$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/q-vBtdOpVr_Tm79CPRnoVe9eYVc.roa File: q-vBtdOpVr_Tm79CPRnoVe9eYVc.roa (raw, json) Hash identifier: O+J/pNYuwKEpsieY4g6+KytGwPtp0DZbOXIiRg73Eh0= Subject key identifier: AB:EB:C1:B5:D3:A9:56:BF:D3:9B:BF:42:3D:19:E8:55:EF:5E:61:57 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 11B1 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/q-vBtdOpVr_Tm79CPRnoVe9eYVc.roa Signing time: Mon 26 Aug 2024 05:11:03 +0000 ROA not before: Mon 26 Aug 2024 05:11:03 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 10085 IP address blocks: 223.26.96.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4529 (0x11b1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 26 05:11:03 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=ABEBC1B5D3A956BFD39BBF423D19E855EF5E6157 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:9f:d0:e3:b0:ed:0e:8a:26:b5:e6:0b:8b:e6: f7:83:8f:a9:a4:9a:1c:92:6d:93:6f:ec:30:62:4c: 43:61:95:0e:ce:61:f8:9d:ad:1a:80:a3:17:77:d5: 64:ec:c0:28:9a:08:cf:be:8b:e9:a9:46:fa:84:08: 9c:09:88:40:53:67:dd:4f:52:7e:f0:09:4e:fb:4f: 89:a0:ef:34:5d:12:49:5f:cf:a3:2e:a5:6c:7d:96: 32:98:a7:68:ff:ef:49:54:f9:e9:44:29:bf:43:2c: 73:74:dc:d5:f3:fe:8b:09:2e:02:e2:0f:c4:1a:e8: cb:7d:43:6f:6a:ab:4b:bf:83:f8:34:ae:34:98:2c: b4:3c:b2:d3:89:74:70:0e:74:7a:d7:33:17:76:74: 70:da:a6:a5:63:8a:47:67:77:46:e3:e2:5a:e2:ae: 20:c2:47:45:bf:53:5f:f7:9e:77:3e:dd:70:85:29: ab:b8:e9:5b:32:8f:34:81:79:5d:53:5d:89:fc:b9: 65:1b:94:40:c1:65:cb:ec:32:63:9d:54:a4:ea:47: 22:c1:96:92:86:62:45:30:9d:cf:bd:cf:4c:02:bf: 7d:3a:a4:f5:7d:8a:2c:da:d8:fd:1a:72:8f:e2:eb: 93:fe:e8:4c:30:89:f1:80:73:0a:ab:2a:22:b9:c6: d3:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:EB:C1:B5:D3:A9:56:BF:D3:9B:BF:42:3D:19:E8:55:EF:5E:61:57 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/q-vBtdOpVr_Tm79CPRnoVe9eYVc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.26.96.0/21 Signature Algorithm: sha256WithRSAEncryption 4a:2d:f0:08:d4:72:f7:ae:7a:7e:e8:5a:cf:ac:5a:0f:3b:c5: 43:59:ad:66:0d:2d:7b:74:4e:bb:f4:b3:ea:92:c6:bc:18:51: dd:f8:0b:01:9b:b1:f1:df:b5:5f:44:80:4c:b5:5d:21:fb:40: e4:7b:55:25:fc:91:a9:b3:07:8f:ec:b2:40:62:16:cc:2c:d2: 41:77:c1:28:8e:b5:06:95:5c:e0:1e:13:52:4c:d9:f0:49:d6: 4c:21:54:2a:4d:01:d3:40:31:1b:6a:f3:5f:ee:7a:11:5b:fb: 4c:15:b0:52:85:e3:4f:01:25:7f:81:d9:92:79:76:0b:4b:9e: 73:92:cf:59:78:f2:cb:d6:ca:5e:02:e4:71:6e:ab:32:18:60: 8a:f9:bf:5e:e1:53:4b:5e:bb:fe:3d:de:73:b4:38:20:a8:23: 92:09:aa:a1:a2:5c:a0:64:a6:ef:91:d5:51:c9:dc:7b:a5:c0: 54:55:58:38:50:0e:56:6a:94:72:a2:09:45:26:0d:ff:cf:5c: 2b:d2:1c:7c:af:e4:19:5e:26:87:b1:49:6d:25:a8:00:cf:12: 7f:8a:3e:9c:aa:f9:f7:10:1a:dd:43:fe:72:4b:2d:c1:b2:88: c3:d9:ec:a2:e6:1a:74:44:65:c6:3f:ba:ac:79:d0:fb:b2:f6: 9c:63:f7:2e -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEbEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNDA4MjYw NTExMDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEFCRUJDMUI1RDNBOTU2 QkZEMzlCQkY0MjNEMTlFODU1RUY1RTYxNTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDhn9DjsO0Oiia15guL5veDj6mkmhySbZNv7DBiTENhlQ7OYfid rRqAoxd31WTswCiaCM++i+mpRvqECJwJiEBTZ91PUn7wCU77T4mg7zRdEklfz6Mu pWx9ljKYp2j/70lU+elEKb9DLHN03NXz/osJLgLiD8Qa6Mt9Q29qq0u/g/g0rjSY LLQ8stOJdHAOdHrXMxd2dHDapqVjikdnd0bj4lririDCR0W/U1/3nnc+3XCFKau4 6VsyjzSBeV1TXYn8uWUblEDBZcvsMmOdVKTqRyLBlpKGYkUwnc+9z0wCv306pPV9 iiza2P0aco/i65P+6EwwifGAcwqrKiK5xtMpAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUq+vBtdOpVr/Tm79CPRnoVe9eYVcwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9xLXZCdGRPcFZyX1Rt NzlDUFJub1ZlOWVZVmMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQD3xpgMA0GCSqGSIb3DQEBCwUAA4IBAQBKLfAI1HL3rnp+6FrPrFoPO8VDWa1m DS17dE679LPqksa8GFHd+AsBm7Hx37VfRIBMtV0h+0Dke1Ul/JGpsweP7LJAYhbM LNJBd8EojrUGlVzgHhNSTNnwSdZMIVQqTQHTQDEbavNf7noRW/tMFbBSheNPASV/ gdmSeXYLS55zks9ZePLL1speAuRxbqsyGGCK+b9e4VNLXrv+Pd5ztDggqCOSCaqh olygZKbvkdVRydx7pcBUVVg4UA5WapRyoglFJg3/z1wr0hx8r+QZXiaHsUltJagA zxJ/ij6cqvn3EBrdQ/5ySy3BsojD2eyi5hp0RGXGP7qsedD7svacY/cu -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:02 2024 by rpki-client on console-ams.rpki-client.org