$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/tAj2M5cPidNRN_A4ub-80FnZOaQ.roa File: tAj2M5cPidNRN_A4ub-80FnZOaQ.roa (raw, json) Hash identifier: YwyV69lMEvx6wWHV4bq80Z119MSSIH6mgKTAqsEm8w4= Subject key identifier: B4:08:F6:33:97:0F:89:D3:51:37:F0:38:B9:BF:BC:D0:59:D9:39:A4 Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261 Certificate serial: 0C59 Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/tAj2M5cPidNRN_A4ub-80FnZOaQ.roa Signing time: Fri 01 Sep 2023 08:26:27 +0000 ROA not before: Fri 01 Sep 2023 08:26:27 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18429 IP address blocks: 61.57.144.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 02:54:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3161 (0xc59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261 Validity Not Before: Sep 1 08:26:27 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=B408F633970F89D35137F038B9BFBCD059D939A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:34:31:9d:dc:4e:a8:9b:b7:b6:ca:dd:e8:39: bd:e0:19:2f:8c:f5:2c:21:47:78:2a:4c:f3:0b:c0: d2:06:6c:ac:c8:30:09:2d:b0:88:6b:3c:4c:d8:e4: b4:1d:f4:1e:db:c7:4c:cb:f8:f3:c6:80:00:67:4b: e8:3c:7d:e1:05:9f:25:96:64:a0:e1:fe:a5:f2:d6: a4:e0:c6:20:40:55:97:ab:fa:e8:be:d2:50:d8:86: 92:c3:60:9c:02:6b:8d:1a:f3:ef:ab:3d:99:8e:3c: 5d:b0:6d:13:d0:67:4c:2b:5e:2f:93:e2:25:c7:21: f6:4f:7e:70:c3:5d:3a:12:b8:d5:f4:ed:dc:f2:bd: 35:cc:f6:49:d5:95:bc:df:56:08:e5:f2:60:b6:e7: 4b:58:ed:55:36:1a:8f:c8:82:3b:ca:a0:68:4c:35: a7:46:65:80:96:98:db:cb:96:70:00:af:65:a0:ac: 47:b7:3c:56:83:b7:70:8b:3d:29:1d:33:27:10:1a: d2:19:3d:80:d5:e9:d5:f0:5c:be:9e:a1:23:7e:37: a3:26:ed:68:56:bb:6a:58:95:47:9e:c6:8d:08:9b: ca:e9:eb:3d:6b:fb:03:11:40:a6:15:a2:c2:ce:8d: 61:3f:f0:e2:7c:ad:9c:b4:62:c8:f0:e6:71:ba:1d: b0:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:08:F6:33:97:0F:89:D3:51:37:F0:38:B9:BF:BC:D0:59:D9:39:A4 X509v3 Authority Key Identifier: keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/tAj2M5cPidNRN_A4ub-80FnZOaQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.57.144.0/21 Signature Algorithm: sha256WithRSAEncryption 42:77:2f:e8:77:d4:c6:bd:74:f7:95:ef:bd:81:7b:1e:74:53: 09:d8:1e:38:c2:19:3f:16:d1:98:68:78:d8:2d:f8:87:01:8e: 2a:9c:ed:73:37:8e:25:5e:61:ab:4b:53:ff:02:99:37:6a:06: 4b:a4:1b:49:1f:d0:98:d7:34:4e:86:d6:73:1b:cd:a2:48:33: 31:8b:f3:11:97:89:01:97:dc:d8:e9:91:c7:b3:22:38:3b:1c: ec:ea:3e:10:ab:be:44:96:be:6a:1c:86:93:1d:f5:83:93:f4: ba:f5:84:ed:62:85:9d:25:18:76:5d:1f:34:26:eb:71:03:d5: c5:ac:69:d6:8a:c7:ad:00:63:d3:46:ba:68:10:14:fd:cf:1e: 02:fd:8d:41:eb:e6:af:7e:53:9b:a1:6a:b9:20:1f:be:e0:70: ef:18:32:6d:a8:80:d9:a4:df:9f:99:fd:75:4b:88:06:e6:0c: 73:39:5c:5d:a5:a9:74:ec:0e:3f:e0:04:46:ce:9a:87:68:8b: 5b:e5:21:ab:9a:38:3c:52:22:d3:01:34:86:c9:89:24:e1:41: 43:74:ed:b3:09:bd:c9:b3:5f:a5:9a:09:24:2c:ca:0f:a0:50: c3:8a:07:5f:73:6a:42:85:47:ec:f1:a2:ca:97:50:34:c0:da: 90:6d:00:c4 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDFkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQx RTNGM0M4QkE4OURDMTMxMDQxMDM0NUY1MEMxMDA3NjE4MTI2MTAeFw0yMzA5MDEw ODI2MjdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEI0MDhGNjMzOTcwRjg5 RDM1MTM3RjAzOEI5QkZCQ0QwNTlEOTM5QTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDlNDGd3E6om7e2yt3oOb3gGS+M9SwhR3gqTPMLwNIGbKzIMAkt sIhrPEzY5LQd9B7bx0zL+PPGgABnS+g8feEFnyWWZKDh/qXy1qTgxiBAVZer+ui+ 0lDYhpLDYJwCa40a8++rPZmOPF2wbRPQZ0wrXi+T4iXHIfZPfnDDXToSuNX07dzy vTXM9knVlbzfVgjl8mC250tY7VU2Go/IgjvKoGhMNadGZYCWmNvLlnAAr2WgrEe3 PFaDt3CLPSkdMycQGtIZPYDV6dXwXL6eoSN+N6Mm7WhWu2pYlUeexo0Im8rp6z1r +wMRQKYVosLOjWE/8OJ8rZy0Ysjw5nG6HbDXAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUtAj2M5cPidNRN/A4ub+80FnZOaQwHwYDVR0jBBgwFoAUXR4/PIuoncExBBA0 X1DBAHYYEmEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0dORVQv WFI0X1BJdW9uY0V4QkJBMFgxREJBSFlZRW1FLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9YUjRfUEl1b25jRXhCQkEwWDFEQkFIWVlFbUUuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DR05FVC90QWoyTTVjUGlkTlJOX0E0dWIt ODBGblpPYVEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDPTmQ MA0GCSqGSIb3DQEBCwUAA4IBAQBCdy/od9TGvXT3le+9gXsedFMJ2B44whk/FtGY aHjYLfiHAY4qnO1zN44lXmGrS1P/Apk3agZLpBtJH9CY1zROhtZzG82iSDMxi/MR l4kBl9zY6ZHHsyI4Oxzs6j4Qq75Elr5qHIaTHfWDk/S69YTtYoWdJRh2XR80Jutx A9XFrGnWisetAGPTRrpoEBT9zx4C/Y1B6+avflOboWq5IB++4HDvGDJtqIDZpN+f mf11S4gG5gxzOVxdpal07A4/4ARGzpqHaItb5SGrmjg8UiLTATSGyYkk4UFDdO2z Cb3Js1+lmgkkLMoPoFDDigdfc2pChUfs8aLKl1A0wNqQbQDE -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:40 2024 by rpki-client on console-ams.rpki-client.org