$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/hmC0IfHJKGAymctqH-2trZ8Zsqk.roa File: hmC0IfHJKGAymctqH-2trZ8Zsqk.roa (raw, json) Hash identifier: u77rkT15cUiec6eQEBZi6xeI9XlMTr2pmKuvKd7uqy0= Subject key identifier: 86:60:B4:21:F1:C9:28:60:32:99:CB:6A:1F:ED:AD:AD:9F:19:B2:A9 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 116E Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/hmC0IfHJKGAymctqH-2trZ8Zsqk.roa Signing time: Mon 26 Aug 2024 05:10:46 +0000 ROA not before: Mon 26 Aug 2024 05:10:46 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131627 IP address blocks: 150.116.32.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4462 (0x116e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 26 05:10:46 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8660B421F1C928603299CB6A1FEDADAD9F19B2A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:f7:b9:43:d1:12:65:71:7a:29:47:70:d5:66: cb:67:f8:3a:85:57:97:26:89:d9:0b:af:f7:14:28: 0d:c8:87:83:fd:26:88:ae:16:58:d6:38:0a:83:20: f5:83:5c:dd:36:ce:56:fc:6a:50:ec:2e:f2:a6:63: b6:48:21:e7:d8:06:9a:a0:39:ec:65:e0:43:5a:8d: 50:3f:c8:55:64:26:9b:fe:1c:97:3a:3f:7f:34:1b: ef:02:07:c0:86:02:fc:82:6a:1a:8d:c4:21:f3:91: fe:3a:fb:f8:4d:5d:6e:03:41:36:0d:08:3a:0d:dd: 14:bb:03:c6:74:bc:41:45:6c:a0:0a:92:3a:12:8f: 6b:a4:59:90:f0:d2:1d:9e:20:ae:1b:ac:ce:33:4a: d7:f6:68:1c:4e:c3:3a:f1:3e:81:c4:8f:d5:a3:dc: 6d:0a:fe:47:83:62:48:c1:62:c4:9e:3d:a1:4a:26: f5:b3:63:e7:de:de:65:b7:26:cb:0a:c5:14:1f:e4: 2c:ff:8a:cf:bb:8d:0e:da:b9:6a:b8:32:cd:21:e4: 02:c0:c9:95:bd:da:f5:ba:9a:c0:b0:2a:33:cc:30: 26:ae:13:5c:31:75:ec:0e:67:b5:ae:51:0d:c0:bb: 8c:e4:e1:21:4e:20:c1:62:48:f1:1f:32:5a:99:d9: c6:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:60:B4:21:F1:C9:28:60:32:99:CB:6A:1F:ED:AD:AD:9F:19:B2:A9 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/hmC0IfHJKGAymctqH-2trZ8Zsqk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.32.0/20 Signature Algorithm: sha256WithRSAEncryption 59:97:9b:0d:d7:e0:02:09:48:0b:3a:45:bb:fd:44:d2:d1:78: 53:fb:a4:8c:4a:18:d9:02:e1:9c:7e:e1:34:1d:8e:49:c9:57: 47:46:af:78:7c:d2:9b:ad:93:a3:d4:6e:bf:38:14:b0:66:5c: 3d:f8:0c:b5:47:f1:0f:d9:f7:40:6c:a0:bf:71:18:1b:f0:fc: 83:5b:d8:c2:d8:b1:8d:43:65:34:96:8c:0b:06:f7:91:03:90: 2c:88:1d:0e:a0:57:99:36:35:4d:01:e3:52:e7:b3:1c:4a:1f: 3a:6e:0c:34:eb:7b:5c:9a:26:ee:04:2a:18:8b:2b:fb:df:b6: 9b:05:66:74:f2:be:75:c2:52:51:d8:b3:26:6d:cc:88:06:35: ec:6a:41:a5:29:95:14:fd:33:63:75:53:ba:07:90:88:7c:a1: fa:cd:d8:69:3e:6e:c4:0b:fa:b4:3d:7c:ad:fa:65:1a:ef:bf: 4b:8b:23:e1:92:c6:c2:84:97:66:c0:37:00:35:81:93:8f:fb: e5:73:0e:01:28:e7:d4:da:4e:8d:c5:cb:fb:5a:af:72:96:ba: ce:42:90:6a:b9:bd:0e:43:15:8c:01:9a:66:81:7a:b2:8f:75: 6e:c6:bb:ca:3c:42:88:ae:4e:b1:7f:31:73:51:8f:f5:65:9f: 48:57:18:5a -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEW4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNDA4MjYw NTEwNDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg2NjBCNDIxRjFDOTI4 NjAzMjk5Q0I2QTFGRURBREFEOUYxOUIyQTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCg97lD0RJlcXopR3DVZstn+DqFV5cmidkLr/cUKA3Ih4P9Joiu FljWOAqDIPWDXN02zlb8alDsLvKmY7ZIIefYBpqgOexl4ENajVA/yFVkJpv+HJc6 P380G+8CB8CGAvyCahqNxCHzkf46+/hNXW4DQTYNCDoN3RS7A8Z0vEFFbKAKkjoS j2ukWZDw0h2eIK4brM4zStf2aBxOwzrxPoHEj9Wj3G0K/keDYkjBYsSePaFKJvWz Y+fe3mW3JssKxRQf5Cz/is+7jQ7auWq4Ms0h5ALAyZW92vW6msCwKjPMMCauE1wx dewOZ7WuUQ3Au4zk4SFOIMFiSPEfMlqZ2caVAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUhmC0IfHJKGAymctqH+2trZ8ZsqkwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9obUMwSWZISktHQXlt Y3RxSC0ydHJaOFpzcWsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQElnQgMA0GCSqGSIb3DQEBCwUAA4IBAQBZl5sN1+ACCUgLOkW7/UTS0XhT+6SM ShjZAuGcfuE0HY5JyVdHRq94fNKbrZOj1G6/OBSwZlw9+Ay1R/EP2fdAbKC/cRgb 8PyDW9jC2LGNQ2U0lowLBveRA5AsiB0OoFeZNjVNAeNS57McSh86bgw063tcmibu BCoYiyv737abBWZ08r51wlJR2LMmbcyIBjXsakGlKZUU/TNjdVO6B5CIfKH6zdhp Pm7EC/q0PXyt+mUa779LiyPhksbChJdmwDcANYGTj/vlcw4BKOfU2k6Nxcv7Wq9y lrrOQpBqub0OQxWMAZpmgXqyj3VuxrvKPEKIrk6xfzFzUY/1ZZ9IVxha -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:35 2024 by rpki-client on console-fra.rpki-client.org