$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/mLDha4_bYY3NzTrlk7pkmLbN-Ik.roa File: mLDha4_bYY3NzTrlk7pkmLbN-Ik.roa (raw, json) Hash identifier: obimOpEfZJijwxDdr/gsq3ZUzPMrdbIXqoug6lG0AEo= Subject key identifier: 98:B0:E1:6B:8F:DB:61:8D:CD:CD:3A:E5:93:BA:64:98:B6:CD:F8:89 Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261 Certificate serial: 0C7A Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/mLDha4_bYY3NzTrlk7pkmLbN-Ik.roa Signing time: Fri 01 Sep 2023 08:26:37 +0000 ROA not before: Fri 01 Sep 2023 08:26:37 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18429 IP address blocks: 124.155.176.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 02:54:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3194 (0xc7a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261 Validity Not Before: Sep 1 08:26:37 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=98B0E16B8FDB618DCDCD3AE593BA6498B6CDF889 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:7f:02:20:46:36:73:65:d8:09:30:76:32:da: 55:66:b1:ec:54:26:c1:01:0e:8f:35:fc:50:77:9a: a2:8e:38:c7:f8:da:88:e7:94:e2:3b:34:44:67:6d: 23:f7:c1:31:80:8e:82:b0:79:6b:b1:36:ba:42:2c: 58:b1:1a:50:9d:d6:f1:30:f5:30:12:de:aa:c8:19: 8c:4e:7a:0c:a6:a8:21:9c:c7:b8:45:25:21:c4:5b: e5:d2:2a:f8:ee:ba:c5:ac:cb:41:ec:da:25:7f:21: 0a:ab:a1:8f:33:cc:36:d7:ad:f9:ac:a6:f5:5b:f7: 06:26:95:c4:cc:be:b0:29:6b:99:d7:43:e9:c2:8f: c8:a1:d2:c8:8f:ca:c3:3b:5e:90:c3:df:a8:cc:9a: 8a:84:49:ea:92:2b:f4:34:9c:f1:1a:17:50:2a:e9: 13:05:fd:79:75:5e:43:4e:c3:e9:2c:53:ae:7e:3e: 8a:cf:3a:aa:fa:b2:57:7d:78:1c:4e:22:e1:b4:be: d9:c9:63:57:ed:c5:0f:2c:e4:78:c9:bb:4f:3d:ac: 47:3b:c7:09:fa:be:b8:00:bf:fc:5a:3a:db:c3:02: 04:79:65:67:85:aa:c0:0b:bc:e9:9f:cd:e8:e6:1e: ca:96:50:2e:2d:46:11:d7:26:51:13:28:9c:71:c7: 15:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:B0:E1:6B:8F:DB:61:8D:CD:CD:3A:E5:93:BA:64:98:B6:CD:F8:89 X509v3 Authority Key Identifier: keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/mLDha4_bYY3NzTrlk7pkmLbN-Ik.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.155.176.0/21 Signature Algorithm: sha256WithRSAEncryption 15:d2:6f:bb:86:90:15:b9:73:8e:e1:22:93:8b:7b:10:41:ea: 24:8e:68:ed:e7:fd:20:00:d3:13:05:70:ce:00:75:ec:05:6a: ab:fe:12:d6:62:46:5b:fc:73:96:08:f0:1a:ab:e3:4b:d1:09: 09:a9:07:51:4e:73:9a:4c:a9:a9:05:e6:70:bd:eb:72:fb:e8: 92:04:ab:9a:ae:cf:cc:42:56:29:69:67:31:bf:66:95:10:9d: d9:1c:d7:01:f6:18:e4:af:ad:8c:26:16:57:67:77:72:4e:89: 95:75:42:d4:16:76:15:04:cd:ba:a5:85:6b:eb:3b:c7:eb:19: c2:bc:f1:ad:87:cd:4b:69:0c:16:32:a7:bc:01:0b:33:da:88: f3:c6:ab:24:79:43:9f:9f:c6:f4:8d:ec:b1:17:5d:cd:93:92: 94:e1:83:a6:94:5d:17:2a:8c:42:c8:37:db:f2:1c:f2:ed:34: 38:8b:8e:0b:d0:3a:e8:30:31:ec:5f:5f:a5:97:dd:35:a8:19: e8:db:37:56:a0:4e:eb:d9:8f:90:8b:b2:b8:99:e2:4d:d2:19: 8f:62:00:97:a8:bb:34:90:b6:51:a1:aa:f8:5b:da:4e:8e:44: e6:be:9b:f9:b1:8f:4a:5f:98:e0:b3:4a:60:4c:34:5a:43:73: cd:3e:36:34 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDHowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQx RTNGM0M4QkE4OURDMTMxMDQxMDM0NUY1MEMxMDA3NjE4MTI2MTAeFw0yMzA5MDEw ODI2MzdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDk4QjBFMTZCOEZEQjYx OERDRENEM0FFNTkzQkE2NDk4QjZDREY4ODkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDSfwIgRjZzZdgJMHYy2lVmsexUJsEBDo81/FB3mqKOOMf42ojn lOI7NERnbSP3wTGAjoKweWuxNrpCLFixGlCd1vEw9TAS3qrIGYxOegymqCGcx7hF JSHEW+XSKvjuusWsy0Hs2iV/IQqroY8zzDbXrfmspvVb9wYmlcTMvrApa5nXQ+nC j8ih0siPysM7XpDD36jMmoqESeqSK/Q0nPEaF1Aq6RMF/Xl1XkNOw+ksU65+PorP Oqr6sld9eBxOIuG0vtnJY1ftxQ8s5HjJu089rEc7xwn6vrgAv/xaOtvDAgR5ZWeF qsALvOmfzejmHsqWUC4tRhHXJlETKJxxxxWtAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUmLDha4/bYY3NzTrlk7pkmLbN+IkwHwYDVR0jBBgwFoAUXR4/PIuoncExBBA0 X1DBAHYYEmEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0dORVQv WFI0X1BJdW9uY0V4QkJBMFgxREJBSFlZRW1FLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9YUjRfUEl1b25jRXhCQkEwWDFEQkFIWVlFbUUuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DR05FVC9tTERoYTRfYllZM056VHJsazdw a21MYk4tSWsucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDfJuw MA0GCSqGSIb3DQEBCwUAA4IBAQAV0m+7hpAVuXOO4SKTi3sQQeokjmjt5/0gANMT BXDOAHXsBWqr/hLWYkZb/HOWCPAaq+NL0QkJqQdRTnOaTKmpBeZwvety++iSBKua rs/MQlYpaWcxv2aVEJ3ZHNcB9hjkr62MJhZXZ3dyTomVdULUFnYVBM26pYVr6zvH 6xnCvPGth81LaQwWMqe8AQsz2ojzxqskeUOfn8b0jeyxF13Nk5KU4YOmlF0XKoxC yDfb8hzy7TQ4i44L0DroMDHsX1+ll901qBno2zdWoE7r2Y+Qi7K4meJN0hmPYgCX qLs0kLZRoar4W9pOjkTmvpv5sY9KX5jgs0pgTDRaQ3PNPjY0 -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:40 2024 by rpki-client on console-ams.rpki-client.org