$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/qsxAHAjFOjw7cXFybrCRgGlBShI.roa File: qsxAHAjFOjw7cXFybrCRgGlBShI.roa (raw, json) Hash identifier: m94GvYlxJZGB0mNirU3iHQb4+BlSviYPTYPMv3yEN8I= Subject key identifier: AA:CC:40:1C:08:C5:3A:3C:3B:71:71:72:6E:B0:91:80:69:41:4A:12 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 11A2 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/qsxAHAjFOjw7cXFybrCRgGlBShI.roa Signing time: Mon 26 Aug 2024 05:10:59 +0000 ROA not before: Mon 26 Aug 2024 05:10:59 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17408 IP address blocks: 150.117.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4514 (0x11a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 26 05:10:59 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=AACC401C08C53A3C3B7171726EB0918069414A12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:18:76:9b:1c:68:b1:e7:7d:aa:c5:be:80:64: 9a:fb:86:83:74:30:0c:86:3f:af:76:fe:20:71:ce: 9a:c1:49:9d:1a:99:62:e5:9a:56:92:3f:0f:eb:04: 43:8b:7d:e2:9a:cf:1f:1a:3e:7c:44:34:c5:c0:5f: 0a:b1:2b:b7:69:59:f4:90:df:5f:d9:c3:b7:9c:bb: a8:75:6a:bd:e6:83:d8:b5:d6:e2:36:82:6a:00:1a: 2a:05:8c:60:86:fb:ab:d4:f5:cf:bd:a2:7c:18:3e: ba:1f:86:9d:6a:24:d0:8e:36:c9:11:81:78:f6:e3: 5f:0e:ce:70:5d:47:3e:0c:ca:dd:e3:4f:88:b5:4d: a0:0d:4e:bc:34:88:5a:6c:e2:da:2b:b7:8f:c2:53: d3:fa:45:26:49:8a:76:fe:73:b0:22:04:44:14:4e: bd:57:74:ef:6d:55:42:43:67:5e:89:84:e3:89:22: 6c:34:d1:f9:cf:51:fc:3e:35:37:30:04:ad:a5:9b: 50:6a:78:05:3f:c0:c3:49:a8:5b:3b:43:12:cd:17: 57:17:70:20:0a:e2:ac:20:37:9a:8b:6e:06:2d:43: c2:fe:7a:b0:e1:9d:63:0a:37:71:63:be:91:db:f3: ec:d7:5a:0b:ca:70:05:dc:c2:de:b2:27:29:3f:ad: cb:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:CC:40:1C:08:C5:3A:3C:3B:71:71:72:6E:B0:91:80:69:41:4A:12 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/qsxAHAjFOjw7cXFybrCRgGlBShI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.117.128.0/19 Signature Algorithm: sha256WithRSAEncryption 15:69:21:e6:13:52:29:f6:95:6a:4a:76:bd:91:d3:7b:ba:f1: 57:7e:e4:d9:4d:0b:86:b1:b8:90:bd:da:6a:8b:ef:4b:b4:00: 45:ca:2b:4b:b5:70:49:ff:e5:0b:64:ee:f1:9f:0b:b6:d5:ae: e0:a4:dd:e7:4f:06:f7:e7:d8:c1:ac:3c:d8:3b:72:51:04:1d: e2:79:16:72:86:b7:80:1a:ac:cf:82:a5:d5:46:91:95:44:9c: b4:2c:04:39:ba:18:ff:a4:86:1a:72:e6:1e:55:5f:c3:e1:d9: b7:39:dc:af:61:e1:7a:b1:c8:0c:33:ec:ce:a0:ac:db:fa:12: a3:6c:74:87:f3:35:c2:d0:cd:91:e4:f5:a3:b7:2d:2b:59:17: 52:b4:d3:91:3a:c4:3a:c5:84:ed:83:d5:dc:89:4d:92:55:72: 69:d4:dd:0f:dd:f9:24:71:fa:31:6c:53:11:a2:3a:ad:b7:b2: 9f:d1:d7:7d:89:40:8c:bf:cf:64:93:f0:4b:a8:6d:f1:04:b5: a6:02:23:89:3e:06:9f:10:4b:7c:67:d4:f1:31:20:62:f0:87: 3b:8c:df:13:3c:78:75:3f:49:60:06:7f:73:b6:a4:0b:2c:b5: bf:a5:e8:47:e1:91:f5:36:4d:94:35:a5:6f:34:b0:22:43:d5: 8f:a5:4e:be -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEaIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNDA4MjYw NTEwNTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEFBQ0M0MDFDMDhDNTNB M0MzQjcxNzE3MjZFQjA5MTgwNjk0MTRBMTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDvGHabHGix532qxb6AZJr7hoN0MAyGP692/iBxzprBSZ0amWLl mlaSPw/rBEOLfeKazx8aPnxENMXAXwqxK7dpWfSQ31/Zw7ecu6h1ar3mg9i11uI2 gmoAGioFjGCG+6vU9c+9onwYProfhp1qJNCONskRgXj2418OznBdRz4Myt3jT4i1 TaANTrw0iFps4tort4/CU9P6RSZJinb+c7AiBEQUTr1XdO9tVUJDZ16JhOOJImw0 0fnPUfw+NTcwBK2lm1BqeAU/wMNJqFs7QxLNF1cXcCAK4qwgN5qLbgYtQ8L+erDh nWMKN3FjvpHb8+zXWgvKcAXcwt6yJyk/rcvjAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUqsxAHAjFOjw7cXFybrCRgGlBShIwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9xc3hBSEFqRk9qdzdj WEZ5YnJDUmdHbEJTaEkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQFlnWAMA0GCSqGSIb3DQEBCwUAA4IBAQAVaSHmE1Ip9pVqSna9kdN7uvFXfuTZ TQuGsbiQvdpqi+9LtABFyitLtXBJ/+ULZO7xnwu21a7gpN3nTwb359jBrDzYO3JR BB3ieRZyhreAGqzPgqXVRpGVRJy0LAQ5uhj/pIYacuYeVV/D4dm3OdyvYeF6scgM M+zOoKzb+hKjbHSH8zXC0M2R5PWjty0rWRdStNOROsQ6xYTtg9XciU2SVXJp1N0P 3fkkcfoxbFMRojqtt7Kf0dd9iUCMv89kk/BLqG3xBLWmAiOJPgafEEt8Z9TxMSBi 8Ic7jN8TPHh1P0lgBn9ztqQLLLW/pehH4ZH1Nk2UNaVvNLAiQ9WPpU6+ -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:30 2024 by rpki-client on console-ams.rpki-client.org