$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/V3thniux8-JV69RGOgwQMN6RIGc.roa File: V3thniux8-JV69RGOgwQMN6RIGc.roa (raw, json) Hash identifier: R/qFOgGJG/SGSO6UO3YcISj5nf0Eb3tQ/Cv1KVPCwp4= Subject key identifier: 57:7B:61:9E:2B:B1:F3:E2:55:EB:D4:46:3A:0C:10:30:DE:91:20:67 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 1167 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/V3thniux8-JV69RGOgwQMN6RIGc.roa Signing time: Mon 26 Aug 2024 05:10:45 +0000 ROA not before: Mon 26 Aug 2024 05:10:45 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131627 IP address blocks: 150.116.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4455 (0x1167) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 26 05:10:45 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=577B619E2BB1F3E255EBD4463A0C1030DE912067 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:c3:e3:bb:ed:00:2b:f4:eb:7b:20:c0:21:2d: 16:64:f8:b4:82:64:1d:35:29:69:7b:dd:88:a5:6a: 24:81:13:5e:0c:85:9b:b2:c4:62:6e:2a:0a:85:ef: 47:2c:19:b0:fb:f0:f9:4a:28:b6:a4:dc:eb:76:c1: 30:31:2e:1d:33:77:ba:42:59:a3:ef:68:92:7b:1b: 9e:9d:3a:ac:9c:22:81:b0:87:9c:e0:6e:a5:25:91: fe:75:58:05:ca:d8:80:92:78:b2:4b:04:2d:26:b6: 2e:ee:50:45:a3:ea:5f:3d:7d:1c:b0:f0:e3:18:3b: 3e:28:fa:35:9d:36:4b:2e:45:b4:6b:0c:e1:1e:07: 3f:ef:b4:00:be:90:38:33:f5:09:10:bb:01:9a:21: 05:b5:2c:2c:f2:b6:4e:b5:c7:5d:18:cf:58:a5:64: 03:04:1a:fd:dc:27:7d:07:20:c2:19:44:39:fe:6d: 46:f2:ef:bf:e2:7f:64:04:c5:df:67:e9:aa:ae:af: bb:f8:1d:e7:0d:70:ce:f6:1e:88:9d:6e:f8:03:62: a1:45:da:8d:2f:b1:3d:84:f8:9f:17:59:b2:52:96: 53:0a:60:c1:bf:73:93:05:d4:42:6e:a0:95:7c:99: a4:a6:e2:35:09:bc:45:4f:ba:69:51:1b:db:f2:54: ac:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:7B:61:9E:2B:B1:F3:E2:55:EB:D4:46:3A:0C:10:30:DE:91:20:67 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/V3thniux8-JV69RGOgwQMN6RIGc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.238.0/24 Signature Algorithm: sha256WithRSAEncryption 07:4a:ac:fe:30:52:ac:da:b4:f6:1d:89:83:6a:0c:37:d7:b3: f1:93:d1:28:5e:16:29:84:59:10:a3:9d:4b:cc:b6:2e:b6:16: 31:23:ad:0a:73:63:53:5a:5d:a8:77:f7:d3:e1:6b:23:a2:fc: 8e:92:02:db:ea:29:ff:cc:55:78:b7:7a:6a:20:d6:25:c8:73: c7:a0:6f:1e:fb:88:44:f9:74:1b:ca:f3:56:00:cb:6a:91:ab: 57:30:62:cf:0b:73:e0:36:ea:9f:fd:86:54:fb:a1:a8:76:2e: 98:aa:07:62:b8:c7:6b:29:ce:c5:74:4a:46:ac:e6:09:5b:66: 85:8c:35:52:ec:de:c8:ce:4d:09:b8:69:28:be:e7:62:74:bc: c1:a4:1a:0f:3c:6c:bd:33:fb:2e:8b:95:b7:c4:8d:4a:a2:3e: 18:06:65:8c:02:54:c4:de:6e:fc:4c:70:82:cc:98:f4:fb:be: 56:d2:0d:c4:16:59:45:d0:93:2d:ff:7b:b3:e8:14:ad:90:e3: 28:5d:80:f5:e8:6b:7c:ec:32:0d:51:8e:89:c8:26:85:d1:67: 2b:1a:de:fe:77:e5:70:72:7c:b5:95:d5:33:a2:65:a6:bc:72: 13:2f:78:51:7e:bb:c3:91:3d:9e:79:75:85:65:41:27:48:ca: dd:71:df:86 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEWcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNDA4MjYw NTEwNDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU3N0I2MTlFMkJCMUYz RTI1NUVCRDQ0NjNBMEMxMDMwREU5MTIwNjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXw+O77QAr9Ot7IMAhLRZk+LSCZB01KWl73YilaiSBE14MhZuy xGJuKgqF70csGbD78PlKKLak3Ot2wTAxLh0zd7pCWaPvaJJ7G56dOqycIoGwh5zg bqUlkf51WAXK2ICSeLJLBC0mti7uUEWj6l89fRyw8OMYOz4o+jWdNksuRbRrDOEe Bz/vtAC+kDgz9QkQuwGaIQW1LCzytk61x10Yz1ilZAMEGv3cJ30HIMIZRDn+bUby 77/if2QExd9n6aqur7v4HecNcM72HoidbvgDYqFF2o0vsT2E+J8XWbJSllMKYMG/ c5MF1EJuoJV8maSm4jUJvEVPumlRG9vyVKz5AgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUV3thniux8+JV69RGOgwQMN6RIGcwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9WM3Robml1eDgtSlY2 OVJHT2d3UU1ONlJJR2Mucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAlnTuMA0GCSqGSIb3DQEBCwUAA4IBAQAHSqz+MFKs2rT2HYmDagw317Pxk9Eo XhYphFkQo51LzLYuthYxI60Kc2NTWl2od/fT4WsjovyOkgLb6in/zFV4t3pqINYl yHPHoG8e+4hE+XQbyvNWAMtqkatXMGLPC3PgNuqf/YZU+6Godi6YqgdiuMdrKc7F dEpGrOYJW2aFjDVS7N7Izk0JuGkovudidLzBpBoPPGy9M/sui5W3xI1Koj4YBmWM AlTE3m78THCCzJj0+75W0g3EFllF0JMt/3uz6BStkOMoXYD16Gt87DINUY6JyCaF 0WcrGt7+d+Vwcny1ldUzomWmvHITL3hRfrvDkT2eeXWFZUEnSMrdcd+G -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:35 2024 by rpki-client on console-fra.rpki-client.org