$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/P4LjJcys7Jm2vaQN2Jp2a6g21-U.roa File: P4LjJcys7Jm2vaQN2Jp2a6g21-U.roa (raw, json) Hash identifier: 1dj1/8mwzpmObmA9G1CH2hRlAnS7iZ5CxvnJfDG/e8s= Subject key identifier: 3F:82:E3:25:CC:AC:EC:99:B6:BD:A4:0D:D8:9A:76:6B:A8:36:D7:E5 Certificate issuer: /CN=2855973672B1EED71760C0942C27FD5F7569019C Certificate serial: 0C77 Authority key identifier: 28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/P4LjJcys7Jm2vaQN2Jp2a6g21-U.roa Signing time: Mon 26 Aug 2024 05:11:22 +0000 ROA not before: Mon 26 Aug 2024 05:11:22 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131611 IP address blocks: 121.50.184.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3191 (0xc77) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2855973672B1EED71760C0942C27FD5F7569019C Validity Not Before: Aug 26 05:11:22 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3F82E325CCACEC99B6BDA40DD89A766BA836D7E5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:cb:b6:15:a1:d7:c9:f3:dd:0e:7f:bb:bf:0d: 81:20:e5:24:15:f4:49:b9:74:14:b6:e7:fa:7c:09: f9:5e:16:ec:0d:91:3b:64:fd:3b:41:aa:e6:9a:a6: 70:8d:75:72:51:54:aa:6b:24:b3:0e:97:ef:8c:cd: 36:a5:16:ca:7b:b7:4a:1e:34:6c:64:0e:38:59:10: f0:ae:d7:42:e8:e8:10:01:de:ca:42:f3:44:da:f3: 82:dc:53:a4:29:86:68:db:d1:e2:7a:48:63:8c:f9: b0:05:63:46:2f:cb:e7:48:e4:98:b8:2c:27:86:fb: e6:34:ad:e8:42:c0:8b:13:cb:5d:89:af:2c:0e:5f: c7:b8:9f:47:37:17:35:55:80:22:9c:dc:10:86:f6: 96:b6:58:e3:be:d0:e7:a6:92:ae:d0:cb:30:0c:95: bf:b4:ab:1d:94:df:9d:e2:38:cf:0d:92:46:f1:7d: 50:5b:5a:e2:f8:ff:bd:31:49:ed:68:ac:68:64:88: af:42:14:72:c3:af:e1:69:9e:8f:3a:c2:18:c0:55: 4c:b7:3e:71:38:84:ad:4d:8d:e7:dd:20:33:7d:d1: bd:da:20:15:a4:8d:dc:0f:94:89:61:21:46:c8:f5: 4b:fa:b9:b9:b2:b7:8b:a3:00:0a:a2:19:e1:27:c6: 8b:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:82:E3:25:CC:AC:EC:99:B6:BD:A4:0D:D8:9A:76:6B:A8:36:D7:E5 X509v3 Authority Key Identifier: keyid:28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/P4LjJcys7Jm2vaQN2Jp2a6g21-U.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 121.50.184.0/22 Signature Algorithm: sha256WithRSAEncryption 32:18:26:28:f8:3c:8d:63:d9:1e:fc:59:0a:aa:51:38:b9:b2: f3:75:1a:43:ae:b7:85:92:00:a5:32:9b:0e:88:3f:fa:0d:0d: c3:ba:2b:e9:85:4b:2d:f3:75:90:c3:d4:43:2d:a9:c3:2d:bc: 45:0b:60:87:85:20:59:ec:30:a8:2d:bb:8f:fc:d9:5d:24:ef: 37:f8:77:23:c4:5d:68:ee:a9:a9:5f:78:e5:c6:30:0c:12:fc: 15:06:2f:75:82:38:47:ef:5a:55:15:a8:eb:97:f1:d3:97:ad: a8:ac:73:4d:c7:75:ea:b9:e0:61:75:4b:42:26:e6:46:5d:86: 5d:5f:24:5a:eb:ff:e5:d0:14:96:f3:ec:d8:d6:c3:08:a1:ac: a7:0f:f5:95:70:a6:33:95:44:f1:ad:b6:7f:d7:05:38:da:87: 74:c2:99:8c:1a:25:82:31:44:f8:8c:d6:b1:c3:c8:04:59:a6: 29:34:48:86:06:a4:65:52:2b:77:7b:bd:42:b3:38:a0:5c:0d: 30:74:62:a9:0e:90:2e:49:b9:9a:7a:59:7f:77:33:19:dc:38: a4:4d:3b:f6:cc:85:f8:25:0e:e7:5d:b4:aa:d9:d0:fd:22:b3: 0a:37:ed:1b:19:a2:2b:7a:1c:ef:b2:27:0a:11:91:55:f7:6b: 81:a4:d4:ce -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICDHcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjg1 NTk3MzY3MkIxRUVENzE3NjBDMDk0MkMyN0ZENUY3NTY5MDE5QzAeFw0yNDA4MjYw NTExMjJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNGODJFMzI1Q0NBQ0VD OTlCNkJEQTQwREQ4OUE3NjZCQTgzNkQ3RTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEy7YVodfJ890Of7u/DYEg5SQV9Em5dBS25/p8CfleFuwNkTtk /TtBquaapnCNdXJRVKprJLMOl++MzTalFsp7t0oeNGxkDjhZEPCu10Lo6BAB3spC 80Ta84LcU6Qphmjb0eJ6SGOM+bAFY0Yvy+dI5Ji4LCeG++Y0rehCwIsTy12JrywO X8e4n0c3FzVVgCKc3BCG9pa2WOO+0Oemkq7QyzAMlb+0qx2U353iOM8NkkbxfVBb WuL4/70xSe1orGhkiK9CFHLDr+Fpno86whjAVUy3PnE4hK1NjefdIDN90b3aIBWk jdwPlIlhIUbI9Uv6ubmyt4ujAAqiGeEnxosHAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUP4LjJcys7Jm2vaQN2Jp2a6g21+UwHwYDVR0jBBgwFoAUKFWXNnKx7tcXYMCU LCf9X3VpAZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hVQU4t Q0hBTi9LRldYTm5LeDd0Y1hZTUNVTENmOVgzVnBBWncuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL0tGV1hObkt4N3RjWFlNQ1VMQ2Y5WDNWcEFady5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NIVUFOLUNIQU4vUDRMakpjeXM3 Sm0ydmFRTjJKcDJhNmcyMS1VLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEAnkyuDANBgkqhkiG9w0BAQsFAAOCAQEAMhgmKPg8jWPZHvxZCqpROLmy 83UaQ663hZIApTKbDog/+g0Nw7or6YVLLfN1kMPUQy2pwy28RQtgh4UgWewwqC27 j/zZXSTvN/h3I8RdaO6pqV945cYwDBL8FQYvdYI4R+9aVRWo65fx05etqKxzTcd1 6rngYXVLQibmRl2GXV8kWuv/5dAUlvPs2NbDCKGspw/1lXCmM5VE8a22f9cFONqH dMKZjBolgjFE+IzWscPIBFmmKTRIhgakZVIrd3u9QrM4oFwNMHRiqQ6QLkm5mnpZ f3czGdw4pE079syF+CUO5120qtnQ/SKzCjftGxmiK3oc77InChGRVfdrgaTUzg== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:49 2024 by rpki-client on console-fra.rpki-client.org