$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/snuI260pDe0zgZdf_pUQRBwIWQs.roa File: snuI260pDe0zgZdf_pUQRBwIWQs.roa (raw, json) Hash identifier: f27I12En6ajZLbEv/6qgdZCc37C6LlvpcRynhkPmZ9g= Subject key identifier: B2:7B:88:DB:AD:29:0D:ED:33:81:97:5F:FE:95:10:44:1C:08:59:0B Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 119F Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/snuI260pDe0zgZdf_pUQRBwIWQs.roa Signing time: Mon 26 Aug 2024 05:10:58 +0000 ROA not before: Mon 26 Aug 2024 05:10:58 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18419 IP address blocks: 150.117.16.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4511 (0x119f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 26 05:10:58 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B27B88DBAD290DED3381975FFE9510441C08590B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:80:50:ce:fa:b8:52:8a:f3:e5:ca:ba:cf:ac: a4:b4:e5:ae:0a:eb:24:a1:19:34:b0:ac:76:fb:a5: 00:c2:56:61:9a:ed:1b:70:75:ca:95:49:67:b8:c3: 72:01:85:f9:c3:0a:3a:96:8f:df:d9:b5:1d:27:ea: 37:55:46:ef:63:c1:5f:44:36:f8:06:6d:ac:22:85: cf:75:d9:39:05:01:9d:56:2e:e6:c4:5c:94:f9:95: 70:0f:c6:11:d5:c0:a2:fa:df:85:80:ee:54:e1:a5: 57:b8:cb:f2:14:88:0a:54:c6:34:ec:96:b7:b1:0a: 5c:d1:0f:70:54:5f:e2:38:37:d3:a2:43:3a:87:1e: 52:b8:94:f0:25:4f:c2:2e:74:81:d7:8e:93:ee:35: 2e:ea:dd:ec:56:26:63:80:3a:4b:2f:1d:14:28:49: e4:8f:b7:17:d7:6d:61:c0:50:ac:98:7d:54:47:89: 4c:96:3f:05:64:d5:d7:38:cd:ee:8e:1f:a6:f2:10: 62:ca:ea:b9:1a:af:15:6e:c6:39:8d:e2:3e:77:44: 75:df:05:26:a6:4c:e5:d9:46:77:76:5e:b4:bb:7b: 37:2f:19:2f:66:47:c7:66:46:65:45:fb:6f:f3:8f: f6:85:31:04:da:0e:e0:23:01:44:3b:d3:db:d7:92: c6:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:7B:88:DB:AD:29:0D:ED:33:81:97:5F:FE:95:10:44:1C:08:59:0B X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/snuI260pDe0zgZdf_pUQRBwIWQs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.117.16.0/20 Signature Algorithm: sha256WithRSAEncryption a3:57:f0:98:74:17:d2:60:cb:a2:36:7a:c3:7e:82:71:c6:e4: 9c:bd:9f:74:ce:e5:ee:f2:d8:2d:f8:72:e6:d4:aa:2e:06:52: 61:df:10:92:b9:85:3e:af:c2:f7:f5:33:f6:f9:1f:98:1a:2e: 17:85:14:0b:18:41:59:60:ae:01:d9:2f:00:99:28:f5:18:bd: 0d:45:25:ab:6b:fc:49:7d:93:70:81:66:8d:2f:76:b0:c1:eb: a1:3a:70:67:a5:13:04:3a:aa:e1:a9:d7:84:f6:41:d0:5d:2f: 03:99:e9:e2:bd:f4:3a:37:3a:24:7a:50:ef:f2:19:37:04:2b: 81:ce:58:c2:6f:c0:c9:ec:43:e5:fb:84:6b:78:dc:e9:a1:a1: 55:62:cd:c5:5a:1f:13:15:5e:52:20:df:0a:66:5a:c5:c9:5a: 70:e3:c2:ab:16:e8:9c:60:eb:e7:ef:56:91:cb:e0:b8:5b:d9: 2c:c6:05:1c:27:74:3d:58:27:e8:4c:41:19:4b:7a:57:71:6c: ec:83:b4:c0:30:d1:cd:a4:c7:bb:cf:25:35:37:30:1b:67:ce: 6c:04:54:1b:91:76:3e:43:e2:ee:2e:39:0f:4e:35:a2:d9:93: 27:45:ae:d4:6e:00:83:c5:2e:2a:59:f5:e2:2b:c3:16:42:da: be:1b:04:39 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEZ8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNDA4MjYw NTEwNThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEIyN0I4OERCQUQyOTBE RUQzMzgxOTc1RkZFOTUxMDQ0MUMwODU5MEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCgFDO+rhSivPlyrrPrKS05a4K6yShGTSwrHb7pQDCVmGa7Rtw dcqVSWe4w3IBhfnDCjqWj9/ZtR0n6jdVRu9jwV9ENvgGbawihc912TkFAZ1WLubE XJT5lXAPxhHVwKL634WA7lThpVe4y/IUiApUxjTslrexClzRD3BUX+I4N9OiQzqH HlK4lPAlT8IudIHXjpPuNS7q3exWJmOAOksvHRQoSeSPtxfXbWHAUKyYfVRHiUyW PwVk1dc4ze6OH6byEGLK6rkarxVuxjmN4j53RHXfBSamTOXZRnd2XrS7ezcvGS9m R8dmRmVF+2/zj/aFMQTaDuAjAUQ709vXksYrAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUsnuI260pDe0zgZdf/pUQRBwIWQswHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy9zbnVJMjYwcERlMHpn WmRmX3BVUVJCd0lXUXMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQElnUQMA0GCSqGSIb3DQEBCwUAA4IBAQCjV/CYdBfSYMuiNnrDfoJxxuScvZ90 zuXu8tgt+HLm1KouBlJh3xCSuYU+r8L39TP2+R+YGi4XhRQLGEFZYK4B2S8AmSj1 GL0NRSWra/xJfZNwgWaNL3awweuhOnBnpRMEOqrhqdeE9kHQXS8DmenivfQ6Nzok elDv8hk3BCuBzljCb8DJ7EPl+4RreNzpoaFVYs3FWh8TFV5SIN8KZlrFyVpw48Kr FuicYOvn71aRy+C4W9ksxgUcJ3Q9WCfoTEEZS3pXcWzsg7TAMNHNpMe7zyU1NzAb Z85sBFQbkXY+Q+LuLjkPTjWi2ZMnRa7UbgCDxS4qWfXiK8MWQtq+GwQ5 -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:02 2024 by rpki-client on console-ams.rpki-client.org