$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CGNET/xIyRdMmI1dtiCbEaV0nfRfLuTic.roa File: xIyRdMmI1dtiCbEaV0nfRfLuTic.roa (raw, json) Hash identifier: WJvGwDG24salfa80T1H82XOz3P5wduo/BUb0bPXf6bY= Subject key identifier: C4:8C:91:74:C9:88:D5:DB:62:09:B1:1A:57:49:DF:45:F2:EE:4E:27 Certificate issuer: /CN=5D1E3F3C8BA89DC1310410345F50C10076181261 Certificate serial: 0C7E Authority key identifier: 5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/xIyRdMmI1dtiCbEaV0nfRfLuTic.roa Signing time: Fri 01 Sep 2023 08:26:38 +0000 ROA not before: Fri 01 Sep 2023 08:26:38 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18429 IP address blocks: 27.147.8.0/21 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 02:54:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3198 (0xc7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5D1E3F3C8BA89DC1310410345F50C10076181261 Validity Not Before: Sep 1 08:26:38 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=C48C9174C988D5DB6209B11A5749DF45F2EE4E27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:49:54:a1:5e:f3:a9:6e:de:63:97:82:1f:77: 9c:c5:4c:19:39:3c:f2:af:38:af:0e:c4:74:b8:c3: 08:37:5a:6e:5e:7d:21:51:20:b7:1a:c1:e9:e7:7e: 6a:1c:7b:34:a9:74:6e:16:bf:ed:56:ca:8a:4d:d9: 4b:56:e5:85:60:c5:2b:e9:47:3b:e6:8c:db:61:bc: 82:40:55:2c:13:f2:66:c9:34:f6:10:0e:8f:0d:0c: 44:18:29:9a:d9:4e:72:3f:72:8c:4e:8c:44:3e:89: 41:82:39:96:0e:7c:5f:c6:56:42:c0:c2:0b:d1:16: 18:63:77:29:46:31:6e:d4:d0:48:c9:05:18:17:68: 9f:38:c4:a3:14:c5:0f:69:0d:4b:f2:68:f4:7b:9f: 25:1c:01:ab:17:05:33:01:bb:32:85:75:ab:a7:20: dc:b9:64:d8:a2:be:29:41:81:82:ae:d4:66:39:10: 99:04:38:64:fc:c9:18:71:36:60:41:3d:72:58:48: 4b:5c:41:29:72:70:23:85:5a:c3:5f:b8:46:07:c6: 43:37:e5:f1:1a:14:4b:da:8e:f4:92:44:86:5d:0d: 2c:74:9c:d5:8f:fd:65:56:dc:75:2e:e4:56:67:94: f5:0a:dd:09:97:c0:d6:79:f6:6d:3a:ab:67:b4:29: 92:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:8C:91:74:C9:88:D5:DB:62:09:B1:1A:57:49:DF:45:F2:EE:4E:27 X509v3 Authority Key Identifier: keyid:5D:1E:3F:3C:8B:A8:9D:C1:31:04:10:34:5F:50:C1:00:76:18:12:61 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/XR4_PIuoncExBBA0X1DBAHYYEmE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XR4_PIuoncExBBA0X1DBAHYYEmE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CGNET/xIyRdMmI1dtiCbEaV0nfRfLuTic.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 27.147.8.0/21 Signature Algorithm: sha256WithRSAEncryption 73:b6:bd:2f:99:d4:8d:55:17:6e:94:87:77:e0:ee:71:9d:29: 5c:4e:c2:2c:ea:02:93:39:3c:9d:34:a9:f2:60:91:fa:b6:bd: 90:37:a0:86:ce:28:13:10:ef:3b:e1:a5:9e:18:c8:26:96:7b: b6:9b:69:37:2a:f2:ea:61:f0:1b:92:81:24:9e:bc:5b:67:ea: 00:8f:ed:6e:99:52:fb:a9:b0:73:11:8f:bd:47:8f:c3:97:ef: 5a:8b:1c:87:df:c2:b8:49:24:50:9c:5d:94:4a:22:9a:16:56: 28:2f:76:04:96:5d:67:0b:ba:25:a6:ef:4f:97:fa:68:fb:4c: d7:e3:d7:f8:dc:df:97:97:99:2e:d1:83:01:41:4c:88:a6:5f: 14:1d:24:fe:a7:7a:c1:bf:3a:53:ca:46:7f:8a:74:55:8c:6f: 43:81:9e:75:3a:f9:4b:72:09:bf:0c:13:b0:fc:9e:32:0d:16: 92:76:b7:de:89:38:2c:91:dd:b1:7c:fd:00:d9:90:81:b3:7f: 37:b6:bc:2b:7a:e1:cb:b4:39:e3:0a:d9:60:78:d4:f8:bd:ac: 9c:2f:7a:4b:5e:1d:01:95:74:2b:91:72:ab:a8:c9:47:5b:f0: 34:7f:1c:f6:73:7e:ae:93:60:6d:2c:be:1a:f7:b4:25:4e:fa: 41:8c:97:42 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDH4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUQx RTNGM0M4QkE4OURDMTMxMDQxMDM0NUY1MEMxMDA3NjE4MTI2MTAeFw0yMzA5MDEw ODI2MzhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEM0OEM5MTc0Qzk4OEQ1 REI2MjA5QjExQTU3NDlERjQ1RjJFRTRFMjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCmSVShXvOpbt5jl4Ifd5zFTBk5PPKvOK8OxHS4wwg3Wm5efSFR ILcawennfmocezSpdG4Wv+1WyopN2UtW5YVgxSvpRzvmjNthvIJAVSwT8mbJNPYQ Do8NDEQYKZrZTnI/coxOjEQ+iUGCOZYOfF/GVkLAwgvRFhhjdylGMW7U0EjJBRgX aJ84xKMUxQ9pDUvyaPR7nyUcAasXBTMBuzKFdaunINy5ZNiivilBgYKu1GY5EJkE OGT8yRhxNmBBPXJYSEtcQSlycCOFWsNfuEYHxkM35fEaFEvajvSSRIZdDSx0nNWP /WVW3HUu5FZnlPUK3QmXwNZ59m06q2e0KZL5AgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUxIyRdMmI1dtiCbEaV0nfRfLuTicwHwYDVR0jBBgwFoAUXR4/PIuoncExBBA0 X1DBAHYYEmEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0dORVQv WFI0X1BJdW9uY0V4QkJBMFgxREJBSFlZRW1FLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9YUjRfUEl1b25jRXhCQkEwWDFEQkFIWVlFbUUuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DR05FVC94SXlSZE1tSTFkdGlDYkVhVjBu ZlJmTHVUaWMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQDG5MI MA0GCSqGSIb3DQEBCwUAA4IBAQBztr0vmdSNVRdulId34O5xnSlcTsIs6gKTOTyd NKnyYJH6tr2QN6CGzigTEO874aWeGMgmlnu2m2k3KvLqYfAbkoEknrxbZ+oAj+1u mVL7qbBzEY+9R4/Dl+9aixyH38K4SSRQnF2USiKaFlYoL3YEll1nC7olpu9Pl/po +0zX49f43N+Xl5ku0YMBQUyIpl8UHST+p3rBvzpTykZ/inRVjG9DgZ51OvlLcgm/ DBOw/J4yDRaSdrfeiTgskd2xfP0A2ZCBs383trwreuHLtDnjCtlgeNT4vaycL3pL Xh0BlXQrkXKrqMlHW/A0fxz2c36uk2BtLL4a97QlTvpBjJdC -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:40 2024 by rpki-client on console-ams.rpki-client.org