$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/R1_CmO1gqyXImb_FjCFIwNfOJHU.roa File: R1_CmO1gqyXImb_FjCFIwNfOJHU.roa (raw, json) Hash identifier: xt/OSbwL7qEQUtNdZX37VQNAILYgdSzCWNhpznik//4= Subject key identifier: 47:5F:C2:98:ED:60:AB:25:C8:99:BF:C5:8C:21:48:C0:D7:CE:24:75 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 1194 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/R1_CmO1gqyXImb_FjCFIwNfOJHU.roa Signing time: Mon 26 Aug 2024 05:10:55 +0000 ROA not before: Mon 26 Aug 2024 05:10:55 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17408 IP address blocks: 150.116.112.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4500 (0x1194) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 26 05:10:55 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=475FC298ED60AB25C899BFC58C2148C0D7CE2475 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:64:7a:58:cc:2b:1b:6c:e3:ad:09:6c:f0:f3: 77:9b:ac:ad:4e:2a:b8:fe:34:e8:cb:1b:92:d9:37: 9d:54:55:1d:b4:5f:b6:19:81:87:a8:45:0b:00:44: b1:02:60:a2:02:00:f0:08:51:42:2a:35:26:de:cd: fa:83:19:32:56:5c:bc:81:96:cf:36:7a:1e:ba:0b: 7d:b0:1e:32:e8:60:da:3d:6f:be:b3:42:ab:07:ad: 26:30:22:3d:53:7f:49:20:56:25:ee:7a:d7:d7:a4: 86:0f:a9:e7:6b:c2:f9:c6:3c:72:01:7c:68:78:7c: 43:67:b1:8c:ae:25:1e:2e:ce:f7:c7:93:4b:d2:f4: 18:c4:2f:33:38:01:69:1c:62:83:49:f7:9c:ce:5a: 28:e3:da:78:af:46:60:c1:7d:6a:24:26:ec:27:84: 44:77:8d:e8:7a:f0:9b:66:55:fe:63:bd:46:6a:fe: ec:93:30:b1:45:53:0a:cb:fb:0c:01:a4:31:c4:e5: 0c:3d:d7:c8:55:e3:19:08:95:c9:52:bf:f4:e6:a7: 13:97:8a:58:bd:04:9e:8d:c6:31:b1:1e:bc:10:62: 15:ca:37:19:e4:58:66:26:7a:c8:95:f3:a1:a0:7d: f6:74:32:c8:5c:32:5e:f2:47:ea:7f:d3:3c:45:c1: ed:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:5F:C2:98:ED:60:AB:25:C8:99:BF:C5:8C:21:48:C0:D7:CE:24:75 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/R1_CmO1gqyXImb_FjCFIwNfOJHU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.112.0/22 Signature Algorithm: sha256WithRSAEncryption 4a:cd:ba:ea:29:f5:d3:84:2a:52:a5:dc:42:18:e8:65:a2:7b: 6d:2e:8d:91:25:58:07:30:84:c4:1e:87:69:52:3f:8c:e3:18: e0:b6:cb:52:c9:5e:25:5a:cc:4e:65:b3:34:32:60:17:a5:f8: e9:21:31:77:68:5b:7d:39:a8:94:ec:b0:33:81:33:ee:f7:a8: d6:3e:d4:c0:59:46:19:39:a6:ba:ab:b2:3d:c8:3b:80:89:9b: a9:f7:73:9f:19:e4:c0:29:1f:8a:5b:fc:d3:4c:cd:cf:9e:22: cf:d0:25:5c:ef:4d:78:92:49:07:e4:98:12:dc:0f:71:b7:a7: 4c:1a:6b:1e:dd:2c:8f:fd:92:71:70:cd:ca:70:41:ba:18:43: 10:cf:ef:cf:b5:4e:82:21:fd:79:cc:e4:02:21:91:00:c3:f0: c7:a1:c1:58:68:99:1f:7d:31:18:0d:83:45:53:39:23:af:70: 54:17:09:3b:e7:51:c8:be:5e:86:d6:7f:98:82:3e:a7:27:a3: c7:5f:20:57:28:43:ae:98:8c:97:5c:af:60:e0:6d:27:27:1f: 73:fe:25:a2:08:29:1b:c9:27:5d:3b:c4:3e:41:5a:bf:e7:fb: e5:62:0f:ef:9a:95:01:4d:0b:2c:f3:db:d5:34:0d:d4:1d:a6: 10:6d:e1:b4 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEZQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNDA4MjYw NTEwNTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ3NUZDMjk4RUQ2MEFC MjVDODk5QkZDNThDMjE0OEMwRDdDRTI0NzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBZHpYzCsbbOOtCWzw83ebrK1OKrj+NOjLG5LZN51UVR20X7YZ gYeoRQsARLECYKICAPAIUUIqNSbezfqDGTJWXLyBls82eh66C32wHjLoYNo9b76z QqsHrSYwIj1Tf0kgViXuetfXpIYPqedrwvnGPHIBfGh4fENnsYyuJR4uzvfHk0vS 9BjELzM4AWkcYoNJ95zOWijj2nivRmDBfWokJuwnhER3jeh68JtmVf5jvUZq/uyT MLFFUwrL+wwBpDHE5Qw918hV4xkIlclSv/TmpxOXili9BJ6NxjGxHrwQYhXKNxnk WGYmesiV86GgffZ0MshcMl7yR+p/0zxFwe3HAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUR1/CmO1gqyXImb/FjCFIwNfOJHUwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9SMV9DbU8xZ3F5WElt Yl9GakNGSXdOZk9KSFUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQClnRwMA0GCSqGSIb3DQEBCwUAA4IBAQBKzbrqKfXThCpSpdxCGOhlonttLo2R JVgHMITEHodpUj+M4xjgtstSyV4lWsxOZbM0MmAXpfjpITF3aFt9OaiU7LAzgTPu 96jWPtTAWUYZOaa6q7I9yDuAiZup93OfGeTAKR+KW/zTTM3PniLP0CVc7014kkkH 5JgS3A9xt6dMGmse3SyP/ZJxcM3KcEG6GEMQz+/PtU6CIf15zOQCIZEAw/DHocFY aJkffTEYDYNFUzkjr3BUFwk751HIvl6G1n+Ygj6nJ6PHXyBXKEOumIyXXK9g4G0n Jx9z/iWiCCkbySddO8Q+QVq/5/vlYg/vmpUBTQss89vVNA3UHaYQbeG0 -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:49 2024 by rpki-client on console-fra.rpki-client.org