$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/6N4a_n4I3QJZd65KimGpgXzYtHI.roa File: 6N4a_n4I3QJZd65KimGpgXzYtHI.roa (raw, json) Hash identifier: Z6RYsVE355ccFlSqyYVs3xLDVEj7N2+tXaxSa2Wq9q0= Subject key identifier: E8:DE:1A:FE:7E:08:DD:02:59:77:AE:4A:8A:61:A9:81:7C:D8:B4:72 Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261 Certificate serial: 0E50 Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/6N4a_n4I3QJZd65KimGpgXzYtHI.roa Signing time: Mon 10 Feb 2025 14:03:24 +0000 ROA not before: Mon 10 Feb 2025 14:03:24 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18429 IP address blocks: 124.155.172.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3664 (0xe50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261 Validity Not Before: Feb 10 14:03:24 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E8DE1AFE7E08DD025977AE4A8A61A9817CD8B472 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e0:2d:5b:17:83:8b:b2:94:25:40:4d:9f:6b: 68:0f:eb:5d:c4:3e:5c:5a:a1:52:28:40:c4:bd:e7: 09:58:7b:2d:21:ec:b9:24:58:62:a1:b7:ce:25:ed: 33:db:23:24:89:31:6c:7e:74:af:db:c6:58:04:98: 8b:35:c1:82:b8:92:50:5e:c0:45:38:c6:ab:10:07: a7:58:17:e8:e4:ac:c5:51:a1:3c:1f:b1:65:5b:a0: 07:71:92:14:ed:1c:89:c7:7b:32:d9:b5:fa:ff:68: 8a:b7:ad:91:b7:1d:56:ff:1c:c2:30:25:d1:23:bd: 16:3c:4a:5c:74:eb:8d:10:45:3a:fb:13:a4:61:74: 63:75:2f:7c:98:27:55:8e:e6:c9:f3:fd:e4:fa:dc: 90:6c:d2:86:0c:17:15:57:de:50:62:c1:bc:09:27: b5:60:20:b0:ae:b8:8e:73:68:dd:fb:58:0f:0f:a4: 65:5b:d5:ee:e9:ef:16:20:fb:2b:f3:7f:1d:7a:3d: 65:f1:28:c1:f5:23:7e:d0:b6:44:c7:10:d1:75:f3: 08:c0:cb:0b:d6:c9:e1:59:31:a2:44:8a:5b:23:b4: b9:1e:41:33:12:87:ad:f0:54:18:ce:0e:1b:01:c3: 1e:73:11:a3:6f:ed:cf:35:42:1b:48:82:2e:b1:ff: 6f:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:DE:1A:FE:7E:08:DD:02:59:77:AE:4A:8A:61:A9:81:7C:D8:B4:72 X509v3 Authority Key Identifier: keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/6N4a_n4I3QJZd65KimGpgXzYtHI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.155.172.0/23 Signature Algorithm: sha256WithRSAEncryption 3e:91:a3:2a:a0:01:c4:9d:ac:a8:03:15:40:75:6b:d1:79:3f: a7:b5:a7:21:fb:f7:83:86:60:3f:28:be:16:42:97:71:be:4d: 0e:c5:02:2c:68:3a:5a:8e:3f:a2:84:f9:36:1b:81:97:1e:ae: 72:5b:d1:f9:65:d8:72:da:e1:a2:69:18:e4:44:34:e6:76:84: fe:7c:b5:81:ef:24:9f:94:65:e5:68:7c:84:cd:83:fe:53:56: 85:fd:79:59:7f:77:28:6c:ed:ea:f7:b8:01:57:b3:76:97:f4: db:c3:f0:7a:dc:eb:51:e0:80:0d:cd:67:9e:c2:02:6a:70:d2: 2e:d7:3b:b5:da:26:e9:11:7a:4c:d7:4b:83:87:ec:4a:c7:b8: e7:9f:3e:d3:70:e4:91:d0:e4:d2:42:d5:de:51:da:1a:e5:05: 18:be:d6:09:a8:a7:fe:82:6b:c5:9a:72:6c:c7:d9:49:df:40: 4d:f8:83:54:af:8f:70:8b:c8:c4:9b:2a:22:c6:9b:a5:85:3a: 27:5b:f2:a2:79:1e:0b:7f:dc:68:d6:c0:14:e5:3e:c2:6d:68: 9b:44:f2:20:e0:74:36:18:72:a9:94:1b:37:26:dc:6e:b1:38: ff:e9:2a:74:fd:5d:6d:f2:20:05:4f:d0:ea:24:fa:ff:34:26: fb:06:47:24 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDlAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQx RTNGM0M4QkE4OURDMTMxMDQxMDM0NUY1MEMxMDA3NjE4MTI2MTAeFw0yNTAyMTAx NDAzMjRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEU4REUxQUZFN0UwOERE MDI1OTc3QUU0QThBNjFBOTgxN0NEOEI0NzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCt4C1bF4OLspQlQE2fa2gP613EPlxaoVIoQMS95wlYey0h7Lkk WGKht84l7TPbIySJMWx+dK/bxlgEmIs1wYK4klBewEU4xqsQB6dYF+jkrMVRoTwf sWVboAdxkhTtHInHezLZtfr/aIq3rZG3HVb/HMIwJdEjvRY8Slx0640QRTr7E6Rh dGN1L3yYJ1WO5snz/eT63JBs0oYMFxVX3lBiwbwJJ7VgILCuuI5zaN37WA8PpGVb 1e7p7xYg+yvzfx16PWXxKMH1I37QtkTHENF18wjAywvWyeFZMaJEilsjtLkeQTMS h63wVBjODhsBwx5zEaNv7c81QhtIgi6x/2/dAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU6N4a/n4I3QJZd65KimGpgXzYtHIwHwYDVR0jBBgwFoAUXR4/PIuoncExBBA0 X1DBAHYYEmEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0dORVQv WFI0X1BJdW9uY0V4QkJBMFgxREJBSFlZRW1FLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9YUjRfUEl1b25jRXhCQkEwWDFEQkFIWVlFbUUuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DR05FVC82TjRhX240STNRSlpkNjVLaW1H cGdYell0SEkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBfJus MA0GCSqGSIb3DQEBCwUAA4IBAQA+kaMqoAHEnayoAxVAdWvReT+ntach+/eDhmA/ KL4WQpdxvk0OxQIsaDpajj+ihPk2G4GXHq5yW9H5Zdhy2uGiaRjkRDTmdoT+fLWB 7ySflGXlaHyEzYP+U1aF/XlZf3cobO3q97gBV7N2l/Tbw/B63OtR4IANzWeewgJq cNIu1zu12ibpEXpM10uDh+xKx7jnnz7TcOSR0OTSQtXeUdoa5QUYvtYJqKf+gmvF mnJsx9lJ30BN+INUr49wi8jEmyoixpulhTonW/KieR4Lf9xo1sAU5T7CbWibRPIg 4HQ2GHKplBs3JtxusTj/6Sp0/V1t8iAFT9DqJPr/NCb7Bkck -----END CERTIFICATE-----Generated at Wed Feb 19 21:57:45 2025 by rpki-client