$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/qUJ4g9qsTqe8ZlViUfjEEIP8JjQ.roa File: qUJ4g9qsTqe8ZlViUfjEEIP8JjQ.roa (raw, json) Hash identifier: nyijychB313wAjxGDEReIYtEmQX3Bq4NPOYW71jKwc0= Subject key identifier: A9:42:78:83:DA:AC:4E:A7:BC:66:55:62:51:F8:C4:10:83:FC:26:34 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 0F5A Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/qUJ4g9qsTqe8ZlViUfjEEIP8JjQ.roa Signing time: Fri 01 Sep 2023 08:29:01 +0000 ROA not before: Fri 01 Sep 2023 08:29:01 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 10085 IP address blocks: 223.26.88.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 19:57:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3930 (0xf5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Sep 1 08:29:01 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=A9427883DAAC4EA7BC66556251F8C41083FC2634 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:ae:b0:0f:38:cd:d0:89:71:68:2e:92:b7:65: 95:30:e4:bf:21:8a:90:f3:2d:eb:49:07:5f:b4:01: 56:7e:7d:ba:10:9a:4a:cd:65:db:20:1e:f9:49:7b: 4f:a1:6e:9e:a0:89:ea:1d:1c:a8:b4:a1:78:12:41: 63:7c:76:85:c9:46:5f:4a:35:84:32:6b:2b:ff:14: 46:00:4e:1a:23:48:45:78:a6:3b:6a:2a:48:26:b4: a7:a2:f7:70:af:42:6c:a2:18:d9:3e:23:5f:5c:20: 54:1b:3c:ee:eb:49:e8:86:33:10:68:92:8d:0c:4b: b6:4c:51:5d:4b:a1:a9:41:32:47:6b:37:1b:7d:05: a3:16:0a:19:d8:a1:cd:81:8d:b4:01:27:ae:a8:5f: dc:03:02:c1:f1:eb:36:70:d5:1f:04:ec:33:f1:bd: 21:72:cc:ec:73:0a:ac:4f:e5:bd:a0:a0:8c:00:90: 26:72:02:a3:cd:33:6f:d7:81:3c:a4:f5:ad:79:ff: 17:d6:30:ac:73:86:4d:51:c6:b0:d8:48:7c:50:41: 96:e0:34:d0:fb:b0:0a:9d:81:ed:3d:04:52:1e:7b: df:3d:a8:ad:ca:8a:3d:24:c6:12:b4:55:69:3e:7b: 7d:d1:23:56:f6:a0:12:7c:ab:e4:60:6b:67:c7:6b: 6f:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:42:78:83:DA:AC:4E:A7:BC:66:55:62:51:F8:C4:10:83:FC:26:34 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/qUJ4g9qsTqe8ZlViUfjEEIP8JjQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.26.88.0/22 Signature Algorithm: sha256WithRSAEncryption b5:cc:69:43:e6:34:cf:ae:54:9b:82:b3:4c:12:f0:44:d6:e1: d0:1e:1c:b4:ef:fe:37:f9:b4:ba:7b:3f:24:81:b8:00:89:a6: b6:d2:72:51:b7:eb:ef:df:89:75:0f:5e:61:b8:1b:5f:71:5b: a4:18:a0:29:7e:44:3a:87:b9:9b:32:e8:92:41:a8:8a:48:ee: 1c:31:1e:c8:3c:bb:97:81:c6:ec:12:d0:f2:70:7c:08:70:ee: 02:b8:ab:8d:f6:66:36:bd:ab:b3:6f:b2:6a:6c:32:f1:31:77: e6:06:08:78:13:28:81:7f:53:20:b4:c1:a0:f5:fc:1d:2b:ca: 46:88:56:fd:45:c1:3c:58:bf:d3:46:43:43:e6:a4:48:f0:98: 47:27:ce:9b:ae:01:fe:e5:b6:14:5a:a0:e0:76:16:03:5d:19: c9:9c:94:cf:7f:ad:31:b0:f8:3f:83:10:88:0a:db:39:3c:38: 27:ae:15:33:08:14:22:9c:8e:f3:f9:8a:cf:91:6d:5a:3a:08: b3:2d:14:4d:f7:cd:d4:23:41:d0:67:27:70:4b:b6:93:b1:5a: 74:70:8f:30:51:ce:4d:0f:69:d7:8a:cb:03:97:1a:1e:db:f3: 4e:14:7c:b5:87:ad:0d:53:e9:72:bf:2d:f8:c3:63:98:c3:24: a3:02:5b:f1 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICD1owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMzA5MDEw ODI5MDFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEE5NDI3ODgzREFBQzRF QTdCQzY2NTU2MjUxRjhDNDEwODNGQzI2MzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIrrAPOM3QiXFoLpK3ZZUw5L8hipDzLetJB1+0AVZ+fboQmkrN ZdsgHvlJe0+hbp6gieodHKi0oXgSQWN8doXJRl9KNYQyayv/FEYAThojSEV4pjtq KkgmtKei93CvQmyiGNk+I19cIFQbPO7rSeiGMxBoko0MS7ZMUV1LoalBMkdrNxt9 BaMWChnYoc2BjbQBJ66oX9wDAsHx6zZw1R8E7DPxvSFyzOxzCqxP5b2goIwAkCZy AqPNM2/XgTyk9a15/xfWMKxzhk1RxrDYSHxQQZbgNND7sAqdge09BFIee989qK3K ij0kxhK0VWk+e33RI1b2oBJ8q+Rga2fHa29BAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUqUJ4g9qsTqe8ZlViUfjEEIP8JjQwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9xVUo0Zzlxc1RxZTha bFZpVWZqRUVJUDhKalEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQC3xpYMA0GCSqGSIb3DQEBCwUAA4IBAQC1zGlD5jTPrlSbgrNMEvBE1uHQHhy0 7/43+bS6ez8kgbgAiaa20nJRt+vv34l1D15huBtfcVukGKApfkQ6h7mbMuiSQaiK SO4cMR7IPLuXgcbsEtDycHwIcO4CuKuN9mY2vauzb7JqbDLxMXfmBgh4EyiBf1Mg tMGg9fwdK8pGiFb9RcE8WL/TRkND5qRI8JhHJ86brgH+5bYUWqDgdhYDXRnJnJTP f60xsPg/gxCICts5PDgnrhUzCBQinI7z+YrPkW1aOgizLRRN983UI0HQZydwS7aT sVp0cI8wUc5ND2nXissDlxoe2/NOFHy1h60NU+lyvy34w2OYwySjAlvx -----END CERTIFICATE-----Generated at Sat Jun 1 23:25:29 2024 by rpki-client on console-ams.rpki-client.org