$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/N6dz0_pm4YrOFaPevJ0eag7Uygk.roa File: N6dz0_pm4YrOFaPevJ0eag7Uygk.roa (raw, json) Hash identifier: oEGu7niLNZ2CWKFmhKir6Rl5X0Qc8KRS7xTgMlTq3xs= Subject key identifier: 37:A7:73:D3:FA:66:E1:8A:CE:15:A3:DE:BC:9D:1E:6A:0E:D4:CA:09 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 1171 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/N6dz0_pm4YrOFaPevJ0eag7Uygk.roa Signing time: Mon 26 Aug 2024 05:10:47 +0000 ROA not before: Mon 26 Aug 2024 05:10:47 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17408 IP address blocks: 203.163.192.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4465 (0x1171) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 26 05:10:47 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=37A773D3FA66E18ACE15A3DEBC9D1E6A0ED4CA09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:14:e9:bb:c7:ec:a3:09:1a:b7:ac:74:28:c3: 4b:5d:ad:7f:c2:73:55:17:bd:04:07:14:13:ac:c6: db:2e:de:18:e4:dd:72:3d:75:2e:46:fd:99:55:59: b5:c2:c7:51:7e:3a:a3:81:e1:2e:88:d8:8b:23:ab: a2:11:f2:7c:b7:b5:7f:f3:c8:6a:40:9a:fd:62:b3: 3a:5e:a9:c3:4f:7a:e3:a1:30:0d:18:e6:c5:70:1c: ea:bf:0d:a6:b9:e6:bb:c8:7f:f1:b9:f3:9f:00:7c: 01:7e:b7:63:67:0c:52:dd:6e:2b:dc:5d:ef:7a:1e: 0b:b4:54:79:23:a5:31:44:b3:0c:c1:a1:e2:3b:7c: 0e:27:e0:53:37:dc:2c:64:d4:16:3a:4c:ea:81:bb: af:df:28:65:da:f8:6f:bc:27:d9:83:9d:40:85:fc: 71:d4:5c:6c:9a:e8:af:96:99:51:9e:a8:aa:4b:12: 11:41:ae:f1:84:13:87:a0:24:12:3e:0c:ac:19:64: 79:e8:54:c6:cc:f3:48:11:7a:87:61:44:e6:bf:23: ca:4c:4d:85:f9:42:7e:ee:ee:5d:66:ce:20:41:44: 95:16:ce:36:31:7b:a4:da:74:1c:d6:4a:72:2e:63: 7a:5c:5c:b1:69:44:9e:de:60:7b:14:00:2e:77:7b: c6:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:A7:73:D3:FA:66:E1:8A:CE:15:A3:DE:BC:9D:1E:6A:0E:D4:CA:09 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/N6dz0_pm4YrOFaPevJ0eag7Uygk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 203.163.192.0/23 Signature Algorithm: sha256WithRSAEncryption 46:60:3e:5a:e2:4c:a5:43:84:74:69:b9:14:a7:88:5d:3b:08: 2c:e4:fa:16:70:3a:3a:aa:33:41:15:4b:15:a4:29:84:66:5a: 8b:70:81:15:35:45:30:92:33:74:c2:3b:13:fc:33:2a:9b:47: 63:a8:94:cb:af:56:fa:78:5d:81:de:d4:ba:29:ee:bf:d2:9d: c9:70:9e:93:17:dd:1a:ca:fc:06:c8:57:38:7d:04:50:a8:f2: de:83:fb:1a:b2:95:cc:50:bc:ad:d6:dd:61:8c:c1:8b:1c:5d: dc:23:c7:88:38:87:a5:84:17:8f:bf:dc:24:d3:84:3e:05:35: e3:c2:d6:ec:f4:11:b8:6d:b5:70:6e:3f:51:49:34:21:30:6b: 80:e4:54:82:11:dd:f4:f2:f3:e9:78:e7:8b:dc:35:3d:86:62: bb:e4:f4:ed:00:f4:5a:cf:c8:7f:bd:13:a2:23:9a:ba:3a:1b: 16:78:a7:23:f2:2b:e8:33:94:0d:ff:7a:f7:ec:ce:50:93:28: b4:bd:15:da:5a:eb:b1:d1:74:6a:a8:6d:6b:a5:10:df:fc:a1: dd:1a:8b:85:2e:ce:89:02:a2:c0:3c:2f:c8:22:57:9b:5d:bc: fa:98:48:50:4b:32:f1:1f:69:cb:ab:3d:c2:47:28:db:94:c1: 5e:29:9a:2b -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEXEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNDA4MjYw NTEwNDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDM3QTc3M0QzRkE2NkUx OEFDRTE1QTNERUJDOUQxRTZBMEVENENBMDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDmFOm7x+yjCRq3rHQow0tdrX/Cc1UXvQQHFBOsxtsu3hjk3XI9 dS5G/ZlVWbXCx1F+OqOB4S6I2Isjq6IR8ny3tX/zyGpAmv1iszpeqcNPeuOhMA0Y 5sVwHOq/Daa55rvIf/G5858AfAF+t2NnDFLdbivcXe96Hgu0VHkjpTFEswzBoeI7 fA4n4FM33Cxk1BY6TOqBu6/fKGXa+G+8J9mDnUCF/HHUXGya6K+WmVGeqKpLEhFB rvGEE4egJBI+DKwZZHnoVMbM80gReodhROa/I8pMTYX5Qn7u7l1mziBBRJUWzjYx e6TadBzWSnIuY3pcXLFpRJ7eYHsUAC53e8YXAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUN6dz0/pm4YrOFaPevJ0eag7UygkwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9ONmR6MF9wbTRZck9G YVBldkowZWFnN1V5Z2sucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBy6PAMA0GCSqGSIb3DQEBCwUAA4IBAQBGYD5a4kylQ4R0abkUp4hdOwgs5PoW cDo6qjNBFUsVpCmEZlqLcIEVNUUwkjN0wjsT/DMqm0djqJTLr1b6eF2B3tS6Ke6/ 0p3JcJ6TF90ayvwGyFc4fQRQqPLeg/saspXMULyt1t1hjMGLHF3cI8eIOIelhBeP v9wk04Q+BTXjwtbs9BG4bbVwbj9RSTQhMGuA5FSCEd308vPpeOeL3DU9hmK75PTt APRaz8h/vROiI5q6OhsWeKcj8ivoM5QN/3r37M5Qkyi0vRXaWuux0XRqqG1rpRDf /KHdGouFLs6JAqLAPC/IIlebXbz6mEhQSzLxH2nLqz3CRyjblMFeKZor -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:30 2024 by rpki-client on console-ams.rpki-client.org