$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/N6U7kOJhkyjB440WEG2Mv6mORlg.roa File: N6U7kOJhkyjB440WEG2Mv6mORlg.roa (raw, json) Hash identifier: 3qTeGmTLr7CFBrYeisvuH8Zp2txy6ISLKfPfFrwI/i4= Subject key identifier: 37:A5:3B:90:E2:61:93:28:C1:E3:8D:16:10:6D:8C:BF:A9:8E:46:58 Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261 Certificate serial: 0E53 Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/N6U7kOJhkyjB440WEG2Mv6mORlg.roa Signing time: Mon 10 Feb 2025 14:03:25 +0000 ROA not before: Mon 10 Feb 2025 14:03:25 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18429 IP address blocks: 27.147.56.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3667 (0xe53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261 Validity Not Before: Feb 10 14:03:25 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=37A53B90E2619328C1E38D16106D8CBFA98E4658 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:cf:16:b7:7c:61:37:89:b1:75:b8:3c:f1:c6: d2:d4:22:1a:ce:72:9e:95:59:ba:cc:87:00:ea:07: c1:ac:46:cb:9c:fc:3f:3e:c3:f7:95:c4:59:d2:92: 3b:20:46:ab:f7:cc:51:b8:98:de:11:4c:f9:12:57: 53:29:38:d7:0e:36:81:c2:95:e5:56:e5:be:46:cc: 4f:e8:cb:07:43:e7:54:a8:58:67:6b:0c:61:1d:70: af:8d:36:5a:37:ea:60:59:89:6e:2a:2c:ad:1e:bb: a3:bd:f7:31:53:cf:8b:cf:b6:e0:e3:5b:d3:fa:64: 1a:5a:cd:e9:33:71:d5:48:0c:93:fa:3d:45:b7:d5: af:33:55:ff:41:53:c5:cf:6d:8a:55:bd:54:29:50: 6d:51:b2:35:81:9d:f7:17:3a:bd:1b:fd:82:fe:3e: a3:2b:2c:43:4b:01:75:0d:57:64:29:82:b0:2c:67: 57:60:97:62:1d:7a:64:43:ae:41:de:4e:17:7f:3a: 82:e1:e5:a3:56:ec:04:e2:02:a6:ac:1f:33:75:fb: 30:38:0c:4c:51:a7:89:3a:ac:5a:3b:0c:34:db:2c: 4f:c6:0b:b8:8a:33:a6:00:8a:0b:27:2e:58:04:89: 68:dc:c8:ae:f5:2a:c5:29:05:75:e1:d6:e8:af:54: cd:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:A5:3B:90:E2:61:93:28:C1:E3:8D:16:10:6D:8C:BF:A9:8E:46:58 X509v3 Authority Key Identifier: keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/N6U7kOJhkyjB440WEG2Mv6mORlg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 27.147.56.0/21 Signature Algorithm: sha256WithRSAEncryption 99:bf:f7:1a:c6:8b:b6:67:00:27:93:87:32:1f:46:64:fa:fc: 3b:8a:a5:13:82:37:c5:78:bc:b2:2e:ff:39:ce:79:f6:b5:d1: 7c:a5:ea:df:7d:09:11:4e:38:78:06:77:61:af:d7:03:ed:0f: b7:04:5b:71:84:bc:bb:f8:de:43:13:67:16:12:e7:39:65:b3: 7e:61:6f:2c:2a:da:d9:66:e3:87:1f:d0:be:48:7c:6f:bc:df: 55:8d:82:34:34:66:7f:3b:70:3a:b7:07:ca:2f:6c:dc:29:7d: 0e:21:5c:b0:f0:af:8e:56:89:0a:98:2a:b7:e8:1a:0c:52:c5: 3b:3f:55:9c:79:fb:98:3b:a9:10:e7:9b:52:31:93:f4:3b:e5: 1c:57:c7:bd:c6:68:b9:88:1d:15:f7:39:f0:40:84:26:6a:31: 6c:95:d6:d5:04:7c:b4:4d:be:85:aa:c9:5b:30:05:a2:e2:f4: 9c:7c:a6:3e:5d:3d:7c:0c:e3:37:17:0b:49:eb:32:3e:6e:fe: 8a:e0:dc:50:f8:f7:c4:fb:b3:53:58:bd:e6:4d:f5:db:d6:d9: 31:e0:4c:87:d5:8f:d6:b9:6c:44:8f:e6:b9:c6:3a:81:1f:0d: 4b:75:1d:18:5e:14:61:d4:9a:c1:bc:ac:4c:72:31:30:01:86: 81:2d:d2:c4 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDlMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQx RTNGM0M4QkE4OURDMTMxMDQxMDM0NUY1MEMxMDA3NjE4MTI2MTAeFw0yNTAyMTAx NDAzMjVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDM3QTUzQjkwRTI2MTkz MjhDMUUzOEQxNjEwNkQ4Q0JGQTk4RTQ2NTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCzxa3fGE3ibF1uDzxxtLUIhrOcp6VWbrMhwDqB8GsRsuc/D8+ w/eVxFnSkjsgRqv3zFG4mN4RTPkSV1MpONcONoHCleVW5b5GzE/oywdD51SoWGdr DGEdcK+NNlo36mBZiW4qLK0eu6O99zFTz4vPtuDjW9P6ZBpazekzcdVIDJP6PUW3 1a8zVf9BU8XPbYpVvVQpUG1RsjWBnfcXOr0b/YL+PqMrLENLAXUNV2QpgrAsZ1dg l2IdemRDrkHeThd/OoLh5aNW7ATiAqasHzN1+zA4DExRp4k6rFo7DDTbLE/GC7iK M6YAigsnLlgEiWjcyK71KsUpBXXh1uivVM2DAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUN6U7kOJhkyjB440WEG2Mv6mORlgwHwYDVR0jBBgwFoAUXR4/PIuoncExBBA0 X1DBAHYYEmEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0dORVQv WFI0X1BJdW9uY0V4QkJBMFgxREJBSFlZRW1FLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9YUjRfUEl1b25jRXhCQkEwWDFEQkFIWVlFbUUuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DR05FVC9ONlU3a09KaGt5akI0NDBXRUcy TXY2bU9SbGcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDG5M4 MA0GCSqGSIb3DQEBCwUAA4IBAQCZv/caxou2ZwAnk4cyH0Zk+vw7iqUTgjfFeLyy Lv85znn2tdF8perffQkRTjh4Bndhr9cD7Q+3BFtxhLy7+N5DE2cWEuc5ZbN+YW8s KtrZZuOHH9C+SHxvvN9VjYI0NGZ/O3A6twfKL2zcKX0OIVyw8K+OVokKmCq36BoM UsU7P1WcefuYO6kQ55tSMZP0O+UcV8e9xmi5iB0V9znwQIQmajFsldbVBHy0Tb6F qslbMAWi4vScfKY+XT18DOM3FwtJ6zI+bv6K4NxQ+PfE+7NTWL3mTfXb1tkx4EyH 1Y/WuWxEj+a5xjqBHw1LdR0YXhRh1JrBvKxMcjEwAYaBLdLE -----END CERTIFICATE-----Generated at Wed Feb 19 22:10:02 2025 by rpki-client