$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/pDltMSKOmSIfbEozoRq7fUHhGRA.roa File: pDltMSKOmSIfbEozoRq7fUHhGRA.roa (raw, json) Hash identifier: jNiBUCy4CNcGAl/nwlydIc9s0wyF4VLLFUbCsR5nMzc= Subject key identifier: A4:39:6D:31:22:8E:99:22:1F:6C:4A:33:A1:1A:BB:7D:41:E1:19:10 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 1189 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/pDltMSKOmSIfbEozoRq7fUHhGRA.roa Signing time: Mon 26 Aug 2024 05:10:53 +0000 ROA not before: Mon 26 Aug 2024 05:10:53 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131627 IP address blocks: 150.116.64.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4489 (0x1189) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 26 05:10:53 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A4396D31228E99221F6C4A33A11ABB7D41E11910 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:f6:a6:7e:6f:5e:cb:cd:26:97:8c:a4:58:4b: 07:fe:45:e1:59:11:b7:51:c9:24:33:96:ea:47:fc: 16:79:d7:9d:28:84:92:52:7c:b2:bd:27:43:05:7b: 29:c0:3e:66:a5:b1:18:10:95:6e:9e:53:55:c2:46: f7:79:7e:2e:44:3d:87:59:d6:19:d8:7f:2a:b8:b2: cb:b8:2a:e7:0a:d3:bf:e9:bc:56:fa:ad:56:ff:79: e2:39:03:72:2e:e1:a7:12:72:d6:97:33:92:d1:10: 09:e8:78:f7:ef:c8:e3:fa:e2:91:a1:60:9b:48:d9: 51:c5:9d:d4:bf:3f:27:bf:1a:74:ab:bc:64:83:8b: 28:4f:7a:f4:b8:30:c8:78:82:57:31:ce:11:c5:88: bb:e2:c9:1c:76:06:b9:7d:db:72:9a:f2:e5:d2:a3: 69:4b:75:9a:53:8a:38:5f:b2:c2:c2:00:ee:95:c0: 86:66:e3:6b:4a:93:51:2d:70:c7:8e:4d:4b:05:09: 4a:50:9c:f7:0b:7a:f8:6d:65:fb:fc:1d:0c:62:b3: 0e:95:45:c6:fc:e9:98:33:91:a8:c4:af:70:c9:36: b3:cc:8f:a3:e6:40:b2:10:9c:c6:e3:42:cb:33:f7: 2b:76:74:33:da:cc:da:3e:77:8b:fc:56:0d:ee:b5: 31:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:39:6D:31:22:8E:99:22:1F:6C:4A:33:A1:1A:BB:7D:41:E1:19:10 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/pDltMSKOmSIfbEozoRq7fUHhGRA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.64.0/20 Signature Algorithm: sha256WithRSAEncryption 0a:fe:52:04:34:2c:39:a4:9b:87:59:7f:1e:b6:93:87:e2:49: 4e:da:62:ae:62:21:9b:71:fe:6d:db:4d:0e:e8:e3:2a:b8:7b: 82:20:63:c2:66:80:26:5c:bc:f0:99:ab:1c:52:73:34:af:0c: 6c:1e:08:7c:84:a4:fe:34:6a:d3:d5:54:60:f9:44:88:90:1a: fe:d8:12:f1:57:0a:60:53:f7:38:e7:5b:75:6c:ac:ad:42:b0: b5:35:3c:f5:dc:e9:40:27:7d:a7:af:2d:c4:ba:9b:13:d5:cf: ce:b5:88:e3:c1:7c:4d:d5:79:84:15:ca:bc:3b:45:94:a2:5f: 87:ff:25:d7:e5:1d:3e:af:64:fc:32:10:c9:71:df:17:6c:3b: 7d:bf:59:db:03:ae:c9:f5:98:3f:b4:a3:cf:be:28:06:ee:42: 8a:a1:c9:d3:94:31:54:6e:e1:50:02:fa:ac:35:2f:00:12:94: 7f:2b:35:f3:32:93:10:52:1d:fb:66:1a:86:e5:4b:e0:f8:23: fd:ef:a3:6c:df:de:57:8b:fe:01:4d:df:60:ed:dc:d9:8a:1e: 27:4d:15:68:70:a5:bc:cb:06:e3:af:9c:1b:83:a9:52:60:e4: 7a:07:ea:bb:bb:d9:b4:cb:06:68:44:a4:fd:39:ae:74:5e:b5: 43:66:1c:c6 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEYkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNDA4MjYw NTEwNTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE0Mzk2RDMxMjI4RTk5 MjIxRjZDNEEzM0ExMUFCQjdENDFFMTE5MTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDj9qZ+b17LzSaXjKRYSwf+ReFZEbdRySQzlupH/BZ5150ohJJS fLK9J0MFeynAPmalsRgQlW6eU1XCRvd5fi5EPYdZ1hnYfyq4ssu4KucK07/pvFb6 rVb/eeI5A3Iu4acSctaXM5LREAnoePfvyOP64pGhYJtI2VHFndS/Pye/GnSrvGSD iyhPevS4MMh4glcxzhHFiLviyRx2Brl923Ka8uXSo2lLdZpTijhfssLCAO6VwIZm 42tKk1EtcMeOTUsFCUpQnPcLevhtZfv8HQxisw6VRcb86ZgzkajEr3DJNrPMj6Pm QLIQnMbjQssz9yt2dDPazNo+d4v8Vg3utTHxAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUpDltMSKOmSIfbEozoRq7fUHhGRAwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9wRGx0TVNLT21TSWZi RW96b1JxN2ZVSGhHUkEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQElnRAMA0GCSqGSIb3DQEBCwUAA4IBAQAK/lIENCw5pJuHWX8etpOH4klO2mKu YiGbcf5t200O6OMquHuCIGPCZoAmXLzwmascUnM0rwxsHgh8hKT+NGrT1VRg+USI kBr+2BLxVwpgU/c451t1bKytQrC1NTz13OlAJ32nry3EupsT1c/OtYjjwXxN1XmE Fcq8O0WUol+H/yXX5R0+r2T8MhDJcd8XbDt9v1nbA67J9Zg/tKPPvigG7kKKocnT lDFUbuFQAvqsNS8AEpR/KzXzMpMQUh37ZhqG5Uvg+CP976Ns395Xi/4BTd9g7dzZ ih4nTRVocKW8ywbjr5wbg6lSYOR6B+q7u9m0ywZoRKT9Oa50XrVDZhzG -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:02 2024 by rpki-client on console-ams.rpki-client.org