$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/K4R-secfi5f9LiE0Ba7_ZuasR1k.roa File: K4R-secfi5f9LiE0Ba7_ZuasR1k.roa (raw, json) Hash identifier: gmXQyO9ZNRpihEX17FoNxuOlzj/+uaujSbZ7QkQq9Ok= Subject key identifier: 2B:84:7E:B1:E7:1F:8B:97:FD:2E:21:34:05:AE:FF:66:E6:AC:47:59 Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261 Certificate serial: 0C6C Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/K4R-secfi5f9LiE0Ba7_ZuasR1k.roa Signing time: Fri 01 Sep 2023 08:26:32 +0000 ROA not before: Fri 01 Sep 2023 08:26:32 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18429 IP address blocks: 123.50.48.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 02:54:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3180 (0xc6c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261 Validity Not Before: Sep 1 08:26:32 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=2B847EB1E71F8B97FD2E213405AEFF66E6AC4759 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:77:e5:6f:1f:46:eb:4e:65:7f:11:d5:10:e0: fe:c9:7c:9b:20:92:0d:f4:65:8c:86:f3:a4:81:c1: 23:55:ba:e8:48:07:2a:ed:25:4b:7e:58:16:b0:6e: f4:32:55:d6:86:b1:3b:86:4e:e9:a6:75:cf:85:bd: b2:7e:e9:ce:7d:d8:0f:85:c1:62:9f:9d:29:71:a5: d0:f3:4c:ea:52:cc:3c:aa:54:7c:d4:1e:86:7e:41: a7:30:09:47:5f:0b:ba:e2:5d:20:3e:ed:dd:19:c7: c1:8a:e1:20:98:dc:c7:02:1e:01:68:af:f2:3a:c9: 9d:dd:73:c1:09:dc:bf:7c:af:f5:a8:df:25:27:05: df:1e:9f:c4:90:41:d8:69:95:de:48:11:85:d4:5c: 2e:98:ae:9e:dc:6d:09:ad:50:8b:2a:10:4c:6f:4f: eb:f6:e6:a7:4b:fd:55:cf:8a:45:61:19:cc:0c:61: 2a:5b:05:98:76:db:a5:0c:ab:63:9c:7a:2b:23:d5: 26:83:61:e1:60:39:d9:55:c2:08:04:51:60:f9:a5: 26:5e:31:18:1f:06:ff:54:51:67:c3:ff:19:b0:b8: b3:1b:30:da:63:f2:88:1c:ff:8f:a2:d8:06:4e:bd: 7d:8b:7e:ed:ab:8a:a7:48:fa:77:d0:19:2f:69:af: 82:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:84:7E:B1:E7:1F:8B:97:FD:2E:21:34:05:AE:FF:66:E6:AC:47:59 X509v3 Authority Key Identifier: keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/K4R-secfi5f9LiE0Ba7_ZuasR1k.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.50.48.0/21 Signature Algorithm: sha256WithRSAEncryption 71:38:c7:84:f6:b8:f5:17:c1:17:40:2f:61:22:25:9a:c7:f9: e4:3e:6c:60:02:2c:93:20:91:69:f2:d4:91:15:47:c4:9f:5c: 35:ed:e5:b8:08:ef:7e:12:9c:8b:03:a4:cc:69:cf:43:b1:a1: 7f:29:8d:00:a4:ff:36:f9:3c:c5:d1:91:54:ca:94:a3:92:25: cb:b1:05:93:66:6f:3d:c4:5f:96:ec:2c:1f:af:34:e3:f1:a5: 3c:7b:12:60:7f:3b:2e:72:01:2d:5b:a4:11:3c:4f:25:b6:56: 48:e6:b4:6b:33:49:c3:6c:05:a6:ce:cc:a9:16:74:6a:3f:f0: 7b:b3:d1:30:4d:e5:9a:5b:26:82:a5:36:0f:02:e6:42:66:33: 9e:73:f5:80:a9:8b:2b:c4:bb:49:be:b4:6c:e6:b5:9a:84:72: a6:e9:46:51:25:83:4e:43:ef:34:61:1e:b1:25:30:21:bd:23: 17:f1:d8:06:19:d2:be:75:dd:75:15:3e:3d:79:11:ef:bc:5d: 74:27:38:9e:57:97:39:95:9d:23:eb:1c:53:69:b0:13:18:c2: 50:ec:27:3b:20:d0:83:90:61:07:73:5c:e9:4b:23:bd:cd:58: a6:93:0e:08:aa:ac:5b:6e:0f:a4:7b:73:3c:3c:b8:ea:0b:45: 16:d4:80:58 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDGwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQx RTNGM0M4QkE4OURDMTMxMDQxMDM0NUY1MEMxMDA3NjE4MTI2MTAeFw0yMzA5MDEw ODI2MzJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDJCODQ3RUIxRTcxRjhC OTdGRDJFMjEzNDA1QUVGRjY2RTZBQzQ3NTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCYd+VvH0brTmV/EdUQ4P7JfJsgkg30ZYyG86SBwSNVuuhIByrt JUt+WBawbvQyVdaGsTuGTummdc+FvbJ+6c592A+FwWKfnSlxpdDzTOpSzDyqVHzU HoZ+QacwCUdfC7riXSA+7d0Zx8GK4SCY3McCHgFor/I6yZ3dc8EJ3L98r/Wo3yUn Bd8en8SQQdhpld5IEYXUXC6Yrp7cbQmtUIsqEExvT+v25qdL/VXPikVhGcwMYSpb BZh226UMq2Oceisj1SaDYeFgOdlVwggEUWD5pSZeMRgfBv9UUWfD/xmwuLMbMNpj 8ogc/4+i2AZOvX2Lfu2riqdI+nfQGS9pr4LnAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUK4R+secfi5f9LiE0Ba7/ZuasR1kwHwYDVR0jBBgwFoAUXR4/PIuoncExBBA0 X1DBAHYYEmEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0dORVQv WFI0X1BJdW9uY0V4QkJBMFgxREJBSFlZRW1FLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9YUjRfUEl1b25jRXhCQkEwWDFEQkFIWVlFbUUuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DR05FVC9LNFItc2VjZmk1ZjlMaUUwQmE3 X1p1YXNSMWsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDezIw MA0GCSqGSIb3DQEBCwUAA4IBAQBxOMeE9rj1F8EXQC9hIiWax/nkPmxgAiyTIJFp 8tSRFUfEn1w17eW4CO9+EpyLA6TMac9DsaF/KY0ApP82+TzF0ZFUypSjkiXLsQWT Zm89xF+W7CwfrzTj8aU8exJgfzsucgEtW6QRPE8ltlZI5rRrM0nDbAWmzsypFnRq P/B7s9EwTeWaWyaCpTYPAuZCZjOec/WAqYsrxLtJvrRs5rWahHKm6UZRJYNOQ+80 YR6xJTAhvSMX8dgGGdK+dd11FT49eRHvvF10JzieV5c5lZ0j6xxTabATGMJQ7Cc7 INCDkGEHc1zpSyO9zVimkw4Iqqxbbg+ke3M8PLjqC0UW1IBY -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:40 2024 by rpki-client on console-ams.rpki-client.org