$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/d9mcUwpdUAsfhZyLPQm807VICUo.roa File: d9mcUwpdUAsfhZyLPQm807VICUo.roa (raw, json) Hash identifier: GYK2NoZ8JUYV66AhIztNrc3P6OEnfylrS0j1Q9MpVsk= Subject key identifier: 77:D9:9C:53:0A:5D:50:0B:1F:85:9C:8B:3D:09:BC:D3:B5:48:09:4A Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 0F86 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/d9mcUwpdUAsfhZyLPQm807VICUo.roa Signing time: Fri 01 Sep 2023 08:29:14 +0000 ROA not before: Fri 01 Sep 2023 08:29:14 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131627 IP address blocks: 150.116.176.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 19:57:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3974 (0xf86) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Sep 1 08:29:14 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=77D99C530A5D500B1F859C8B3D09BCD3B548094A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:f7:91:64:b3:54:2e:be:ac:72:a4:1f:f8:ba: ff:00:90:0f:5f:15:3d:d3:17:fd:e6:48:27:fd:20: b3:a1:9b:05:32:09:d4:17:2f:36:2c:fd:37:3f:73: fb:f9:54:02:51:a8:2e:be:cf:26:0b:dc:9b:80:65: 40:d9:4d:31:63:5f:b9:91:82:9e:dc:e3:72:6a:9b: 1a:26:9d:03:93:d6:fe:fb:3f:04:ea:3a:ae:58:3a: 00:5e:3a:7b:39:52:d9:05:d1:88:89:42:44:b2:e6: a8:e2:28:53:eb:79:03:60:45:22:0d:45:52:7a:a3: 9b:55:df:49:a5:ff:81:28:70:d0:b9:c6:17:22:7c: 47:af:54:2b:ea:b4:b2:3f:6c:2c:8a:8c:53:d1:93: 08:32:44:68:d0:53:00:b1:31:93:e8:75:76:6d:74: 4c:fa:0b:c8:d0:92:5a:1e:f8:d4:5e:be:46:c3:1f: cb:1d:00:71:57:aa:3d:54:32:9f:59:0b:15:d3:b3: 9f:82:7b:c1:7b:67:4a:19:0d:23:84:86:0d:fb:22: 30:5e:ca:77:55:fb:6c:08:f5:22:2e:9d:bf:2c:d1: 7f:0f:28:78:cd:b0:ae:f4:f3:11:06:bc:3d:a0:b0: 0a:55:79:47:5a:34:4c:82:40:91:c6:a8:42:63:4c: f9:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:D9:9C:53:0A:5D:50:0B:1F:85:9C:8B:3D:09:BC:D3:B5:48:09:4A X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/d9mcUwpdUAsfhZyLPQm807VICUo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.176.0/20 Signature Algorithm: sha256WithRSAEncryption 01:ca:36:31:48:1d:61:49:e9:d0:38:2f:b7:5a:e9:d6:e7:af: 8c:11:c3:36:93:18:21:74:8a:f2:14:f2:7e:0c:26:37:1d:6e: e4:cf:cf:b3:60:47:e8:50:41:00:d7:16:e4:d7:d4:9e:e1:07: ab:ba:c2:e3:df:f8:1b:fb:ed:45:14:0f:08:bd:77:8b:cb:07: cb:5d:c5:49:3c:76:81:31:3b:06:e6:dc:7a:3f:17:de:4e:61: fb:fa:61:9c:97:7c:1a:5c:1e:c6:c1:29:83:70:31:14:45:94: e5:28:96:1e:e4:70:8e:35:99:90:9b:23:0a:2a:14:c8:dd:c4: 6e:1c:26:9b:66:81:d0:df:eb:ea:b1:eb:3d:57:ef:0c:82:f6: 1a:f8:6a:10:be:59:95:1d:b3:7f:ff:4a:26:12:3c:13:99:d5: 8b:37:d9:54:59:6c:b1:e6:e0:16:39:f2:6b:a4:11:70:8b:e7: 99:e8:c1:d2:e3:93:a4:36:0a:08:dc:3c:2c:2b:30:36:ab:2e: a8:ff:4e:2c:ee:76:b7:45:9c:6d:39:e7:d9:f7:69:f6:4f:14: 78:f4:30:70:a7:cb:ef:38:6f:1f:60:21:bd:ec:26:a2:e2:23: e3:47:03:39:39:d3:49:ca:83:43:02:b3:85:93:ef:ea:db:55: 92:e2:75:0b -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICD4YwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMzA5MDEw ODI5MTRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDc3RDk5QzUzMEE1RDUw MEIxRjg1OUM4QjNEMDlCQ0QzQjU0ODA5NEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC695Fks1QuvqxypB/4uv8AkA9fFT3TF/3mSCf9ILOhmwUyCdQX LzYs/Tc/c/v5VAJRqC6+zyYL3JuAZUDZTTFjX7mRgp7c43JqmxomnQOT1v77PwTq Oq5YOgBeOns5UtkF0YiJQkSy5qjiKFPreQNgRSINRVJ6o5tV30ml/4EocNC5xhci fEevVCvqtLI/bCyKjFPRkwgyRGjQUwCxMZPodXZtdEz6C8jQkloe+NRevkbDH8sd AHFXqj1UMp9ZCxXTs5+Ce8F7Z0oZDSOEhg37IjBeyndV+2wI9SIunb8s0X8PKHjN sK708xEGvD2gsApVeUdaNEyCQJHGqEJjTPkRAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUd9mcUwpdUAsfhZyLPQm807VICUowHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9kOW1jVXdwZFVBc2Zo WnlMUFFtODA3VklDVW8ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQElnSwMA0GCSqGSIb3DQEBCwUAA4IBAQAByjYxSB1hSenQOC+3WunW56+MEcM2 kxghdIryFPJ+DCY3HW7kz8+zYEfoUEEA1xbk19Se4QerusLj3/gb++1FFA8IvXeL ywfLXcVJPHaBMTsG5tx6PxfeTmH7+mGcl3waXB7GwSmDcDEURZTlKJYe5HCONZmQ myMKKhTI3cRuHCabZoHQ3+vqses9V+8MgvYa+GoQvlmVHbN//0omEjwTmdWLN9lU WWyx5uAWOfJrpBFwi+eZ6MHS45OkNgoI3DwsKzA2qy6o/04s7na3RZxtOefZ92n2 TxR49DBwp8vvOG8fYCG97Cai4iPjRwM5OdNJyoNDArOFk+/q21WS4nUL -----END CERTIFICATE-----Generated at Sat Jun 1 23:25:29 2024 by rpki-client on console-ams.rpki-client.org