$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Zfclo-5TOA4jWnuvwZW10YcUd2c.roa File: Zfclo-5TOA4jWnuvwZW10YcUd2c.roa (raw, json) Hash identifier: A4sIjY7y2UbimycgZrc1mKdc04RN1J4WM2TJ8pKeK3I= Subject key identifier: 65:F7:25:A3:EE:53:38:0E:23:5A:7B:AF:C1:95:B5:D1:87:14:77:67 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 11C1 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Zfclo-5TOA4jWnuvwZW10YcUd2c.roa Signing time: Mon 26 Aug 2024 05:11:06 +0000 ROA not before: Mon 26 Aug 2024 05:11:06 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131627 IP address blocks: 150.117.240.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4545 (0x11c1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 26 05:11:06 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=65F725A3EE53380E235A7BAFC195B5D187147767 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:da:07:e2:f0:ac:92:28:02:27:84:30:33:30: 99:bd:d8:dc:86:2c:08:7f:f4:24:f1:2a:73:44:aa: 4e:d1:6f:e4:d9:bb:7d:3f:59:92:13:96:d4:25:88: 27:8f:33:83:b5:76:b1:f9:be:f9:93:cd:22:5e:bb: b6:f7:c4:f0:d4:63:36:34:38:5e:95:12:a6:c9:80: ca:78:46:f8:68:09:9c:18:c3:a5:95:e7:6b:b5:56: ff:2a:42:bb:7e:5f:1f:e5:7d:54:c7:64:64:e4:3b: d4:5c:94:4c:73:45:a0:54:e8:59:e9:c8:f4:a2:99: 0c:c1:63:94:f6:cf:59:a7:42:49:66:fc:26:11:8a: 8c:a9:32:f7:37:c8:2c:93:35:b4:d1:13:94:53:26: eb:8f:6b:da:b6:9c:d6:47:d7:bf:ed:41:86:cb:df: 69:95:6e:11:71:36:92:4c:14:b1:26:69:00:a4:b8: 61:c1:4d:d3:2e:18:87:cc:9a:4c:72:a2:78:14:d5: 47:b2:80:d3:14:d5:28:f6:a0:99:9c:76:e7:63:ad: df:70:6d:83:6b:3a:c1:b9:8e:91:ef:00:ce:51:33: 09:fa:a7:0c:af:e9:ce:bc:b5:29:c8:9b:41:6e:f5: c1:69:d2:92:cb:eb:c5:8f:31:85:3e:5c:0c:33:f8: ae:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:F7:25:A3:EE:53:38:0E:23:5A:7B:AF:C1:95:B5:D1:87:14:77:67 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Zfclo-5TOA4jWnuvwZW10YcUd2c.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.117.240.0/20 Signature Algorithm: sha256WithRSAEncryption b1:18:fe:e6:bb:e8:ff:ba:09:17:78:ed:09:b0:fe:f1:0d:ee: 27:ac:9c:ad:54:72:97:8f:07:ad:37:c5:a0:a6:20:a5:fd:1f: c5:ef:43:2a:4e:50:90:d5:ef:59:50:7f:c3:e0:04:73:9f:d0: 38:bc:eb:13:b5:ba:c5:af:6d:96:c1:73:cf:b7:ca:84:00:f1: 67:3a:85:86:1f:88:e2:00:68:7b:30:c6:b4:79:55:27:dd:ad: 91:20:92:23:4f:d2:8f:6a:13:eb:09:14:32:54:5e:d0:46:9b: 05:97:4e:84:9d:0e:ff:5e:5f:cd:2f:01:b2:3a:df:ba:ef:84: 3d:f2:25:de:2b:2a:59:c6:85:5f:4a:4e:bd:0c:d9:82:b6:ff: 33:34:02:96:80:40:ca:20:61:c1:b6:29:21:2c:ba:5b:55:32: 79:b9:f0:4c:d9:d4:4d:71:2a:e9:14:fa:70:f0:57:28:d3:10: a4:5d:6d:90:2c:d4:3d:ba:6a:24:1a:d8:7b:bc:bc:f9:e6:90: 3e:73:ed:91:64:c0:d2:c3:a7:0d:ce:6f:f0:8f:e1:5f:98:0d: 0b:6c:d2:e6:69:20:85:af:6d:f4:f3:59:8b:10:21:84:c9:78: 21:64:18:27:ae:a0:0c:f0:9d:4b:56:8a:d7:a6:d0:ed:03:fb: f4:51:97:96 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEcEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNDA4MjYw NTExMDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY1RjcyNUEzRUU1MzM4 MEUyMzVBN0JBRkMxOTVCNUQxODcxNDc3NjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCc2gfi8KySKAInhDAzMJm92NyGLAh/9CTxKnNEqk7Rb+TZu30/ WZITltQliCePM4O1drH5vvmTzSJeu7b3xPDUYzY0OF6VEqbJgMp4RvhoCZwYw6WV 52u1Vv8qQrt+Xx/lfVTHZGTkO9RclExzRaBU6FnpyPSimQzBY5T2z1mnQklm/CYR ioypMvc3yCyTNbTRE5RTJuuPa9q2nNZH17/tQYbL32mVbhFxNpJMFLEmaQCkuGHB TdMuGIfMmkxyongU1UeygNMU1Sj2oJmcdudjrd9wbYNrOsG5jpHvAM5RMwn6pwyv 6c68tSnIm0Fu9cFp0pLL68WPMYU+XAwz+K4rAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUZfclo+5TOA4jWnuvwZW10YcUd2cwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9aZmNsby01VE9BNGpX bnV2d1pXMTBZY1VkMmMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQElnXwMA0GCSqGSIb3DQEBCwUAA4IBAQCxGP7mu+j/ugkXeO0JsP7xDe4nrJyt VHKXjwetN8WgpiCl/R/F70MqTlCQ1e9ZUH/D4ARzn9A4vOsTtbrFr22WwXPPt8qE APFnOoWGH4jiAGh7MMa0eVUn3a2RIJIjT9KPahPrCRQyVF7QRpsFl06EnQ7/Xl/N LwGyOt+674Q98iXeKypZxoVfSk69DNmCtv8zNAKWgEDKIGHBtikhLLpbVTJ5ufBM 2dRNcSrpFPpw8Fco0xCkXW2QLNQ9umokGth7vLz55pA+c+2RZMDSw6cNzm/wj+Ff mA0LbNLmaSCFr23081mLECGEyXghZBgnrqAM8J1LVorXptDtA/v0UZeW -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:35 2024 by rpki-client on console-fra.rpki-client.org