$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/dEjvycyxvMt5suodBZkHWjnR4zY.roa File: dEjvycyxvMt5suodBZkHWjnR4zY.roa (raw, json) Hash identifier: aKcj6PYNM+ydwcxphMsDW1BR9gGzTmZmfFk9/C2y1CA= Subject key identifier: 74:48:EF:C9:CC:B1:BC:CB:79:B2:EA:1D:05:99:07:5A:39:D1:E3:36 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 1199 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/dEjvycyxvMt5suodBZkHWjnR4zY.roa Signing time: Mon 26 Aug 2024 05:10:57 +0000 ROA not before: Mon 26 Aug 2024 05:10:57 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17408 IP address blocks: 119.31.176.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4505 (0x1199) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 26 05:10:57 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=7448EFC9CCB1BCCB79B2EA1D0599075A39D1E336 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:1b:eb:7e:88:a1:fa:d2:94:76:c7:9f:7f:55: 5c:20:ef:a6:68:3e:8a:af:31:d0:7f:b7:6a:a0:5d: 2d:2a:e0:67:b5:5e:8d:e5:35:11:39:0a:4a:31:c7: 99:94:2b:0d:44:3e:35:99:80:47:32:7c:a3:f8:21: 44:2d:82:1a:de:1d:98:1c:7d:b5:e3:38:f8:c2:3a: 44:d2:cd:9c:dd:1b:64:7a:0e:e8:d1:d2:5c:12:11: 0a:b2:65:c7:a8:ad:cc:a2:ee:92:5e:5b:22:4b:97: 15:17:d1:2b:b7:ca:93:6c:37:48:6b:fa:a5:84:56: ac:1d:05:ce:36:10:9e:51:1e:3c:a3:51:70:07:c3: d8:ba:26:09:79:f3:b7:7f:ee:5c:e4:fa:0f:be:44: 48:6f:24:8c:77:62:d3:78:3a:64:4c:c5:56:a7:f1: 39:34:c7:7c:62:3f:3a:06:1d:cb:f0:be:93:11:94: aa:2f:a4:b4:1e:3c:9d:8c:78:f0:58:69:99:a0:29: 06:3f:1b:36:c8:bb:50:a0:db:9c:c4:88:e0:28:69: fe:85:f9:aa:55:de:16:ef:57:e5:2b:e0:ee:9f:1d: 2e:65:3f:bf:c5:df:00:2d:10:65:b0:56:6d:14:b8: 99:90:13:c5:db:d0:6d:31:cf:34:4e:04:f6:bf:37: 1b:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:48:EF:C9:CC:B1:BC:CB:79:B2:EA:1D:05:99:07:5A:39:D1:E3:36 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/dEjvycyxvMt5suodBZkHWjnR4zY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 119.31.176.0/20 Signature Algorithm: sha256WithRSAEncryption 7d:bf:8f:62:f8:06:6c:65:f4:09:4b:92:d9:c5:ea:b9:73:c0: 5a:05:75:a6:ca:23:2e:7b:ff:47:97:c0:73:88:74:fb:3f:b2: 75:d7:81:d7:a5:45:99:9d:a3:7d:d8:8a:80:82:aa:22:24:7f: 2d:1b:a2:fb:61:33:6a:c1:e9:dd:ea:d2:c1:39:ec:27:eb:42: d0:dd:7f:1d:93:c3:e8:7e:60:64:7c:2a:60:1a:87:48:fd:a1: 3b:5a:75:98:88:52:ff:92:98:99:40:50:17:42:c3:ee:4c:cb: 38:2e:ba:ef:ee:b4:9e:f2:da:3b:4c:f1:bc:45:b4:5c:c2:a5: f3:ca:54:80:69:08:d9:66:b2:92:6b:49:ec:e8:f9:95:59:8f: 14:a4:ba:2f:e2:0e:2c:d3:5a:39:f7:20:94:96:5c:37:06:8d: e8:ea:bf:56:88:99:5b:0c:2f:69:9d:10:cd:5e:7c:52:68:af: 7e:8d:11:44:eb:82:ec:9a:c8:28:48:1d:d0:75:a5:c2:ef:15: 6a:51:2b:81:ab:69:60:4a:74:2d:23:a1:66:a8:e1:8b:ba:b1: fb:c0:7c:26:18:8a:33:83:44:da:d6:19:f0:8d:51:5b:ed:ff: d4:ce:55:14:a9:e5:59:44:38:0d:ac:7e:2f:8b:a7:43:da:a3: c2:4e:77:61 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEZkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNDA4MjYw NTEwNTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDc0NDhFRkM5Q0NCMUJD Q0I3OUIyRUExRDA1OTkwNzVBMzlEMUUzMzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCaG+t+iKH60pR2x59/VVwg76ZoPoqvMdB/t2qgXS0q4Ge1Xo3l NRE5Ckoxx5mUKw1EPjWZgEcyfKP4IUQtghreHZgcfbXjOPjCOkTSzZzdG2R6DujR 0lwSEQqyZceorcyi7pJeWyJLlxUX0Su3ypNsN0hr+qWEVqwdBc42EJ5RHjyjUXAH w9i6Jgl587d/7lzk+g++REhvJIx3YtN4OmRMxVan8Tk0x3xiPzoGHcvwvpMRlKov pLQePJ2MePBYaZmgKQY/GzbIu1Cg25zEiOAoaf6F+apV3hbvV+Ur4O6fHS5lP7/F 3wAtEGWwVm0UuJmQE8Xb0G0xzzROBPa/NxuLAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUdEjvycyxvMt5suodBZkHWjnR4zYwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9kRWp2eWN5eHZNdDVz dW9kQlprSFdqblI0elkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQEdx+wMA0GCSqGSIb3DQEBCwUAA4IBAQB9v49i+AZsZfQJS5LZxeq5c8BaBXWm yiMue/9Hl8BziHT7P7J114HXpUWZnaN92IqAgqoiJH8tG6L7YTNqwend6tLBOewn 60LQ3X8dk8PofmBkfCpgGodI/aE7WnWYiFL/kpiZQFAXQsPuTMs4Lrrv7rSe8to7 TPG8RbRcwqXzylSAaQjZZrKSa0ns6PmVWY8UpLov4g4s01o59yCUllw3Bo3o6r9W iJlbDC9pnRDNXnxSaK9+jRFE64LsmsgoSB3QdaXC7xVqUSuBq2lgSnQtI6FmqOGL urH7wHwmGIozg0Ta1hnwjVFb7f/UzlUUqeVZRDgNrH4vi6dD2qPCTndh -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:30 2024 by rpki-client on console-ams.rpki-client.org