$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/GUPHmTwWDUM_wScIvdcDyyOkGxY.roa File: GUPHmTwWDUM_wScIvdcDyyOkGxY.roa (raw, json) Hash identifier: D2m/Qzfo+l3bu7pJs+lYlvJVM40jkKoY+qgoKALDKfE= Subject key identifier: 19:43:C7:99:3C:16:0D:43:3F:C1:27:08:BD:D7:03:CB:23:A4:1B:16 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 11A8 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/GUPHmTwWDUM_wScIvdcDyyOkGxY.roa Signing time: Mon 26 Aug 2024 05:11:01 +0000 ROA not before: Mon 26 Aug 2024 05:11:01 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131600 IP address blocks: 150.117.120.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4520 (0x11a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 26 05:11:01 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1943C7993C160D433FC12708BDD703CB23A41B16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:4d:e7:79:b7:1b:4b:87:ff:6b:d7:c1:a4:d9: 23:7e:97:a7:17:b0:08:37:ba:3e:18:36:13:72:d6: 56:38:84:6a:3c:1b:3e:bd:a2:74:16:15:b3:1e:45: 0c:c1:9e:95:0c:4a:b6:8a:83:7a:74:d9:ab:01:0c: b4:e6:09:25:09:6f:b4:69:02:a1:66:93:b0:09:e7: a4:5e:d8:c9:c7:00:03:0e:6d:a3:de:0c:3e:a9:d0: 5e:a9:e6:78:98:9c:93:af:c4:56:13:d6:6c:db:34: b4:2f:5c:f8:c6:11:90:8e:3f:a6:8c:cf:35:07:d5: f1:29:b6:73:56:13:05:8e:46:35:87:6c:a7:2c:49: 67:60:92:df:14:bb:86:9a:0e:25:07:0a:fc:e6:b9: c1:16:35:2d:77:47:9e:24:9c:ca:01:59:60:27:38: ae:8c:18:84:6b:d3:84:74:14:f2:91:d9:a3:02:b5: 1e:1b:68:d1:15:b1:19:36:93:03:ea:4d:60:6f:87: e0:66:4a:eb:0e:a4:4f:7c:b1:1c:c4:dc:2a:1e:9d: 0e:9f:36:b1:d9:c7:c2:13:3d:90:c5:9a:77:5e:8c: b5:2c:92:48:54:e1:41:77:4b:cf:ff:04:5a:ca:8b: 08:64:68:cf:be:57:d9:01:e2:9d:62:f4:aa:a5:ea: cb:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:43:C7:99:3C:16:0D:43:3F:C1:27:08:BD:D7:03:CB:23:A4:1B:16 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/GUPHmTwWDUM_wScIvdcDyyOkGxY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.117.120.0/21 Signature Algorithm: sha256WithRSAEncryption 92:02:23:ef:03:29:27:23:d5:1a:0e:4b:2f:da:db:4b:4b:8c: 9d:79:a0:77:48:92:cb:b7:d5:32:35:d7:fa:81:45:1a:da:ff: dc:82:46:cd:40:aa:02:fe:3f:24:c6:88:20:8a:ab:77:79:46: ae:b8:b1:0a:b2:3a:74:41:36:0f:59:e0:71:e9:f0:46:84:16: 86:5c:b4:db:90:4a:5f:88:e5:89:3a:f9:e0:0b:1a:b0:49:d7: 1d:e5:81:64:d2:c8:a5:67:d1:55:48:6b:ba:a1:05:06:cd:7f: e1:8c:37:b0:2b:3d:a3:fd:87:db:34:a4:9f:4e:88:92:e2:f9: e4:d5:ec:d4:6b:33:ec:67:12:f1:08:7d:72:7d:c0:f9:ee:cb: f6:68:30:88:5b:63:6c:5c:0f:a7:f4:0c:50:79:fa:23:b4:eb: 53:24:7f:fe:5d:47:57:b8:2b:b6:6a:cd:c0:8a:ce:c7:3b:93: 43:0b:bb:1a:c9:81:2e:85:a8:87:90:81:15:18:1b:8b:fb:5a: 9c:ec:87:6d:2a:ad:bd:2b:80:06:9b:c8:f2:07:76:a3:2d:aa: 9c:b1:d7:8e:ea:8b:fe:4e:40:37:15:25:39:e0:52:b3:a5:9d: 33:82:97:4c:85:7b:01:96:84:aa:df:58:18:68:f8:e3:de:7e: 8e:71:07:e6 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEagwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNDA4MjYw NTExMDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE5NDNDNzk5M0MxNjBE NDMzRkMxMjcwOEJERDcwM0NCMjNBNDFCMTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9Ted5txtLh/9r18Gk2SN+l6cXsAg3uj4YNhNy1lY4hGo8Gz69 onQWFbMeRQzBnpUMSraKg3p02asBDLTmCSUJb7RpAqFmk7AJ56Re2MnHAAMObaPe DD6p0F6p5niYnJOvxFYT1mzbNLQvXPjGEZCOP6aMzzUH1fEptnNWEwWORjWHbKcs SWdgkt8Uu4aaDiUHCvzmucEWNS13R54knMoBWWAnOK6MGIRr04R0FPKR2aMCtR4b aNEVsRk2kwPqTWBvh+BmSusOpE98sRzE3CoenQ6fNrHZx8ITPZDFmndejLUskkhU 4UF3S8//BFrKiwhkaM++V9kB4p1i9Kql6suNAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUGUPHmTwWDUM/wScIvdcDyyOkGxYwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9HVVBIbVR3V0RVTV93 U2NJdmRjRHl5T2tHeFkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQDlnV4MA0GCSqGSIb3DQEBCwUAA4IBAQCSAiPvAyknI9UaDksv2ttLS4ydeaB3 SJLLt9UyNdf6gUUa2v/cgkbNQKoC/j8kxoggiqt3eUauuLEKsjp0QTYPWeBx6fBG hBaGXLTbkEpfiOWJOvngCxqwSdcd5YFk0silZ9FVSGu6oQUGzX/hjDewKz2j/Yfb NKSfToiS4vnk1ezUazPsZxLxCH1yfcD57sv2aDCIW2NsXA+n9AxQefojtOtTJH/+ XUdXuCu2as3Ais7HO5NDC7sayYEuhaiHkIEVGBuL+1qc7IdtKq29K4AGm8jyB3aj LaqcsdeO6ov+TkA3FSU54FKzpZ0zgpdMhXsBloSq31gYaPjj3n6OcQfm -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:02 2024 by rpki-client on console-ams.rpki-client.org