:1a:ae:be:d0:13:65:1c:64:9e:73:76:fc:f9:9e: 9f:72:2b:ff:93:8e:23:29:9c:ad:38:81:7f:39:d9: 11:b0:db:04:ec:62:ec:5e:d5:b7:b0:dc:ac:9a:4b: e1:33:8c:94:8f:0e:a3:fa:3d:6e:6e:48:56:bb:d4: 9c:fb:d6:9b:04:85:08:24:1c:65:36:34:33:9c:dd: e2:66:25:9e:15:5b:53:a9:20:86:35:56:54:5c:02: 1e:7c:47:ba:cc:45:09:4f:da:82:54:30:c5:9f:07: 96:ce:85:b2:ae:29:b4:90:50:3d:f4:65:a4:78:ea: b2:6e:49:18:aa:c7:76:66:95:20:c7:35:98:2d:6b: 2a:c5:73:1b:45:52:a9:1b:b9:bd:f1:bf:eb:07:ed: 54:c6:19:9f:5a:ad:9f:2a:0d:57:1f:10:64:de:d1: 99:13:6b:0f:69:65:a4:6e:c4:2d:af:ed:5b:43:05: 99:60:c4:ae:ee:4e:82:b1:03:37:00:6e:00:99:fd: fb:fb:c0:d9:93:7f:e1:80:24:ac:87:1b:de:e2:41: ee:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:D1:4E:D6:7F:B1:31:07:B5:47:2D:72:67:50:DF:31:35:A4:77:48 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/DtFO1n-xMQe1Ry1yZ1DfMTWkd0g.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.117.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:06:6e:a9:43:73:23:c2:3d:64:22:a8:55:a1:0e:e2:2a:d9: c0:0c:39:ef:41:af:5b:8f:87:74:0e:f3:0c:44:ad:67:e1:a3: 50:ca:0b:5f:73:a5:94:9a:35:73:c1:08:03:86:8f:b2:e5:63: a8:d7:5e:06:cd:c0:04:08:cf:dc:2a:e2:85:73:77:7f:59:f3: 4b:11:0f:e4:14:59:56:56:ff:45:54:eb:08:25:e1:c8:f7:77: 0a:17:79:3a:23:02:f3:8e:6f:fe:94:81:d8:67:3c:3d:5d:29: f1:be:38:82:ac:c7:89:8d:82:8c:40:49:17:52:8d:17:0f:83: 27:c7:b7:84:2b:6e:8f:6a:53:76:c3:36:a3:61:e8:95:2e:42: ff:97:88:5e:89:59:de:11:1b:8d:f9:67:17:02:8e:5e:9f:d6: e8:96:01:58:ae:01:94:e7:76:7a:66:43:ee:ad:66:f0:c5:d1: c9:e7:ee:8e:b9:fd:4b:e7:35:08:71:a0:6d:85:dd:2f:cc:77: 07:80:3b:d7:97:32:82:60:bc:37:9e:d0:f8:2e:0f:7a:ad:5e: 73:ef:91:1b:e6:5d:d3:cf:15:88:4a:98:5a:3b:17:da:57:ab: 60:78:7d:44:a0:3c:4f:24:ea:37:10:e2:ee:ed:a2:8e:d9:09: 4f:18:8c:79 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEYAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNDA4MjYw NTEwNTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDBFRDE0RUQ2N0ZCMTMx MDdCNTQ3MkQ3MjY3NTBERjMxMzVBNDc3NDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLvW5rP4UwcbrrH/U0OH5f8+eGRyPP4AQRYHfRFf13JbG4chSx gmnCnw/LPmwarr7QE2UcZJ5zdvz5np9yK/+TjiMpnK04gX852RGw2wTsYuxe1bew 3KyaS+EzjJSPDqP6PW5uSFa71Jz71psEhQgkHGU2NDOc3eJmJZ4VW1OpIIY1VlRc Ah58R7rMRQlP2oJUMMWfB5bOhbKuKbSQUD30ZaR46rJuSRiqx3ZmlSDHNZgtayrF cxtFUqkbub3xv+sH7VTGGZ9arZ8qDVcfEGTe0ZkTaw9pZaRuxC2v7VtDBZlgxK7u ToKxAzcAbgCZ/fv7wNmTf+GAJKyHG97iQe7VAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUDtFO1n+xMQe1Ry1yZ1DfMTWkd0gwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9EdEZPMW4teE1RZTFS eTF5WjFEZk1UV2tkMGcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAlnR1MA0GCSqGSIb3DQEBCwUAA4IBAQAqBm6pQ3Mjwj1kIqhVoQ7iKtnADDnv Qa9bj4d0DvMMRK1n4aNQygtfc6WUmjVzwQgDho+y5WOo114GzcAECM/cKuKFc3d/ WfNLEQ/kFFlWVv9FVOsIJeHI93cKF3k6IwLzjm/+lIHYZzw9XSnxvjiCrMeJjYKM QEkXUo0XD4Mnx7eEK26PalN2wzajYeiVLkL/l4heiVneERuN+WcXAo5en9bolgFY rgGU53Z6ZkPurWbwxdHJ5+6Ouf1L5zUIcaBthd0vzHcHgDvXlzKCYLw3ntD4Lg96 rV5z75Eb5l3TzxWISphaOxfaV6tgeH1EoDxPJOo3EOLu7aKO2QlPGIx5 -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:30 2024 by rpki-client on console-ams.rpki-client.org