$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/bul2Z1qdg0MhCX89F00TBVFgL_8.roa File: bul2Z1qdg0MhCX89F00TBVFgL_8.roa (raw, json) Hash identifier: vO31dMd5vOp/oNvJhM2V3txCN7MHPeXDajacXwsnvyE= Subject key identifier: 6E:E9:76:67:5A:9D:83:43:21:09:7F:3D:17:4D:13:05:51:60:2F:FF Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261 Certificate serial: 0E63 Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/bul2Z1qdg0MhCX89F00TBVFgL_8.roa Signing time: Mon 10 Feb 2025 14:03:28 +0000 ROA not before: Mon 10 Feb 2025 14:03:28 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18429 IP address blocks: 124.155.170.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3683 (0xe63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261 Validity Not Before: Feb 10 14:03:28 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6EE976675A9D834321097F3D174D130551602FFF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:9d:46:f9:e2:c9:92:0a:4c:d8:13:8b:16:c8: fa:4f:05:76:15:aa:8e:fd:82:ef:0b:9c:56:ab:9a: 90:9a:48:f8:47:64:ef:0d:5f:7a:b7:6f:19:bf:6f: 15:40:bf:91:e2:b5:b4:23:05:23:5e:67:d0:39:67: ea:a1:bf:b1:73:9a:88:16:e0:2d:61:95:b3:3e:e6: 03:4b:3b:54:38:d1:3e:57:3b:cb:2c:bc:9d:ea:22: bd:2d:88:cb:6f:60:00:48:b4:d5:72:f1:0a:c1:30: cd:35:f6:ff:5f:ba:7a:4f:dd:d6:8d:b2:d1:66:91: cf:38:2c:56:3f:ce:7f:85:de:1f:36:aa:6e:9e:61: c0:94:29:20:28:6d:ef:00:25:92:37:14:35:c4:d3: 89:2f:4d:3c:fd:7f:a4:6c:3d:e8:18:b8:f0:b8:45: 05:04:24:cf:f2:7b:67:ac:ca:e8:1f:0a:1d:88:cc: 51:16:2e:37:b9:f2:f7:e3:8d:39:18:3c:32:64:dc: 99:b0:22:ca:4c:40:19:d7:0b:19:0f:66:85:e1:72: 40:3d:bc:e2:55:74:43:f1:ea:4c:30:84:25:8a:1d: 42:2c:46:ad:69:9a:ab:c8:e2:64:f0:51:6c:05:32: c6:d3:e2:28:97:c9:ff:0e:5f:f9:9a:e8:e5:d9:ad: 86:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:E9:76:67:5A:9D:83:43:21:09:7F:3D:17:4D:13:05:51:60:2F:FF X509v3 Authority Key Identifier: keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/bul2Z1qdg0MhCX89F00TBVFgL_8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.155.170.0/23 Signature Algorithm: sha256WithRSAEncryption 9d:32:d4:08:e6:11:dd:d6:2d:bc:9e:b1:06:c2:af:3a:a1:fd: 2a:43:d7:99:22:a7:e3:da:12:a3:ce:3e:99:98:78:ee:36:b1: bf:ce:f3:b9:8a:54:44:50:a1:64:54:f9:11:e5:86:41:b3:87: 60:72:55:c7:ce:b2:08:8f:6e:50:4a:26:6f:05:79:14:ee:ae: c4:8e:10:19:9c:fe:de:20:b0:20:b4:8b:4e:fd:20:dc:a7:c8: 86:a0:6a:22:d3:29:19:c7:00:63:90:f0:65:73:e3:44:73:c9: 87:6f:a5:80:b0:6b:ee:f6:c5:29:59:28:36:51:cf:67:fd:11: 15:7b:28:e0:48:af:5f:de:6e:fd:06:8e:d5:1e:96:91:cd:09: 7a:a5:b7:14:9d:7d:7c:6f:6c:bd:ac:70:fe:5c:1a:f0:8b:be: 5a:a5:14:22:36:7e:12:fa:84:d0:09:6d:a6:19:7e:53:95:b6: 1b:3d:06:97:9c:a8:4a:18:65:87:56:26:38:dc:2d:40:c7:51: 15:aa:a6:2b:23:df:8d:05:e2:b2:60:f5:d3:65:2b:06:e6:a5: 7f:39:28:4a:c1:ae:b8:e8:c1:4a:02:43:e3:b8:ac:80:ca:0f: 7a:56:bd:49:eb:16:56:42:4b:74:68:d3:51:b4:2d:49:02:b4: 57:18:2a:41 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDmMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQx RTNGM0M4QkE4OURDMTMxMDQxMDM0NUY1MEMxMDA3NjE4MTI2MTAeFw0yNTAyMTAx NDAzMjhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZFRTk3NjY3NUE5RDgz NDMyMTA5N0YzRDE3NEQxMzA1NTE2MDJGRkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCYnUb54smSCkzYE4sWyPpPBXYVqo79gu8LnFarmpCaSPhHZO8N X3q3bxm/bxVAv5HitbQjBSNeZ9A5Z+qhv7FzmogW4C1hlbM+5gNLO1Q40T5XO8ss vJ3qIr0tiMtvYABItNVy8QrBMM019v9funpP3daNstFmkc84LFY/zn+F3h82qm6e YcCUKSAobe8AJZI3FDXE04kvTTz9f6RsPegYuPC4RQUEJM/ye2esyugfCh2IzFEW Lje58vfjjTkYPDJk3JmwIspMQBnXCxkPZoXhckA9vOJVdEPx6kwwhCWKHUIsRq1p mqvI4mTwUWwFMsbT4iiXyf8OX/ma6OXZrYb1AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUbul2Z1qdg0MhCX89F00TBVFgL/8wHwYDVR0jBBgwFoAUXR4/PIuoncExBBA0 X1DBAHYYEmEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0dORVQv WFI0X1BJdW9uY0V4QkJBMFgxREJBSFlZRW1FLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9YUjRfUEl1b25jRXhCQkEwWDFEQkFIWVlFbUUuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DR05FVC9idWwyWjFxZGcwTWhDWDg5RjAw VEJWRmdMXzgucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQBfJuq MA0GCSqGSIb3DQEBCwUAA4IBAQCdMtQI5hHd1i28nrEGwq86of0qQ9eZIqfj2hKj zj6ZmHjuNrG/zvO5ilREUKFkVPkR5YZBs4dgclXHzrIIj25QSiZvBXkU7q7EjhAZ nP7eILAgtItO/SDcp8iGoGoi0ykZxwBjkPBlc+NEc8mHb6WAsGvu9sUpWSg2Uc9n /REVeyjgSK9f3m79Bo7VHpaRzQl6pbcUnX18b2y9rHD+XBrwi75apRQiNn4S+oTQ CW2mGX5TlbYbPQaXnKhKGGWHViY43C1Ax1EVqqYrI9+NBeKyYPXTZSsG5qV/OShK wa646MFKAkPjuKyAyg96Vr1J6xZWQkt0aNNRtC1JArRXGCpB -----END CERTIFICATE-----Generated at Wed Feb 19 22:00:34 2025 by rpki-client