$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/ukE_au5lbjQwTnWmxrWSkgv1MXA.roa File: ukE_au5lbjQwTnWmxrWSkgv1MXA.roa (raw, json) Hash identifier: 7gqPvif4xc4w3u34HgmVJbJiV1+EGpEOkKXQaVs88sE= Subject key identifier: BA:41:3F:6A:EE:65:6E:34:30:4E:75:A6:C6:B5:92:92:0B:F5:31:70 Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261 Certificate serial: 0E42 Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/ukE_au5lbjQwTnWmxrWSkgv1MXA.roa Signing time: Mon 10 Feb 2025 14:03:21 +0000 ROA not before: Mon 10 Feb 2025 14:03:21 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18429 IP address blocks: 123.50.48.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Feb 2025 23:27:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3650 (0xe42) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261 Validity Not Before: Feb 10 14:03:21 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=BA413F6AEE656E34304E75A6C6B592920BF53170 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:2d:c2:f3:41:a7:af:f2:6c:d5:2c:cc:6b:38: 1d:69:4f:df:88:13:df:d8:60:b3:01:8f:3a:b2:ac: 96:41:0d:bb:d6:fd:ae:5a:ba:5c:b4:5b:5a:4e:53: b7:f1:2d:a6:01:df:18:3d:2f:f5:4b:8a:3c:5b:00: cc:3a:b6:b1:cc:39:51:99:ac:0c:c2:ee:14:6c:68: 28:1f:0f:6b:81:9e:37:da:37:7a:54:aa:1f:ba:12: 4f:59:aa:79:e5:63:ea:e1:16:61:04:07:bb:b5:83: 08:1a:9b:29:d2:eb:d0:e4:30:1e:07:42:50:32:05: ba:8d:41:fc:f4:57:97:c2:7f:f8:cf:78:7d:da:7e: 0e:ef:01:b8:de:b2:1a:85:c3:1d:4f:98:86:df:77: 31:5f:40:18:73:53:e8:78:35:96:8f:6c:35:4b:db: ed:db:f2:87:7e:ae:f5:a6:86:79:31:aa:c8:f8:a0: 92:89:d9:c3:22:f0:83:38:cf:14:26:82:1c:49:ab: 18:16:84:4e:3e:f3:5d:f2:ae:c9:5a:05:40:5f:58: 4a:9c:68:cc:06:ce:e5:91:51:5d:d7:a7:03:5e:73: 80:5b:c7:53:f7:e9:89:fd:a0:38:98:c5:94:22:4f: 14:54:2e:5c:d1:6f:4d:c7:9c:74:8f:2d:c8:8a:6b: e1:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:41:3F:6A:EE:65:6E:34:30:4E:75:A6:C6:B5:92:92:0B:F5:31:70 X509v3 Authority Key Identifier: keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/ukE_au5lbjQwTnWmxrWSkgv1MXA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.50.48.0/21 Signature Algorithm: sha256WithRSAEncryption 51:44:dc:45:df:ba:5f:9b:83:96:ee:87:4a:f8:40:08:f4:00: fc:69:05:58:36:b1:d9:46:8e:15:06:c4:26:b2:0f:f4:88:ae: f6:ac:9b:d6:90:6b:a8:c1:f0:78:96:8f:9f:e1:a1:3b:1b:d3: 9e:70:d8:dc:cd:4a:cc:5a:1c:f4:29:30:8f:54:a8:ee:1a:41: 0a:c2:cd:67:1f:af:c9:0b:06:5e:89:cb:c9:a3:ba:e6:4e:bd: 2b:98:b2:53:2b:c8:12:ee:4e:a6:43:c0:11:07:fe:a4:de:7e: 9e:3b:af:a7:2b:90:17:7a:13:6a:44:70:15:94:28:44:77:03: ac:90:d5:11:34:95:c3:94:3b:50:a7:03:0b:85:80:85:ad:cc: 09:e5:b8:dd:d8:7e:24:6f:7a:8e:7e:18:e9:57:0f:f1:2f:c4: bf:e1:2d:94:e8:b2:1a:de:21:13:fa:aa:92:90:c7:29:4b:53: 25:c5:b6:e2:bd:4e:fd:9a:13:6e:c3:61:a5:72:5e:5b:09:91: 13:2a:11:3a:43:c9:45:4e:d7:6a:d4:09:fb:9f:ce:05:14:0a: 0e:65:f0:25:5f:9c:aa:78:25:47:2e:b6:41:28:ec:30:e4:eb: 90:1b:bc:db:27:fe:24:90:50:b4:f5:4c:e5:a1:be:0d:dc:e7: 13:56:ba:3f -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDkIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQx RTNGM0M4QkE4OURDMTMxMDQxMDM0NUY1MEMxMDA3NjE4MTI2MTAeFw0yNTAyMTAx NDAzMjFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEJBNDEzRjZBRUU2NTZF MzQzMDRFNzVBNkM2QjU5MjkyMEJGNTMxNzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDcLcLzQaev8mzVLMxrOB1pT9+IE9/YYLMBjzqyrJZBDbvW/a5a uly0W1pOU7fxLaYB3xg9L/VLijxbAMw6trHMOVGZrAzC7hRsaCgfD2uBnjfaN3pU qh+6Ek9ZqnnlY+rhFmEEB7u1gwgamynS69DkMB4HQlAyBbqNQfz0V5fCf/jPeH3a fg7vAbjeshqFwx1PmIbfdzFfQBhzU+h4NZaPbDVL2+3b8od+rvWmhnkxqsj4oJKJ 2cMi8IM4zxQmghxJqxgWhE4+813yrslaBUBfWEqcaMwGzuWRUV3XpwNec4Bbx1P3 6Yn9oDiYxZQiTxRULlzRb03HnHSPLciKa+FzAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUukE/au5lbjQwTnWmxrWSkgv1MXAwHwYDVR0jBBgwFoAUXR4/PIuoncExBBA0 X1DBAHYYEmEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0dORVQv WFI0X1BJdW9uY0V4QkJBMFgxREJBSFlZRW1FLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9YUjRfUEl1b25jRXhCQkEwWDFEQkFIWVlFbUUuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DR05FVC91a0VfYXU1bGJqUXdUbldteHJX U2tndjFNWEEucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDezIw MA0GCSqGSIb3DQEBCwUAA4IBAQBRRNxF37pfm4OW7odK+EAI9AD8aQVYNrHZRo4V BsQmsg/0iK72rJvWkGuowfB4lo+f4aE7G9OecNjczUrMWhz0KTCPVKjuGkEKws1n H6/JCwZeicvJo7rmTr0rmLJTK8gS7k6mQ8ARB/6k3n6eO6+nK5AXehNqRHAVlChE dwOskNURNJXDlDtQpwMLhYCFrcwJ5bjd2H4kb3qOfhjpVw/xL8S/4S2U6LIa3iET +qqSkMcpS1MlxbbivU79mhNuw2Glcl5bCZETKhE6Q8lFTtdq1An7n84FFAoOZfAl X5yqeCVHLrZBKOww5OuQG7zbJ/4kkFC09Uzlob4N3OcTVro/ -----END CERTIFICATE-----Generated at Wed Feb 19 21:59:15 2025 by rpki-client