$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/zmvta6VN5Y9womNDHXK8VETQP7c.roa File: zmvta6VN5Y9womNDHXK8VETQP7c.roa (raw, json) Hash identifier: I1kDtuHujPuwvqv7Pi8GNdIh6KKJmDwkKUnUI6CN5sg= Subject key identifier: CE:6B:ED:6B:A5:4D:E5:8F:70:A2:63:43:1D:72:BC:54:44:D0:3F:B7 Certificate issuer: /CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Certificate serial: 1174 Authority key identifier: 2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/zmvta6VN5Y9womNDHXK8VETQP7c.roa Signing time: Mon 26 Aug 2024 05:10:47 +0000 ROA not before: Mon 26 Aug 2024 05:10:47 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 21859 IP address blocks: 223.26.72.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 02:24:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4468 (0x1174) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2F0F46D3FF6FED73093DD95B98950433910CFD76 Validity Not Before: Aug 26 05:10:47 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=CE6BED6BA54DE58F70A263431D72BC5444D03FB7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:cd:2a:12:f8:50:02:c9:63:57:2c:ec:a7:68: bf:b5:d0:b3:84:c7:a8:86:54:51:23:b6:ae:c2:9d: 1e:f8:d1:56:02:75:5f:ed:dc:fc:95:86:d8:64:8c: 81:0f:61:c6:2d:1e:21:ac:1e:2d:55:28:1f:4a:e8: 9b:9a:96:4e:80:df:db:13:8a:90:cc:9a:cd:f6:70: 11:64:74:96:21:e4:62:f5:ae:16:be:9e:a5:74:6a: 52:3e:34:02:a4:ad:d8:eb:a4:50:27:2e:25:58:82: 87:a3:cb:ef:f4:9a:77:d6:c5:f2:eb:8e:01:63:58: 48:70:2b:e9:f4:b0:cd:de:e4:7b:09:d5:d3:7a:af: 26:35:5e:a8:93:93:7f:cc:43:50:88:17:e2:90:81: bc:07:e7:f4:85:ee:71:f7:fa:69:dc:3e:49:d3:d6: 20:b1:70:93:e0:ce:d9:12:e2:06:41:c6:9b:91:59: b0:4d:c9:ab:8a:49:86:d9:60:ed:ec:53:dd:6a:fe: a3:db:da:8f:45:c0:e2:00:65:83:b1:94:20:f5:49: 8b:d0:b5:05:f6:f1:6c:5e:a4:0d:39:39:9e:1b:2b: aa:7d:12:69:0a:e2:4d:06:95:ac:7f:08:70:6c:4c: 62:82:13:44:b3:35:45:be:e3:cb:37:51:cf:5e:10: 0b:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:6B:ED:6B:A5:4D:E5:8F:70:A2:63:43:1D:72:BC:54:44:D0:3F:B7 X509v3 Authority Key Identifier: keyid:2F:0F:46:D3:FF:6F:ED:73:09:3D:D9:5B:98:95:04:33:91:0C:FD:76 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lw9G0_9v7XMJPdlbmJUEM5EM_XY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHIEF-TW/zmvta6VN5Y9womNDHXK8VETQP7c.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 223.26.72.0/22 Signature Algorithm: sha256WithRSAEncryption 5a:20:0c:57:6c:f6:3a:40:e9:c7:8e:d1:51:fb:33:a7:97:b2: 61:72:ab:ac:a4:97:62:e5:d9:58:06:d7:e7:7d:18:7f:ab:eb: 9a:34:c1:53:44:a1:a7:a2:63:d6:8a:d4:4a:a5:9a:17:62:aa: b1:0d:34:9e:67:2b:e7:8c:44:2e:2d:f8:23:4e:e5:61:fe:9f: f4:81:7e:b6:a2:b3:f1:0c:57:a6:07:97:92:f2:4f:40:0f:85: 4d:75:30:48:08:1c:66:b0:50:3f:96:b8:bb:72:ef:a3:16:59: b5:39:99:21:85:53:2d:67:d4:99:22:c6:e1:a3:71:b9:37:9f: 32:4e:5c:41:b5:00:6b:3f:74:7b:c1:50:7c:90:c8:22:6c:51: 2e:a8:be:b4:1b:88:4f:39:08:98:9c:01:fc:fa:c0:d0:bc:42: 16:0e:79:00:31:1f:e7:3a:74:a1:9e:02:4e:19:09:f6:24:44: 26:ad:26:35:de:ac:6d:75:96:5c:15:b7:79:df:c4:56:04:2d: fc:57:cf:1c:b3:ca:c1:21:2a:90:d4:b1:24:40:77:1c:91:0a: 18:a8:f0:2a:a4:0c:60:72:d9:2d:35:14:b3:b4:2e:8d:f9:2c: 9c:8e:af:f0:c3:a8:2c:c3:61:36:0a:e3:6c:6b:81:d1:d5:8b: 44:6b:d3:4f -----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgICEXQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkYw RjQ2RDNGRjZGRUQ3MzA5M0REOTVCOTg5NTA0MzM5MTBDRkQ3NjAeFw0yNDA4MjYw NTEwNDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKENFNkJFRDZCQTU0REU1 OEY3MEEyNjM0MzFENzJCQzU0NDREMDNGQjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJzSoS+FACyWNXLOynaL+10LOEx6iGVFEjtq7CnR740VYCdV/t 3PyVhthkjIEPYcYtHiGsHi1VKB9K6Jualk6A39sTipDMms32cBFkdJYh5GL1rha+ nqV0alI+NAKkrdjrpFAnLiVYgoejy+/0mnfWxfLrjgFjWEhwK+n0sM3e5HsJ1dN6 ryY1XqiTk3/MQ1CIF+KQgbwH5/SF7nH3+mncPknT1iCxcJPgztkS4gZBxpuRWbBN yauKSYbZYO3sU91q/qPb2o9FwOIAZYOxlCD1SYvQtQX28WxepA05OZ4bK6p9EmkK 4k0Glax/CHBsTGKCE0SzNUW+48s3Uc9eEAuHAgMBAAGjggHyMIIB7jAdBgNVHQ4E FgQUzmvta6VN5Y9womNDHXK8VETQP7cwHwYDVR0jBBgwFoAULw9G0/9v7XMJPdlb mJUEM5EM/XYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJRUYt VFcvTHc5RzBfOXY3WE1KUGRsYm1KVUVNNUVNX1hZLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9MdzlHMF85djdYTUpQZGxibUpVRU01RU1fWFkuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElFRi1UVy96bXZ0YTZWTjVZOXdv bU5ESFhLOFZFVFFQN2Mucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAG AwQC3xpIMA0GCSqGSIb3DQEBCwUAA4IBAQBaIAxXbPY6QOnHjtFR+zOnl7Jhcqus pJdi5dlYBtfnfRh/q+uaNMFTRKGnomPWitRKpZoXYqqxDTSeZyvnjEQuLfgjTuVh /p/0gX62orPxDFemB5eS8k9AD4VNdTBICBxmsFA/lri7cu+jFlm1OZkhhVMtZ9SZ Isbho3G5N58yTlxBtQBrP3R7wVB8kMgibFEuqL60G4hPOQiYnAH8+sDQvEIWDnkA MR/nOnShngJOGQn2JEQmrSY13qxtdZZcFbd538RWBC38V88cs8rBISqQ1LEkQHcc kQoYqPAqpAxgctktNRSztC6N+Sycjq/ww6gsw2E2CuNsa4HR1YtEa9NP -----END CERTIFICATE-----Generated at Fri Nov 22 00:59:07 2024 by rpki-client on console-fra.rpki-client.org