$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/iIJJcp-smIt7XgTSsUSilKmYMc8.roa File: iIJJcp-smIt7XgTSsUSilKmYMc8.roa (raw, json) Hash identifier: 24NxCgA3z4yvZE/+h3zj42SpmKfLU2Y/Bah63MrqhWY= Subject key identifier: 88:82:49:72:9F:AC:98:8B:7B:5E:04:D2:B1:44:A2:94:A9:98:31:CF Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 0FB4 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/iIJJcp-smIt7XgTSsUSilKmYMc8.roa Signing time: Fri 01 Sep 2023 08:29:27 +0000 ROA not before: Fri 01 Sep 2023 08:29:27 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131627 IP address blocks: 150.116.240.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 19:57:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4020 (0xfb4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Sep 1 08:29:27 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=888249729FAC988B7B5E04D2B144A294A99831CF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:75:f5:7b:77:df:8d:c3:a5:fa:bb:a5:20:4a: 85:dc:9e:6b:8b:67:65:21:b8:83:be:58:1d:e8:9f: 01:d5:6c:78:4c:22:59:8e:30:40:13:13:60:0f:4b: dd:83:01:12:a6:29:69:c5:86:f2:b4:59:28:29:c3: 6a:93:6c:21:db:86:12:5d:16:2a:00:69:e3:79:3f: 38:13:4d:75:20:49:06:04:b8:f8:a7:79:96:8a:60: 22:f9:ab:e7:59:21:3f:dc:bf:2c:bc:43:7c:11:a1: 51:6d:c8:c7:c8:b1:1e:37:30:da:7d:b2:e9:86:0e: 35:08:7a:29:80:01:1d:af:8f:9e:2d:1c:73:86:31: 7e:75:52:e2:78:13:31:33:69:11:02:23:62:7e:b8: 92:08:e0:17:2a:0c:9e:c6:b4:cc:50:f8:f0:8e:9d: 50:b5:c8:7c:40:1c:49:95:14:9c:92:ce:65:6c:ae: 81:b1:59:67:17:37:32:0d:be:af:b4:cf:7c:49:c2: 24:48:6d:b5:2e:31:95:6d:4a:ae:ea:a3:06:92:16: 76:e2:fb:e2:ca:6f:9f:b6:03:3b:7e:2c:03:67:38: 2a:dc:77:15:17:47:9b:05:54:3e:12:49:39:c8:de: cb:67:8d:59:b6:67:cc:80:85:89:4b:7c:f6:27:ce: 46:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:82:49:72:9F:AC:98:8B:7B:5E:04:D2:B1:44:A2:94:A9:98:31:CF X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/iIJJcp-smIt7XgTSsUSilKmYMc8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.240.0/20 Signature Algorithm: sha256WithRSAEncryption b1:2f:b4:1d:1b:a5:68:8e:e6:03:a3:75:e6:a8:41:30:e8:46: 0a:95:57:62:e8:c4:72:6a:61:ac:53:6b:e6:ee:c7:8e:87:d2: 27:04:18:17:9b:8e:f4:29:1d:b3:6a:56:29:e8:31:b8:f3:60: cd:59:66:3d:e6:24:25:8f:7a:f2:4c:2f:ad:36:24:62:56:f2: 42:64:30:20:b0:c9:e3:bc:fc:6c:0e:37:08:c4:4f:02:d9:57: 3f:e3:c7:6a:c8:ba:a2:e3:a9:97:e1:de:af:01:a3:9b:6f:fa: 70:dd:e5:be:39:1b:82:58:f1:db:5f:57:c0:e6:6a:9e:6d:b4: 3b:18:54:ce:12:a2:ef:d7:dc:3d:93:65:28:28:34:00:e7:64: d0:8b:a0:d3:39:3b:13:0a:2a:ee:2c:f4:b1:64:fd:31:6e:ca: 10:2d:d2:80:66:50:84:2c:8a:cd:b9:4d:fe:7c:8d:b5:25:e6: 75:45:07:74:59:88:b9:b0:b1:1b:1a:9d:b8:5f:5d:38:f3:95: 96:3f:2b:7c:e3:5d:be:26:fc:57:66:b6:73:41:28:95:d7:46: 5d:0d:8c:61:04:dd:e0:8c:02:9a:42:75:e1:fc:6a:de:0c:37: b8:66:67:c0:4e:ad:a9:a4:97:ac:01:14:b3:98:18:c1:7d:85: f7:72:60:80 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICD7QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMzA5MDEw ODI5MjdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDg4ODI0OTcyOUZBQzk4 OEI3QjVFMDREMkIxNDRBMjk0QTk5ODMxQ0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFdfV7d9+Nw6X6u6UgSoXcnmuLZ2UhuIO+WB3onwHVbHhMIlmO MEATE2APS92DARKmKWnFhvK0WSgpw2qTbCHbhhJdFioAaeN5PzgTTXUgSQYEuPin eZaKYCL5q+dZIT/cvyy8Q3wRoVFtyMfIsR43MNp9sumGDjUIeimAAR2vj54tHHOG MX51UuJ4EzEzaRECI2J+uJII4BcqDJ7GtMxQ+PCOnVC1yHxAHEmVFJySzmVsroGx WWcXNzINvq+0z3xJwiRIbbUuMZVtSq7qowaSFnbi++LKb5+2Azt+LANnOCrcdxUX R5sFVD4SSTnI3stnjVm2Z8yAhYlLfPYnzkbhAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUiIJJcp+smIt7XgTSsUSilKmYMc8wHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9pSUpKY3Atc21JdDdY Z1RTc1VTaWxLbVlNYzgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQElnTwMA0GCSqGSIb3DQEBCwUAA4IBAQCxL7QdG6VojuYDo3XmqEEw6EYKlVdi 6MRyamGsU2vm7seOh9InBBgXm470KR2zalYp6DG482DNWWY95iQlj3ryTC+tNiRi VvJCZDAgsMnjvPxsDjcIxE8C2Vc/48dqyLqi46mX4d6vAaObb/pw3eW+ORuCWPHb X1fA5mqebbQ7GFTOEqLv19w9k2UoKDQA52TQi6DTOTsTCiruLPSxZP0xbsoQLdKA ZlCELIrNuU3+fI21JeZ1RQd0WYi5sLEbGp24X10485WWPyt8412+JvxXZrZzQSiV 10ZdDYxhBN3gjAKaQnXh/GreDDe4ZmfATq2ppJesARSzmBjBfYX3cmCA -----END CERTIFICATE-----Generated at Sun Jun 2 07:14:19 2024 by rpki-client on console-fra.rpki-client.org