$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Xucnl8PPTO7fImWhDnXareFeReI.roa File: Xucnl8PPTO7fImWhDnXareFeReI.roa (raw, json) Hash identifier: NAgxma9Gt+z8sowyZ8PTL0l043Hlz6PXh28FtyWRw1M= Subject key identifier: 5E:E7:27:97:C3:CF:4C:EE:DF:22:65:A1:0E:75:DA:AD:E1:5E:45:E2 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 11B6 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Xucnl8PPTO7fImWhDnXareFeReI.roa Signing time: Mon 26 Aug 2024 05:11:04 +0000 ROA not before: Mon 26 Aug 2024 05:11:04 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131636 IP address blocks: 150.116.6.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4534 (0x11b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 26 05:11:04 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5EE72797C3CF4CEEDF2265A10E75DAADE15E45E2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:60:65:db:63:78:f3:ec:28:dc:3a:af:f4:6c: 9f:ad:ea:c9:2e:d5:a0:50:6c:72:31:60:14:87:d3: fb:3c:0a:c2:50:5e:f1:dd:0c:a8:69:da:0f:80:85: 0a:83:cd:b1:35:a7:6a:32:77:47:8d:6e:0b:c6:f2: 44:cf:77:ca:94:3b:04:cc:d9:d3:84:70:8f:dc:fb: 84:1e:88:97:0b:2e:3c:d1:4d:74:b7:40:c9:10:4a: 9f:fa:3b:2d:0d:f6:6d:cf:66:0d:99:6a:f5:30:35: 4d:73:53:7c:b9:e6:4f:7e:7a:1f:ed:5c:66:9c:5d: c4:ad:c2:8e:d3:68:8d:b2:ff:31:81:bf:e4:02:e7: e0:f8:c6:9a:d1:e5:27:e2:28:5d:64:bc:94:f7:e0: 35:b1:fb:01:88:15:62:e9:ea:eb:44:2f:12:fd:7b: 5f:c4:81:ac:65:60:90:93:6d:78:87:92:35:1f:05: 1f:46:67:18:e9:c3:3a:c0:a8:00:55:aa:92:ff:48: c9:f2:e1:1f:18:03:4a:cd:71:67:c3:e2:f7:12:f8: a0:9c:64:a7:24:f2:27:14:54:b5:0d:5d:86:1d:72: 59:10:c6:1b:21:f8:25:e2:19:15:a4:92:f7:b8:83: 7a:16:3c:09:2a:0a:b4:06:ae:36:ff:79:22:f0:dd: 2c:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:E7:27:97:C3:CF:4C:EE:DF:22:65:A1:0E:75:DA:AD:E1:5E:45:E2 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Xucnl8PPTO7fImWhDnXareFeReI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.6.0/23 Signature Algorithm: sha256WithRSAEncryption 68:1c:4b:39:3f:d3:ec:55:12:95:15:a6:20:47:21:28:35:e6: 42:61:f1:8f:36:98:cb:5e:27:9b:c1:68:7e:97:b1:1b:81:2b: d7:b7:25:71:b0:e7:82:00:eb:67:58:7a:ed:1b:d9:95:a7:59: c2:a8:77:b7:fd:6a:62:45:78:71:cd:b4:76:d4:c2:22:a6:5b: b5:1e:15:78:bc:a3:e9:ec:ab:89:8d:e8:30:82:6c:b1:0c:77: 2c:72:81:e6:65:59:8f:e4:9c:b7:61:0e:38:71:29:ab:75:21: aa:66:b7:8d:37:9e:ee:b6:89:41:b9:f5:f9:8e:48:2d:14:39: e9:35:47:fe:fd:18:26:07:71:69:88:5c:00:08:12:a9:10:35: 9d:92:ea:cd:11:bc:75:2f:09:38:68:a0:38:84:e6:9e:14:46: 01:08:9a:37:a4:8e:7f:2e:41:7c:84:b4:5c:a5:26:bf:10:cd: c7:bd:83:e1:fa:6d:aa:86:3a:50:e0:27:1a:16:11:63:77:fc: 21:76:23:6f:17:2f:bb:00:a8:88:16:a1:93:ad:f2:9b:0f:e6: 4c:4f:47:3a:99:41:3a:28:f6:91:75:3c:2e:fb:0a:bc:c9:72: 83:51:f4:cb:de:b6:aa:63:52:dc:46:4d:25:7f:83:ce:07:d5: 49:38:2f:ec -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEbYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNDA4MjYw NTExMDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDVFRTcyNzk3QzNDRjRD RUVERjIyNjVBMTBFNzVEQUFERTE1RTQ1RTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCYGXbY3jz7CjcOq/0bJ+t6sku1aBQbHIxYBSH0/s8CsJQXvHd DKhp2g+AhQqDzbE1p2oyd0eNbgvG8kTPd8qUOwTM2dOEcI/c+4QeiJcLLjzRTXS3 QMkQSp/6Oy0N9m3PZg2ZavUwNU1zU3y55k9+eh/tXGacXcStwo7TaI2y/zGBv+QC 5+D4xprR5SfiKF1kvJT34DWx+wGIFWLp6utELxL9e1/EgaxlYJCTbXiHkjUfBR9G ZxjpwzrAqABVqpL/SMny4R8YA0rNcWfD4vcS+KCcZKck8icUVLUNXYYdclkQxhsh +CXiGRWkkve4g3oWPAkqCrQGrjb/eSLw3SzxAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUXucnl8PPTO7fImWhDnXareFeReIwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9YdWNubDhQUFRPN2ZJ bVdoRG5YYXJlRmVSZUkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQBlnQGMA0GCSqGSIb3DQEBCwUAA4IBAQBoHEs5P9PsVRKVFaYgRyEoNeZCYfGP NpjLXiebwWh+l7EbgSvXtyVxsOeCAOtnWHrtG9mVp1nCqHe3/WpiRXhxzbR21MIi plu1HhV4vKPp7KuJjegwgmyxDHcscoHmZVmP5Jy3YQ44cSmrdSGqZreNN57utolB ufX5jkgtFDnpNUf+/RgmB3FpiFwACBKpEDWdkurNEbx1Lwk4aKA4hOaeFEYBCJo3 pI5/LkF8hLRcpSa/EM3HvYPh+m2qhjpQ4CcaFhFjd/whdiNvFy+7AKiIFqGTrfKb D+ZMT0c6mUE6KPaRdTwu+wq8yXKDUfTL3raqY1LcRk0lf4POB9VJOC/s -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:30 2024 by rpki-client on console-ams.rpki-client.org