$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/uCyypk80cECUO1_bcoQyGCZqxtw.roa File: uCyypk80cECUO1_bcoQyGCZqxtw.roa (raw, json) Hash identifier: gu3INFZL9Cz0Cc9kxetqywOLzBBPYQ6evRZOKcwe3o8= Subject key identifier: B8:2C:B2:A6:4F:34:70:40:94:3B:5F:DB:72:84:32:18:26:6A:C6:DC Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261 Certificate serial: 0E69 Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/uCyypk80cECUO1_bcoQyGCZqxtw.roa Signing time: Mon 10 Feb 2025 14:03:30 +0000 ROA not before: Mon 10 Feb 2025 14:03:30 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18429 IP address blocks: 27.147.8.0/21 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3689 (0xe69) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261 Validity Not Before: Feb 10 14:03:30 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B82CB2A64F347040943B5FDB72843218266AC6DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:e8:df:5b:13:46:e0:13:5f:16:c1:8e:82:00: 55:74:cb:84:f9:6a:37:06:40:1d:e8:9c:4e:a3:3f: 66:ca:c2:cc:3d:42:e8:87:e8:2b:cd:30:7a:3b:4c: b4:86:41:d6:95:2a:86:ba:e0:a4:3b:0b:bc:d3:65: 47:2d:0e:b9:db:5f:25:86:83:b1:c3:8e:f9:4b:33: a0:4a:a3:d7:17:0c:08:1f:e0:5c:b0:d0:4a:ed:fb: 5b:11:4c:89:bd:23:b3:05:53:53:76:19:91:6c:49: cd:37:65:f3:5b:4f:55:43:7c:f1:d2:ff:7b:42:a4: 65:8d:af:69:b5:d5:cf:69:38:47:58:d9:bc:a0:f7: d7:58:15:81:9d:76:b9:71:f9:07:a3:66:75:a9:fd: 5a:28:82:b5:52:a8:42:93:25:11:54:b3:ea:47:97: 57:10:35:a6:23:ca:c9:b6:59:55:e3:dd:06:f1:ce: 70:aa:53:8b:9f:f0:17:36:49:f4:02:3f:db:1d:4d: 8a:f7:dd:38:e4:b2:4c:34:3e:ad:68:95:52:87:da: bc:47:bf:76:f3:96:c8:ae:fe:b5:b3:64:03:6a:8a: d0:34:89:cc:b3:af:0b:58:45:53:25:6a:88:d7:ad: 89:ac:16:b1:71:77:1f:cf:8c:75:f2:93:8a:0c:57: ac:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:2C:B2:A6:4F:34:70:40:94:3B:5F:DB:72:84:32:18:26:6A:C6:DC X509v3 Authority Key Identifier: keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/uCyypk80cECUO1_bcoQyGCZqxtw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 27.147.8.0/21 Signature Algorithm: sha256WithRSAEncryption 92:40:56:b8:0a:b5:b4:15:23:80:75:57:c5:fd:40:6e:46:a5: cb:c1:d8:a4:cf:02:d5:99:e0:4b:fd:7f:f0:5b:2b:53:4d:c2: 1e:28:aa:ca:10:8b:40:b3:46:a6:b9:20:de:27:5e:48:9c:04: b5:7c:8e:40:92:aa:97:1b:53:9f:87:ca:fe:1e:7d:a3:26:7a: 0e:a9:a7:d4:4f:14:b9:e4:5b:10:c2:d8:db:2e:91:27:bf:b7: c7:3e:c7:1f:ac:01:f8:26:9c:d1:a4:fd:fa:8a:7d:47:64:22: e2:95:4f:aa:4f:17:80:07:c5:d0:d9:08:31:81:17:7b:1e:eb: dd:3c:5e:0b:14:7b:1c:a2:48:0f:ce:92:03:c7:b5:4e:09:78: a0:b8:38:63:dd:83:39:a9:23:19:43:ee:82:b1:8c:36:20:79: 46:63:87:29:c2:98:3c:ae:50:38:b9:75:d1:bf:12:35:11:a2: 99:a6:7c:ea:4a:3d:e9:52:2f:67:24:c8:7c:cb:68:48:15:90: 05:2a:ba:ef:a9:60:0b:61:4d:fa:87:f0:30:2e:9e:cd:c3:95: e4:50:10:a9:74:d3:77:26:0f:e5:84:ba:43:c5:76:74:0b:49: dd:59:5f:ff:51:db:58:17:a2:50:df:e5:6b:9b:1e:1e:c8:b8: 8b:57:b6:c5 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDmkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQx RTNGM0M4QkE4OURDMTMxMDQxMDM0NUY1MEMxMDA3NjE4MTI2MTAeFw0yNTAyMTAx NDAzMzBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI4MkNCMkE2NEYzNDcw NDA5NDNCNUZEQjcyODQzMjE4MjY2QUM2REMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDL6N9bE0bgE18WwY6CAFV0y4T5ajcGQB3onE6jP2bKwsw9QuiH 6CvNMHo7TLSGQdaVKoa64KQ7C7zTZUctDrnbXyWGg7HDjvlLM6BKo9cXDAgf4Fyw 0Ert+1sRTIm9I7MFU1N2GZFsSc03ZfNbT1VDfPHS/3tCpGWNr2m11c9pOEdY2byg 99dYFYGddrlx+QejZnWp/VoogrVSqEKTJRFUs+pHl1cQNaYjysm2WVXj3QbxznCq U4uf8Bc2SfQCP9sdTYr33Tjkskw0Pq1olVKH2rxHv3bzlsiu/rWzZANqitA0icyz rwtYRVMlaojXrYmsFrFxdx/PjHXyk4oMV6x/AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUuCyypk80cECUO1/bcoQyGCZqxtwwHwYDVR0jBBgwFoAUXR4/PIuoncExBBA0 X1DBAHYYEmEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0dORVQv WFI0X1BJdW9uY0V4QkJBMFgxREJBSFlZRW1FLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9YUjRfUEl1b25jRXhCQkEwWDFEQkFIWVlFbUUuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DR05FVC91Q3l5cGs4MGNFQ1VPMV9iY29R eUdDWnF4dHcucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDG5MI MA0GCSqGSIb3DQEBCwUAA4IBAQCSQFa4CrW0FSOAdVfF/UBuRqXLwdikzwLVmeBL /X/wWytTTcIeKKrKEItAs0amuSDeJ15InAS1fI5AkqqXG1Ofh8r+Hn2jJnoOqafU TxS55FsQwtjbLpEnv7fHPscfrAH4JpzRpP36in1HZCLilU+qTxeAB8XQ2QgxgRd7 HuvdPF4LFHscokgPzpIDx7VOCXiguDhj3YM5qSMZQ+6CsYw2IHlGY4cpwpg8rlA4 uXXRvxI1EaKZpnzqSj3pUi9nJMh8y2hIFZAFKrrvqWALYU36h/AwLp7Nw5XkUBCp dNN3Jg/lhLpDxXZ0C0ndWV//UdtYF6JQ3+Vrmx4eyLiLV7bF -----END CERTIFICATE-----Generated at Wed Feb 19 22:10:34 2025 by rpki-client