$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/hOvO9m8cphLfZbJBO4-nKFZ8Ihs.roa File: hOvO9m8cphLfZbJBO4-nKFZ8Ihs.roa (raw, json) Hash identifier: BPZjnvbdMQb/gk4nw+h5dBxrbd1HMxFJhpYJ+YjDkfU= Subject key identifier: 84:EB:CE:F6:6F:1C:A6:12:DF:65:B2:41:3B:8F:A7:28:56:7C:22:1B Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 11A3 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/hOvO9m8cphLfZbJBO4-nKFZ8Ihs.roa Signing time: Mon 26 Aug 2024 05:11:00 +0000 ROA not before: Mon 26 Aug 2024 05:11:00 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 63199 IP address blocks: 150.116.4.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4515 (0x11a3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 26 05:11:00 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=84EBCEF66F1CA612DF65B2413B8FA728567C221B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:a0:c7:c4:69:86:48:85:c8:87:47:7d:ea:7f: ab:41:73:9f:b8:b8:15:39:6d:91:88:ed:8c:d0:be: b0:46:06:0c:27:bb:ff:96:55:45:04:61:c5:a4:0c: f8:2f:c6:36:48:e6:4d:2b:99:57:6b:69:81:00:e5: a8:24:f8:66:8b:0b:fb:d3:a9:14:f7:27:bb:10:3b: 57:5f:70:a5:5c:5c:4e:99:b7:ef:ad:3e:5f:b2:b9: b6:2c:60:fc:64:3a:4d:75:e1:26:ba:17:15:cc:c0: 60:7f:6c:58:a0:44:78:2d:44:47:d8:e1:b1:05:e3: 31:c2:9b:48:66:ab:8c:6f:21:19:1c:9d:df:64:e5: 41:75:bc:a3:c4:93:ee:c5:a5:41:b0:cc:47:1d:06: 97:50:10:41:ac:42:6e:4b:a0:e2:ce:c8:70:8c:48: 01:82:29:c4:dd:05:24:f7:65:55:78:d8:22:6d:3c: 4f:55:40:59:c4:60:8f:95:ff:68:d2:c5:4b:d9:8e: 43:52:ad:6e:22:20:8e:45:8c:07:80:00:66:b8:eb: 84:68:6a:12:dc:c0:89:9c:cf:0c:c8:6c:e3:8d:7d: 67:be:dc:44:5f:89:e7:fb:0f:e0:91:36:ac:8f:33: e3:54:1e:20:6a:4d:d1:8a:b6:8c:0a:82:89:82:4d: 05:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:EB:CE:F6:6F:1C:A6:12:DF:65:B2:41:3B:8F:A7:28:56:7C:22:1B X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/hOvO9m8cphLfZbJBO4-nKFZ8Ihs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.4.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:01:34:93:2d:c9:e5:1f:9d:ef:6e:75:14:ee:a6:84:b7:11: c9:1e:00:d9:a8:10:8f:05:b2:08:92:41:84:c3:bb:21:9b:ff: 45:36:d8:d9:41:86:79:99:2b:7d:9b:24:29:1c:f1:31:3b:29: 11:18:35:23:6e:ad:21:ee:a9:24:75:48:e5:51:4f:85:63:cc: fa:d7:d9:58:34:e5:58:4c:1a:99:9c:99:47:06:2f:2c:5d:88: 68:d8:8d:9e:6e:c3:c0:2f:a5:a7:b0:b8:60:7a:b0:dc:b2:0d: 95:e5:1c:2c:cb:29:f4:af:e8:ff:c4:22:ae:58:03:b6:2e:0c: 33:a4:06:ef:17:71:fb:6f:67:b5:64:e7:f0:3b:87:45:a9:d6: 2d:5d:aa:a8:c2:a0:99:60:38:0b:c3:cb:ad:a1:34:42:81:0d: 24:03:8d:b0:fd:e1:90:42:b0:48:00:d0:4b:b1:dd:52:de:37: b6:ea:bf:81:fc:d9:b0:69:cf:02:78:a1:1d:7b:08:4f:18:ef: 3d:9f:6d:2c:0a:95:e7:77:81:2f:87:bd:ca:15:8b:e6:e5:1c: 7f:2f:aa:16:28:70:a5:59:6f:3b:91:2d:6c:eb:2d:b1:59:8f: fc:5e:b3:26:9f:16:f4:41:19:5e:76:d7:5e:44:6f:1a:f2:12: bc:a2:ec:a6 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEaMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNDA4MjYw NTExMDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg0RUJDRUY2NkYxQ0E2 MTJERjY1QjI0MTNCOEZBNzI4NTY3QzIyMUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCsoMfEaYZIhciHR33qf6tBc5+4uBU5bZGI7YzQvrBGBgwnu/+W VUUEYcWkDPgvxjZI5k0rmVdraYEA5agk+GaLC/vTqRT3J7sQO1dfcKVcXE6Zt++t Pl+yubYsYPxkOk114Sa6FxXMwGB/bFigRHgtREfY4bEF4zHCm0hmq4xvIRkcnd9k 5UF1vKPEk+7FpUGwzEcdBpdQEEGsQm5LoOLOyHCMSAGCKcTdBST3ZVV42CJtPE9V QFnEYI+V/2jSxUvZjkNSrW4iII5FjAeAAGa464RoahLcwImczwzIbOONfWe+3ERf ief7D+CRNqyPM+NUHiBqTdGKtowKgomCTQUBAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUhOvO9m8cphLfZbJBO4+nKFZ8IhswHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9oT3ZPOW04Y3BoTGZa YkpCTzQtbktGWjhJaHMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAlnQEMA0GCSqGSIb3DQEBCwUAA4IBAQB8ATSTLcnlH53vbnUU7qaEtxHJHgDZ qBCPBbIIkkGEw7shm/9FNtjZQYZ5mSt9myQpHPExOykRGDUjbq0h7qkkdUjlUU+F Y8z619lYNOVYTBqZnJlHBi8sXYho2I2ebsPAL6WnsLhgerDcsg2V5Rwsyyn0r+j/ xCKuWAO2LgwzpAbvF3H7b2e1ZOfwO4dFqdYtXaqowqCZYDgLw8utoTRCgQ0kA42w /eGQQrBIANBLsd1S3je26r+B/Nmwac8CeKEdewhPGO89n20sCpXnd4Evh73KFYvm 5Rx/L6oWKHClWW87kS1s6y2xWY/8XrMmnxb0QRledtdeRG8a8hK8ouym -----END CERTIFICATE-----Generated at Fri Nov 22 06:41:25 2024 by rpki-client on console-ams.rpki-client.org