$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/gnL9zjn-vmIZS0hXwesEWtKltK4.roa File: gnL9zjn-vmIZS0hXwesEWtKltK4.roa (raw, json) Hash identifier: 1P3sIGFPtzN8CYFNm6dO0ErR0i+79was75QnPGq6JxY= Subject key identifier: 82:72:FD:CE:39:FE:BE:62:19:4B:48:57:C1:EB:04:5A:D2:A5:B4:AE Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261 Certificate serial: 0C5A Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/gnL9zjn-vmIZS0hXwesEWtKltK4.roa Signing time: Fri 01 Sep 2023 08:26:27 +0000 ROA not before: Fri 01 Sep 2023 08:26:27 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18429 IP address blocks: 124.155.184.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 02:54:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3162 (0xc5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261 Validity Not Before: Sep 1 08:26:27 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=8272FDCE39FEBE62194B4857C1EB045AD2A5B4AE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:e4:d2:a0:fe:50:05:9f:2c:09:3a:6e:19:84: 73:21:56:f3:95:fd:03:dd:a9:c3:dc:b8:69:1d:9e: 3a:ab:a4:93:fe:8a:fa:3a:96:2f:1f:0a:6c:e1:23: 48:38:54:40:ef:6e:c9:29:c9:28:14:6e:87:73:cf: e0:aa:1b:ac:4a:92:bc:f8:bd:eb:f4:1a:75:eb:d7: fc:16:7c:cb:23:27:ea:66:05:29:ff:27:00:4c:59: dd:87:2a:07:de:7b:a2:9f:96:47:6d:1a:e9:71:5b: 8e:8d:e4:fc:5a:f3:3e:a0:b3:b3:a4:79:6d:ea:b4: 65:8e:bc:ae:35:bb:16:79:42:fb:74:b3:c7:12:e2: ce:b6:72:53:92:94:9e:2f:3f:ed:45:14:3d:ba:a2: 46:13:46:8c:b0:67:38:2b:2a:cb:80:2e:72:1f:1e: 22:17:e9:d8:14:00:47:80:fb:78:04:79:f4:78:b3: 50:b3:5b:fb:fc:98:3a:9b:db:bf:59:54:11:69:ba: 20:9e:34:c2:21:40:2e:db:92:60:66:52:0d:99:72: 74:29:20:1a:f5:3f:e5:f0:28:df:99:e1:11:c7:1e: d9:a7:3f:d3:e5:a3:0c:8e:df:aa:83:0c:58:ef:e5: f3:a9:56:ca:61:2e:d7:32:f0:96:af:f9:15:b1:36: db:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:72:FD:CE:39:FE:BE:62:19:4B:48:57:C1:EB:04:5A:D2:A5:B4:AE X509v3 Authority Key Identifier: keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/gnL9zjn-vmIZS0hXwesEWtKltK4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.155.184.0/21 Signature Algorithm: sha256WithRSAEncryption 63:3a:10:e5:7c:d8:96:46:e4:a3:8d:86:ae:29:60:02:84:7b: 4e:9d:5a:fa:49:d8:2d:f7:b9:c7:4b:8a:1f:c5:00:9b:1c:38: 03:e2:da:0d:26:e6:0e:17:bb:d1:b8:5a:c5:62:16:3b:ad:98: b5:08:fd:6e:57:da:cc:53:c0:21:ef:a8:72:8e:80:45:22:34: 8a:2a:cc:84:13:c8:1d:68:ce:c3:40:5f:9c:2f:7b:85:59:88: f4:17:92:58:da:5d:69:10:34:d1:e7:90:2e:40:b4:d0:14:68: a1:eb:a2:74:a7:83:34:ad:6d:7d:12:11:cd:93:91:10:87:f4: 20:48:87:80:a5:19:96:99:d2:ec:d3:8b:7d:6c:eb:a0:70:46: 48:03:6a:49:7c:96:00:69:bd:97:85:54:13:55:14:a3:f0:60: 2b:27:72:af:d6:70:4a:77:a1:4c:38:3b:5f:2d:7d:8b:36:c8: e3:0b:78:71:6d:58:e5:37:c1:b4:72:5c:56:c2:e8:e5:d8:ab: 3d:b3:80:64:20:43:ab:ec:26:c8:99:3e:7b:fd:47:ca:d4:4e: be:5d:4c:72:b0:12:04:fe:cb:c0:ff:cd:2a:ce:a0:29:fc:1e: 5a:2c:ae:08:2e:51:1c:4f:70:12:86:d1:82:24:40:64:64:33: c0:40:30:00 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDFowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQx RTNGM0M4QkE4OURDMTMxMDQxMDM0NUY1MEMxMDA3NjE4MTI2MTAeFw0yMzA5MDEw ODI2MjdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDgyNzJGRENFMzlGRUJF NjIxOTRCNDg1N0MxRUIwNDVBRDJBNUI0QUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC55NKg/lAFnywJOm4ZhHMhVvOV/QPdqcPcuGkdnjqrpJP+ivo6 li8fCmzhI0g4VEDvbskpySgUbodzz+CqG6xKkrz4vev0GnXr1/wWfMsjJ+pmBSn/ JwBMWd2HKgfee6KflkdtGulxW46N5Pxa8z6gs7OkeW3qtGWOvK41uxZ5Qvt0s8cS 4s62clOSlJ4vP+1FFD26okYTRoywZzgrKsuALnIfHiIX6dgUAEeA+3gEefR4s1Cz W/v8mDqb279ZVBFpuiCeNMIhQC7bkmBmUg2ZcnQpIBr1P+XwKN+Z4RHHHtmnP9Pl owyO36qDDFjv5fOpVsphLtcy8Jav+RWxNtuHAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUgnL9zjn+vmIZS0hXwesEWtKltK4wHwYDVR0jBBgwFoAUXR4/PIuoncExBBA0 X1DBAHYYEmEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0dORVQv WFI0X1BJdW9uY0V4QkJBMFgxREJBSFlZRW1FLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9YUjRfUEl1b25jRXhCQkEwWDFEQkFIWVlFbUUuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DR05FVC9nbkw5empuLXZtSVpTMGhYd2Vz RVd0S2x0SzQucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDfJu4 MA0GCSqGSIb3DQEBCwUAA4IBAQBjOhDlfNiWRuSjjYauKWAChHtOnVr6Sdgt97nH S4ofxQCbHDgD4toNJuYOF7vRuFrFYhY7rZi1CP1uV9rMU8Ah76hyjoBFIjSKKsyE E8gdaM7DQF+cL3uFWYj0F5JY2l1pEDTR55AuQLTQFGih66J0p4M0rW19EhHNk5EQ h/QgSIeApRmWmdLs04t9bOugcEZIA2pJfJYAab2XhVQTVRSj8GArJ3Kv1nBKd6FM ODtfLX2LNsjjC3hxbVjlN8G0clxWwujl2Ks9s4BkIEOr7CbImT57/UfK1E6+XUxy sBIE/svA/80qzqAp/B5aLK4ILlEcT3AShtGCJEBkZDPAQDAA -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:40 2024 by rpki-client on console-ams.rpki-client.org