$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/VYb1ZEFxF7jUW4X1OQuwmIBNxYg.roa File: VYb1ZEFxF7jUW4X1OQuwmIBNxYg.roa (raw, json) Hash identifier: 2LTk7IJcnu8jyIFYC2tu0DqpPr4qKM7eP22G3Z8JQBw= Subject key identifier: 55:86:F5:64:41:71:17:B8:D4:5B:85:F5:39:0B:B0:98:80:4D:C5:88 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 1165 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/VYb1ZEFxF7jUW4X1OQuwmIBNxYg.roa Signing time: Mon 26 Aug 2024 05:10:44 +0000 ROA not before: Mon 26 Aug 2024 05:10:44 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18419 IP address blocks: 118.150.248.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4453 (0x1165) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 26 05:10:44 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5586F564417117B8D45B85F5390BB098804DC588 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:dd:43:52:24:05:7c:41:80:b0:57:62:0f:0f: 72:e9:bb:88:b1:29:25:6f:92:67:01:47:ed:b4:34: d1:fd:30:a8:0c:6e:07:b1:0e:1e:6c:52:5d:06:32: a6:73:b7:90:f0:10:c4:f9:d6:61:53:71:9a:42:f9: 97:f3:e4:2b:2c:86:33:a8:b0:ef:a3:fa:00:bf:7a: 0d:da:e8:0b:28:f1:d6:29:ee:dc:61:3a:73:35:73: 87:ae:b5:75:19:70:50:c0:5e:45:5c:94:a1:f0:40: 46:4d:20:51:37:43:74:00:e0:34:be:e6:6e:b7:b2: ed:62:d2:1c:9d:40:ed:d7:f9:ec:67:86:6e:34:a4: 05:a3:06:a2:05:f4:37:09:a7:0f:0c:59:93:de:65: 26:99:03:d0:16:d6:a3:a9:99:3e:e5:91:17:da:71: 99:bd:11:a4:13:1c:be:e1:de:08:a5:5e:7b:6b:8f: 14:a3:3f:b9:f3:3b:47:b5:10:26:fb:ec:3d:22:7b: 8e:56:8c:8a:ab:fc:e3:6e:4d:e5:e3:c8:06:c7:8a: 90:15:92:b7:1a:d7:51:d2:00:7d:f1:78:13:34:7e: bd:a7:ae:2b:44:d6:a5:35:7b:83:7b:e9:f8:d3:8a: 7b:e9:5c:c6:de:01:7d:25:b2:ff:fc:37:b2:21:9b: aa:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:86:F5:64:41:71:17:B8:D4:5B:85:F5:39:0B:B0:98:80:4D:C5:88 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/VYb1ZEFxF7jUW4X1OQuwmIBNxYg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.150.248.0/22 Signature Algorithm: sha256WithRSAEncryption 2c:65:44:6e:4c:9c:65:e9:40:0e:4d:63:d1:bb:7c:8c:53:bd: d4:45:7a:53:78:01:87:99:a2:27:57:ed:38:74:6a:d4:53:63: d1:40:67:65:53:bf:8f:6b:e1:b0:73:2b:d2:05:f1:2d:9c:7b: 60:dc:07:52:1d:be:8b:ec:e6:19:98:1e:29:82:b4:72:e4:22: ce:3c:f0:47:d7:b0:a4:f8:a4:5e:11:fc:0a:49:86:cf:02:32: 7e:a8:e4:9f:c7:40:ba:99:3e:0a:80:5d:5a:d4:1f:4a:44:19: 49:78:67:aa:5d:da:0b:53:09:8f:a7:3f:13:0d:c1:b0:4d:6a: 08:e0:b5:bf:4a:8a:0f:9e:4f:12:5e:16:3a:20:9c:3b:51:0e: 74:78:d8:9e:60:a6:f7:1e:59:f1:b7:48:cc:e1:d5:a0:a8:e3: e6:7a:64:8d:50:bf:e6:fd:13:95:30:6c:7b:b0:65:bf:66:8b: 71:c1:57:dc:f8:f5:b1:b8:e5:a1:97:bc:29:97:34:3e:88:ed: 50:53:e4:7b:04:17:02:00:d1:c3:7d:68:53:27:7a:ea:57:85: ca:e8:b4:0b:d2:14:46:10:1c:4e:26:18:49:8f:95:01:43:7c: 58:47:f1:9b:8c:9b:63:62:d9:08:f5:15:70:a1:66:81:ba:0e: 4d:be:07:e3 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEWUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNDA4MjYw NTEwNDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU1ODZGNTY0NDE3MTE3 QjhENDVCODVGNTM5MEJCMDk4ODA0REM1ODgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC33UNSJAV8QYCwV2IPD3Lpu4ixKSVvkmcBR+20NNH9MKgMbgex Dh5sUl0GMqZzt5DwEMT51mFTcZpC+Zfz5CsshjOosO+j+gC/eg3a6Aso8dYp7txh OnM1c4eutXUZcFDAXkVclKHwQEZNIFE3Q3QA4DS+5m63su1i0hydQO3X+exnhm40 pAWjBqIF9DcJpw8MWZPeZSaZA9AW1qOpmT7lkRfacZm9EaQTHL7h3gilXntrjxSj P7nzO0e1ECb77D0ie45WjIqr/ONuTeXjyAbHipAVkrca11HSAH3xeBM0fr2nritE 1qU1e4N76fjTinvpXMbeAX0lsv/8N7Ihm6oRAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUVYb1ZEFxF7jUW4X1OQuwmIBNxYgwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9WWWIxWkVGeEY3alVX NFgxT1F1d21JQk54WWcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCdpb4MA0GCSqGSIb3DQEBCwUAA4IBAQAsZURuTJxl6UAOTWPRu3yMU73URXpT eAGHmaInV+04dGrUU2PRQGdlU7+Pa+GwcyvSBfEtnHtg3AdSHb6L7OYZmB4pgrRy 5CLOPPBH17Ck+KReEfwKSYbPAjJ+qOSfx0C6mT4KgF1a1B9KRBlJeGeqXdoLUwmP pz8TDcGwTWoI4LW/SooPnk8SXhY6IJw7UQ50eNieYKb3Hlnxt0jM4dWgqOPmemSN UL/m/ROVMGx7sGW/ZotxwVfc+PWxuOWhl7wplzQ+iO1QU+R7BBcCANHDfWhTJ3rq V4XK6LQL0hRGEBxOJhhJj5UBQ3xYR/GbjJtjYtkI9RVwoWaBug5Nvgfj -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:30 2024 by rpki-client on console-ams.rpki-client.org