$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/kbiymP3R-83wyFaK4NO7Sjn5Oig.roa File: kbiymP3R-83wyFaK4NO7Sjn5Oig.roa (raw, json) Hash identifier: d3DHcdTHPFGUJ15C+LXlqFbu01YpM/dqPsuJsXLDfmo= Subject key identifier: 91:B8:B2:98:FD:D1:FB:CD:F0:C8:56:8A:E0:D3:BB:4A:39:F9:3A:28 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 11BD Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/kbiymP3R-83wyFaK4NO7Sjn5Oig.roa Signing time: Mon 26 Aug 2024 05:11:05 +0000 ROA not before: Mon 26 Aug 2024 05:11:05 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131627 IP address blocks: 150.116.48.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4541 (0x11bd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 26 05:11:05 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=91B8B298FDD1FBCDF0C8568AE0D3BB4A39F93A28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a5:eb:cc:43:91:cc:21:35:c2:9b:a5:13:46: 81:cc:5f:f0:0f:46:8b:11:10:76:d3:b9:2e:13:5d: 27:1f:c9:18:ea:3a:45:74:9a:44:fe:08:f3:96:ee: ea:b5:82:9f:3f:47:cf:a2:5b:7f:94:80:9d:b9:fb: 09:eb:63:41:76:ee:d5:59:e7:f5:a2:81:73:3b:11: f6:af:48:1d:be:9d:fb:8f:0a:50:60:b4:ef:1b:92: 7a:13:b2:93:39:39:22:b3:b0:ba:71:9f:d0:11:ee: a7:93:f4:09:6f:10:40:7c:08:7c:1c:fc:98:a2:91: bb:4f:a3:48:1f:5d:f5:8b:1e:07:1f:22:03:27:29: 90:df:a2:77:fe:bf:ff:00:cb:bb:f0:b7:f0:f7:89: 50:4d:39:eb:7b:cb:fe:dd:d8:0b:c1:45:3f:9d:02: 64:4a:6f:8e:0d:ea:6b:39:87:4f:99:4c:f0:c0:f7: d9:d1:05:be:d9:f2:c3:eb:31:24:06:f7:30:86:2c: d3:9c:61:2f:0c:09:3d:46:a1:a9:50:8c:a8:6a:d1: 9d:e1:e8:84:9c:9f:83:4b:bf:db:c4:dd:f4:1e:49: 09:35:97:e0:52:4c:e7:24:50:e4:ce:e5:47:82:91: 3f:ad:61:41:c8:a2:0e:b8:a6:6a:30:57:90:36:5f: f4:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:B8:B2:98:FD:D1:FB:CD:F0:C8:56:8A:E0:D3:BB:4A:39:F9:3A:28 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/kbiymP3R-83wyFaK4NO7Sjn5Oig.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.48.0/22 Signature Algorithm: sha256WithRSAEncryption b4:59:c0:72:8d:9b:e3:56:df:64:98:d3:2f:65:50:36:37:7f: ef:2b:0d:b9:2d:93:51:a0:f9:4f:f0:95:42:15:b2:d7:ad:5c: a3:df:99:85:5a:c8:10:c4:d9:63:1c:5d:5c:18:20:e3:9c:28: 57:b3:1c:60:50:20:82:62:3e:13:a4:46:b1:cd:5e:38:cf:31: f3:c3:b8:32:40:41:6a:ab:9f:99:6a:84:04:5f:c8:a1:bc:e6: 69:ae:07:9f:8a:69:4f:e2:6e:72:3a:d8:80:4f:a1:0b:e0:cf: 87:d4:78:f5:18:27:c8:b4:93:c2:b1:71:b5:d6:4a:76:94:6c: 5d:1e:1c:26:0d:9a:a0:2a:05:bb:30:9a:67:aa:47:60:f3:0d: e3:79:45:1f:08:fe:28:a9:d9:17:2e:d5:19:b8:a7:d6:6f:be: d1:d4:bd:7b:f2:d0:a1:85:51:47:56:bf:21:6c:82:e3:fb:1b: 52:99:54:7d:59:dd:c5:6c:c7:fe:62:27:fc:3b:21:27:51:ac: 11:bb:e1:47:34:d2:c9:6b:b7:30:9c:ec:ac:67:6e:5e:e3:53: af:0f:1c:02:69:de:c8:0f:b2:e8:06:88:f1:38:ae:d0:1f:b7: 27:f0:ba:8f:82:b8:1b:cf:20:33:82:e9:0f:bb:86:b1:40:9d: 48:56:55:48 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEb0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNDA4MjYw NTExMDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDkxQjhCMjk4RkREMUZC Q0RGMEM4NTY4QUUwRDNCQjRBMzlGOTNBMjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/pevMQ5HMITXCm6UTRoHMX/APRosREHbTuS4TXScfyRjqOkV0 mkT+CPOW7uq1gp8/R8+iW3+UgJ25+wnrY0F27tVZ5/WigXM7EfavSB2+nfuPClBg tO8bknoTspM5OSKzsLpxn9AR7qeT9AlvEEB8CHwc/JiikbtPo0gfXfWLHgcfIgMn KZDfonf+v/8Ay7vwt/D3iVBNOet7y/7d2AvBRT+dAmRKb44N6ms5h0+ZTPDA99nR Bb7Z8sPrMSQG9zCGLNOcYS8MCT1GoalQjKhq0Z3h6IScn4NLv9vE3fQeSQk1l+BS TOckUOTO5UeCkT+tYUHIog64pmowV5A2X/TjAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUkbiymP3R+83wyFaK4NO7Sjn5OigwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9rYml5bVAzUi04M3d5 RmFLNE5PN1NqbjVPaWcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQClnQwMA0GCSqGSIb3DQEBCwUAA4IBAQC0WcByjZvjVt9kmNMvZVA2N3/vKw25 LZNRoPlP8JVCFbLXrVyj35mFWsgQxNljHF1cGCDjnChXsxxgUCCCYj4TpEaxzV44 zzHzw7gyQEFqq5+ZaoQEX8ihvOZprgefimlP4m5yOtiAT6EL4M+H1Hj1GCfItJPC sXG11kp2lGxdHhwmDZqgKgW7MJpnqkdg8w3jeUUfCP4oqdkXLtUZuKfWb77R1L17 8tChhVFHVr8hbILj+xtSmVR9Wd3FbMf+Yif8OyEnUawRu+FHNNLJa7cwnOysZ25e 41OvDxwCad7ID7LoBojxOK7QH7cn8LqPgrgbzyAzgukPu4axQJ1IVlVI -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:30 2024 by rpki-client on console-ams.rpki-client.org