$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Z6nAAumQraq1eYrV_42OCZMvAMk.roa File: Z6nAAumQraq1eYrV_42OCZMvAMk.roa (raw, json) Hash identifier: UIlDfgZhdKn1ui93L1J0F9rZXho1JNoynC93oWMucg4= Subject key identifier: 67:A9:C0:02:E9:90:AD:AA:B5:79:8A:D5:FF:8D:8E:09:93:2F:00:C9 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 11BB Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Z6nAAumQraq1eYrV_42OCZMvAMk.roa Signing time: Mon 26 Aug 2024 05:11:05 +0000 ROA not before: Mon 26 Aug 2024 05:11:05 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 63199 IP address blocks: 150.116.12.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4539 (0x11bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 26 05:11:05 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=67A9C002E990ADAAB5798AD5FF8D8E09932F00C9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:ef:c7:cb:d7:fa:48:96:7a:2b:62:61:59:4c: dc:44:0a:e8:46:e1:d6:7e:2b:01:b2:1d:e0:e0:26: c0:0c:53:85:09:4f:ca:10:87:06:91:8a:a3:2d:67: 5e:d4:54:e3:ed:91:6e:2a:4b:08:de:64:f6:75:b5: 47:00:93:e7:c3:39:92:6f:d4:c9:4c:98:28:85:91: aa:fe:32:03:9a:ca:89:bc:20:1c:c7:4d:82:e2:4d: 68:4d:a0:18:79:53:d0:75:79:d7:8b:b9:a4:67:fe: e3:a3:15:f2:6f:6f:e3:a3:b0:19:44:57:5e:c9:b7: ac:86:b9:2d:8d:ad:64:9c:86:22:86:cf:9a:40:b8: f3:90:5a:16:74:36:b5:9f:9e:d4:f1:c9:ca:7e:93: 92:1a:11:e0:8a:7a:cb:f6:a9:41:a7:12:97:f6:65: 23:39:8f:f3:c0:66:dc:49:78:df:01:c0:39:19:51: 4d:b2:c6:ae:60:be:f1:5c:a4:6c:e2:67:9e:df:f8: ea:8f:12:55:8a:c8:dc:c5:c8:43:b6:a0:ef:d6:bc: 17:dc:8b:d2:b2:b5:4d:8f:03:de:39:04:c5:d1:84: 4f:dd:35:bc:b3:ba:6b:70:3e:6b:15:e4:43:3c:6d: e1:ef:56:8c:da:de:62:fb:ad:9a:56:bb:5d:16:34: af:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:A9:C0:02:E9:90:AD:AA:B5:79:8A:D5:FF:8D:8E:09:93:2F:00:C9 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Z6nAAumQraq1eYrV_42OCZMvAMk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.12.0/24 Signature Algorithm: sha256WithRSAEncryption 49:b8:df:a2:66:09:d0:57:20:cd:20:f2:87:bc:39:06:56:43: d0:cc:07:f3:ad:d4:90:a6:87:fd:f6:55:cf:79:90:62:bd:ef: 47:a3:60:ac:0f:6f:1b:f3:c1:ae:db:2d:f9:ad:b2:5b:94:e3: 46:25:73:32:f5:e7:84:75:f8:9c:13:a7:e9:f5:fb:b7:b3:83: 0c:ba:07:d6:0b:07:f3:5f:7f:ec:61:72:0d:6b:bb:8b:13:39: 84:bf:56:07:e6:97:6b:0f:77:c5:14:ef:9d:d2:5d:e2:f7:4b: 2f:a2:ed:4b:f7:2d:93:02:87:b8:29:a9:a1:20:09:7d:57:fb: f9:63:2a:9a:ce:c9:e1:27:45:70:f2:a8:21:bd:4a:60:42:85: e9:3e:90:aa:a9:fd:67:18:34:27:85:0e:7f:da:30:19:7d:f5: d0:3b:68:e4:11:4e:81:af:a9:3c:52:72:eb:ff:e2:92:57:b2: 90:88:09:bd:63:f4:9a:ef:8b:2f:0d:b3:38:68:9e:29:a6:8f: 20:24:3a:65:de:f6:c8:73:db:ee:74:57:ba:6c:b6:45:4a:54: d1:cd:24:fc:79:3d:88:27:b2:2f:f9:1d:f8:a8:1d:80:29:3e: cf:bc:a5:ac:1e:4e:89:70:1a:74:e3:d8:67:59:78:25:4d:69: 11:ea:e8:22 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEbswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNDA4MjYw NTExMDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY3QTlDMDAyRTk5MEFE QUFCNTc5OEFENUZGOEQ4RTA5OTMyRjAwQzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCf78fL1/pIlnorYmFZTNxECuhG4dZ+KwGyHeDgJsAMU4UJT8oQ hwaRiqMtZ17UVOPtkW4qSwjeZPZ1tUcAk+fDOZJv1MlMmCiFkar+MgOayom8IBzH TYLiTWhNoBh5U9B1edeLuaRn/uOjFfJvb+OjsBlEV17Jt6yGuS2NrWSchiKGz5pA uPOQWhZ0NrWfntTxycp+k5IaEeCKesv2qUGnEpf2ZSM5j/PAZtxJeN8BwDkZUU2y xq5gvvFcpGziZ57f+OqPElWKyNzFyEO2oO/WvBfci9KytU2PA945BMXRhE/dNbyz umtwPmsV5EM8beHvVoza3mL7rZpWu10WNK/JAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUZ6nAAumQraq1eYrV/42OCZMvAMkwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9aNm5BQXVtUXJhcTFl WXJWXzQyT0NaTXZBTWsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAlnQMMA0GCSqGSIb3DQEBCwUAA4IBAQBJuN+iZgnQVyDNIPKHvDkGVkPQzAfz rdSQpof99lXPeZBive9Ho2CsD28b88Gu2y35rbJblONGJXMy9eeEdficE6fp9fu3 s4MMugfWCwfzX3/sYXINa7uLEzmEv1YH5pdrD3fFFO+d0l3i90svou1L9y2TAoe4 KamhIAl9V/v5YyqazsnhJ0Vw8qghvUpgQoXpPpCqqf1nGDQnhQ5/2jAZffXQO2jk EU6Br6k8UnLr/+KSV7KQiAm9Y/Sa74svDbM4aJ4ppo8gJDpl3vbIc9vudFe6bLZF SlTRzST8eT2IJ7Iv+R34qB2AKT7PvKWsHk6JcBp049hnWXglTWkR6ugi -----END CERTIFICATE-----Generated at Fri Nov 22 06:41:25 2024 by rpki-client on console-ams.rpki-client.org