$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/-fNRK2zZ1HeNL99EUYrJaGE2wZY.roa File: -fNRK2zZ1HeNL99EUYrJaGE2wZY.roa (raw, json) Hash identifier: Gmyeg6Nkhpm+U9ANuB/e70APrfQg+Q3wjKaz2ruRnFA= Subject key identifier: F9:F3:51:2B:6C:D9:D4:77:8D:2F:DF:44:51:8A:C9:68:61:36:C1:96 Certificate issuer: /CN=2855973672B1EED71760C0942C27FD5F7569019C Certificate serial: 0C76 Authority key identifier: 28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/-fNRK2zZ1HeNL99EUYrJaGE2wZY.roa Signing time: Mon 26 Aug 2024 05:11:22 +0000 ROA not before: Mon 26 Aug 2024 05:11:22 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 101.0.240.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3190 (0xc76) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2855973672B1EED71760C0942C27FD5F7569019C Validity Not Before: Aug 26 05:11:22 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F9F3512B6CD9D4778D2FDF44518AC9686136C196 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:53:a7:3a:be:fa:2e:3d:e8:bb:22:be:28:3f: de:ef:9d:b8:88:41:ff:dd:98:c4:42:68:43:52:7b: 07:95:ca:15:86:3c:df:5f:0f:45:d5:88:98:8d:5a: 75:6b:a3:bc:bb:8f:76:d1:c4:0c:f7:41:42:31:0a: d2:cd:02:a8:88:cd:16:d7:b4:d8:db:14:c5:1c:76: db:be:9d:d2:74:46:69:59:81:94:13:eb:66:db:46: 63:d0:63:a4:80:2e:ca:0e:d6:9b:07:c6:fc:d0:f8: 74:ec:f8:ba:68:d7:0b:81:ba:39:75:75:a6:8d:45: 2d:e2:d6:f4:30:c1:45:56:16:dc:e8:52:84:a6:e2: 4e:24:30:41:74:2c:65:4b:07:81:2d:43:8e:36:7d: e2:fc:37:d7:2b:32:d3:b0:a2:11:02:9a:0d:9c:25: 0c:48:7f:06:d1:74:f7:36:1d:3e:c6:3f:45:73:9d: 0e:51:fe:92:e2:47:89:37:c6:b1:75:79:38:c4:35: 31:87:80:08:65:89:40:01:24:92:31:1b:a9:c9:c1: f2:9c:67:b8:b2:09:0f:61:c9:11:a4:3b:7f:08:10: c8:cd:d0:a1:2c:c4:94:d2:53:63:03:42:71:c5:b2: 63:99:92:0b:57:2b:84:a7:e6:86:8c:f6:8d:7c:36: 03:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:F3:51:2B:6C:D9:D4:77:8D:2F:DF:44:51:8A:C9:68:61:36:C1:96 X509v3 Authority Key Identifier: keyid:28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/-fNRK2zZ1HeNL99EUYrJaGE2wZY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 101.0.240.0/20 Signature Algorithm: sha256WithRSAEncryption 5b:80:d6:54:d9:fd:ab:7a:95:b6:f2:a4:45:ac:87:f8:4a:3d: 6e:cf:e1:b2:d6:b4:41:8a:10:36:3c:ef:9e:46:04:68:1f:b9: a5:a3:31:16:27:55:22:68:25:bd:21:f8:55:49:5b:0a:2c:06: 28:7c:a7:41:b2:84:e4:3d:a2:63:e9:a1:71:9f:c9:34:32:3c: df:e2:9c:a2:dc:75:03:6c:e8:28:f3:4e:fd:0c:e3:b9:42:48: bd:41:1f:65:14:c8:25:a8:18:f0:6c:bd:e4:16:89:59:0f:3e: 84:0d:82:88:3d:c2:8e:1b:4b:94:f4:18:60:20:28:36:2e:25: af:08:79:68:00:d2:d6:07:db:2c:77:d8:50:f8:ce:e7:a3:48: 53:1d:34:31:0a:41:0e:38:76:0c:47:0a:dd:c2:a7:f6:c4:f2: 18:dc:b0:06:2e:19:c7:43:07:46:f2:e3:0d:f3:8f:e1:c8:e2: 41:ae:1d:e4:1a:6c:6e:d2:a4:01:87:eb:28:c3:0f:2f:c8:d5: d2:3d:14:3d:7a:ad:12:c3:a9:34:14:36:44:97:5d:3a:c6:48: 44:4a:f5:d8:cb:ca:a3:48:60:16:df:89:ce:91:0f:bd:9c:28: ec:70:1b:1b:14:03:ed:fc:59:0f:2e:e0:54:7b:11:d1:79:8c: 4c:9a:76:73 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICDHYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjg1 NTk3MzY3MkIxRUVENzE3NjBDMDk0MkMyN0ZENUY3NTY5MDE5QzAeFw0yNDA4MjYw NTExMjJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEY5RjM1MTJCNkNEOUQ0 Nzc4RDJGREY0NDUxOEFDOTY4NjEzNkMxOTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4U6c6vvouPei7Ir4oP97vnbiIQf/dmMRCaENSeweVyhWGPN9f D0XViJiNWnVro7y7j3bRxAz3QUIxCtLNAqiIzRbXtNjbFMUcdtu+ndJ0RmlZgZQT 62bbRmPQY6SALsoO1psHxvzQ+HTs+Lpo1wuBujl1daaNRS3i1vQwwUVWFtzoUoSm 4k4kMEF0LGVLB4EtQ442feL8N9crMtOwohECmg2cJQxIfwbRdPc2HT7GP0VznQ5R /pLiR4k3xrF1eTjENTGHgAhliUABJJIxG6nJwfKcZ7iyCQ9hyRGkO38IEMjN0KEs xJTSU2MDQnHFsmOZkgtXK4Sn5oaM9o18NgM3AgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQU+fNRK2zZ1HeNL99EUYrJaGE2wZYwHwYDVR0jBBgwFoAUKFWXNnKx7tcXYMCU LCf9X3VpAZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hVQU4t Q0hBTi9LRldYTm5LeDd0Y1hZTUNVTENmOVgzVnBBWncuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL0tGV1hObkt4N3RjWFlNQ1VMQ2Y5WDNWcEFady5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NIVUFOLUNIQU4vLWZOUksyelox SGVOTDk5RVVZckphR0Uyd1pZLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEBGUA8DANBgkqhkiG9w0BAQsFAAOCAQEAW4DWVNn9q3qVtvKkRayH+Eo9 bs/hsta0QYoQNjzvnkYEaB+5paMxFidVImglvSH4VUlbCiwGKHynQbKE5D2iY+mh cZ/JNDI83+Kcotx1A2zoKPNO/QzjuUJIvUEfZRTIJagY8Gy95BaJWQ8+hA2CiD3C jhtLlPQYYCAoNi4lrwh5aADS1gfbLHfYUPjO56NIUx00MQpBDjh2DEcK3cKn9sTy GNywBi4Zx0MHRvLjDfOP4cjiQa4d5BpsbtKkAYfrKMMPL8jV0j0UPXqtEsOpNBQ2 RJddOsZIREr12MvKo0hgFt+JzpEPvZwo7HAbGxQD7fxZDy7gVHsR0XmMTJp2cw== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:30 2024 by rpki-client on console-ams.rpki-client.org