$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/oj0MYite-NW9YvV2h68ymBvert4.roa File: oj0MYite-NW9YvV2h68ymBvert4.roa (raw, json) Hash identifier: sTwJqyiGYEY+Hdmwgda2eo/8M+HqzaUZtQInyScPHcI= Subject key identifier: A2:3D:0C:62:2B:5E:F8:D5:BD:62:F5:76:87:AF:32:98:1B:DE:AE:DE Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 11CA Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/oj0MYite-NW9YvV2h68ymBvert4.roa Signing time: Mon 26 Aug 2024 05:11:08 +0000 ROA not before: Mon 26 Aug 2024 05:11:08 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18419 IP address blocks: 150.117.48.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4554 (0x11ca) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 26 05:11:08 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A23D0C622B5EF8D5BD62F57687AF32981BDEAEDE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:36:fa:86:09:0b:3f:3c:b4:85:8e:f6:40:a3: e1:b1:d6:83:0b:78:3d:6c:58:d6:a9:b1:c7:54:d7: 1f:6e:79:8b:0c:1c:cb:e5:3d:86:72:e4:64:b9:92: f3:b8:d4:00:a5:fb:1a:56:05:07:5b:c0:11:d3:7c: 00:27:39:f1:0f:ee:d7:b8:46:a4:13:38:76:d1:25: 1c:6d:ff:5f:2f:27:dc:f4:89:67:5f:83:9d:8d:90: 41:ad:2e:9a:6c:ca:60:70:c9:f3:d3:05:5a:79:99: 18:e2:b6:26:57:66:78:e6:78:24:a8:eb:aa:50:2c: b6:fa:3a:d6:4c:0b:4e:d4:9b:8b:67:a9:a9:9c:f1: 71:03:2a:27:ae:7c:05:5e:23:40:27:3d:d2:6b:da: 23:e2:74:ab:ed:7e:af:ba:54:82:df:45:f5:c0:47: cc:62:ad:bf:87:b8:87:aa:e3:c4:3a:a8:b0:f9:72: 5f:0a:c6:26:19:13:ac:7a:d9:d6:8f:e3:b1:0e:bd: 22:67:e9:85:73:8c:40:0f:6d:30:7e:62:8e:db:0e: 06:5e:75:cd:56:9e:91:2f:40:6d:1f:2d:c6:17:f2: c9:3d:47:a6:e5:6e:38:fa:24:36:70:74:d2:54:86: ef:33:b9:6e:c3:98:46:16:b9:e4:4e:d5:30:20:cc: cb:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:3D:0C:62:2B:5E:F8:D5:BD:62:F5:76:87:AF:32:98:1B:DE:AE:DE X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/oj0MYite-NW9YvV2h68ymBvert4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.117.48.0/21 Signature Algorithm: sha256WithRSAEncryption 87:b9:7c:7b:15:37:c6:fd:1b:d4:e8:14:8f:c4:e2:d1:11:45: 26:0e:c8:f3:7e:a4:9c:07:a6:38:40:e4:27:0e:2a:1e:78:02: 76:7c:5f:06:b3:27:c3:10:43:80:31:1d:ff:64:30:78:f4:78: 00:a2:57:d9:43:05:29:5f:2a:36:55:24:87:8e:eb:66:54:2d: 3d:1f:3e:63:64:e6:4d:79:d0:d4:58:a7:ba:a4:af:27:d1:bc: e0:90:4b:7a:85:1b:71:9a:bf:81:0f:99:03:1a:3b:e1:1d:15: 86:a6:c4:3b:c0:cf:5a:77:d2:89:8e:c4:d5:b8:0f:14:a8:bd: 71:5d:d5:bf:a7:43:cf:15:da:6d:04:cc:3e:94:97:2e:3a:d6: 9e:aa:86:ca:1b:b4:1e:97:1e:6e:3c:e0:1a:cc:5c:9f:88:d8: 84:39:90:c0:b4:79:0d:1a:46:3e:d8:c6:b8:d3:e3:36:c8:7b: 8d:1e:bb:0e:17:49:92:67:bf:b9:b0:cb:7b:d0:2f:62:36:01: 41:91:9c:b8:51:e7:61:b4:80:65:eb:97:e2:e4:8f:76:3f:6f: d2:6d:be:c4:f0:fd:ad:a6:a1:ef:3b:56:9b:57:51:d8:6a:56: 81:a4:53:7f:55:7e:69:6c:e2:c6:1f:2e:b6:b2:7c:38:76:fb: 44:a1:05:d9 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEcowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNDA4MjYw NTExMDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEEyM0QwQzYyMkI1RUY4 RDVCRDYyRjU3Njg3QUYzMjk4MUJERUFFREUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDjNvqGCQs/PLSFjvZAo+Gx1oMLeD1sWNapscdU1x9ueYsMHMvl PYZy5GS5kvO41ACl+xpWBQdbwBHTfAAnOfEP7te4RqQTOHbRJRxt/18vJ9z0iWdf g52NkEGtLppsymBwyfPTBVp5mRjitiZXZnjmeCSo66pQLLb6OtZMC07Um4tnqamc 8XEDKieufAVeI0AnPdJr2iPidKvtfq+6VILfRfXAR8xirb+HuIeq48Q6qLD5cl8K xiYZE6x62daP47EOvSJn6YVzjEAPbTB+Yo7bDgZedc1WnpEvQG0fLcYX8sk9R6bl bjj6JDZwdNJUhu8zuW7DmEYWueRO1TAgzMsZAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUoj0MYite+NW9YvV2h68ymBvert4wHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9vajBNWWl0ZS1OVzlZ dlYyaDY4eW1CdmVydDQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQDlnUwMA0GCSqGSIb3DQEBCwUAA4IBAQCHuXx7FTfG/RvU6BSPxOLREUUmDsjz fqScB6Y4QOQnDioeeAJ2fF8GsyfDEEOAMR3/ZDB49HgAolfZQwUpXyo2VSSHjutm VC09Hz5jZOZNedDUWKe6pK8n0bzgkEt6hRtxmr+BD5kDGjvhHRWGpsQ7wM9ad9KJ jsTVuA8UqL1xXdW/p0PPFdptBMw+lJcuOtaeqobKG7Qelx5uPOAazFyfiNiEOZDA tHkNGkY+2Ma40+M2yHuNHrsOF0mSZ7+5sMt70C9iNgFBkZy4UedhtIBl65fi5I92 P2/Sbb7E8P2tpqHvO1abV1HYalaBpFN/VX5pbOLGHy62snw4dvtEoQXZ -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:30 2024 by rpki-client on console-ams.rpki-client.org