$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/JnOKZOTCF22KOaGQn9CKPCk-qRE.roa File: JnOKZOTCF22KOaGQn9CKPCk-qRE.roa (raw, json) Hash identifier: LcmP3YE2HEv5MRACEk2hX8A4cbbO7lUenuGArgXD0DQ= Subject key identifier: 26:73:8A:64:E4:C2:17:6D:8A:39:A1:90:9F:D0:8A:3C:29:3E:A9:11 Certificate issuer: /CN=2855973672B1EED71760C0942C27FD5F7569019C Certificate serial: 0C7D Authority key identifier: 28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/JnOKZOTCF22KOaGQn9CKPCk-qRE.roa Signing time: Mon 26 Aug 2024 05:11:24 +0000 ROA not before: Mon 26 Aug 2024 05:11:24 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18046 IP address blocks: 101.0.224.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3197 (0xc7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2855973672B1EED71760C0942C27FD5F7569019C Validity Not Before: Aug 26 05:11:24 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=26738A64E4C2176D8A39A1909FD08A3C293EA911 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:92:17:17:cc:5d:2a:7b:64:e4:c4:5a:de:c8: c4:51:8b:04:d3:9a:f5:12:4a:24:1b:c3:58:c1:2e: 61:aa:9b:a4:22:66:f3:c8:98:f9:45:69:6d:a2:ed: bf:85:f5:75:03:f8:19:55:d9:85:82:26:cd:de:96: a7:18:9b:65:4c:80:42:87:06:d6:48:f0:04:3e:31: 14:32:e3:a0:5e:3d:d6:45:c4:f9:c3:94:b5:c3:ed: c4:74:f3:d0:38:0a:0e:e5:4b:de:b9:e7:88:ba:b9: 96:33:0b:db:91:af:0c:77:20:a4:68:4e:b3:2d:81: a0:8e:49:bb:90:31:ab:50:3f:a2:b1:5c:68:1a:55: 00:dc:a7:e6:60:98:6d:a0:65:9b:67:03:20:16:d0: b9:55:3d:b7:b1:20:50:09:a1:86:de:ca:63:48:f6: 2f:ae:3f:26:56:0c:f2:32:a6:b2:0d:ca:62:fe:3c: b9:89:de:3e:3f:92:e5:85:04:1d:27:3f:ad:d4:c0: d9:7f:e3:3c:31:37:0a:05:c9:fe:aa:cb:dc:89:74: 0f:b2:89:06:6f:8c:b1:e3:c2:fc:cb:e8:d1:b2:e7: 25:c2:c8:b6:7a:50:a1:14:00:5d:16:e6:7f:4d:85: c3:c7:04:30:85:1d:ba:10:cc:34:c1:c5:ae:6f:7d: 1d:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:73:8A:64:E4:C2:17:6D:8A:39:A1:90:9F:D0:8A:3C:29:3E:A9:11 X509v3 Authority Key Identifier: keyid:28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/JnOKZOTCF22KOaGQn9CKPCk-qRE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 101.0.224.0/21 Signature Algorithm: sha256WithRSAEncryption 83:cd:5b:47:9a:4f:af:6d:e5:d6:f4:82:50:32:d9:91:3a:98: dd:56:bb:10:ac:6d:f1:e1:49:60:a9:9f:46:38:fd:6a:1d:37: 77:d4:e5:4b:2c:3e:3b:f6:ae:3f:58:7e:11:6b:a2:06:99:75: 10:cc:55:3d:08:d6:9d:01:95:bf:39:16:79:23:5a:a3:e9:2c: 69:e3:ee:f8:24:38:05:e4:d6:ac:fc:0f:df:5e:63:62:56:3b: c6:1a:2e:02:35:19:f9:66:d6:a8:44:18:bd:48:b3:7d:b7:d7: 3e:07:14:11:56:42:d5:18:c3:3c:52:03:16:67:8c:db:ab:0e: d0:1c:a5:d4:a4:23:7d:63:d3:ce:77:a5:cf:d9:3b:97:48:cd: c5:f3:d7:54:64:5b:a0:25:20:7a:2a:16:e3:f3:94:83:f2:59: 32:59:d9:f2:4b:0b:80:52:1c:36:2b:07:37:31:3e:a4:d8:89: 61:5d:17:4d:57:b6:82:cd:d7:c0:68:53:fc:c0:97:cc:e4:4e: e3:b3:c3:5b:0e:9d:2f:c1:ec:e1:28:ce:3a:3f:eb:a6:63:26: a5:f3:e1:61:7b:87:76:d6:53:04:60:4e:6d:09:96:e8:d1:1a: dd:2f:48:d5:7f:79:aa:d0:e1:df:7e:bd:91:86:9e:6d:59:a0: a2:58:1a:60 -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICDH0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjg1 NTk3MzY3MkIxRUVENzE3NjBDMDk0MkMyN0ZENUY3NTY5MDE5QzAeFw0yNDA4MjYw NTExMjRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI2NzM4QTY0RTRDMjE3 NkQ4QTM5QTE5MDlGRDA4QTNDMjkzRUE5MTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCkkhcXzF0qe2TkxFreyMRRiwTTmvUSSiQbw1jBLmGqm6QiZvPI mPlFaW2i7b+F9XUD+BlV2YWCJs3elqcYm2VMgEKHBtZI8AQ+MRQy46BePdZFxPnD lLXD7cR089A4Cg7lS96554i6uZYzC9uRrwx3IKRoTrMtgaCOSbuQMatQP6KxXGga VQDcp+ZgmG2gZZtnAyAW0LlVPbexIFAJoYbeymNI9i+uPyZWDPIyprINymL+PLmJ 3j4/kuWFBB0nP63UwNl/4zwxNwoFyf6qy9yJdA+yiQZvjLHjwvzL6NGy5yXCyLZ6 UKEUAF0W5n9NhcPHBDCFHboQzDTBxa5vfR2lAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUJnOKZOTCF22KOaGQn9CKPCk+qREwHwYDVR0jBBgwFoAUKFWXNnKx7tcXYMCU LCf9X3VpAZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hVQU4t Q0hBTi9LRldYTm5LeDd0Y1hZTUNVTENmOVgzVnBBWncuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL0tGV1hObkt4N3RjWFlNQ1VMQ2Y5WDNWcEFady5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NIVUFOLUNIQU4vSm5PS1pPVENG MjJLT2FHUW45Q0tQQ2stcVJFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEA2UA4DANBgkqhkiG9w0BAQsFAAOCAQEAg81bR5pPr23l1vSCUDLZkTqY 3Va7EKxt8eFJYKmfRjj9ah03d9TlSyw+O/auP1h+EWuiBpl1EMxVPQjWnQGVvzkW eSNao+ksaePu+CQ4BeTWrPwP315jYlY7xhouAjUZ+WbWqEQYvUizfbfXPgcUEVZC 1RjDPFIDFmeM26sO0Byl1KQjfWPTznelz9k7l0jNxfPXVGRboCUgeioW4/OUg/JZ MlnZ8ksLgFIcNisHNzE+pNiJYV0XTVe2gs3XwGhT/MCXzORO47PDWw6dL8Hs4SjO Oj/rpmMmpfPhYXuHdtZTBGBObQmW6NEa3S9I1X95qtDh3369kYaebVmgolgaYA== -----END CERTIFICATE-----Generated at Fri Nov 22 07:03:23 2024 by rpki-client on console-fra.rpki-client.org