$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/iSeu9AHoljk2xueu_dMOEjVl0Lg.roa File: iSeu9AHoljk2xueu_dMOEjVl0Lg.roa (raw, json) Hash identifier: Zlb9YPp1KaRjkwxO+9ehitCQqAPx6qUjgiV8bAdOwg4= Subject key identifier: 89:27:AE:F4:01:E8:96:39:36:C6:E7:AE:FD:D3:0E:12:35:65:D0:B8 Certificate issuer: /CN=2855973672B1EED71760C0942C27FD5F7569019C Certificate serial: 0C75 Authority key identifier: 28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/iSeu9AHoljk2xueu_dMOEjVl0Lg.roa Signing time: Mon 26 Aug 2024 05:11:22 +0000 ROA not before: Mon 26 Aug 2024 05:11:22 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18046 IP address blocks: 122.200.152.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3189 (0xc75) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2855973672B1EED71760C0942C27FD5F7569019C Validity Not Before: Aug 26 05:11:22 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8927AEF401E8963936C6E7AEFDD30E123565D0B8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:a1:62:f0:09:84:b1:36:0d:0d:de:2f:0e:23: 62:c7:ff:4c:e7:4f:1c:ff:94:40:50:eb:14:89:7e: 47:64:c1:d3:a9:3d:7e:0d:f9:84:3e:29:ed:ac:b6: 23:57:07:fa:44:71:b7:e0:7e:94:d8:25:2f:6d:e5: b4:37:48:0b:27:98:04:6e:9b:ae:3b:89:d8:ea:42: cb:b7:d0:1b:89:d2:d4:41:a1:df:55:17:5f:ad:7f: 44:d4:7f:06:ec:4f:f7:e5:b8:d8:26:90:76:61:8e: bf:a2:a1:89:5d:87:69:43:dd:46:48:2c:c4:0d:f1: 0c:2f:5f:90:1e:a8:1a:7d:88:ce:e8:ef:0d:97:bc: 6d:51:75:cd:c5:7e:1e:98:ab:13:38:02:67:3c:a5: c5:fc:aa:68:14:3e:90:1b:cb:a4:95:f1:76:7f:ca: 0f:40:65:92:45:2a:9e:1a:f7:85:82:30:d3:20:ca: b3:5d:2f:8b:81:c6:c3:36:a5:c4:a2:86:21:24:48: a8:e4:4a:e6:84:25:19:45:9f:32:09:d8:1f:d0:a8: 99:6d:73:5c:d8:52:c2:8d:3a:19:ed:fe:42:52:2d: 52:7f:90:23:18:04:f9:32:83:f8:a3:bf:2b:cf:2b: a2:3f:f1:11:d4:8b:b1:2a:e4:55:17:04:e9:df:b9: 55:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:27:AE:F4:01:E8:96:39:36:C6:E7:AE:FD:D3:0E:12:35:65:D0:B8 X509v3 Authority Key Identifier: keyid:28:55:97:36:72:B1:EE:D7:17:60:C0:94:2C:27:FD:5F:75:69:01:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/KFWXNnKx7tcXYMCULCf9X3VpAZw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KFWXNnKx7tcXYMCULCf9X3VpAZw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUAN-CHAN/iSeu9AHoljk2xueu_dMOEjVl0Lg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.200.152.0/21 Signature Algorithm: sha256WithRSAEncryption b1:ca:2c:e7:8f:3e:ba:c2:c7:a1:cf:59:bc:38:c6:8d:47:11: 28:aa:17:c6:f1:7e:ab:d1:fa:46:eb:e4:25:9f:47:18:67:52: 32:a3:64:53:12:8e:d9:a8:1a:c7:c8:f1:f1:13:c3:fe:a5:a7: f2:51:1e:22:45:43:cf:23:b1:52:05:1d:53:44:54:c1:5c:3a: 7c:e5:a5:b5:77:16:ac:9d:03:53:ca:e2:8d:c1:90:d2:bc:29: 8c:77:9f:8a:dd:e5:b3:73:0e:37:5c:1e:1c:6c:a1:35:c9:02: 9d:3d:12:61:0f:6e:dd:b9:e0:b9:9b:c6:7d:f8:ea:85:39:18: 34:dc:ee:09:b8:b0:29:f9:b9:be:1d:19:a6:09:f4:ec:cb:28: 18:35:1e:8c:c6:87:82:e3:b9:ae:9b:ad:85:33:00:18:0f:75: cf:1b:1c:c7:2e:90:81:48:0d:7d:8a:ba:6f:b1:31:f1:3d:ed: df:8b:2a:49:fb:4f:d9:19:b7:b7:1d:39:ec:cc:17:e9:93:ec: 39:38:34:25:a2:63:24:38:ab:28:5b:6c:8c:90:ee:c9:62:aa: cc:57:f3:4e:aa:d7:a6:cd:a9:9d:df:8b:14:54:8e:40:82:ab: 71:75:a8:2d:45:92:52:f4:bb:77:46:f0:03:78:1b:37:a4:4c: cf:e3:a6:0e -----BEGIN CERTIFICATE----- MIIE2jCCA8KgAwIBAgICDHUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjg1 NTk3MzY3MkIxRUVENzE3NjBDMDk0MkMyN0ZENUY3NTY5MDE5QzAeFw0yNDA4MjYw NTExMjJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg5MjdBRUY0MDFFODk2 MzkzNkM2RTdBRUZERDMwRTEyMzU2NUQwQjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDfoWLwCYSxNg0N3i8OI2LH/0znTxz/lEBQ6xSJfkdkwdOpPX4N +YQ+Ke2stiNXB/pEcbfgfpTYJS9t5bQ3SAsnmARum647idjqQsu30BuJ0tRBod9V F1+tf0TUfwbsT/fluNgmkHZhjr+ioYldh2lD3UZILMQN8QwvX5AeqBp9iM7o7w2X vG1Rdc3Ffh6YqxM4Amc8pcX8qmgUPpAby6SV8XZ/yg9AZZJFKp4a94WCMNMgyrNd L4uBxsM2pcSihiEkSKjkSuaEJRlFnzIJ2B/QqJltc1zYUsKNOhnt/kJSLVJ/kCMY BPkyg/ijvyvPK6I/8RHUi7Eq5FUXBOnfuVVnAgMBAAGjggH2MIIB8jAdBgNVHQ4E FgQUiSeu9AHoljk2xueu/dMOEjVl0LgwHwYDVR0jBBgwFoAUKFWXNnKx7tcXYMCU LCf9X3VpAZwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hVQU4t Q0hBTi9LRldYTm5LeDd0Y1hZTUNVTENmOVgzVnBBWncuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL0tGV1hObkt4N3RjWFlNQ1VMQ2Y5WDNWcEFady5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NIVUFOLUNIQU4vaVNldTlBSG9s amsyeHVldV9kTU9FalZsMExnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQC AAEwBgMEA3rImDANBgkqhkiG9w0BAQsFAAOCAQEAscos548+usLHoc9ZvDjGjUcR KKoXxvF+q9H6RuvkJZ9HGGdSMqNkUxKO2agax8jx8RPD/qWn8lEeIkVDzyOxUgUd U0RUwVw6fOWltXcWrJ0DU8rijcGQ0rwpjHefit3ls3MON1weHGyhNckCnT0SYQ9u 3bnguZvGffjqhTkYNNzuCbiwKfm5vh0Zpgn07MsoGDUejMaHguO5rputhTMAGA91 zxscxy6QgUgNfYq6b7Ex8T3t34sqSftP2Rm3tx057MwX6ZPsOTg0JaJjJDirKFts jJDuyWKqzFfzTqrXps2pnd+LFFSOQIKrcXWoLUWSUvS7d0bwA3gbN6RMz+OmDg== -----END CERTIFICATE-----Generated at Fri Nov 22 06:41:25 2024 by rpki-client on console-ams.rpki-client.org