$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/qRGAHY0OD4tWuFSJfu-UZTcFGV0.roa File: qRGAHY0OD4tWuFSJfu-UZTcFGV0.roa (raw, json) Hash identifier: iiMqQY4GGJUgLkqHlsUDZQLfyO3mfnTn3EPIT0gprYc= Subject key identifier: A9:11:80:1D:8D:0E:0F:8B:56:B8:54:89:7E:EF:94:65:37:05:19:5D Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 0F85 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/qRGAHY0OD4tWuFSJfu-UZTcFGV0.roa Signing time: Fri 01 Sep 2023 08:29:14 +0000 ROA not before: Fri 01 Sep 2023 08:29:14 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 137263 IP address blocks: 150.116.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 May 2024 19:40:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3973 (0xf85) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Sep 1 08:29:14 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=A911801D8D0E0F8B56B854897EEF94653705195D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:a5:13:da:46:d5:4d:fa:69:95:bb:6f:1c:6a: 4c:1f:09:e9:90:1f:60:19:ae:71:27:fb:c3:6a:e5: 31:ed:46:bc:a9:35:ce:96:d8:55:2a:3e:8d:d7:1e: 3f:a8:05:39:b3:76:73:88:fc:b6:df:3f:2c:a1:fe: 16:29:95:cc:cc:17:af:b2:8d:82:d2:f1:11:a9:c1: 18:25:bd:27:3c:f9:de:6a:e7:3e:dc:bc:d0:9a:36: bf:4e:8d:af:b8:24:61:66:26:eb:b4:78:19:18:f5: b4:5d:a2:2e:71:73:ea:1b:83:9e:3f:61:14:56:d9: e3:38:d5:38:3c:64:f7:30:a0:11:25:46:96:63:2c: 2f:31:8a:29:07:62:9a:92:9f:96:20:93:5e:d1:82: 12:27:82:7d:43:db:cf:c0:0b:83:1d:5b:93:67:32: 2e:3d:9b:8f:83:af:d1:f3:d3:93:14:8d:b3:e8:7c: df:52:1f:b9:a5:cd:6b:40:46:7d:84:9d:d2:f8:90: b2:b2:64:aa:0a:52:32:2c:02:e0:07:97:0a:90:89: 18:cb:62:74:a7:12:3d:e4:e7:c4:2f:2b:1d:74:ba: 59:21:3c:36:91:0d:36:e4:38:7c:22:79:ff:3a:39: 12:5e:b3:9a:9d:03:d7:63:16:92:47:4a:e0:c7:d9: b5:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:11:80:1D:8D:0E:0F:8B:56:B8:54:89:7E:EF:94:65:37:05:19:5D X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/qRGAHY0OD4tWuFSJfu-UZTcFGV0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.81.0/24 Signature Algorithm: sha256WithRSAEncryption 65:08:d4:3d:93:fe:c4:58:01:d4:d9:cc:14:27:a8:7c:63:22: 80:0f:8d:ef:55:56:0b:c0:d3:6b:a9:d5:f6:c5:0a:06:cb:b5: 8e:da:b8:f8:ff:af:e0:5d:df:29:f3:19:f7:e1:f5:bf:a5:04: a1:fe:b3:1e:d3:85:11:9e:95:03:4e:eb:fa:be:4f:34:37:a0: 99:1f:96:7d:34:7d:64:cf:96:10:d0:27:91:a8:2a:be:46:bf: 9e:c0:94:de:b9:9b:d6:e1:70:84:f2:6d:88:00:5f:ae:84:5c: cf:df:38:fe:32:0b:d7:8e:9c:69:65:c9:ce:35:7e:46:cd:4a: 62:4f:a3:13:19:d0:f5:49:13:2d:79:fc:48:c7:c4:e1:3e:fc: 37:7d:87:d5:b0:d1:c6:f6:7b:ed:c6:eb:57:ee:9a:cf:33:6b: e7:d0:db:f8:e9:3a:ea:34:c4:c4:ff:5f:78:89:b9:2c:08:91: de:c1:cf:e0:e7:2b:37:ed:93:5b:e9:80:14:73:e3:55:6a:a6: bb:24:2f:74:e7:93:84:39:d7:7d:da:2e:88:ea:83:13:52:62: aa:52:5d:05:52:07:94:c3:bb:7f:d6:ef:9d:2e:6e:d6:64:4f: 61:c4:ad:01:5c:e3:36:77:cd:f6:db:c5:ec:90:03:34:28:70: a5:ef:89:b2 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICD4UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMzA5MDEw ODI5MTRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEE5MTE4MDFEOEQwRTBG OEI1NkI4NTQ4OTdFRUY5NDY1MzcwNTE5NUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtpRPaRtVN+mmVu28cakwfCemQH2AZrnEn+8Nq5THtRrypNc6W 2FUqPo3XHj+oBTmzdnOI/LbfPyyh/hYplczMF6+yjYLS8RGpwRglvSc8+d5q5z7c vNCaNr9Oja+4JGFmJuu0eBkY9bRdoi5xc+obg54/YRRW2eM41Tg8ZPcwoBElRpZj LC8xiikHYpqSn5Ygk17RghIngn1D28/AC4MdW5NnMi49m4+Dr9Hz05MUjbPofN9S H7mlzWtARn2EndL4kLKyZKoKUjIsAuAHlwqQiRjLYnSnEj3k58QvKx10ulkhPDaR DTbkOHwief86ORJes5qdA9djFpJHSuDH2bUJAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUqRGAHY0OD4tWuFSJfu+UZTcFGV0wHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9xUkdBSFkwT0Q0dFd1 RlNKZnUtVVpUY0ZHVjAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAlnRRMA0GCSqGSIb3DQEBCwUAA4IBAQBlCNQ9k/7EWAHU2cwUJ6h8YyKAD43v VVYLwNNrqdX2xQoGy7WO2rj4/6/gXd8p8xn34fW/pQSh/rMe04URnpUDTuv6vk80 N6CZH5Z9NH1kz5YQ0CeRqCq+Rr+ewJTeuZvW4XCE8m2IAF+uhFzP3zj+MgvXjpxp ZcnONX5GzUpiT6MTGdD1SRMtefxIx8ThPvw3fYfVsNHG9nvtxutX7prPM2vn0Nv4 6TrqNMTE/194ibksCJHewc/g5ys37ZNb6YAUc+NVaqa7JC9055OEOdd92i6I6oMT UmKqUl0FUgeUw7t/1u+dLm7WZE9hxK0BXOM2d83228XskAM0KHCl74my -----END CERTIFICATE-----Generated at Mon May 20 22:04:46 2024 by rpki-client on console-fra.rpki-client.org