$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/zS2JJz5nTuK7TzNfsC9vuJHSOME.roa File: zS2JJz5nTuK7TzNfsC9vuJHSOME.roa (raw, json) Hash identifier: oIg5bYJisu0BWHfnrIwrPCx+EBDWOVst1iqX0i8gtQ4= Subject key identifier: CD:2D:89:27:3E:67:4E:E2:BB:4F:33:5F:B0:2F:6F:B8:91:D2:38:C1 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 114E Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/zS2JJz5nTuK7TzNfsC9vuJHSOME.roa Signing time: Mon 26 Aug 2024 05:10:39 +0000 ROA not before: Mon 26 Aug 2024 05:10:39 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 150150 IP address blocks: 150.116.11.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Nov 2024 22:51:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4430 (0x114e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 26 05:10:39 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=CD2D89273E674EE2BB4F335FB02F6FB891D238C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:8a:05:df:4f:9f:9a:65:d6:8f:d5:6a:d0:65: 8b:ba:27:e7:c1:6a:6e:7d:43:09:b7:65:99:3c:84: 33:69:eb:c2:84:d6:ca:fd:e5:c4:ef:e8:be:a0:0b: 80:9e:11:72:ee:71:bb:90:c3:43:e3:ba:d1:64:60: 28:c5:24:1b:fd:14:b9:63:25:5a:0a:e3:92:34:71: 21:b1:67:7d:93:5c:ba:a7:c9:11:66:73:b9:e0:8f: 1b:0f:94:19:d4:15:30:17:be:5d:f5:4a:6a:4c:78: 46:fe:1c:8e:34:88:8a:22:84:34:57:80:b1:e2:21: c7:1c:12:79:67:db:8f:cc:f2:7f:98:4a:37:0c:7f: 40:25:41:ac:b1:aa:55:3a:05:a1:9a:03:f3:23:30: 8b:19:1e:bc:64:64:d6:40:60:0b:3d:0e:fa:a6:47: 45:9c:b4:9c:75:c2:72:0b:57:a2:7d:ec:92:7e:fd: a0:48:7b:1b:0b:70:c5:a3:9a:3f:00:ce:80:97:98: 96:b7:84:25:5d:40:31:2b:b2:8f:46:23:9e:84:e5: 53:a7:91:58:f0:96:79:8e:cc:4e:a7:3d:64:85:34: 4a:0c:6b:51:ec:37:d3:00:8a:1a:04:9d:cf:2c:66: f5:3a:9b:8f:fa:4c:86:82:65:1f:f8:62:2d:a1:11: 7c:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:2D:89:27:3E:67:4E:E2:BB:4F:33:5F:B0:2F:6F:B8:91:D2:38:C1 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/zS2JJz5nTuK7TzNfsC9vuJHSOME.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 150.116.11.0/24 Signature Algorithm: sha256WithRSAEncryption 02:1c:a1:57:c6:a1:75:01:c4:bf:c2:0b:7d:1d:76:5f:45:43: 7f:d0:01:b5:f8:a0:05:82:95:bc:21:4f:62:06:6c:33:9b:ba: 40:9a:b8:9b:cb:2d:3d:10:ee:d5:fb:30:7b:5f:55:0b:00:0b: 3c:49:26:2a:e0:fd:23:9a:83:11:f7:ef:39:38:86:4b:be:6d: 9d:7c:9e:a6:5e:6d:dc:0d:ca:b1:ee:e5:ca:b9:46:4c:db:fa: 1e:32:cf:d7:6b:43:e1:6e:e1:c6:9d:ab:f0:65:fa:de:b8:8e: 75:55:d2:c6:25:6f:4b:9a:03:62:24:c4:0d:2d:90:09:c0:e1: 5d:ae:cf:89:75:49:bb:6d:e1:54:ba:f6:ad:38:ad:86:0f:04: 65:93:ba:19:b8:36:b2:64:0e:35:30:f0:e8:40:a2:96:23:c5: 80:e8:96:29:0c:9d:f1:19:88:9a:71:1c:66:60:27:59:3b:fc: 16:1b:63:bf:6b:f8:6a:94:55:72:d8:48:a0:07:12:53:d8:2b: 35:b2:c8:4c:ee:42:d2:5d:41:43:a2:cc:a7:56:0d:c8:a6:75: f9:b8:ee:d5:5e:22:e3:ff:00:17:2e:11:40:11:f6:16:be:90: df:07:e1:1b:71:48:b0:aa:15:50:d8:1f:c0:83:fd:2b:32:77: 11:34:c0:03 -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEU4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNDA4MjYw NTEwMzlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKENEMkQ4OTI3M0U2NzRF RTJCQjRGMzM1RkIwMkY2RkI4OTFEMjM4QzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDkigXfT5+aZdaP1WrQZYu6J+fBam59Qwm3ZZk8hDNp68KE1sr9 5cTv6L6gC4CeEXLucbuQw0PjutFkYCjFJBv9FLljJVoK45I0cSGxZ32TXLqnyRFm c7ngjxsPlBnUFTAXvl31SmpMeEb+HI40iIoihDRXgLHiIcccEnln24/M8n+YSjcM f0AlQayxqlU6BaGaA/MjMIsZHrxkZNZAYAs9DvqmR0WctJx1wnILV6J97JJ+/aBI exsLcMWjmj8AzoCXmJa3hCVdQDErso9GI56E5VOnkVjwlnmOzE6nPWSFNEoMa1Hs N9MAihoEnc8sZvU6m4/6TIaCZR/4Yi2hEXwBAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUzS2JJz5nTuK7TzNfsC9vuJHSOMEwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy96UzJKSno1blR1SzdU ek5mc0M5dnVKSFNPTUUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQAlnQLMA0GCSqGSIb3DQEBCwUAA4IBAQACHKFXxqF1AcS/wgt9HXZfRUN/0AG1 +KAFgpW8IU9iBmwzm7pAmribyy09EO7V+zB7X1ULAAs8SSYq4P0jmoMR9+85OIZL vm2dfJ6mXm3cDcqx7uXKuUZM2/oeMs/Xa0PhbuHGnavwZfreuI51VdLGJW9LmgNi JMQNLZAJwOFdrs+JdUm7beFUuvatOK2GDwRlk7oZuDayZA41MPDoQKKWI8WA6JYp DJ3xGYiacRxmYCdZO/wWG2O/a/hqlFVy2EigBxJT2Cs1sshM7kLSXUFDosynVg3I pnX5uO7VXiLj/wAXLhFAEfYWvpDfB+EbcUiwqhVQ2B/Ag/0rMncRNMAD -----END CERTIFICATE-----Generated at Sun Nov 10 19:35:35 2024 by rpki-client on console-ams.rpki-client.org