$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/fyTO74ruF03mHa25DuEkvPvyQ1U.roa File: fyTO74ruF03mHa25DuEkvPvyQ1U.roa (raw, json) Hash identifier: 2I9jpX7DvunLNDTsb2aS9OAqk+KKnIpAg2auLDXsCiA= Subject key identifier: 7F:24:CE:EF:8A:EE:17:4D:E6:1D:AD:B9:0E:E1:24:BC:FB:F2:43:55 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 11BC Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/fyTO74ruF03mHa25DuEkvPvyQ1U.roa Signing time: Mon 26 Aug 2024 05:11:05 +0000 ROA not before: Mon 26 Aug 2024 05:11:05 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18419 IP address blocks: 118.150.252.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4540 (0x11bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 26 05:11:05 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=7F24CEEF8AEE174DE61DADB90EE124BCFBF24355 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:34:15:d0:38:34:28:16:e7:e2:89:47:e7:cf: c1:3b:58:81:6c:99:5a:29:2f:49:79:48:5e:8a:49: fa:2f:12:e6:ad:ef:1e:92:b8:26:70:42:11:da:86: 95:57:a0:90:3e:0f:17:0d:42:c7:c9:ed:a6:08:4d: 28:a1:29:ad:ed:71:79:d5:7d:b0:2e:e4:6a:d6:13: 6a:66:99:62:fa:4b:45:ab:95:a3:05:83:2a:f0:22: f3:8b:92:28:83:9f:1b:cd:50:80:7a:50:c6:2c:a5: 0b:7e:99:05:69:2a:20:bf:80:29:df:53:73:66:be: 4a:19:09:ae:15:a6:39:b0:e4:c5:41:8d:f1:10:18: 6e:84:d5:f7:37:c7:85:8d:e4:35:69:d1:25:a4:7c: 5e:a4:fe:7a:0d:dd:46:b5:a8:96:eb:41:07:36:e2: 70:ae:fe:5c:55:53:ca:fa:51:42:d8:74:00:4d:6d: a3:ca:d8:c4:f5:00:bb:1a:7d:85:13:a7:11:27:12: f5:18:cc:ab:09:f8:46:af:36:7e:37:76:5e:13:85: 1e:59:f1:d8:38:ef:c5:1e:1e:cc:37:cc:8a:a2:d5: 12:ad:2f:2a:7e:c5:7a:81:7c:73:3b:97:75:0b:44: 3a:c9:bb:41:c8:d8:d2:65:28:36:99:3c:ea:71:28: 30:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:24:CE:EF:8A:EE:17:4D:E6:1D:AD:B9:0E:E1:24:BC:FB:F2:43:55 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/fyTO74ruF03mHa25DuEkvPvyQ1U.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.150.252.0/22 Signature Algorithm: sha256WithRSAEncryption 37:d3:86:d9:0b:a2:37:94:7c:e5:ff:e1:3b:57:00:eb:56:70: 17:cd:3b:48:6c:3f:aa:a1:f0:d9:1b:26:a9:1d:7d:ca:fd:ba: de:c3:b7:fc:17:7e:5b:91:86:61:6f:73:29:69:1f:ad:52:68: 9b:b9:3b:33:13:91:0c:f7:cf:cb:44:5f:42:01:9d:25:75:68: 62:f4:02:f1:cc:ff:80:f5:cc:45:38:10:2c:97:49:68:7b:9e: f2:1c:01:d7:e8:46:8a:0a:f5:b7:42:09:a5:15:48:03:b5:2e: 0e:a9:01:1c:f2:b7:b3:21:28:72:62:9c:46:eb:8c:3d:14:fc: dd:c2:9d:b9:32:17:4a:09:ae:8b:21:33:79:a6:07:c3:51:30: 5d:a8:00:94:4b:e8:21:cd:41:dd:c3:12:6d:eb:2a:3f:ce:bf: e5:87:48:3e:d6:a7:a1:6d:ca:c6:40:d1:90:ea:16:d5:d7:79: e0:66:13:5a:97:5e:74:42:ea:a9:5a:93:b7:bf:69:b4:fc:89: bd:95:50:49:22:18:65:ee:5e:7d:34:ee:0f:b6:ee:20:8c:f1: e4:da:17:9e:b5:37:c5:04:c4:e9:02:ee:82:ce:30:e5:d1:13: d1:05:b8:80:cd:f5:ca:67:bc:df:cd:05:33:62:db:aa:33:eb: 92:86:f3:a8 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEbwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNDA4MjYw NTExMDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDdGMjRDRUVGOEFFRTE3 NERFNjFEQURCOTBFRTEyNEJDRkJGMjQzNTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtNBXQODQoFufiiUfnz8E7WIFsmVopL0l5SF6KSfovEuat7x6S uCZwQhHahpVXoJA+DxcNQsfJ7aYITSihKa3tcXnVfbAu5GrWE2pmmWL6S0WrlaMF gyrwIvOLkiiDnxvNUIB6UMYspQt+mQVpKiC/gCnfU3NmvkoZCa4Vpjmw5MVBjfEQ GG6E1fc3x4WN5DVp0SWkfF6k/noN3Ua1qJbrQQc24nCu/lxVU8r6UULYdABNbaPK 2MT1ALsafYUTpxEnEvUYzKsJ+EavNn43dl4ThR5Z8dg478UeHsw3zIqi1RKtLyp+ xXqBfHM7l3ULRDrJu0HI2NJlKDaZPOpxKDAZAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUfyTO74ruF03mHa25DuEkvPvyQ1UwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9meVRPNzRydUYwM21I YTI1RHVFa3ZQdnlRMVUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQCdpb8MA0GCSqGSIb3DQEBCwUAA4IBAQA304bZC6I3lHzl/+E7VwDrVnAXzTtI bD+qofDZGyapHX3K/brew7f8F35bkYZhb3MpaR+tUmibuTszE5EM98/LRF9CAZ0l dWhi9ALxzP+A9cxFOBAsl0loe57yHAHX6EaKCvW3QgmlFUgDtS4OqQEc8rezIShy YpxG64w9FPzdwp25MhdKCa6LITN5pgfDUTBdqACUS+ghzUHdwxJt6yo/zr/lh0g+ 1qehbcrGQNGQ6hbV13ngZhNal150QuqpWpO3v2m0/Im9lVBJIhhl7l59NO4Ptu4g jPHk2heetTfFBMTpAu6CzjDl0RPRBbiAzfXKZ7zfzQUzYtuqM+uShvOo -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:35 2024 by rpki-client on console-fra.rpki-client.org