$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/7-odCCdsjRnCxnskD3y9g4Z3TuE.roa File: 7-odCCdsjRnCxnskD3y9g4Z3TuE.roa (raw, json) Hash identifier: Rc2+ZO9Evw9Sa16DVVW83lqv6Z0mwmfTEF0RMpzhR6E= Subject key identifier: EF:EA:1D:08:27:6C:8D:19:C2:C6:7B:24:0F:7C:BD:83:86:77:4E:E1 Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261 Certificate serial: 0C79 Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/7-odCCdsjRnCxnskD3y9g4Z3TuE.roa Signing time: Fri 01 Sep 2023 08:26:37 +0000 ROA not before: Fri 01 Sep 2023 08:26:37 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18429 IP address blocks: 27.147.24.0/21 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 02:54:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3193 (0xc79) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261 Validity Not Before: Sep 1 08:26:37 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=EFEA1D08276C8D19C2C67B240F7CBD8386774EE1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:2c:f9:e5:6c:70:d5:16:5f:c8:08:8a:df:45: 4f:54:cc:a7:e2:f0:e0:05:3c:59:e6:42:59:b9:e4: d6:15:05:50:46:90:fe:9e:c3:ba:e0:14:ed:73:56: 42:ab:26:1a:6b:7f:79:3d:97:44:1f:7d:12:fc:79: 34:3a:4d:27:5e:fe:b6:bb:57:6d:3a:df:b0:ba:36: 1a:a9:4a:a3:5f:ca:a2:bd:bc:eb:4a:51:73:64:9f: 64:31:6f:5a:68:f5:0d:27:20:7f:9a:bf:b8:a9:a4: c3:d9:2f:e2:00:61:ac:fb:12:27:97:be:e0:6e:9b: 52:bb:f9:61:29:aa:e2:bd:27:1d:3a:15:42:45:0d: 54:50:13:fb:b7:d7:26:93:42:2a:06:ee:86:68:c6: 12:da:a6:e5:42:98:d8:d0:02:90:ba:f8:91:db:dd: 0c:50:8c:ea:b3:52:aa:b0:37:72:87:67:65:1f:07: 1d:70:f4:ea:a0:ec:36:d4:35:e4:e4:99:39:f1:3f: 24:28:7f:66:32:d4:32:f0:6f:e9:8c:36:c2:26:f9: 0a:41:f6:ca:22:45:c0:07:ce:cd:18:26:70:da:cd: db:6c:cd:49:bd:67:a9:84:5a:88:5a:81:da:20:02: 18:1f:17:15:43:c3:a1:6c:9e:fa:97:c6:08:f6:41: 87:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:EA:1D:08:27:6C:8D:19:C2:C6:7B:24:0F:7C:BD:83:86:77:4E:E1 X509v3 Authority Key Identifier: keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/7-odCCdsjRnCxnskD3y9g4Z3TuE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 27.147.24.0/21 Signature Algorithm: sha256WithRSAEncryption 29:b1:d7:b9:b2:69:37:e3:3a:5d:8f:36:fc:9f:b9:09:96:ff: 51:cc:62:c7:09:7e:c8:df:bd:1c:25:71:02:f5:30:2a:98:68: 2d:01:e7:39:6c:be:77:0d:36:31:d0:5f:10:67:c2:a3:2c:e3: 50:98:7d:40:af:28:cf:bc:65:43:d7:ef:ac:46:bf:4b:92:bf: f7:40:a4:7d:0c:eb:20:56:a7:bf:07:f2:02:e9:cd:85:12:62: 88:f9:23:c3:e0:b3:1a:9c:38:a7:70:82:90:2e:64:fe:01:e8: db:f6:44:e2:2b:a7:32:67:cc:35:c1:db:31:ab:88:7a:fe:56: 50:89:0b:a9:c3:48:11:a7:1e:2a:00:d6:e0:1b:fb:b8:21:7a: 58:b1:b0:c1:6a:d3:c5:43:2c:4d:2a:af:c7:bf:d8:2e:36:5a: 76:6d:95:1b:63:c8:1b:15:5c:ad:a2:ec:30:f0:75:8c:09:00: 46:57:d1:b7:1c:63:73:a2:4a:89:17:3c:10:2d:94:83:15:5b: 4b:15:fa:99:46:fb:13:fa:1b:7e:0e:ff:4f:e8:b1:58:2c:aa: 7a:9c:b5:11:ff:45:d8:5f:45:c3:06:33:6f:b1:0a:ef:37:35: fb:57:6a:3c:6e:6c:c4:0d:7d:be:a0:82:02:a8:28:f0:42:2d: a1:8f:fb:29 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDHkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQx RTNGM0M4QkE4OURDMTMxMDQxMDM0NUY1MEMxMDA3NjE4MTI2MTAeFw0yMzA5MDEw ODI2MzdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEVGRUExRDA4Mjc2QzhE MTlDMkM2N0IyNDBGN0NCRDgzODY3NzRFRTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGLPnlbHDVFl/ICIrfRU9UzKfi8OAFPFnmQlm55NYVBVBGkP6e w7rgFO1zVkKrJhprf3k9l0QffRL8eTQ6TSde/ra7V20637C6NhqpSqNfyqK9vOtK UXNkn2Qxb1po9Q0nIH+av7ippMPZL+IAYaz7EieXvuBum1K7+WEpquK9Jx06FUJF DVRQE/u31yaTQioG7oZoxhLapuVCmNjQApC6+JHb3QxQjOqzUqqwN3KHZ2UfBx1w 9Oqg7DbUNeTkmTnxPyQof2Yy1DLwb+mMNsIm+QpB9soiRcAHzs0YJnDazdtszUm9 Z6mEWohagdogAhgfFxVDw6FsnvqXxgj2QYeNAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU7+odCCdsjRnCxnskD3y9g4Z3TuEwHwYDVR0jBBgwFoAUXR4/PIuoncExBBA0 X1DBAHYYEmEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0dORVQv WFI0X1BJdW9uY0V4QkJBMFgxREJBSFlZRW1FLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9YUjRfUEl1b25jRXhCQkEwWDFEQkFIWVlFbUUuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DR05FVC83LW9kQ0Nkc2pSbkN4bnNrRDN5 OWc0WjNUdUUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDG5MY MA0GCSqGSIb3DQEBCwUAA4IBAQApsde5smk34zpdjzb8n7kJlv9RzGLHCX7I370c JXEC9TAqmGgtAec5bL53DTYx0F8QZ8KjLONQmH1AryjPvGVD1++sRr9Lkr/3QKR9 DOsgVqe/B/IC6c2FEmKI+SPD4LManDincIKQLmT+Aejb9kTiK6cyZ8w1wdsxq4h6 /lZQiQupw0gRpx4qANbgG/u4IXpYsbDBatPFQyxNKq/Hv9guNlp2bZUbY8gbFVyt ouww8HWMCQBGV9G3HGNzokqJFzwQLZSDFVtLFfqZRvsT+ht+Dv9P6LFYLKp6nLUR /0XYX0XDBjNvsQrvNzX7V2o8bmzEDX2+oIICqCjwQi2hj/sp -----END CERTIFICATE-----Generated at Mon Jun 3 12:43:59 2024 by rpki-client on console-fra.rpki-client.org