$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/SW8UgKa_mjHoP5piEBllkczPCes.roa File: SW8UgKa_mjHoP5piEBllkczPCes.roa (raw, json) Hash identifier: x+IQN7TeQzJWUMfRp/a/IsGcQujF3kAFRHOuPIfO/vU= Subject key identifier: 49:6F:14:80:A6:BF:9A:31:E8:3F:9A:62:10:19:65:91:CC:CF:09:EB Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261 Certificate serial: 0DB1 Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/SW8UgKa_mjHoP5piEBllkczPCes.roa Signing time: Mon 26 Aug 2024 05:10:20 +0000 ROA not before: Mon 26 Aug 2024 05:10:20 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18429 IP address blocks: 123.50.56.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Nov 2024 07:07:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3505 (0xdb1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261 Validity Not Before: Aug 26 05:10:20 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=496F1480A6BF9A31E83F9A6210196591CCCF09EB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:18:32:a3:1b:aa:e4:35:36:a8:c9:f2:a4:1f: e7:fe:47:ef:6c:5c:6d:9a:cc:90:a3:7f:3d:07:6a: 1d:c8:2e:85:16:a8:63:db:10:e5:cd:59:0e:9b:f4: 61:c2:8e:78:21:fc:52:04:a6:0e:58:c5:05:d1:3d: 20:ca:d0:c4:41:09:55:02:c6:34:84:c2:4c:ab:77: 41:18:47:68:70:7f:a6:38:07:54:45:88:ea:f6:85: a3:b9:e4:c0:6a:16:2c:6e:ef:53:87:86:8b:73:a4: e3:40:8c:94:32:8c:2f:3f:32:65:be:df:ed:46:6c: cc:02:9e:8c:b1:04:d9:96:50:a1:6d:ec:90:4c:fe: 03:5b:f5:8a:5e:99:03:82:01:85:61:38:c9:2c:72: de:fe:b9:42:83:7a:61:04:e0:cd:b8:45:77:8d:50: cc:7c:e4:10:b1:92:84:66:50:3c:da:8c:75:ea:5a: 3d:74:88:87:ff:73:f0:d2:aa:34:96:7f:e0:bd:a5: f2:66:15:36:c3:90:97:17:a3:8f:e5:f1:f1:08:a6: 5b:24:ca:0e:61:ec:1a:0b:c8:5b:20:01:f8:b5:52: 1b:0d:0a:fc:e2:20:5f:7c:13:8e:30:b0:c9:80:a3: 02:53:4c:79:86:10:67:7a:1d:51:77:0c:66:27:38: 0b:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:6F:14:80:A6:BF:9A:31:E8:3F:9A:62:10:19:65:91:CC:CF:09:EB X509v3 Authority Key Identifier: keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/SW8UgKa_mjHoP5piEBllkczPCes.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.50.56.0/21 Signature Algorithm: sha256WithRSAEncryption 62:51:bb:29:b0:e2:b4:70:0c:f7:21:ec:ff:76:2e:26:5e:c2: f5:d6:36:77:8f:38:7e:0c:b9:14:23:e7:4c:84:c1:ab:8f:c6: e4:8f:65:85:4f:72:30:f3:9e:c9:a8:19:9f:dc:68:20:8d:16: 28:08:3c:1f:de:2c:86:0e:42:c0:23:1f:81:6e:67:22:af:30: 97:18:99:82:89:92:85:f2:91:ce:6e:a3:bb:ee:61:ae:eb:9e: 63:ab:8e:72:9a:17:43:35:04:37:d0:cf:ab:a4:f0:a5:36:0b: 7f:e7:1a:91:81:6b:52:3a:4f:6d:22:d8:9c:d1:a6:e1:3b:74: 82:eb:93:c0:fd:8b:95:b0:9e:88:9d:c0:b8:01:7e:f4:70:5d: e9:9b:c8:06:16:01:df:fc:99:7d:00:c1:78:92:12:9d:c9:32: 4c:f6:28:65:03:3d:8e:35:11:51:fa:c6:0f:d2:37:18:6b:50: 38:a4:52:4d:5a:e0:ea:eb:96:07:3a:fe:4f:c3:7a:ab:47:08: 3c:43:4c:c9:24:23:03:ae:c7:df:02:d2:d9:a6:7f:9b:b1:bb: ce:5c:1a:c2:d3:3d:3b:4c:e8:2e:c7:96:a4:49:1f:64:bf:a7: a2:fc:28:57:7d:61:d0:77:81:91:99:b9:18:c1:99:9e:ca:17: e7:9b:2d:d2 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDbEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQx RTNGM0M4QkE4OURDMTMxMDQxMDM0NUY1MEMxMDA3NjE4MTI2MTAeFw0yNDA4MjYw NTEwMjBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ5NkYxNDgwQTZCRjlB MzFFODNGOUE2MjEwMTk2NTkxQ0NDRjA5RUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQClGDKjG6rkNTaoyfKkH+f+R+9sXG2azJCjfz0Hah3ILoUWqGPb EOXNWQ6b9GHCjngh/FIEpg5YxQXRPSDK0MRBCVUCxjSEwkyrd0EYR2hwf6Y4B1RF iOr2haO55MBqFixu71OHhotzpONAjJQyjC8/MmW+3+1GbMwCnoyxBNmWUKFt7JBM /gNb9YpemQOCAYVhOMksct7+uUKDemEE4M24RXeNUMx85BCxkoRmUDzajHXqWj10 iIf/c/DSqjSWf+C9pfJmFTbDkJcXo4/l8fEIplskyg5h7BoLyFsgAfi1UhsNCvzi IF98E44wsMmAowJTTHmGEGd6HVF3DGYnOAtFAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUSW8UgKa/mjHoP5piEBllkczPCeswHwYDVR0jBBgwFoAUXR4/PIuoncExBBA0 X1DBAHYYEmEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0dORVQv WFI0X1BJdW9uY0V4QkJBMFgxREJBSFlZRW1FLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9YUjRfUEl1b25jRXhCQkEwWDFEQkFIWVlFbUUuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DR05FVC9TVzhVZ0thX21qSG9QNXBpRUJs bGtjelBDZXMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDezI4 MA0GCSqGSIb3DQEBCwUAA4IBAQBiUbspsOK0cAz3Iez/di4mXsL11jZ3jzh+DLkU I+dMhMGrj8bkj2WFT3Iw857JqBmf3GggjRYoCDwf3iyGDkLAIx+BbmcirzCXGJmC iZKF8pHObqO77mGu655jq45ymhdDNQQ30M+rpPClNgt/5xqRgWtSOk9tItic0abh O3SC65PA/YuVsJ6IncC4AX70cF3pm8gGFgHf/Jl9AMF4khKdyTJM9ihlAz2ONRFR +sYP0jcYa1A4pFJNWuDq65YHOv5Pw3qrRwg8Q0zJJCMDrsffAtLZpn+bsbvOXBrC 0z07TOgux5akSR9kv6ei/ChXfWHQd4GRmbkYwZmeyhfnmy3S -----END CERTIFICATE-----Generated at Thu Nov 14 06:09:14 2024 by rpki-client on console-ams.rpki-client.org