$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/RpPKhc9W3ipv-0Pc8jxCBhMwudo.roa File: RpPKhc9W3ipv-0Pc8jxCBhMwudo.roa (raw, json) Hash identifier: 4SOCiUiHhVYgIBH8GM4pwsC+FolxZ8L1q0NC3EODiXA= Subject key identifier: 46:93:CA:85:CF:56:DE:2A:6F:FB:43:DC:F2:3C:42:06:13:30:B9:DA Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 11A4 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/RpPKhc9W3ipv-0Pc8jxCBhMwudo.roa Signing time: Mon 26 Aug 2024 05:11:00 +0000 ROA not before: Mon 26 Aug 2024 05:11:00 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17408 IP address blocks: 150.116.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4516 (0x11a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 26 05:11:00 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4693CA85CF56DE2A6FFB43DCF23C42061330B9DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:83:10:e1:96:21:75:72:7d:a9:df:47:6e:bf: c9:0d:d1:09:b9:37:d3:56:e1:2b:3c:55:16:76:d2: d9:d8:90:e3:62:2c:9d:fa:ef:47:1e:ea:34:54:9a: 0d:50:39:2d:e8:60:7a:81:8c:21:f7:f8:f9:9f:32: 15:69:79:c4:64:ff:35:53:a4:1b:4a:b0:16:63:8f: 51:a9:e5:8d:26:60:1a:50:ba:1e:cb:1a:b9:f1:9f: 90:9e:aa:aa:83:28:2b:54:e2:2a:bc:2f:70:42:28: 08:dd:e5:f4:c2:d4:7b:80:5a:db:a0:06:7f:b3:65: 62:c8:d5:ee:ee:52:72:82:94:f8:b8:80:f5:35:52: a3:40:f8:01:79:10:b8:d4:aa:ad:dc:8d:ab:de:40: ac:00:94:b8:ac:2c:42:e7:cf:67:d8:4f:2e:20:c6: f8:f1:f1:a0:72:78:61:e9:62:4c:d7:c1:15:e7:35: 3f:a9:88:b6:30:8b:58:08:59:a8:03:01:cf:04:79: 17:76:40:3e:cc:3b:5a:0f:94:65:c0:77:a6:fe:02: 23:69:98:48:00:40:43:19:83:32:c1:ca:f2:68:98: ac:ea:26:65:af:03:be:37:63:13:cc:43:cf:95:45: bf:b0:da:98:3c:45:ae:c5:e4:f7:88:1b:86:59:bb: 90:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:93:CA:85:CF:56:DE:2A:6F:FB:43:DC:F2:3C:42:06:13:30:B9:DA X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/RpPKhc9W3ipv-0Pc8jxCBhMwudo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.239.0/24 Signature Algorithm: sha256WithRSAEncryption 47:5d:7e:6b:a5:f5:d4:c7:77:ca:c1:a4:14:a9:a2:8e:4e:db: 94:be:63:93:de:c5:87:77:93:ef:45:38:ae:08:f6:ea:2f:7a: 4e:3d:83:af:c5:7e:d1:d8:17:74:6b:df:5b:59:59:e8:2e:d8: d1:ab:e1:01:52:cb:af:ba:c8:79:9b:06:2c:a5:49:e3:a1:98: 19:0b:29:e4:f7:58:3f:12:ef:3f:3d:ae:08:a9:d8:99:31:e4: fc:98:fd:67:75:d7:18:c4:5e:7d:84:55:90:a6:7a:7e:e3:48: 4e:e2:25:96:2d:c0:dc:e8:cb:63:15:d2:f0:4a:5b:94:20:e1: 93:db:0b:ed:0c:1f:a2:82:88:f7:3d:77:51:1d:cf:21:f6:21: 98:9d:d9:4f:17:9b:52:e1:36:08:4e:e8:56:33:69:69:78:d2: 52:03:b3:1d:fa:dc:c2:df:44:a4:04:c2:e7:c7:c0:3a:f5:6a: 6b:a0:55:7b:7b:86:dd:81:db:32:7e:ae:59:e7:d6:5c:a3:b1: 3a:83:ec:76:1c:0a:94:5e:be:f9:9f:e1:cd:fd:ba:13:f2:e9: 0b:96:14:fb:55:37:fd:df:b6:59:b6:6b:f3:85:5f:ab:be:df: 7d:13:c7:44:f0:b4:ed:e0:09:e3:96:ab:5e:5f:22:bf:6e:41: eb:bd:55:ac -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEaQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNDA4MjYw NTExMDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ2OTNDQTg1Q0Y1NkRF MkE2RkZCNDNEQ0YyM0M0MjA2MTMzMEI5REEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/gxDhliF1cn2p30duv8kN0Qm5N9NW4Ss8VRZ20tnYkONiLJ36 70ce6jRUmg1QOS3oYHqBjCH3+PmfMhVpecRk/zVTpBtKsBZjj1Gp5Y0mYBpQuh7L Grnxn5CeqqqDKCtU4iq8L3BCKAjd5fTC1HuAWtugBn+zZWLI1e7uUnKClPi4gPU1 UqNA+AF5ELjUqq3cjaveQKwAlLisLELnz2fYTy4gxvjx8aByeGHpYkzXwRXnNT+p iLYwi1gIWagDAc8EeRd2QD7MO1oPlGXAd6b+AiNpmEgAQEMZgzLByvJomKzqJmWv A743YxPMQ8+VRb+w2pg8Ra7F5PeIG4ZZu5BNAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQURpPKhc9W3ipv+0Pc8jxCBhMwudowHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9ScFBLaGM5VzNpcHYt MFBjOGp4Q0JoTXd1ZG8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAlnTvMA0GCSqGSIb3DQEBCwUAA4IBAQBHXX5rpfXUx3fKwaQUqaKOTtuUvmOT 3sWHd5PvRTiuCPbqL3pOPYOvxX7R2Bd0a99bWVnoLtjRq+EBUsuvush5mwYspUnj oZgZCynk91g/Eu8/Pa4IqdiZMeT8mP1nddcYxF59hFWQpnp+40hO4iWWLcDc6Mtj FdLwSluUIOGT2wvtDB+igoj3PXdRHc8h9iGYndlPF5tS4TYITuhWM2lpeNJSA7Md +tzC30SkBMLnx8A69WproFV7e4bdgdsyfq5Z59Zco7E6g+x2HAqUXr75n+HN/boT 8ukLlhT7VTf937ZZtmvzhV+rvt99E8dE8LTt4AnjlqteXyK/bkHrvVWs -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:02 2024 by rpki-client on console-ams.rpki-client.org