$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/sjvk9ACb0OxK9S0HcVmBQqruhPY.roa File: sjvk9ACb0OxK9S0HcVmBQqruhPY.roa (raw, json) Hash identifier: xPCvB5LxOD2k7skjAZVW05bZhqqvosBcL3kzcpf1pig= Subject key identifier: B2:3B:E4:F4:00:9B:D0:EC:4A:F5:2D:07:71:59:81:42:AA:EE:84:F6 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 117E Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/sjvk9ACb0OxK9S0HcVmBQqruhPY.roa Signing time: Mon 26 Aug 2024 05:10:50 +0000 ROA not before: Mon 26 Aug 2024 05:10:50 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17408 IP address blocks: 150.116.119.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4478 (0x117e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 26 05:10:50 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B23BE4F4009BD0EC4AF52D0771598142AAEE84F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:54:d3:63:6c:71:00:a6:fe:7c:13:ec:e4:8a: 05:e7:c2:12:c4:e8:07:05:59:47:eb:4d:f6:ec:ab: 62:21:cf:da:50:ae:09:31:a0:3c:e4:ac:18:2b:ef: 27:95:a0:5a:a9:e2:04:96:45:35:e7:b2:48:14:15: e9:a2:e2:4a:e9:a6:6b:e9:ef:15:f2:53:62:e3:44: 3e:37:05:21:ea:43:d1:f1:7d:be:66:39:f9:8b:56: e6:4a:7f:ec:45:1f:e2:7f:7b:9c:fd:dd:75:cb:5b: 94:1e:98:07:07:f7:5a:12:44:94:d0:85:66:48:2e: 08:fd:3b:56:8e:c5:f5:9b:8c:1d:a6:c3:8a:28:3d: 47:71:17:76:2a:34:ba:de:48:65:f6:a8:3e:cd:58: bd:9e:e5:9a:cf:d8:60:62:b8:29:59:c4:4c:d7:53: 12:e5:61:60:72:2f:4d:fc:3a:61:07:01:a1:cf:1f: 30:a6:9f:c4:62:ac:6f:64:3a:e0:74:0a:20:ff:ed: 07:9c:2e:f0:38:c4:eb:ea:e4:cd:95:64:6a:85:6a: bb:87:95:1a:a1:1c:fc:d7:37:d7:f6:e6:bd:1c:53: 63:cc:b1:0a:04:12:90:bb:bc:8e:70:ec:2c:49:9e: 37:a3:da:e4:b5:9e:4b:dc:54:91:30:f3:96:49:63: 94:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:3B:E4:F4:00:9B:D0:EC:4A:F5:2D:07:71:59:81:42:AA:EE:84:F6 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/sjvk9ACb0OxK9S0HcVmBQqruhPY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.119.0/24 Signature Algorithm: sha256WithRSAEncryption a0:45:3a:2d:17:12:c1:d6:cc:59:88:f2:1a:b6:81:e6:f2:11: 96:f3:9a:19:4c:16:11:97:59:27:fe:8a:df:d7:4a:75:97:fd: cd:69:32:bc:56:bf:b2:8b:a3:a2:e5:80:0f:6d:c2:8c:0d:e1: 48:70:d7:ce:b0:8a:e1:71:ce:61:06:48:ad:3d:40:e9:10:47: fd:27:16:96:68:62:de:d3:38:d3:56:e3:e8:14:77:29:bb:c7: 33:5b:dd:9e:53:88:1e:bc:ac:9f:47:02:c6:c3:bb:37:4e:14: cb:18:4b:cc:f2:6e:07:05:1d:45:95:f6:be:6c:41:a4:5f:f9: fe:15:44:bc:23:04:00:6b:65:6b:20:da:f1:48:80:c3:38:c2: 38:26:c8:c1:92:9a:29:6c:58:29:80:e5:3f:49:27:d3:ab:d1: 28:28:28:59:40:70:d7:e2:d0:48:3a:5b:5e:ae:58:88:58:da: 78:d0:12:5d:30:34:88:7c:61:b1:99:d3:03:78:d2:41:00:a6: 12:d4:f5:fd:28:90:c3:6a:f6:d8:18:c7:c8:62:63:02:6c:8f: 3b:9e:7d:4b:6a:f1:00:13:9f:84:47:48:76:6b:f2:79:c4:49: 3a:2d:4b:9a:27:c5:66:46:4d:2b:0e:48:16:54:08:c1:2b:b8: f0:8e:ca:6f -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEX4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNDA4MjYw NTEwNTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEIyM0JFNEY0MDA5QkQw RUM0QUY1MkQwNzcxNTk4MTQyQUFFRTg0RjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGVNNjbHEApv58E+zkigXnwhLE6AcFWUfrTfbsq2Ihz9pQrgkx oDzkrBgr7yeVoFqp4gSWRTXnskgUFemi4krppmvp7xXyU2LjRD43BSHqQ9Hxfb5m OfmLVuZKf+xFH+J/e5z93XXLW5QemAcH91oSRJTQhWZILgj9O1aOxfWbjB2mw4oo PUdxF3YqNLreSGX2qD7NWL2e5ZrP2GBiuClZxEzXUxLlYWByL038OmEHAaHPHzCm n8RirG9kOuB0CiD/7QecLvA4xOvq5M2VZGqFaruHlRqhHPzXN9f25r0cU2PMsQoE EpC7vI5w7CxJnjej2uS1nkvcVJEw85ZJY5RRAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUsjvk9ACb0OxK9S0HcVmBQqruhPYwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9zanZrOUFDYjBPeEs5 UzBIY1ZtQlFxcnVoUFkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAlnR3MA0GCSqGSIb3DQEBCwUAA4IBAQCgRTotFxLB1sxZiPIatoHm8hGW85oZ TBYRl1kn/orf10p1l/3NaTK8Vr+yi6Oi5YAPbcKMDeFIcNfOsIrhcc5hBkitPUDp EEf9JxaWaGLe0zjTVuPoFHcpu8czW92eU4gevKyfRwLGw7s3ThTLGEvM8m4HBR1F lfa+bEGkX/n+FUS8IwQAa2VrINrxSIDDOMI4JsjBkpopbFgpgOU/SSfTq9EoKChZ QHDX4tBIOlterliIWNp40BJdMDSIfGGxmdMDeNJBAKYS1PX9KJDDavbYGMfIYmMC bI87nn1LavEAE5+ER0h2a/J5xEk6LUuaJ8VmRk0rDkgWVAjBK7jwjspv -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:30 2024 by rpki-client on console-ams.rpki-client.org