$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/VJQcNfgxmlgGb4mI5AN7GlYQ6LA.roa File: VJQcNfgxmlgGb4mI5AN7GlYQ6LA.roa (raw, json) Hash identifier: 9oIncJykcDz8j8zFJyj+KYJpaaQOSEpswqu9dFcAAYY= Subject key identifier: 54:94:1C:35:F8:31:9A:58:06:6F:89:88:E4:03:7B:1A:56:10:E8:B0 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 1158 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/VJQcNfgxmlgGb4mI5AN7GlYQ6LA.roa Signing time: Mon 26 Aug 2024 05:10:41 +0000 ROA not before: Mon 26 Aug 2024 05:10:41 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131627 IP address blocks: 150.116.160.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4440 (0x1158) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 26 05:10:41 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=54941C35F8319A58066F8988E4037B1A5610E8B0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:a0:3f:72:bb:82:4b:88:c6:d7:18:94:ef:e4: 49:ca:89:a1:fc:aa:63:34:73:12:cd:f2:22:95:cd: d2:af:bc:3f:dd:79:d6:fa:b0:bd:f4:1a:36:19:49: 20:ea:d6:a9:a1:f0:9a:dc:05:a9:81:2b:fc:0b:6f: 4c:ec:12:7b:ba:7c:57:7d:e8:4c:a0:3b:b7:e2:ed: f4:2a:86:f9:29:78:2e:4b:02:4c:26:ef:8a:0b:92: f0:c2:97:9f:48:89:64:2c:3e:1b:53:93:07:db:95: fc:59:a2:f4:af:da:fc:f2:68:b0:c4:08:3e:70:35: 43:96:b4:28:2c:23:43:38:0a:d7:72:9e:1e:64:a6: 32:6e:57:63:56:ba:6a:74:22:db:32:a9:87:c9:b8: ee:c6:f5:0e:26:20:38:55:15:d6:cd:e6:bf:66:bb: 82:b8:a0:e6:bd:11:05:5f:34:c7:26:b4:23:10:fa: b3:29:2a:da:34:e1:a7:5b:ab:df:99:6b:c6:1c:43: b3:12:d7:2d:b0:4b:93:a4:27:8b:cf:01:a3:d3:9b: 3f:4c:46:7d:e9:42:4b:f5:fb:ce:63:fb:e5:71:58: fa:a1:cb:b9:5c:f0:c8:88:ae:35:03:26:88:e7:d4: b6:6e:8c:a4:26:d2:71:44:2e:9e:97:58:81:68:b4: 63:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:94:1C:35:F8:31:9A:58:06:6F:89:88:E4:03:7B:1A:56:10:E8:B0 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/VJQcNfgxmlgGb4mI5AN7GlYQ6LA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.160.0/21 Signature Algorithm: sha256WithRSAEncryption 0e:bb:b3:a2:f1:cc:3f:a7:98:20:34:22:12:bd:d5:c8:33:75: 68:5e:62:66:37:1a:91:84:81:8d:88:d9:80:6c:e0:a5:a9:ac: fb:d9:1d:fa:1c:18:28:57:54:22:01:15:75:92:38:c9:44:53: 58:12:14:23:a4:10:02:4f:91:89:e3:2f:6a:c5:0c:18:e8:ac: 85:12:f3:bd:b7:78:d9:98:79:aa:ad:18:b2:09:a8:c4:5d:04: 97:24:e8:7f:84:10:e6:f0:65:a3:1f:e5:25:78:fb:bf:3c:d5: c0:a6:44:bf:54:71:12:f5:ec:e7:b6:6d:b7:3d:d2:4c:f7:14: fe:c8:95:a5:1e:76:8d:e4:29:08:68:cd:92:cc:37:64:76:b4: c0:33:d3:a4:59:f7:43:4e:27:8f:4b:b4:b8:e3:f4:d8:c1:dc: 3e:99:83:f5:96:c5:66:6c:b6:72:2d:34:3d:e6:d9:42:cb:1d: 6a:4e:bc:10:db:69:3e:c9:57:14:b3:93:66:07:ef:63:b8:53: 14:dd:a1:4b:51:b4:40:e6:62:98:49:bd:27:b1:e8:a5:6e:c0: 13:53:76:30:81:b6:26:bb:1a:dd:4f:c8:8d:59:51:5d:59:3f: 5a:ae:f4:6a:a7:6c:83:73:e6:90:d5:47:26:bf:1c:36:1c:87: 8a:cb:5b:95 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEVgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNDA4MjYw NTEwNDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU0OTQxQzM1RjgzMTlB NTgwNjZGODk4OEU0MDM3QjFBNTYxMEU4QjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCToD9yu4JLiMbXGJTv5EnKiaH8qmM0cxLN8iKVzdKvvD/dedb6 sL30GjYZSSDq1qmh8JrcBamBK/wLb0zsEnu6fFd96EygO7fi7fQqhvkpeC5LAkwm 74oLkvDCl59IiWQsPhtTkwfblfxZovSv2vzyaLDECD5wNUOWtCgsI0M4Ctdynh5k pjJuV2NWump0ItsyqYfJuO7G9Q4mIDhVFdbN5r9mu4K4oOa9EQVfNMcmtCMQ+rMp Kto04adbq9+Za8YcQ7MS1y2wS5OkJ4vPAaPTmz9MRn3pQkv1+85j++VxWPqhy7lc 8MiIrjUDJojn1LZujKQm0nFELp6XWIFotGNLAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUVJQcNfgxmlgGb4mI5AN7GlYQ6LAwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9WSlFjTmZneG1sZ0di NG1JNUFON0dsWVE2TEEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQDlnSgMA0GCSqGSIb3DQEBCwUAA4IBAQAOu7Oi8cw/p5ggNCISvdXIM3VoXmJm NxqRhIGNiNmAbOClqaz72R36HBgoV1QiARV1kjjJRFNYEhQjpBACT5GJ4y9qxQwY 6KyFEvO9t3jZmHmqrRiyCajEXQSXJOh/hBDm8GWjH+UlePu/PNXApkS/VHES9ezn tm23PdJM9xT+yJWlHnaN5CkIaM2SzDdkdrTAM9OkWfdDTiePS7S44/TYwdw+mYP1 lsVmbLZyLTQ95tlCyx1qTrwQ22k+yVcUs5NmB+9juFMU3aFLUbRA5mKYSb0nseil bsATU3YwgbYmuxrdT8iNWVFdWT9arvRqp2yDc+aQ1Ucmvxw2HIeKy1uV -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:49 2024 by rpki-client on console-fra.rpki-client.org