$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/bLe0LU6X2eEexjr3AuKWknf6bY4.roa File: bLe0LU6X2eEexjr3AuKWknf6bY4.roa (raw, json) Hash identifier: G2oMtsatVW3pFd9EmaioStJmmwOUElvOJAw15pLP1bE= Subject key identifier: 6C:B7:B4:2D:4E:97:D9:E1:1E:C6:3A:F7:02:E2:96:92:77:FA:6D:8E Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 1187 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/bLe0LU6X2eEexjr3AuKWknf6bY4.roa Signing time: Mon 26 Aug 2024 05:10:52 +0000 ROA not before: Mon 26 Aug 2024 05:10:52 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131607 IP address blocks: 150.117.64.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4487 (0x1187) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 26 05:10:52 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6CB7B42D4E97D9E11EC63AF702E2969277FA6D8E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:9b:1b:85:42:ed:1e:66:f6:7a:39:3d:e6:f9: c0:39:e6:63:cc:85:b5:60:e1:2d:62:c7:68:08:f1: e5:b7:47:b1:8d:8a:e7:b7:eb:93:d0:92:dd:31:81: 40:46:0c:99:93:52:00:c9:70:1d:09:41:36:83:58: 70:24:e3:0a:f8:55:5e:67:30:ef:4f:6f:5d:a9:af: 58:a4:8f:b6:a7:3f:59:1e:b8:9c:ab:6c:7e:91:5b: a0:3e:33:eb:db:9e:fc:29:de:5d:56:1c:d2:e0:e1: ef:3c:3f:99:51:44:2f:d5:2b:23:d8:9f:0b:fd:0f: d6:bd:02:1f:95:26:4e:19:74:2a:18:74:c3:36:63: b5:ec:59:47:a0:55:96:ef:24:20:8d:cf:c8:21:38: 71:99:2c:0d:b2:2d:51:fd:d6:67:43:cb:91:b0:00: b1:f0:67:5f:10:46:d2:5f:92:db:bf:88:3c:43:75: 8b:54:d1:d7:f2:55:c0:6f:4b:46:c9:18:f4:ad:86: c3:28:a3:68:e3:f4:31:c7:5c:e0:82:51:a1:54:db: 40:97:b6:33:4f:2f:ff:96:e3:71:31:cd:9b:0d:4e: 3c:79:34:50:09:a9:99:6a:be:99:21:a3:e5:df:09: 0d:99:61:f6:dd:b6:38:40:43:d4:b9:65:db:0d:f4: 6e:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:B7:B4:2D:4E:97:D9:E1:1E:C6:3A:F7:02:E2:96:92:77:FA:6D:8E X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/bLe0LU6X2eEexjr3AuKWknf6bY4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.117.64.0/20 Signature Algorithm: sha256WithRSAEncryption 11:6e:cf:57:2b:c8:c9:1d:a0:a5:28:01:b8:61:8e:b0:5c:79: c4:03:96:2f:99:48:88:d3:91:f7:33:02:1d:6e:a2:dd:f7:b8: 6a:fb:6b:05:65:e5:12:43:7c:e6:81:03:9c:39:ba:94:cb:f6: 84:2c:bf:36:a0:06:18:c0:c3:e7:4f:92:16:a5:08:6f:a1:1d: 67:23:a3:7e:de:f3:1a:fb:9f:88:72:04:b8:ba:36:b5:d5:72: 24:20:4c:ea:31:2b:a2:eb:db:42:af:35:0b:13:1f:2e:16:6e: a9:46:20:29:9b:63:5e:a1:0e:4a:7c:86:44:5e:b4:08:64:01: 43:3e:9f:d7:cc:ad:77:c1:e8:08:6b:35:91:c5:cd:2f:26:68: f3:59:d4:2d:6a:d0:46:fc:1e:96:b9:ab:f3:3e:49:49:b4:63: 67:ce:2b:52:81:b5:e0:08:82:05:e4:e6:09:44:3d:48:a2:b6: 64:54:47:29:ca:5f:cf:e5:61:92:8a:04:f3:89:2b:40:4a:c6: a1:73:4f:09:be:f3:f0:2c:4b:72:14:6c:d9:9b:8c:f1:49:78: f1:a0:47:4a:bf:73:4c:35:4c:06:d8:18:e9:69:f0:6a:2e:d0: 29:9e:ad:fe:00:59:1c:48:f6:5d:d8:85:4f:dc:c8:de:29:f8: b8:b2:d3:4f -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEYcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNDA4MjYw NTEwNTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZDQjdCNDJENEU5N0Q5 RTExRUM2M0FGNzAyRTI5NjkyNzdGQTZEOEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtmxuFQu0eZvZ6OT3m+cA55mPMhbVg4S1ix2gI8eW3R7GNiue3 65PQkt0xgUBGDJmTUgDJcB0JQTaDWHAk4wr4VV5nMO9Pb12pr1ikj7anP1keuJyr bH6RW6A+M+vbnvwp3l1WHNLg4e88P5lRRC/VKyPYnwv9D9a9Ah+VJk4ZdCoYdMM2 Y7XsWUegVZbvJCCNz8ghOHGZLA2yLVH91mdDy5GwALHwZ18QRtJfktu/iDxDdYtU 0dfyVcBvS0bJGPSthsMoo2jj9DHHXOCCUaFU20CXtjNPL/+W43ExzZsNTjx5NFAJ qZlqvpkho+XfCQ2ZYfbdtjhAQ9S5ZdsN9G4LAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUbLe0LU6X2eEexjr3AuKWknf6bY4wHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9iTGUwTFU2WDJlRWV4 anIzQXVLV2tuZjZiWTQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQElnVAMA0GCSqGSIb3DQEBCwUAA4IBAQARbs9XK8jJHaClKAG4YY6wXHnEA5Yv mUiI05H3MwIdbqLd97hq+2sFZeUSQ3zmgQOcObqUy/aELL82oAYYwMPnT5IWpQhv oR1nI6N+3vMa+5+IcgS4uja11XIkIEzqMSui69tCrzULEx8uFm6pRiApm2NeoQ5K fIZEXrQIZAFDPp/XzK13wegIazWRxc0vJmjzWdQtatBG/B6WuavzPklJtGNnzitS gbXgCIIF5OYJRD1IorZkVEcpyl/P5WGSigTziStASsahc08JvvPwLEtyFGzZm4zx SXjxoEdKv3NMNUwG2BjpafBqLtApnq3+AFkcSPZd2IVP3MjeKfi4stNP -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:30 2024 by rpki-client on console-ams.rpki-client.org