$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/N00I24ZnYH7M1jvysTh9wuXx8fQ.roa File: N00I24ZnYH7M1jvysTh9wuXx8fQ.roa (raw, json) Hash identifier: 7/h9nqKJyfTl3WBTGmua5EciC8a1ldKCs/8hthFJ57g= Subject key identifier: 37:4D:08:DB:86:67:60:7E:CC:D6:3B:F2:B1:38:7D:C2:E5:F1:F1:F4 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 0FAC Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/N00I24ZnYH7M1jvysTh9wuXx8fQ.roa Signing time: Fri 01 Sep 2023 08:29:24 +0000 ROA not before: Fri 01 Sep 2023 08:29:24 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131627 IP address blocks: 150.116.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 19:57:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4012 (0xfac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Sep 1 08:29:24 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=374D08DB8667607ECCD63BF2B1387DC2E5F1F1F4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:f8:9f:3a:df:2e:d1:c4:34:06:06:7d:ee:f6: f7:03:ca:fd:4c:1d:09:ad:fa:b1:60:41:4b:a5:a7: 11:18:0f:48:2d:fb:a7:7e:25:cc:57:18:38:3c:a8: 60:a2:0e:f5:fc:0d:3c:9a:4d:98:6a:ab:4c:23:97: 20:fa:39:16:9b:63:08:78:f0:53:e4:09:02:b1:37: 8c:d3:78:7e:85:44:bd:e5:6c:37:29:fe:cc:b5:33: b0:38:f7:b7:85:18:02:50:0b:f8:73:b6:a3:b5:e0: 06:79:f4:f1:b8:55:cd:c3:82:06:34:28:b5:4b:c4: cf:2e:c8:a8:36:de:f7:ae:49:8b:e7:c2:54:78:41: 93:7c:d4:24:19:0f:ec:bc:82:61:5f:57:0a:2f:98: bd:87:0f:82:db:1a:80:f3:2e:e1:40:70:5b:63:ae: 0e:56:8a:ed:44:62:6c:47:d0:22:7f:c8:f7:80:79: 3c:d6:2c:73:da:b2:4d:a7:b2:da:0a:95:a1:1a:75: 6f:d6:32:f3:94:e5:34:7b:9b:aa:63:c2:fe:0b:31: b8:32:ce:db:fb:74:84:3f:21:ac:95:2e:2b:82:3d: 7e:b6:a1:f9:53:cb:09:38:db:bb:55:c6:63:3e:f2: bf:d2:60:3b:b1:7b:88:01:eb:67:d1:93:b0:c5:c6: d0:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:4D:08:DB:86:67:60:7E:CC:D6:3B:F2:B1:38:7D:C2:E5:F1:F1:F4 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/N00I24ZnYH7M1jvysTh9wuXx8fQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.192.0/19 Signature Algorithm: sha256WithRSAEncryption 09:bb:8d:21:fd:4c:c2:18:cb:9d:94:ae:72:82:54:7a:ab:d4: ed:b3:26:4c:07:63:39:5a:b9:ea:c2:91:5d:84:25:b9:3b:5f: f3:db:e6:a1:3c:d8:5b:5c:24:f5:2f:52:6f:c0:bd:b4:70:52: d8:4e:ea:86:fd:0f:c0:23:94:b2:59:09:76:5f:ef:54:59:7f: 72:38:18:83:c7:2a:b7:d9:e3:a1:37:c3:cb:11:62:8c:74:71: f4:c8:37:7e:6c:69:ae:39:d0:e7:e8:3b:97:d8:45:79:4d:69: 8c:e4:39:00:05:ee:c3:9a:d5:fd:da:be:68:ee:9d:ae:eb:97: a7:46:17:7a:73:0d:ec:16:75:9c:2c:90:c4:c7:6e:90:34:9d: 52:c3:bd:7a:04:d7:c4:23:c5:2d:6b:9e:68:0e:8c:d7:93:dd: 88:49:0a:dc:67:32:d4:8e:f3:a2:56:f1:b7:91:d2:2a:4d:41: 42:6c:c0:0c:a4:a4:de:14:f2:93:06:16:c9:92:8c:46:fb:da: 11:2f:c4:b6:d2:53:71:e9:8c:d1:6e:56:61:e1:de:c0:e0:82: a9:38:2e:a3:3e:f3:a5:3d:6e:00:8b:0a:1c:d8:6c:4d:ec:44: f4:70:d3:7f:80:56:ce:c5:b0:88:82:25:09:af:30:dd:5b:70: 35:d8:20:14 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICD6wwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMzA5MDEw ODI5MjRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDM3NEQwOERCODY2NzYw N0VDQ0Q2M0JGMkIxMzg3REMyRTVGMUYxRjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDT+J863y7RxDQGBn3u9vcDyv1MHQmt+rFgQUulpxEYD0gt+6d+ JcxXGDg8qGCiDvX8DTyaTZhqq0wjlyD6ORabYwh48FPkCQKxN4zTeH6FRL3lbDcp /sy1M7A497eFGAJQC/hztqO14AZ59PG4Vc3DggY0KLVLxM8uyKg23veuSYvnwlR4 QZN81CQZD+y8gmFfVwovmL2HD4LbGoDzLuFAcFtjrg5Wiu1EYmxH0CJ/yPeAeTzW LHPask2nstoKlaEadW/WMvOU5TR7m6pjwv4LMbgyztv7dIQ/IayVLiuCPX62oflT ywk427tVxmM+8r/SYDuxe4gB62fRk7DFxtA7AgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUN00I24ZnYH7M1jvysTh9wuXx8fQwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9OMDBJMjRabllIN00x anZ5c1RoOXd1WHg4ZlEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQFlnTAMA0GCSqGSIb3DQEBCwUAA4IBAQAJu40h/UzCGMudlK5yglR6q9TtsyZM B2M5WrnqwpFdhCW5O1/z2+ahPNhbXCT1L1JvwL20cFLYTuqG/Q/AI5SyWQl2X+9U WX9yOBiDxyq32eOhN8PLEWKMdHH0yDd+bGmuOdDn6DuX2EV5TWmM5DkABe7DmtX9 2r5o7p2u65enRhd6cw3sFnWcLJDEx26QNJ1Sw716BNfEI8Uta55oDozXk92ISQrc ZzLUjvOiVvG3kdIqTUFCbMAMpKTeFPKTBhbJkoxG+9oRL8S20lNx6YzRblZh4d7A 4IKpOC6jPvOlPW4Aiwoc2GxN7ET0cNN/gFbOxbCIgiUJrzDdW3A12CAU -----END CERTIFICATE-----Generated at Sat Jun 1 23:25:29 2024 by rpki-client on console-ams.rpki-client.org