$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/_SXTwnMQaAROVUJH95OYdjp5tl4.roa File: _SXTwnMQaAROVUJH95OYdjp5tl4.roa (raw, json) Hash identifier: x0JhmWQgHDVBnWKzJa1wfwQq0lnG+yCwY7HyGRAKwm8= Subject key identifier: FD:25:D3:C2:73:10:68:04:4E:55:42:47:F7:93:98:76:3A:79:B6:5E Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 11B3 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/_SXTwnMQaAROVUJH95OYdjp5tl4.roa Signing time: Mon 26 Aug 2024 05:11:03 +0000 ROA not before: Mon 26 Aug 2024 05:11:03 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131600 IP address blocks: 113.21.94.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4531 (0x11b3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 26 05:11:03 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=FD25D3C2731068044E554247F79398763A79B65E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:74:3e:e2:b9:17:80:01:33:2a:6d:b3:8b:00: 60:1d:fd:f5:d9:5e:7b:45:86:73:15:7e:ca:be:a1: e0:1e:7b:2a:f2:1d:f3:bb:f5:3a:4c:6d:38:95:71: c8:35:0a:8c:e3:51:91:2c:87:c6:bd:c9:f1:2f:0d: cb:83:a8:f6:24:04:a3:28:f0:9d:35:cb:38:fc:10: 67:54:0b:a9:91:4b:4d:b0:4c:73:42:3a:4d:5a:4d: a6:4a:b3:0b:56:51:41:e6:49:63:7a:63:82:03:63: 6f:ae:c4:be:b0:df:ce:d8:54:a8:5b:17:72:ea:1d: a0:71:4b:d2:f5:51:52:8a:de:c8:59:f7:48:dd:62: 3d:9a:e3:8c:ca:df:9b:61:0f:bf:08:0a:d1:1b:30: 66:9f:ed:d4:6f:e1:00:b2:98:99:ba:c4:52:fd:dd: eb:6d:a1:d0:0d:e4:2b:a1:35:7a:72:9b:90:f3:4c: 7d:a1:05:dc:3e:d5:85:b9:a0:aa:95:fb:e9:ec:2b: 62:d0:50:b1:ed:70:4f:95:a3:d5:42:7b:8d:1c:84: 7c:2b:2f:df:1e:cc:59:b6:33:94:01:8f:29:e0:c6: 4d:79:32:96:9b:ce:e0:74:25:6d:7a:61:4a:26:6e: f7:25:4b:73:a4:1b:83:d8:27:fc:69:05:dc:c8:8b: e4:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:25:D3:C2:73:10:68:04:4E:55:42:47:F7:93:98:76:3A:79:B6:5E X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/_SXTwnMQaAROVUJH95OYdjp5tl4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.21.94.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:c1:b6:c4:aa:41:16:18:76:ee:5d:59:bc:d4:f0:6f:d3:98: 54:06:86:4a:ed:12:6b:9d:b1:76:53:1f:c0:fe:0a:e8:d1:de: 3c:79:fd:ba:2b:cf:d7:5c:ec:58:a0:fd:83:3c:e9:ad:7a:81: 7c:b0:54:61:37:e9:9d:35:d7:d8:71:13:b7:ce:c1:eb:53:8c: 6c:98:d3:3e:69:76:3d:6e:20:f1:12:86:26:28:02:13:3f:1d: e3:40:84:de:8a:d4:2c:39:30:30:00:8a:e3:d7:58:3d:8f:92: d1:32:fe:c4:3a:f0:84:b5:d8:53:b8:93:fc:28:8d:85:76:4d: 1c:d9:09:19:97:04:bf:9d:ab:6d:76:2f:9f:76:a7:68:10:2c: 5a:c9:d7:87:b3:c0:2e:cf:df:c8:90:69:e9:6c:34:e4:af:56: 7e:5e:9b:2b:a4:2d:1e:a3:23:d5:e5:7c:05:1c:85:a6:03:6a: bc:f0:0e:d2:b3:07:a6:ff:d1:80:3c:b2:1a:1c:46:df:d2:ce: a8:0e:ce:42:79:ec:63:a9:a0:17:e1:a6:63:c2:79:2a:b0:ef: bc:82:e3:26:5c:b6:aa:8f:38:72:8b:e2:53:75:2d:6b:2b:08: f6:14:8d:0c:4e:d4:4b:88:ae:b2:55:db:e2:70:2b:ea:69:b2: d5:7f:65:67 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEbMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNDA4MjYw NTExMDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEZEMjVEM0MyNzMxMDY4 MDQ0RTU1NDI0N0Y3OTM5ODc2M0E3OUI2NUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDsdD7iuReAATMqbbOLAGAd/fXZXntFhnMVfsq+oeAeeyryHfO7 9TpMbTiVccg1CozjUZEsh8a9yfEvDcuDqPYkBKMo8J01yzj8EGdUC6mRS02wTHNC Ok1aTaZKswtWUUHmSWN6Y4IDY2+uxL6w387YVKhbF3LqHaBxS9L1UVKK3shZ90jd Yj2a44zK35thD78ICtEbMGaf7dRv4QCymJm6xFL93ettodAN5CuhNXpym5DzTH2h Bdw+1YW5oKqV++nsK2LQULHtcE+Vo9VCe40chHwrL98ezFm2M5QBjyngxk15Mpab zuB0JW16YUombvclS3OkG4PYJ/xpBdzIi+TDAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQU/SXTwnMQaAROVUJH95OYdjp5tl4wHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9fU1hUd25NUWFBUk9W VUpIOTVPWWRqcDV0bDQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAcRVeMA0GCSqGSIb3DQEBCwUAA4IBAQAswbbEqkEWGHbuXVm81PBv05hUBoZK 7RJrnbF2Ux/A/gro0d48ef26K8/XXOxYoP2DPOmteoF8sFRhN+mdNdfYcRO3zsHr U4xsmNM+aXY9biDxEoYmKAITPx3jQITeitQsOTAwAIrj11g9j5LRMv7EOvCEtdhT uJP8KI2Fdk0c2QkZlwS/nattdi+fdqdoECxaydeHs8Auz9/IkGnpbDTkr1Z+Xpsr pC0eoyPV5XwFHIWmA2q88A7Sswem/9GAPLIaHEbf0s6oDs5CeexjqaAX4aZjwnkq sO+8guMmXLaqjzhyi+JTdS1rKwj2FI0MTtRLiK6yVdvicCvqabLVf2Vn -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:30 2024 by rpki-client on console-ams.rpki-client.org