$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/VRt9vJvGVrpU2woP6nhptu_dXjQ.roa File: VRt9vJvGVrpU2woP6nhptu_dXjQ.roa (raw, json) Hash identifier: C76+UxGud+SNUNUQhKzOyQPcGefZn+EHAnTAGIq606o= Subject key identifier: 55:1B:7D:BC:9B:C6:56:BA:54:DB:0A:0F:EA:78:69:B6:EF:DD:5E:34 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 11C3 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/VRt9vJvGVrpU2woP6nhptu_dXjQ.roa Signing time: Mon 26 Aug 2024 05:11:07 +0000 ROA not before: Mon 26 Aug 2024 05:11:07 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131627 IP address blocks: 150.116.236.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4547 (0x11c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 26 05:11:07 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=551B7DBC9BC656BA54DB0A0FEA7869B6EFDD5E34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:72:52:7b:96:f1:80:d6:2c:ba:e1:d8:3b:bc: 01:81:df:db:1b:86:3e:97:cb:bf:0d:19:1e:a4:4b: 12:bb:c3:7c:32:81:91:58:b4:a4:e3:a5:4d:d5:16: e9:81:c8:65:72:5b:60:5e:3a:f1:44:ff:88:40:65: 06:bc:17:d5:02:79:49:da:c9:24:a4:cf:cb:7a:44: e3:77:70:e4:ff:65:cc:91:ad:79:29:b6:ad:a4:5a: 09:b9:d6:f8:ad:57:d2:17:84:73:d1:9e:fe:b8:43: a6:36:3a:d4:d2:55:1e:58:2f:4d:b4:ac:d6:21:f9: 16:25:c5:af:10:89:72:47:ef:89:d1:ea:5d:35:dd: 94:9b:ae:c4:5e:56:05:d6:6a:0c:e0:eb:50:e8:23: 62:60:b0:e2:7f:8b:d7:43:9e:75:0a:f7:27:71:71: e5:55:b9:50:99:62:dc:77:1d:42:d0:f1:90:e2:4c: 26:e2:24:fe:61:81:79:5a:6c:cd:09:b4:a1:41:14: 00:fd:d0:d4:33:b7:bb:4a:b5:c2:5f:42:fe:1d:7b: 30:4f:5b:6b:bb:4a:96:d4:b2:b2:b7:f5:4c:5f:fb: e8:fb:30:56:70:fc:29:d5:cb:8b:3d:fb:4d:01:9b: 13:93:23:b4:94:6a:0e:a8:93:98:bf:ba:27:a9:b8: 4b:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:1B:7D:BC:9B:C6:56:BA:54:DB:0A:0F:EA:78:69:B6:EF:DD:5E:34 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/VRt9vJvGVrpU2woP6nhptu_dXjQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.236.0/23 Signature Algorithm: sha256WithRSAEncryption 21:ef:ca:ab:99:bf:8e:20:e0:dd:36:cc:f9:7d:13:01:11:86: cd:31:59:05:2c:a0:9a:7b:cc:85:fd:c1:d6:4a:65:10:d7:51: 78:06:bc:54:04:e3:02:d6:19:59:f7:4b:ca:fc:30:20:6c:87: 2a:b1:f1:21:75:3a:6e:e5:52:e7:d8:22:bb:aa:0e:e2:e2:e8: 59:1d:2c:2b:58:ba:2a:28:3e:9e:26:47:93:03:10:2e:41:0b: fe:81:54:22:7e:89:4b:51:b1:e3:0e:bb:f8:f8:b6:25:27:68: fa:1d:16:5a:75:71:35:e4:2e:41:be:27:53:83:eb:b2:a6:fe: 57:c8:38:d2:d8:53:9b:42:49:38:49:2c:b5:f1:67:c7:b4:d0: 4a:c4:28:e2:d1:06:5a:2d:99:01:5c:c1:ed:df:d7:12:20:01: 60:98:ea:ee:2f:07:88:f9:05:5d:44:90:99:0f:a5:bb:aa:6d: 8b:56:b3:e5:11:4a:9c:98:a2:42:ac:66:0e:cc:d6:c8:ba:ba: b8:ba:33:94:67:fa:1e:ea:01:7a:0c:6c:05:62:9f:14:97:25: 84:80:79:4d:66:2c:7a:6c:fb:02:28:88:7b:04:c7:b6:b3:0a: 07:d9:1f:78:3c:58:44:d4:75:bf:1f:f1:e1:57:7c:d8:dc:2f: 5a:eb:6d:aa -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEcMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNDA4MjYw NTExMDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU1MUI3REJDOUJDNjU2 QkE1NERCMEEwRkVBNzg2OUI2RUZERDVFMzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSclJ7lvGA1iy64dg7vAGB39sbhj6Xy78NGR6kSxK7w3wygZFY tKTjpU3VFumByGVyW2BeOvFE/4hAZQa8F9UCeUnaySSkz8t6RON3cOT/ZcyRrXkp tq2kWgm51vitV9IXhHPRnv64Q6Y2OtTSVR5YL020rNYh+RYlxa8QiXJH74nR6l01 3ZSbrsReVgXWagzg61DoI2JgsOJ/i9dDnnUK9ydxceVVuVCZYtx3HULQ8ZDiTCbi JP5hgXlabM0JtKFBFAD90NQzt7tKtcJfQv4dezBPW2u7SpbUsrK39Uxf++j7MFZw /CnVy4s9+00BmxOTI7SUag6ok5i/uiepuEtVAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUVRt9vJvGVrpU2woP6nhptu/dXjQwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9WUnQ5dkp2R1ZycFUy d29QNm5ocHR1X2RYalEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBlnTsMA0GCSqGSIb3DQEBCwUAA4IBAQAh78qrmb+OIODdNsz5fRMBEYbNMVkF LKCae8yF/cHWSmUQ11F4BrxUBOMC1hlZ90vK/DAgbIcqsfEhdTpu5VLn2CK7qg7i 4uhZHSwrWLoqKD6eJkeTAxAuQQv+gVQifolLUbHjDrv4+LYlJ2j6HRZadXE15C5B vidTg+uypv5XyDjS2FObQkk4SSy18WfHtNBKxCji0QZaLZkBXMHt39cSIAFgmOru LweI+QVdRJCZD6W7qm2LVrPlEUqcmKJCrGYOzNbIurq4ujOUZ/oe6gF6DGwFYp8U lyWEgHlNZix6bPsCKIh7BMe2swoH2R94PFhE1HW/H/HhV3zY3C9a622q -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:49 2024 by rpki-client on console-fra.rpki-client.org