$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/h0hjVyN7KiH-33aWKSzvqDqIrK0.roa File: h0hjVyN7KiH-33aWKSzvqDqIrK0.roa (raw, json) Hash identifier: ukZF1rk8mamiJDnnzo4d+92/3lejj7LystBYe8D97eA= Subject key identifier: 87:48:63:57:23:7B:2A:21:FE:DF:76:96:29:2C:EF:A8:3A:88:AC:AD Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 118E Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/h0hjVyN7KiH-33aWKSzvqDqIrK0.roa Signing time: Mon 26 Aug 2024 05:10:54 +0000 ROA not before: Mon 26 Aug 2024 05:10:54 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131607 IP address blocks: 150.117.208.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4494 (0x118e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 26 05:10:54 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=87486357237B2A21FEDF7696292CEFA83A88ACAD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:08:41:69:17:c5:03:16:95:13:18:4b:70:f5: 18:8a:1a:b7:45:02:e3:e5:ea:49:b8:0f:db:62:bd: ff:f2:c1:50:d5:ee:b4:d2:f2:da:cb:9b:7b:29:26: 75:81:33:da:d7:5a:66:04:a7:ec:c4:81:6a:de:62: 71:42:c2:a2:6a:65:6a:2b:d4:11:38:01:62:15:49: de:72:e8:4a:b5:e3:59:54:bf:e6:5c:8f:26:63:a0: 63:64:96:93:f1:6e:b6:d1:38:91:c9:7f:da:26:3a: 87:1b:b1:dc:03:fc:2a:7f:a5:c4:4f:f4:09:74:b1: c3:0f:d4:af:b7:98:72:0b:7a:fd:7c:d6:d3:7e:4f: 14:e1:59:28:19:1d:b6:ff:4c:34:2e:da:56:47:fe: fd:40:4c:36:d2:86:d8:ec:f5:e7:74:ab:20:00:cd: d7:4e:8e:d0:83:2f:1c:b5:b0:db:b6:7a:af:97:b8: 77:9c:3d:68:8d:e9:b0:ba:9f:d1:d2:af:82:e8:89: 98:d8:82:74:10:c3:ca:e4:3c:36:ba:55:c3:ae:19: 87:a3:46:2d:ba:10:f7:57:12:fb:c1:a9:d0:82:b5: 8f:08:04:e1:6f:bf:ee:dd:8a:f2:e2:aa:41:f7:2f: 5e:f7:6b:3e:95:93:99:2c:c7:3f:e3:80:13:f4:c6: bc:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:48:63:57:23:7B:2A:21:FE:DF:76:96:29:2C:EF:A8:3A:88:AC:AD X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/h0hjVyN7KiH-33aWKSzvqDqIrK0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.117.208.0/20 Signature Algorithm: sha256WithRSAEncryption 1e:6d:a3:bc:e4:44:27:b2:69:d0:f0:69:00:dd:ff:d7:d3:b6: 05:0d:fc:79:88:ee:ba:ee:de:d4:f9:98:bd:04:f9:b8:08:63: 40:c5:db:19:3a:a6:8e:29:d9:73:4c:65:c0:2a:4e:c3:b0:d3: 7e:5f:c0:0f:b6:8f:8d:ea:ab:3f:de:17:45:52:8a:ec:77:25: fe:53:c5:f8:52:3f:a0:0a:90:97:7d:75:27:f3:b8:d4:6f:36: 5a:31:2e:83:43:40:50:0d:3c:a3:f6:36:aa:1b:49:bc:2b:d8: 91:2a:ae:c3:f2:45:45:d0:53:7a:01:fd:48:fe:6f:1e:0f:3d: 02:64:21:ef:da:65:33:45:1c:29:0e:bc:8c:2b:27:7f:a1:f0: 58:02:6c:43:88:a8:af:c5:52:28:34:34:11:39:23:87:19:46: 7d:ad:28:08:9d:99:41:e5:86:57:1c:c8:df:15:6f:de:88:94: 1e:e0:3d:30:88:97:93:0c:00:58:a3:5e:6a:a3:97:04:4b:f8: ea:d6:27:1e:a1:b0:09:38:12:1c:fa:37:96:b3:29:74:b7:04: 5c:cc:98:bd:92:9f:2c:ad:c0:9a:a5:1d:2d:af:51:78:94:70: 95:20:bf:77:5b:43:fc:43:c8:0c:22:03:d2:30:6b:e1:e6:69: 01:b0:e8:eb -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEY4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNDA4MjYw NTEwNTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg3NDg2MzU3MjM3QjJB MjFGRURGNzY5NjI5MkNFRkE4M0E4OEFDQUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGCEFpF8UDFpUTGEtw9RiKGrdFAuPl6km4D9tivf/ywVDV7rTS 8trLm3spJnWBM9rXWmYEp+zEgWreYnFCwqJqZWor1BE4AWIVSd5y6Eq141lUv+Zc jyZjoGNklpPxbrbROJHJf9omOocbsdwD/Cp/pcRP9Al0scMP1K+3mHILev181tN+ TxThWSgZHbb/TDQu2lZH/v1ATDbShtjs9ed0qyAAzddOjtCDLxy1sNu2eq+XuHec PWiN6bC6n9HSr4LoiZjYgnQQw8rkPDa6VcOuGYejRi26EPdXEvvBqdCCtY8IBOFv v+7divLiqkH3L173az6Vk5ksxz/jgBP0xrwhAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUh0hjVyN7KiH+33aWKSzvqDqIrK0wHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9oMGhqVnlON0tpSC0z M2FXS1N6dnFEcUlySzAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQElnXQMA0GCSqGSIb3DQEBCwUAA4IBAQAebaO85EQnsmnQ8GkA3f/X07YFDfx5 iO667t7U+Zi9BPm4CGNAxdsZOqaOKdlzTGXAKk7DsNN+X8APto+N6qs/3hdFUors dyX+U8X4Uj+gCpCXfXUn87jUbzZaMS6DQ0BQDTyj9jaqG0m8K9iRKq7D8kVF0FN6 Af1I/m8eDz0CZCHv2mUzRRwpDryMKyd/ofBYAmxDiKivxVIoNDQROSOHGUZ9rSgI nZlB5YZXHMjfFW/eiJQe4D0wiJeTDABYo15qo5cES/jq1iceobAJOBIc+jeWsyl0 twRczJi9kp8srcCapR0tr1F4lHCVIL93W0P8Q8gMIgPSMGvh5mkBsOjr -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:30 2024 by rpki-client on console-ams.rpki-client.org