$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/T9msAOhpseBrhpqhD092EPjL4Ag.roa File: T9msAOhpseBrhpqhD092EPjL4Ag.roa (raw, json) Hash identifier: dHZChe+21/Y1MThH49ff1hUMRFw5NNtb4Md21DeogLc= Subject key identifier: 4F:D9:AC:00:E8:69:B1:E0:6B:86:9A:A1:0F:4F:76:10:F8:CB:E0:08 Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261 Certificate serial: 0DC2 Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/T9msAOhpseBrhpqhD092EPjL4Ag.roa Signing time: Mon 26 Aug 2024 05:10:24 +0000 ROA not before: Mon 26 Aug 2024 05:10:24 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18429 IP address blocks: 45.64.232.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Nov 2024 07:07:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3522 (0xdc2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261 Validity Not Before: Aug 26 05:10:24 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4FD9AC00E869B1E06B869AA10F4F7610F8CBE008 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:b9:10:db:d6:5f:b2:1e:11:77:c9:f1:ae:d4: 67:00:8f:17:80:97:26:e6:69:2a:b9:d5:d9:0d:2b: 16:0b:68:f4:54:0d:75:aa:49:a1:da:6b:91:10:34: 3a:ed:90:a1:65:39:00:00:e0:10:79:7f:7d:79:ef: 93:5f:38:32:27:af:ba:ef:ec:ff:16:9b:11:89:63: 14:cd:27:77:1e:83:79:b2:16:62:fc:7b:6d:e3:48: cc:2c:30:a1:ff:fe:b2:84:64:f9:f3:ed:ee:6b:26: a0:89:ee:e1:26:a1:91:c2:17:d3:45:2b:0d:c9:89: 29:54:16:9e:ad:6d:e7:0d:ee:0e:7b:34:44:8a:3f: 66:99:d4:3e:93:1f:82:ba:8c:84:96:ba:df:e6:fc: 5f:32:37:eb:0b:8d:57:1d:34:e2:d8:5e:9c:3e:f6: c5:08:c5:4d:77:ea:8d:f8:9c:b9:87:38:64:c1:dc: 93:c7:4b:4e:35:a4:52:d5:20:51:ed:fe:b7:d7:65: 24:79:98:0c:98:32:4b:98:f1:e7:a6:29:78:83:ab: 9b:7b:37:28:04:35:10:f1:13:8e:df:7b:f2:b8:af: 30:25:6b:1e:5b:cc:d4:1c:87:f3:37:e4:bf:72:19: 86:23:06:c6:e7:79:28:f4:59:53:d9:b4:15:60:b0: ec:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:D9:AC:00:E8:69:B1:E0:6B:86:9A:A1:0F:4F:76:10:F8:CB:E0:08 X509v3 Authority Key Identifier: keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/T9msAOhpseBrhpqhD092EPjL4Ag.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 45.64.232.0/22 Signature Algorithm: sha256WithRSAEncryption 97:48:0d:87:36:dd:ac:53:cc:3d:17:c8:0d:de:a6:b0:aa:24: 9f:fa:6f:59:75:d2:bb:0b:85:66:94:71:30:62:0f:7c:18:8b: e5:e8:2b:44:5b:b9:02:17:a4:30:9d:1e:46:23:4e:5b:43:36: e1:95:0e:8a:19:88:b7:75:c1:15:ed:1d:7b:d1:2b:e6:b9:2d: 67:55:0c:c1:05:b7:cc:b1:0d:da:3d:0e:c4:60:6f:e5:59:d8: bd:8c:c3:40:fa:b0:e3:37:0f:3a:59:61:16:0e:0b:81:83:b6: d6:8e:4f:7b:71:2c:29:8a:ca:b5:a4:8c:ee:63:55:01:b7:53: 88:32:16:d4:46:e0:61:8b:88:5f:e3:a3:ee:f4:07:16:ea:14: da:0d:b5:62:2d:dc:00:a1:4e:e2:cf:33:16:55:4a:8c:fc:b1: 9e:c7:64:e0:3e:8f:51:b4:a2:36:7b:ea:21:a7:bd:0f:f4:bc: 7d:39:9d:bc:6e:24:4b:29:4c:1d:2d:60:66:11:0e:04:8a:1c: d0:bb:11:56:a3:c6:2e:02:a7:48:19:f2:52:92:7b:84:9a:37: 8e:a4:8a:97:94:54:97:71:2b:71:8c:f5:23:54:bd:27:25:ef: 41:ae:b8:38:b2:3e:96:17:68:b2:49:7a:47:9b:75:d8:44:77: 53:dc:ab:4c -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDcIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQx RTNGM0M4QkE4OURDMTMxMDQxMDM0NUY1MEMxMDA3NjE4MTI2MTAeFw0yNDA4MjYw NTEwMjRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDRGRDlBQzAwRTg2OUIx RTA2Qjg2OUFBMTBGNEY3NjEwRjhDQkUwMDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDuRDb1l+yHhF3yfGu1GcAjxeAlybmaSq51dkNKxYLaPRUDXWq SaHaa5EQNDrtkKFlOQAA4BB5f31575NfODInr7rv7P8WmxGJYxTNJ3ceg3myFmL8 e23jSMwsMKH//rKEZPnz7e5rJqCJ7uEmoZHCF9NFKw3JiSlUFp6tbecN7g57NESK P2aZ1D6TH4K6jISWut/m/F8yN+sLjVcdNOLYXpw+9sUIxU136o34nLmHOGTB3JPH S041pFLVIFHt/rfXZSR5mAyYMkuY8eemKXiDq5t7NygENRDxE47fe/K4rzAlax5b zNQch/M35L9yGYYjBsbneSj0WVPZtBVgsOwHAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUT9msAOhpseBrhpqhD092EPjL4AgwHwYDVR0jBBgwFoAUXR4/PIuoncExBBA0 X1DBAHYYEmEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0dORVQv WFI0X1BJdW9uY0V4QkJBMFgxREJBSFlZRW1FLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9YUjRfUEl1b25jRXhCQkEwWDFEQkFIWVlFbUUuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DR05FVC9UOW1zQU9ocHNlQnJocHFoRDA5 MkVQakw0QWcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQCLUDo MA0GCSqGSIb3DQEBCwUAA4IBAQCXSA2HNt2sU8w9F8gN3qawqiSf+m9ZddK7C4Vm lHEwYg98GIvl6CtEW7kCF6QwnR5GI05bQzbhlQ6KGYi3dcEV7R170SvmuS1nVQzB BbfMsQ3aPQ7EYG/lWdi9jMNA+rDjNw86WWEWDguBg7bWjk97cSwpisq1pIzuY1UB t1OIMhbURuBhi4hf46Pu9AcW6hTaDbViLdwAoU7izzMWVUqM/LGex2TgPo9RtKI2 e+ohp70P9Lx9OZ28biRLKUwdLWBmEQ4EihzQuxFWo8YuAqdIGfJSknuEmjeOpIqX lFSXcStxjPUjVL0nJe9Brrg4sj6WF2iySXpHm3XYRHdT3KtM -----END CERTIFICATE-----Generated at Thu Nov 14 06:09:14 2024 by rpki-client on console-ams.rpki-client.org