$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/w02FCsd3X5PMJvZl-MGOpudSoLQ.roa File: w02FCsd3X5PMJvZl-MGOpudSoLQ.roa (raw, json) Hash identifier: BUWnOFl1UtCkY2BkpDfDMpi60ZM6MPWNNYG8DJIGLT0= Subject key identifier: C3:4D:85:0A:C7:77:5F:93:CC:26:F6:65:F8:C1:8E:A6:E7:52:A0:B4 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 1178 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/w02FCsd3X5PMJvZl-MGOpudSoLQ.roa Signing time: Mon 26 Aug 2024 05:10:48 +0000 ROA not before: Mon 26 Aug 2024 05:10:48 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17408 IP address blocks: 223.26.70.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4472 (0x1178) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 26 05:10:48 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C34D850AC7775F93CC26F665F8C18EA6E752A0B4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:f1:ab:9c:32:f0:62:99:cd:45:8d:58:f8:49: d4:42:42:f7:e4:f3:57:73:5d:f8:2d:85:90:b2:d7: 1d:4a:ed:23:03:49:12:99:9e:81:b0:bd:80:9f:14: e8:aa:2e:d4:87:45:d9:ab:b4:11:be:a9:31:5f:d6: 66:b0:50:1e:35:97:98:a1:ba:4f:65:5b:8b:d5:55: 8e:b9:a2:40:59:ee:5e:c7:eb:61:3c:3b:41:3d:8b: 54:03:93:07:b9:af:7f:b9:26:d2:de:3f:a4:46:90: 32:3f:45:95:e7:d4:75:9c:a8:8e:5d:a9:e4:2e:55: 16:59:de:13:94:0c:9b:44:91:26:59:52:b6:dd:86: e3:bf:ca:4f:10:36:fe:69:ed:8f:8f:5a:4b:09:7f: 7d:50:dc:9a:47:4d:9e:10:ff:19:be:ae:32:19:37: 2b:c1:22:6f:e4:94:29:e9:b2:37:8c:51:9a:c5:8e: e9:5e:58:4a:13:b4:6b:cf:e4:e3:64:9e:1c:ea:20: f7:84:26:78:f4:a8:cd:b5:7a:a4:49:e1:65:37:db: 2d:e0:de:e8:0a:2a:48:b1:57:82:8e:f1:d4:82:48: d0:18:d9:2f:0f:ee:e0:2e:79:e8:1f:76:85:b2:19: 94:02:cb:61:05:ac:97:dd:33:a3:92:bf:6e:22:81: c2:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:4D:85:0A:C7:77:5F:93:CC:26:F6:65:F8:C1:8E:A6:E7:52:A0:B4 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/w02FCsd3X5PMJvZl-MGOpudSoLQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.26.70.0/23 Signature Algorithm: sha256WithRSAEncryption 66:72:fc:c3:a9:09:92:30:1f:80:a6:0f:07:9a:f1:7d:6b:21: f2:43:49:f6:a9:d4:d6:b8:42:95:5a:37:74:cf:cf:e6:be:d9: 04:2c:23:4d:66:82:8a:8c:90:e8:4d:4a:4c:b0:7c:e0:bc:a7: 87:4a:fe:16:b7:75:df:58:2e:04:c5:06:a9:a7:a0:1a:f1:01: db:6c:25:86:a1:52:4c:1d:af:f0:b8:c1:ea:5f:4f:af:36:81: 34:66:fe:23:d5:42:10:3b:96:06:8e:f1:10:60:57:83:c0:0f: 0b:58:e3:20:36:67:a8:b1:31:22:3e:28:df:69:3f:19:ec:7c: 7a:76:8f:b9:e4:2b:5e:d8:33:d9:36:d2:19:df:dc:b6:af:92: 3d:b0:ec:b6:24:4e:34:92:4a:41:47:22:7d:25:5d:b4:42:19: 0f:c7:9c:f7:11:80:d9:92:77:0b:91:63:2e:5d:a4:a9:07:8e: 0a:3f:63:f4:92:ba:d7:bc:7e:b0:5a:4e:c9:dd:21:a2:d1:32: 99:e1:fa:98:86:2f:e1:56:12:b2:df:4d:5f:2f:70:be:65:79: 66:69:8b:dd:75:d4:55:ab:5f:be:8e:64:8e:33:bc:4e:9d:00: cc:e1:89:11:28:4a:20:5f:d8:1c:54:a6:4b:b2:6a:6a:bc:8a: a1:6f:56:df -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEXgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNDA4MjYw NTEwNDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEMzNEQ4NTBBQzc3NzVG OTNDQzI2RjY2NUY4QzE4RUE2RTc1MkEwQjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDR8aucMvBimc1FjVj4SdRCQvfk81dzXfgthZCy1x1K7SMDSRKZ noGwvYCfFOiqLtSHRdmrtBG+qTFf1mawUB41l5ihuk9lW4vVVY65okBZ7l7H62E8 O0E9i1QDkwe5r3+5JtLeP6RGkDI/RZXn1HWcqI5dqeQuVRZZ3hOUDJtEkSZZUrbd huO/yk8QNv5p7Y+PWksJf31Q3JpHTZ4Q/xm+rjIZNyvBIm/klCnpsjeMUZrFjule WEoTtGvP5ONknhzqIPeEJnj0qM21eqRJ4WU32y3g3ugKKkixV4KO8dSCSNAY2S8P 7uAueegfdoWyGZQCy2EFrJfdM6OSv24igcJdAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUw02FCsd3X5PMJvZl+MGOpudSoLQwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy93MDJGQ3NkM1g1UE1K dlpsLU1HT3B1ZFNvTFEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQB3xpGMA0GCSqGSIb3DQEBCwUAA4IBAQBmcvzDqQmSMB+Apg8HmvF9ayHyQ0n2 qdTWuEKVWjd0z8/mvtkELCNNZoKKjJDoTUpMsHzgvKeHSv4Wt3XfWC4ExQapp6Aa 8QHbbCWGoVJMHa/wuMHqX0+vNoE0Zv4j1UIQO5YGjvEQYFeDwA8LWOMgNmeosTEi PijfaT8Z7Hx6do+55Cte2DPZNtIZ39y2r5I9sOy2JE40kkpBRyJ9JV20QhkPx5z3 EYDZkncLkWMuXaSpB44KP2P0krrXvH6wWk7J3SGi0TKZ4fqYhi/hVhKy301fL3C+ ZXlmaYvdddRVq1++jmSOM7xOnQDM4YkRKEogX9gcVKZLsmpqvIqhb1bf -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:30 2024 by rpki-client on console-ams.rpki-client.org