$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/LoxLvnF7vka-K89P5l3UiB0o0v0.roa File: LoxLvnF7vka-K89P5l3UiB0o0v0.roa (raw, json) Hash identifier: GPi+m1lq8xLXhgHWUKdMKd8EO4kf5vjVPx/I9lAstT8= Subject key identifier: 2E:8C:4B:BE:71:7B:BE:46:BE:2B:CF:4F:E6:5D:D4:88:1D:28:D2:FD Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261 Certificate serial: 0C7B Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/LoxLvnF7vka-K89P5l3UiB0o0v0.roa Signing time: Fri 01 Sep 2023 08:26:37 +0000 ROA not before: Fri 01 Sep 2023 08:26:37 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18429 IP address blocks: 61.57.144.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 02:54:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3195 (0xc7b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261 Validity Not Before: Sep 1 08:26:37 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=2E8C4BBE717BBE46BE2BCF4FE65DD4881D28D2FD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:fa:e4:a6:2b:51:29:1f:89:e6:8e:3c:55:1f: 6f:ce:8e:91:fb:89:6d:83:5f:c1:70:d7:77:d5:97: 80:f1:75:29:8b:0a:86:5d:e2:00:e7:07:c9:43:d0: 84:c2:23:e2:8d:ce:aa:25:e0:99:d5:c4:3a:03:8c: d2:38:89:31:13:ac:2e:71:64:76:0d:73:aa:6d:02: f5:87:99:2a:fb:65:b8:48:78:50:13:e1:7b:af:d4: 82:c4:86:46:3c:d9:01:ec:13:28:75:7b:dc:66:0b: 4b:08:53:ad:f1:53:a0:88:49:b3:4d:5e:f9:c8:02: f9:20:b4:71:8b:c8:cc:e6:53:48:db:60:07:03:56: 07:95:e8:03:19:c8:55:6e:bd:dd:d8:c2:77:c5:a1: 8e:bc:e6:62:52:2f:7b:ca:80:14:d5:4c:d5:85:f5: 75:42:4a:dd:a1:8d:fa:43:80:29:64:ad:0e:ba:27: 9e:01:a3:11:a3:57:03:37:56:eb:e5:d8:16:6e:be: e0:50:71:43:3a:8c:b4:25:85:dc:8f:0d:1b:5c:80: e7:21:f9:da:fe:6d:72:ce:5b:af:cf:6d:14:ac:e5: 50:79:8b:c1:d5:ae:19:17:29:9f:d6:fa:48:44:2c: 3d:d1:e8:c6:f1:55:11:d8:f0:fb:a1:85:f3:3c:8e: 07:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:8C:4B:BE:71:7B:BE:46:BE:2B:CF:4F:E6:5D:D4:88:1D:28:D2:FD X509v3 Authority Key Identifier: keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/LoxLvnF7vka-K89P5l3UiB0o0v0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.57.144.0/20 Signature Algorithm: sha256WithRSAEncryption 55:b7:b6:83:91:59:67:10:8b:09:34:92:d8:65:4e:ff:71:80: b2:03:92:11:2e:71:0f:c4:31:d7:2e:7f:6f:de:e3:37:79:63: a8:bc:3e:35:77:9c:6e:84:cc:4e:e0:30:16:b8:6b:88:22:e1: 17:06:dc:05:bd:c9:6d:96:b0:58:53:8a:19:b6:e6:2b:4d:16: 64:91:fb:56:5e:e2:e7:26:c8:4e:ee:e7:ae:45:a5:af:16:9e: 40:b2:f2:1b:20:67:aa:e8:e3:5f:67:82:9a:2a:88:77:86:6a: 03:ad:f9:00:44:f7:91:d4:32:31:e0:75:03:60:db:7b:0c:1f: b5:0b:47:3a:a8:1a:07:05:b5:19:94:cf:4c:98:5d:3d:37:0c: c4:9a:b5:7e:dc:27:72:fe:d9:85:d9:ca:1c:7b:3c:c8:48:f1: 56:38:8e:e0:18:f9:36:6f:31:d3:b6:54:8c:a0:bb:1d:cd:e1: e8:50:34:96:b7:e0:24:5e:d0:90:a9:23:e1:5d:55:2f:80:7e: 1e:62:48:aa:7b:b1:08:b9:64:b1:dd:7e:49:ab:f4:af:a7:a7: 15:4f:0f:10:3b:7a:8a:78:98:68:41:d6:2c:05:35:3d:1d:bc: 02:f4:6e:6a:88:e3:9f:ca:46:1e:4f:c3:c3:7c:b0:15:23:22: 80:77:73:6b -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDHswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQx RTNGM0M4QkE4OURDMTMxMDQxMDM0NUY1MEMxMDA3NjE4MTI2MTAeFw0yMzA5MDEw ODI2MzdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDJFOEM0QkJFNzE3QkJF NDZCRTJCQ0Y0RkU2NURENDg4MUQyOEQyRkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCz+uSmK1EpH4nmjjxVH2/OjpH7iW2DX8Fw13fVl4DxdSmLCoZd 4gDnB8lD0ITCI+KNzqol4JnVxDoDjNI4iTETrC5xZHYNc6ptAvWHmSr7ZbhIeFAT 4Xuv1ILEhkY82QHsEyh1e9xmC0sIU63xU6CISbNNXvnIAvkgtHGLyMzmU0jbYAcD VgeV6AMZyFVuvd3YwnfFoY685mJSL3vKgBTVTNWF9XVCSt2hjfpDgClkrQ66J54B oxGjVwM3Vuvl2BZuvuBQcUM6jLQlhdyPDRtcgOch+dr+bXLOW6/PbRSs5VB5i8HV rhkXKZ/W+khELD3R6MbxVRHY8PuhhfM8jgcBAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQULoxLvnF7vka+K89P5l3UiB0o0v0wHwYDVR0jBBgwFoAUXR4/PIuoncExBBA0 X1DBAHYYEmEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0dORVQv WFI0X1BJdW9uY0V4QkJBMFgxREJBSFlZRW1FLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9YUjRfUEl1b25jRXhCQkEwWDFEQkFIWVlFbUUuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DR05FVC9Mb3hMdm5GN3ZrYS1LODlQNWwz VWlCMG8wdjAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEPTmQ MA0GCSqGSIb3DQEBCwUAA4IBAQBVt7aDkVlnEIsJNJLYZU7/cYCyA5IRLnEPxDHX Ln9v3uM3eWOovD41d5xuhMxO4DAWuGuIIuEXBtwFvcltlrBYU4oZtuYrTRZkkftW XuLnJshO7ueuRaWvFp5AsvIbIGeq6ONfZ4KaKoh3hmoDrfkARPeR1DIx4HUDYNt7 DB+1C0c6qBoHBbUZlM9MmF09NwzEmrV+3Cdy/tmF2cocezzISPFWOI7gGPk2bzHT tlSMoLsdzeHoUDSWt+AkXtCQqSPhXVUvgH4eYkiqe7EIuWSx3X5Jq/Svp6cVTw8Q O3qKeJhoQdYsBTU9HbwC9G5qiOOfykYeT8PDfLAVIyKAd3Nr -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:40 2024 by rpki-client on console-ams.rpki-client.org