$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Mj13sF0_IlOAL-vQb0lvSt6wAac.roa File: Mj13sF0_IlOAL-vQb0lvSt6wAac.roa (raw, json) Hash identifier: CcGKO04OJ0bKQQ/RCAV6undVHCnT62jpupq3N4UjquU= Subject key identifier: 32:3D:77:B0:5D:3F:22:53:80:2F:EB:D0:6F:49:6F:4A:DE:B0:01:A7 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 0FC6 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Mj13sF0_IlOAL-vQb0lvSt6wAac.roa Signing time: Fri 01 Sep 2023 08:29:31 +0000 ROA not before: Fri 01 Sep 2023 08:29:31 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131627 IP address blocks: 150.116.160.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 19:57:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4038 (0xfc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Sep 1 08:29:31 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=323D77B05D3F2253802FEBD06F496F4ADEB001A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:04:6c:1b:93:b1:1b:34:ce:1f:6f:11:47:d2: 50:9e:0f:d0:50:b9:a3:bf:5c:64:eb:ad:e6:34:38: 73:55:c9:5c:62:e1:a2:2c:d3:8f:12:8f:77:4f:bf: 6a:e7:92:26:45:e0:cc:bb:03:6d:7f:5f:33:d1:cc: 40:e2:e6:c7:36:be:33:ad:37:13:56:30:44:a9:4d: 01:6c:41:55:d1:3f:bd:ac:30:22:12:f7:87:32:eb: 47:32:90:95:9d:24:0b:74:c3:7a:5d:18:92:62:85: 1c:ac:97:7a:cf:83:23:fa:6c:6c:26:de:46:3d:7e: 08:16:ec:d6:92:e1:dd:0e:51:73:d9:20:a7:c2:92: 2b:56:62:5a:42:1c:6d:7c:85:fc:18:93:ac:cc:4a: e1:fc:08:56:c9:09:9d:fc:f6:12:01:05:cb:c1:d1: 97:49:49:79:cc:1c:f4:c9:47:cf:69:4c:77:35:7a: b9:a6:58:af:63:56:8f:71:54:70:8e:77:3b:21:b3: c0:08:23:a3:0c:87:34:7d:9a:63:74:77:ab:6d:ae: 87:24:06:d3:03:f6:3a:30:e2:bf:aa:d3:85:73:35: 6c:26:8b:b7:c8:8d:5f:00:cb:61:d8:3f:12:83:dd: b7:53:d5:9d:79:a3:9d:6b:91:c4:03:f1:af:1e:06: 14:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:3D:77:B0:5D:3F:22:53:80:2F:EB:D0:6F:49:6F:4A:DE:B0:01:A7 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Mj13sF0_IlOAL-vQb0lvSt6wAac.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.160.0/21 Signature Algorithm: sha256WithRSAEncryption 43:1d:b8:67:00:47:ab:cb:7b:69:d8:7f:1e:63:ec:fe:5e:26: f3:8a:ac:63:8e:b0:2e:d1:07:44:cf:31:1b:51:fd:80:f1:75: bc:b3:ab:2d:20:e0:7c:1c:1a:26:ae:38:68:38:d3:89:71:54: 7b:27:2e:d4:14:63:91:b7:d6:6d:93:08:2c:53:be:06:7c:b6: b8:2b:02:6a:27:e5:a7:87:60:8c:dc:3b:bb:c6:11:c9:2c:1f: 68:79:3e:67:e9:78:04:57:74:e3:fd:47:8e:e9:05:34:84:83: ae:0b:a9:b6:44:a4:64:89:3d:8f:56:bb:fd:43:db:34:bd:e0: 5f:99:fa:63:71:7e:6d:9a:13:9c:94:d0:13:21:d4:6a:9b:03: 27:e5:3f:00:03:e8:d2:c2:fc:5d:c8:99:42:ed:e9:ed:88:c6: 1a:26:37:bb:69:64:f1:de:2c:b7:ba:00:e0:04:85:24:19:0f: 19:d4:fa:3b:8a:be:cc:91:69:82:e2:0e:e9:d5:bf:77:1d:de: ae:fc:9e:1c:b9:ca:87:e9:b5:2c:6a:e8:83:1e:27:c8:89:18: 11:c9:e7:ab:a7:51:6a:dc:5b:26:71:41:92:cd:72:68:76:e3: 30:2c:e7:be:fe:df:2b:64:1e:27:a0:54:b7:1d:db:7a:a7:f4: 8e:82:1f:a5 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICD8YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMzA5MDEw ODI5MzFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDMyM0Q3N0IwNUQzRjIy NTM4MDJGRUJEMDZGNDk2RjRBREVCMDAxQTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzBGwbk7EbNM4fbxFH0lCeD9BQuaO/XGTrreY0OHNVyVxi4aIs 048Sj3dPv2rnkiZF4My7A21/XzPRzEDi5sc2vjOtNxNWMESpTQFsQVXRP72sMCIS 94cy60cykJWdJAt0w3pdGJJihRysl3rPgyP6bGwm3kY9fggW7NaS4d0OUXPZIKfC kitWYlpCHG18hfwYk6zMSuH8CFbJCZ389hIBBcvB0ZdJSXnMHPTJR89pTHc1ermm WK9jVo9xVHCOdzshs8AII6MMhzR9mmN0d6ttrockBtMD9jow4r+q04VzNWwmi7fI jV8Ay2HYPxKD3bdT1Z15o51rkcQD8a8eBhThAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUMj13sF0/IlOAL+vQb0lvSt6wAacwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9NajEzc0YwX0lsT0FM LXZRYjBsdlN0NndBYWMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQDlnSgMA0GCSqGSIb3DQEBCwUAA4IBAQBDHbhnAEery3tp2H8eY+z+Xibziqxj jrAu0QdEzzEbUf2A8XW8s6stIOB8HBomrjhoONOJcVR7Jy7UFGORt9ZtkwgsU74G fLa4KwJqJ+Wnh2CM3Du7xhHJLB9oeT5n6XgEV3Tj/UeO6QU0hIOuC6m2RKRkiT2P Vrv9Q9s0veBfmfpjcX5tmhOclNATIdRqmwMn5T8AA+jSwvxdyJlC7entiMYaJje7 aWTx3iy3ugDgBIUkGQ8Z1Po7ir7MkWmC4g7p1b93Hd6u/J4cucqH6bUsauiDHifI iRgRyeerp1Fq3FsmcUGSzXJoduMwLOe+/t8rZB4noFS3Hdt6p/SOgh+l -----END CERTIFICATE-----Generated at Sat Jun 1 22:20:14 2024 by rpki-client on console-fra.rpki-client.org