$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/texPzog4jTLyfdT07L0ewsd78PM.roa File: texPzog4jTLyfdT07L0ewsd78PM.roa (raw, json) Hash identifier: Ux701W4r7QL3vd22oD6ViI2FQ7D6UYAOXDwj3Vh9LiU= Subject key identifier: B5:EC:4F:CE:88:38:8D:32:F2:7D:D4:F4:EC:BD:1E:C2:C7:7B:F0:F3 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 0FCF Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/texPzog4jTLyfdT07L0ewsd78PM.roa Signing time: Fri 01 Sep 2023 08:29:35 +0000 ROA not before: Fri 01 Sep 2023 08:29:35 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 131627 IP address blocks: 150.116.144.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 19:57:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4047 (0xfcf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Sep 1 08:29:35 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=B5EC4FCE88388D32F27DD4F4ECBD1EC2C77BF0F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:0b:10:a6:e9:b0:cc:89:af:fa:9f:4a:25:c4: a4:91:4a:6f:26:46:81:32:2c:96:a5:48:2a:83:c2: 71:60:43:a4:80:66:33:b8:af:76:0c:4a:c6:45:13: 51:ad:6f:93:72:be:01:55:2c:13:8d:a9:05:e6:b8: a1:f5:16:ba:1d:c8:fc:14:58:7f:d6:9c:f1:8c:ef: 72:82:f8:8a:08:36:35:f4:c1:91:21:78:3b:50:e6: bd:b3:f5:ec:25:eb:a9:3d:1b:a8:26:1a:7a:a2:92: dc:2b:7f:99:a1:7a:fe:2a:98:c7:8c:b7:b0:af:42: 0f:36:fc:7d:e3:55:50:8a:72:f2:1f:35:d4:d3:6d: fc:ed:9d:c6:75:3d:af:cd:96:1a:d2:6a:94:fc:8c: ee:ef:8f:8e:74:5d:94:6b:27:d7:9b:53:0a:ef:4e: 08:df:4d:f9:c6:be:c5:9a:c4:29:30:e9:25:91:79: 62:de:07:fc:e4:3a:b0:4b:d2:20:c4:3d:95:5a:e0: 27:fa:63:11:b4:ab:ff:89:50:f4:00:2b:fb:8d:85: 5d:be:f0:1b:ad:bd:5a:01:1a:3c:19:e5:98:c0:1e: 9d:e1:94:e9:c6:df:bd:3f:20:b7:10:24:09:13:b3: a1:9d:33:45:b8:4d:78:05:9e:15:08:64:e5:65:cd: a8:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:EC:4F:CE:88:38:8D:32:F2:7D:D4:F4:EC:BD:1E:C2:C7:7B:F0:F3 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/texPzog4jTLyfdT07L0ewsd78PM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.144.0/20 Signature Algorithm: sha256WithRSAEncryption 7a:9f:d5:49:8a:48:18:8d:4c:c8:b1:ee:62:d5:4d:b4:4d:66: b4:a1:d5:49:42:b5:87:65:8f:c4:72:63:0d:b2:e0:0f:39:1f: 79:d5:3c:76:f3:46:ac:fc:59:ca:95:b8:a3:6f:27:9a:3f:0b: 88:a7:7b:e8:de:a1:50:1e:32:6b:0e:89:7d:30:88:6f:3f:23: bf:59:10:ec:da:b5:bc:05:0d:dd:27:c2:39:1c:92:f9:4d:4e: 16:ab:fa:d5:c8:78:43:5b:27:c1:5e:e2:1b:3e:a7:9f:a3:4e: 41:72:b4:58:fa:58:37:5d:0e:1b:65:11:5e:5c:ec:1f:82:83: 9a:3c:f6:88:77:08:2a:b7:71:24:27:a1:93:a6:17:75:20:26: 51:6a:9e:3e:45:b9:8f:9e:4f:a2:2c:15:f8:bf:03:e1:d1:9f: 4e:6a:00:77:e2:7c:42:03:13:94:bc:f6:12:4f:1e:c1:23:09: 81:9c:90:ab:d4:43:8f:85:b1:16:39:9c:6d:bc:07:f2:b1:6f: 8c:19:17:b0:7f:a9:1b:c2:94:6a:14:1b:9f:a7:99:a7:1f:d2: 50:c8:88:3b:77:be:90:06:c2:b4:f4:0b:68:e1:ee:ad:8d:0e: c1:ef:71:d3:1c:64:cf:95:25:0c:60:43:b2:16:f8:23:9c:35: 72:e4:53:d3 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICD88wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yMzA5MDEw ODI5MzVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEI1RUM0RkNFODgzODhE MzJGMjdERDRGNEVDQkQxRUMyQzc3QkYwRjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBCxCm6bDMia/6n0olxKSRSm8mRoEyLJalSCqDwnFgQ6SAZjO4 r3YMSsZFE1Gtb5NyvgFVLBONqQXmuKH1FrodyPwUWH/WnPGM73KC+IoINjX0wZEh eDtQ5r2z9ewl66k9G6gmGnqiktwrf5mhev4qmMeMt7CvQg82/H3jVVCKcvIfNdTT bfztncZ1Pa/NlhrSapT8jO7vj450XZRrJ9ebUwrvTgjfTfnGvsWaxCkw6SWReWLe B/zkOrBL0iDEPZVa4Cf6YxG0q/+JUPQAK/uNhV2+8ButvVoBGjwZ5ZjAHp3hlOnG 370/ILcQJAkTs6GdM0W4TXgFnhUIZOVlzagXAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUtexPzog4jTLyfdT07L0ewsd78PMwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy90ZXhQem9nNGpUTHlm ZFQwN0wwZXdzZDc4UE0ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQElnSQMA0GCSqGSIb3DQEBCwUAA4IBAQB6n9VJikgYjUzIse5i1U20TWa0odVJ QrWHZY/EcmMNsuAPOR951Tx280as/FnKlbijbyeaPwuIp3vo3qFQHjJrDol9MIhv PyO/WRDs2rW8BQ3dJ8I5HJL5TU4Wq/rVyHhDWyfBXuIbPqefo05BcrRY+lg3XQ4b ZRFeXOwfgoOaPPaIdwgqt3EkJ6GTphd1ICZRap4+RbmPnk+iLBX4vwPh0Z9OagB3 4nxCAxOUvPYSTx7BIwmBnJCr1EOPhbEWOZxtvAfysW+MGRewf6kbwpRqFBufp5mn H9JQyIg7d76QBsK09Ato4e6tjQ7B73HTHGTPlSUMYEOyFvgjnDVy5FPT -----END CERTIFICATE-----Generated at Sat Jun 1 22:20:14 2024 by rpki-client on console-fra.rpki-client.org