$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/XGS2iwe5CcRRwnYF4ynJu048R7o.roa File: XGS2iwe5CcRRwnYF4ynJu048R7o.roa (raw, json) Hash identifier: HTJYdHS8XsqPUFs7GRnAjSmZc1yN10DGWHnDn+2YcxQ= Subject key identifier: 5C:64:B6:8B:07:B9:09:C4:51:C2:76:05:E3:29:C9:BB:4E:3C:47:BA Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Certificate serial: 0B65 Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/XGS2iwe5CcRRwnYF4ynJu048R7o.roa Signing time: Fri 01 Sep 2023 09:45:55 +0000 ROA not before: Fri 01 Sep 2023 09:45:55 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18182 IP address blocks: 61.56.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 10:33:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2917 (0xb65) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Validity Not Before: Sep 1 09:45:55 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=5C64B68B07B909C451C27605E329C9BB4E3C47BA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:5b:03:23:4b:0c:93:b4:d5:e5:7a:03:25:c0: fd:b5:04:7c:73:a8:b1:a4:b3:25:f0:1f:54:89:10: be:51:c6:98:a8:cf:50:1e:3f:61:a5:13:5a:bb:f9: c5:d9:68:d4:93:2a:a9:93:bb:b8:34:71:da:59:9b: c2:4d:4e:b7:fc:a8:5f:c0:d5:c7:7e:3e:42:30:6f: 26:ed:2b:23:99:23:4e:3f:c7:5c:08:73:48:bc:1c: fe:6d:3a:10:70:25:c7:4c:cd:62:1f:01:44:32:fa: 4a:98:3c:5a:ff:74:b9:cd:74:6c:1e:7e:7b:63:b9: 7c:fa:60:ae:c8:22:16:25:5c:27:78:5b:08:96:33: c7:3b:93:65:64:11:f7:e2:a7:07:40:d2:e2:70:90: 58:e2:c1:07:17:c7:50:ce:8c:b3:21:b8:d1:77:76: 1d:31:81:5d:ec:07:77:c6:6b:60:bf:6e:c6:34:a8: f6:b8:32:05:c6:bd:b3:6a:86:05:c0:fb:31:83:19: 29:3e:96:b5:95:d4:ce:db:42:3d:57:67:79:d2:b1: 8f:65:61:be:05:47:3f:ca:09:79:d8:17:c2:ab:bd: 39:4f:dd:89:d7:96:39:b9:e2:56:e8:4e:82:51:7b: ac:ac:69:48:5e:6d:a3:b3:c3:a4:88:e0:e1:91:7c: 9b:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:64:B6:8B:07:B9:09:C4:51:C2:76:05:E3:29:C9:BB:4E:3C:47:BA X509v3 Authority Key Identifier: keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/XGS2iwe5CcRRwnYF4ynJu048R7o.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.56.128.0/19 Signature Algorithm: sha256WithRSAEncryption c9:c9:cd:6c:8c:bb:27:da:f8:de:62:f4:ca:56:c4:33:6d:80: f0:ce:21:5e:73:6d:d2:3c:9f:ab:ff:c2:b3:53:66:fe:9d:5f: e3:45:84:c8:31:c7:da:a5:77:7f:3c:b2:05:22:35:c4:8b:21: 95:39:34:b4:41:39:8b:fe:a5:b1:b2:9a:59:7b:e1:19:5a:17: 50:08:bf:18:6a:ba:e6:43:8a:1a:aa:24:2f:12:81:a6:d3:69: 7c:ed:ea:a6:db:d7:4b:cb:a5:90:98:e8:42:e4:d7:b8:25:f3: a3:60:f8:5c:1c:ca:e8:f7:7c:ca:6d:87:85:57:b2:81:a7:fd: bf:2f:69:83:bc:90:a2:16:57:24:d8:cf:f5:ce:b5:19:97:e1: 35:f2:3c:34:aa:23:fe:55:ef:e6:cc:9a:53:30:00:66:16:79: e6:b3:28:b0:4e:65:59:11:db:76:76:2d:a5:06:63:7a:86:76: fa:33:83:7a:6c:58:e4:0b:47:16:72:ef:43:a6:dd:7e:82:b7: c3:00:51:64:e1:c5:65:0f:cf:16:70:20:ae:0d:1b:b4:18:d5: d0:b8:f0:67:5a:4a:a1:87:16:6c:c6:f4:82:6b:f7:87:1e:fe: bd:ce:7d:3d:64:14:6e:db:ec:98:76:a7:ac:04:5b:38:64:31: e0:21:c4:c0 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICC2UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0NC NTQ1NDE1M0FDQ0VDRTg1MjBEMzM5MDdENTRFNTZDNUNBOUE0QjAeFw0yMzA5MDEw OTQ1NTVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDVDNjRCNjhCMDdCOTA5 QzQ1MUMyNzYwNUUzMjlDOUJCNEUzQzQ3QkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/WwMjSwyTtNXlegMlwP21BHxzqLGksyXwH1SJEL5Rxpioz1Ae P2GlE1q7+cXZaNSTKqmTu7g0cdpZm8JNTrf8qF/A1cd+PkIwbybtKyOZI04/x1wI c0i8HP5tOhBwJcdMzWIfAUQy+kqYPFr/dLnNdGwefntjuXz6YK7IIhYlXCd4WwiW M8c7k2VkEffipwdA0uJwkFjiwQcXx1DOjLMhuNF3dh0xgV3sB3fGa2C/bsY0qPa4 MgXGvbNqhgXA+zGDGSk+lrWV1M7bQj1XZ3nSsY9lYb4FRz/KCXnYF8KrvTlP3YnX ljm54lboToJRe6ysaUhebaOzw6SI4OGRfJu1AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUXGS2iwe5CcRRwnYF4ynJu048R7owHwYDVR0jBBgwFoAUzLVFQVOszs6FINM5 B9VOVsXKmkswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU09ORVQv ekxWRlFWT3N6czZGSU5NNUI5Vk9Wc1hLbWtzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS96TFZGUVZPc3pzNkZJTk01QjlWT1ZzWEtta3MuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TT05FVC9YR1MyaXdlNUNjUlJ3bllGNHlu SnUwNDhSN28ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFPTiA MA0GCSqGSIb3DQEBCwUAA4IBAQDJyc1sjLsn2vjeYvTKVsQzbYDwziFec23SPJ+r /8KzU2b+nV/jRYTIMcfapXd/PLIFIjXEiyGVOTS0QTmL/qWxsppZe+EZWhdQCL8Y arrmQ4oaqiQvEoGm02l87eqm29dLy6WQmOhC5Ne4JfOjYPhcHMro93zKbYeFV7KB p/2/L2mDvJCiFlck2M/1zrUZl+E18jw0qiP+Ve/mzJpTMABmFnnmsyiwTmVZEdt2 di2lBmN6hnb6M4N6bFjkC0cWcu9Dpt1+grfDAFFk4cVlD88WcCCuDRu0GNXQuPBn WkqhhxZsxvSCa/eHHv69zn09ZBRu2+yYdqesBFs4ZDHgIcTA -----END CERTIFICATE-----Generated at Sun Jun 2 09:37:20 2024 by rpki-client on console-ams.rpki-client.org