$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/jhb71m28R5UXNYp2xhUbJZ-_OW0.roa File: jhb71m28R5UXNYp2xhUbJZ-_OW0.roa (raw, json) Hash identifier: nEJMS4T3xyB5yeu9BXTV6GILLqN1ceR8aC1lawcvdbs= Subject key identifier: 8E:16:FB:D6:6D:BC:47:95:17:35:8A:76:C6:15:1B:25:9F:BF:39:6D Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 118F Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/jhb71m28R5UXNYp2xhUbJZ-_OW0.roa Signing time: Mon 26 Aug 2024 05:10:54 +0000 ROA not before: Mon 26 Aug 2024 05:10:54 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131627 IP address blocks: 150.117.160.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4495 (0x118f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 26 05:10:54 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8E16FBD66DBC479517358A76C6151B259FBF396D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:6b:60:5a:6b:c3:3e:82:0f:67:e6:69:21:c7: 1d:d1:14:3b:cf:f1:a9:51:76:4e:4c:8e:c8:fc:60: 38:ed:04:a3:e5:5d:f8:5b:8f:89:cb:63:7d:57:c4: 56:31:6f:56:ae:41:86:a5:a1:dc:06:73:39:ac:32: 9c:58:1c:db:9d:29:04:74:33:c4:94:bd:7e:3b:71: 2a:c7:9f:ed:c3:d7:78:ef:81:83:2f:57:c3:37:cc: a4:b7:25:bd:23:49:ee:55:1d:95:d7:ad:31:19:9c: b4:a5:56:ff:a0:c3:d1:95:57:df:91:22:b4:b6:93: be:c7:59:e1:91:98:54:2b:32:4b:f9:72:23:64:30: 09:6a:9f:3a:4a:3f:61:90:77:6e:c7:77:ee:b1:45: df:9a:2a:d5:62:5c:d2:46:d4:ed:d5:75:0f:f3:e1: bc:23:55:c7:c6:df:a3:32:63:b0:8f:5f:e1:45:1c: 9e:8b:62:00:23:bc:37:ff:a5:9d:5b:7e:c7:80:40: 82:12:8a:4e:e1:7f:44:51:04:50:2c:b9:22:45:d4: fb:73:f4:24:68:0c:26:23:2d:8f:02:60:80:d3:0d: 0b:ee:84:b7:cd:76:05:bb:9a:24:60:d2:54:da:d3: 6a:4a:b4:20:b3:49:be:72:32:f8:74:7a:d7:f1:df: 74:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:16:FB:D6:6D:BC:47:95:17:35:8A:76:C6:15:1B:25:9F:BF:39:6D X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/jhb71m28R5UXNYp2xhUbJZ-_OW0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.117.160.0/21 Signature Algorithm: sha256WithRSAEncryption a8:b0:ca:b5:36:59:63:c5:07:3d:d4:ea:d4:f0:07:6b:03:de: 32:db:1d:01:6d:39:ec:95:63:6c:08:63:9e:44:ea:21:7c:a7: f7:fd:7e:4f:e7:b8:56:bf:d6:14:fc:69:85:7d:df:0e:79:70: 6e:ad:60:19:42:8c:dc:28:9a:f3:67:79:d5:1e:c7:9e:df:3c: 7b:5c:b4:32:83:81:e4:eb:74:95:0a:94:c8:53:fc:86:83:f2: 6c:d8:31:55:df:ef:ad:f4:c4:41:38:52:d3:d6:84:39:2b:b5: 2f:e5:e5:6a:81:58:f2:0a:d8:b9:43:8b:f8:2c:b3:1d:84:82: 09:f6:cb:ac:1b:65:76:2e:14:7d:17:ab:a7:97:68:e3:f7:f1: 9a:81:40:55:48:60:e8:ca:e0:3b:19:97:3f:45:fa:8d:f8:43: ce:f2:18:46:d5:27:ef:37:5c:c7:e0:3d:65:fb:ec:12:82:47: f2:6c:33:7b:a4:79:b9:87:29:49:0a:66:09:88:46:58:7a:f0: 35:7d:0b:13:c6:df:e4:a1:d0:89:5f:e4:da:58:73:7a:ef:8c: 37:d9:90:59:90:85:7b:48:f7:c7:d9:02:0b:bc:91:10:e8:58: 64:b5:56:7e:00:e6:01:13:6c:32:e2:69:e4:35:b6:76:af:51: ab:48:bd:4d -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEY8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNDA4MjYw NTEwNTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhFMTZGQkQ2NkRCQzQ3 OTUxNzM1OEE3NkM2MTUxQjI1OUZCRjM5NkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJa2Baa8M+gg9n5mkhxx3RFDvP8alRdk5Mjsj8YDjtBKPlXfhb j4nLY31XxFYxb1auQYalodwGczmsMpxYHNudKQR0M8SUvX47cSrHn+3D13jvgYMv V8M3zKS3Jb0jSe5VHZXXrTEZnLSlVv+gw9GVV9+RIrS2k77HWeGRmFQrMkv5ciNk MAlqnzpKP2GQd27Hd+6xRd+aKtViXNJG1O3VdQ/z4bwjVcfG36MyY7CPX+FFHJ6L YgAjvDf/pZ1bfseAQIISik7hf0RRBFAsuSJF1Ptz9CRoDCYjLY8CYIDTDQvuhLfN dgW7miRg0lTa02pKtCCzSb5yMvh0etfx33SzAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUjhb71m28R5UXNYp2xhUbJZ+/OW0wHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9qaGI3MW0yOFI1VVhO WXAyeGhVYkpaLV9PVzAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQDlnWgMA0GCSqGSIb3DQEBCwUAA4IBAQCosMq1NlljxQc91OrU8AdrA94y2x0B bTnslWNsCGOeROohfKf3/X5P57hWv9YU/GmFfd8OeXBurWAZQozcKJrzZ3nVHsee 3zx7XLQyg4Hk63SVCpTIU/yGg/Js2DFV3++t9MRBOFLT1oQ5K7Uv5eVqgVjyCti5 Q4v4LLMdhIIJ9susG2V2LhR9F6unl2jj9/GagUBVSGDoyuA7GZc/RfqN+EPO8hhG 1SfvN1zH4D1l++wSgkfybDN7pHm5hylJCmYJiEZYevA1fQsTxt/kodCJX+TaWHN6 74w32ZBZkIV7SPfH2QILvJEQ6FhktVZ+AOYBE2wy4mnkNbZ2r1GrSL1N -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:02 2024 by rpki-client on console-ams.rpki-client.org