$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/7zUnTvTIVJD5III4XmZnnSF0sQk.roa File: 7zUnTvTIVJD5III4XmZnnSF0sQk.roa (raw, json) Hash identifier: SgTxV17VhpN26F+PNk/2hJecGDVp/w5FcM53IsOoiuc= Subject key identifier: EF:35:27:4E:F4:C8:54:90:F9:20:82:38:5E:66:67:9D:21:74:B1:09 Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261 Certificate serial: 0C55 Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/7zUnTvTIVJD5III4XmZnnSF0sQk.roa Signing time: Fri 01 Sep 2023 08:26:26 +0000 ROA not before: Fri 01 Sep 2023 08:26:26 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18429 IP address blocks: 103.224.200.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 02:54:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3157 (0xc55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261 Validity Not Before: Sep 1 08:26:26 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=EF35274EF4C85490F92082385E66679D2174B109 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:9f:9c:1d:87:21:66:67:5d:3e:dc:af:c0:80: 7b:8b:36:09:7c:c5:49:67:4f:b0:bb:c8:62:21:bf: 6b:45:08:73:7d:09:03:8c:35:af:54:e3:2c:76:d4: 53:e8:74:3a:84:00:2b:8e:ae:66:e1:ef:0b:c0:75: 2d:f6:86:f1:c8:89:40:d6:bb:b7:99:a6:18:c6:65: 56:65:42:53:4a:da:ff:5d:f0:94:31:cf:d6:83:d4: e2:09:58:8d:78:29:48:56:05:9b:9a:c5:e6:dc:8a: 9e:0e:d7:ce:7f:76:5f:cc:f6:c9:90:86:5d:e7:70: 23:fc:db:63:06:9b:cf:85:c8:75:e4:74:d8:b3:4f: 2f:65:47:7e:1b:34:dd:9d:a5:cf:6b:d9:dd:7b:16: 0e:cb:c7:f6:6e:f8:b1:dc:9b:08:50:7e:73:ea:e5: b3:40:64:61:32:7c:92:80:3b:bc:29:e8:59:d4:a6: 43:ca:46:8f:5d:74:87:71:f0:5c:51:56:4c:11:4d: cb:92:9d:45:d0:d0:cf:6c:6b:33:8f:28:c8:f1:57: 9d:8b:eb:91:ca:2a:50:ab:6c:2a:62:79:04:8c:5b: a6:42:5f:a9:10:3e:d8:0f:c0:f3:b3:bb:24:b4:38: 3f:46:3d:ab:e6:dd:1f:bf:86:51:9b:6c:8c:45:21: e8:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:35:27:4E:F4:C8:54:90:F9:20:82:38:5E:66:67:9D:21:74:B1:09 X509v3 Authority Key Identifier: keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/7zUnTvTIVJD5III4XmZnnSF0sQk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.224.200.0/22 Signature Algorithm: sha256WithRSAEncryption 85:fa:d7:4a:ef:10:6c:3e:fd:34:cb:8e:fa:e0:23:49:5f:00: ff:d5:a9:1d:60:78:f7:06:f3:9f:59:65:2a:26:0e:0c:ab:14: 49:73:a2:94:ab:ef:be:4a:4a:5e:db:0f:73:74:96:00:2e:49: d5:58:bc:8f:2b:e9:68:03:36:5b:33:6f:c3:1e:1f:73:4f:f2: b2:78:64:9e:c0:57:c7:14:da:08:60:2d:cf:30:fa:6c:f8:9d: d0:0f:e7:12:ac:ab:44:5a:5b:a9:07:eb:b5:7c:f9:01:5e:18: 7e:bc:f8:c0:f1:49:83:1e:02:47:28:8a:55:18:85:0d:c1:9f: 1c:db:cd:e7:e7:2f:39:1f:1d:fb:b5:30:93:20:18:31:0f:fa: ac:c9:62:8a:19:98:7a:40:99:85:e6:ab:25:7e:36:58:df:22: b9:49:47:ba:d8:a0:5b:ae:3f:04:3d:63:87:e2:9b:d9:4b:c1: db:08:80:84:10:3c:17:53:f3:4a:c0:05:c5:2e:76:01:03:d7: 5c:ca:0b:61:fa:56:a2:f0:d3:f4:de:64:bb:f9:ae:18:56:36: ce:63:d5:fc:9f:ce:d0:b7:1e:ed:ff:2b:88:b4:e6:57:7e:39: f0:92:0d:ee:c9:f2:67:3e:18:37:f3:19:f1:fb:47:66:9e:25: 8d:90:c0:4b -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDFUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQx RTNGM0M4QkE4OURDMTMxMDQxMDM0NUY1MEMxMDA3NjE4MTI2MTAeFw0yMzA5MDEw ODI2MjZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEVGMzUyNzRFRjRDODU0 OTBGOTIwODIzODVFNjY2NzlEMjE3NEIxMDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLn5wdhyFmZ10+3K/AgHuLNgl8xUlnT7C7yGIhv2tFCHN9CQOM Na9U4yx21FPodDqEACuOrmbh7wvAdS32hvHIiUDWu7eZphjGZVZlQlNK2v9d8JQx z9aD1OIJWI14KUhWBZuaxebcip4O185/dl/M9smQhl3ncCP822MGm8+FyHXkdNiz Ty9lR34bNN2dpc9r2d17Fg7Lx/Zu+LHcmwhQfnPq5bNAZGEyfJKAO7wp6FnUpkPK Ro9ddIdx8FxRVkwRTcuSnUXQ0M9sazOPKMjxV52L65HKKlCrbCpieQSMW6ZCX6kQ PtgPwPOzuyS0OD9GPavm3R+/hlGbbIxFIei7AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQU7zUnTvTIVJD5III4XmZnnSF0sQkwHwYDVR0jBBgwFoAUXR4/PIuoncExBBA0 X1DBAHYYEmEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0dORVQv WFI0X1BJdW9uY0V4QkJBMFgxREJBSFlZRW1FLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9YUjRfUEl1b25jRXhCQkEwWDFEQkFIWVlFbUUuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DR05FVC83elVuVHZUSVZKRDVJSUk0WG1a bm5TRjBzUWsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCZ+DI MA0GCSqGSIb3DQEBCwUAA4IBAQCF+tdK7xBsPv00y4764CNJXwD/1akdYHj3BvOf WWUqJg4MqxRJc6KUq+++Skpe2w9zdJYALknVWLyPK+loAzZbM2/DHh9zT/KyeGSe wFfHFNoIYC3PMPps+J3QD+cSrKtEWlupB+u1fPkBXhh+vPjA8UmDHgJHKIpVGIUN wZ8c283n5y85Hx37tTCTIBgxD/qsyWKKGZh6QJmF5qslfjZY3yK5SUe62KBbrj8E PWOH4pvZS8HbCICEEDwXU/NKwAXFLnYBA9dcygth+lai8NP03mS7+a4YVjbOY9X8 n87Qtx7t/yuItOZXfjnwkg3uyfJnPhg38xnx+0dmniWNkMBL -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:40 2024 by rpki-client on console-ams.rpki-client.org