$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/gIyxlexR9D-ELNfkrwFYjmKjvLE.roa File: gIyxlexR9D-ELNfkrwFYjmKjvLE.roa (raw, json) Hash identifier: ly1WTg8hDxyA1qhGs4Ns6mtemsgpd9qoZ5aruZZJ1bI= Subject key identifier: 80:8C:B1:95:EC:51:F4:3F:84:2C:D7:E4:AF:01:58:8E:62:A3:BC:B1 Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261 Certificate serial: 0C7F Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/gIyxlexR9D-ELNfkrwFYjmKjvLE.roa Signing time: Fri 01 Sep 2023 08:26:39 +0000 ROA not before: Fri 01 Sep 2023 08:26:39 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18429 IP address blocks: 123.50.61.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 02:54:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3199 (0xc7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261 Validity Not Before: Sep 1 08:26:39 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=808CB195EC51F43F842CD7E4AF01588E62A3BCB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:74:93:ab:3a:ae:6c:3c:f4:ca:76:a5:e2:ef: e2:81:83:eb:2c:13:06:ef:ee:49:c5:b0:63:64:27: 79:0e:fa:42:f1:be:3f:6a:fd:ff:eb:d5:80:ae:64: 49:ba:ac:40:8b:45:3b:68:ac:34:96:ff:56:1c:ca: f4:25:32:a8:4c:a7:fe:7f:aa:5d:51:2c:ba:13:75: 86:f0:b3:e5:b7:e6:ee:68:87:61:e8:54:0c:3f:49: 3b:ec:3e:f9:ca:03:67:23:23:c5:0d:9a:1d:76:3e: 0e:2f:3c:14:46:1a:63:c0:5e:00:59:ae:67:5d:6b: 5e:a6:62:24:1b:14:01:23:63:1e:fe:41:f1:8a:4a: be:78:a1:44:5f:93:bc:70:63:82:c4:58:c9:38:9b: da:d8:19:57:79:a6:44:ac:6a:e2:54:1c:51:92:15: 0f:4e:49:8d:68:10:5b:76:93:ff:d7:30:7a:8b:ab: 2c:a0:95:56:dc:b6:0e:8d:9e:ee:11:9e:aa:6a:9f: 20:13:b9:84:30:07:c4:09:79:03:65:ec:ab:86:a8: df:d2:9c:7e:1a:74:31:2d:1e:1d:25:ba:72:21:2d: f0:0a:b7:d8:63:9d:8c:68:47:40:8d:fb:12:69:82: cf:4e:b3:7d:a7:52:49:2a:f8:e2:25:33:c3:3b:5e: 31:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:8C:B1:95:EC:51:F4:3F:84:2C:D7:E4:AF:01:58:8E:62:A3:BC:B1 X509v3 Authority Key Identifier: keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/gIyxlexR9D-ELNfkrwFYjmKjvLE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.50.61.0/24 Signature Algorithm: sha256WithRSAEncryption 49:8f:d8:6f:15:de:5b:4a:02:cc:0b:44:37:2c:81:99:a1:d3: a5:0f:aa:22:51:56:30:e8:e5:64:01:4d:62:f5:08:ee:b5:c4: e9:92:2b:5b:20:d8:5a:9c:49:58:cc:fb:37:64:cb:8b:12:2f: 47:96:0b:85:67:cc:20:6e:00:7b:7e:59:ae:3b:2d:1b:25:c9: 3f:fb:0b:10:aa:ef:b5:79:e7:a4:50:01:7a:46:26:29:60:ea: b0:61:48:35:2c:d2:97:ee:17:9f:3a:f0:0f:41:c7:7a:3d:16: a3:f0:58:00:ac:1e:64:a8:a8:49:0c:ca:cf:00:93:42:bc:7e: e3:f7:d0:cc:39:1e:f2:fe:07:94:58:c7:1f:c3:55:85:63:bd: 47:2d:23:7b:8d:67:6e:e3:68:80:83:19:61:a2:06:3f:3c:a7: 6e:9b:21:05:df:eb:52:5e:5e:3e:88:11:8c:46:cd:a4:a9:3c: 7f:97:ec:6e:c3:ca:7f:19:13:2f:37:f6:1d:8e:24:49:ad:87: 68:ef:ed:38:09:d5:7e:b7:9e:0c:b1:39:38:11:a7:b0:67:21: c3:c0:99:96:40:87:ae:48:8c:e9:fc:81:65:cb:14:32:30:e4: 12:29:b1:7f:f7:09:cb:95:02:a6:a5:bc:84:6b:6b:64:e7:3c: bf:54:d4:d5 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDH8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQx RTNGM0M4QkE4OURDMTMxMDQxMDM0NUY1MEMxMDA3NjE4MTI2MTAeFw0yMzA5MDEw ODI2MzlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDgwOENCMTk1RUM1MUY0 M0Y4NDJDRDdFNEFGMDE1ODhFNjJBM0JDQjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDkdJOrOq5sPPTKdqXi7+KBg+ssEwbv7knFsGNkJ3kO+kLxvj9q /f/r1YCuZEm6rECLRTtorDSW/1YcyvQlMqhMp/5/ql1RLLoTdYbws+W35u5oh2Ho VAw/STvsPvnKA2cjI8UNmh12Pg4vPBRGGmPAXgBZrmdda16mYiQbFAEjYx7+QfGK Sr54oURfk7xwY4LEWMk4m9rYGVd5pkSsauJUHFGSFQ9OSY1oEFt2k//XMHqLqyyg lVbctg6Nnu4RnqpqnyATuYQwB8QJeQNl7KuGqN/SnH4adDEtHh0lunIhLfAKt9hj nYxoR0CN+xJpgs9Os32nUkkq+OIlM8M7XjF3AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUgIyxlexR9D+ELNfkrwFYjmKjvLEwHwYDVR0jBBgwFoAUXR4/PIuoncExBBA0 X1DBAHYYEmEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0dORVQv WFI0X1BJdW9uY0V4QkJBMFgxREJBSFlZRW1FLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9YUjRfUEl1b25jRXhCQkEwWDFEQkFIWVlFbUUuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DR05FVC9nSXl4bGV4UjlELUVMTmZrcndG WWptS2p2TEUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAezI9 MA0GCSqGSIb3DQEBCwUAA4IBAQBJj9hvFd5bSgLMC0Q3LIGZodOlD6oiUVYw6OVk AU1i9QjutcTpkitbINhanElYzPs3ZMuLEi9HlguFZ8wgbgB7flmuOy0bJck/+wsQ qu+1eeekUAF6RiYpYOqwYUg1LNKX7hefOvAPQcd6PRaj8FgArB5kqKhJDMrPAJNC vH7j99DMOR7y/geUWMcfw1WFY71HLSN7jWdu42iAgxlhogY/PKdumyEF3+tSXl4+ iBGMRs2kqTx/l+xuw8p/GRMvN/YdjiRJrYdo7+04CdV+t54MsTk4EaewZyHDwJmW QIeuSIzp/IFlyxQyMOQSKbF/9wnLlQKmpbyEa2tk5zy/VNTV -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:40 2024 by rpki-client on console-ams.rpki-client.org