$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/ClegjVFmg3gSvwuE91SW7AnxCSM.roa File: ClegjVFmg3gSvwuE91SW7AnxCSM.roa (raw, json) Hash identifier: PYALLxLlqN7iRW7Mn8qaIRnQrxLUXnXqUpIXZAQ2698= Subject key identifier: 0A:57:A0:8D:51:66:83:78:12:BF:0B:84:F7:54:96:EC:09:F1:09:23 Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Certificate serial: 0B68 Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/ClegjVFmg3gSvwuE91SW7AnxCSM.roa Signing time: Fri 01 Sep 2023 09:45:56 +0000 ROA not before: Fri 01 Sep 2023 09:45:56 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 32787 IP address blocks: 27.105.82.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 26 May 2024 22:22:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2920 (0xb68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Validity Not Before: Sep 1 09:45:56 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=0A57A08D5166837812BF0B84F75496EC09F10923 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ec:eb:a2:77:90:d9:b7:dc:1f:f5:29:6a:b2: 97:25:e0:f0:41:48:67:d0:2d:16:2e:8e:4d:fe:22: 3b:62:8a:41:cc:cf:b9:c4:3d:9b:b9:0e:c4:88:d5: dd:6f:b7:d3:66:12:2e:88:7e:af:99:4e:76:84:39: 66:28:bb:e8:62:ea:23:04:34:d2:f3:cf:a2:46:1f: 4b:1c:40:79:61:f3:23:39:f7:66:fd:cb:e7:ff:52: 47:9f:4d:68:a3:4e:2d:fb:2a:7b:fe:23:78:d5:89: 12:e4:e3:55:52:e8:cb:15:74:1b:0d:80:f4:c4:4e: 65:ee:97:40:e5:c7:3f:fe:4e:f0:ff:59:9a:b0:14: cf:cf:49:96:b3:63:17:97:ef:63:f7:69:cd:58:61: b7:30:b3:83:bb:ff:69:6b:0a:9e:35:0c:06:ab:9c: 0a:de:0f:25:0a:8a:c2:60:77:00:73:54:a7:70:5b: cc:6c:fb:8a:b9:f3:82:72:31:f7:4e:4d:41:d5:ef: d1:ef:64:41:ed:2a:31:cf:0b:cc:fb:88:49:7e:67: 07:ff:21:bc:5c:72:30:a6:d3:35:a7:3c:64:fb:20: 22:62:2e:6a:a2:ba:16:21:52:21:07:d7:5b:4c:cc: a1:5a:f4:cb:df:9c:0d:5a:e9:88:de:de:19:dc:34: 7c:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:57:A0:8D:51:66:83:78:12:BF:0B:84:F7:54:96:EC:09:F1:09:23 X509v3 Authority Key Identifier: keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/ClegjVFmg3gSvwuE91SW7AnxCSM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 27.105.82.0/24 Signature Algorithm: sha256WithRSAEncryption 7e:a6:2c:8b:85:78:e3:48:33:7c:19:2e:32:e4:4d:5b:86:6f: 7c:aa:8d:c9:c8:3d:64:6e:6a:bb:3c:c3:8a:69:e4:2d:88:d0: 31:da:30:2e:b6:f0:28:20:13:99:ff:95:3a:26:c3:3e:2c:3c: 06:2d:38:47:47:ea:9e:91:94:7e:ba:d4:73:bc:73:4a:05:2d: 48:c7:b2:36:85:1c:91:8e:fb:48:33:96:e3:d4:2c:85:71:28: c1:87:66:9f:d5:f2:c5:74:68:07:c1:78:fb:e7:4e:bc:99:50: 67:77:c7:fe:7c:b4:00:99:95:6e:68:44:25:a7:b6:78:c0:cf: cb:68:95:9b:38:d7:d8:38:f2:5f:b2:90:1f:14:ff:66:c0:3d: d5:36:66:db:5f:04:c2:88:4a:17:09:91:55:a8:bf:ba:e1:9d: f4:84:4f:f2:d1:07:fe:13:7a:0c:a7:2f:8f:c2:b5:99:0d:a1: 59:4b:1c:5d:91:e3:0e:4f:f6:8b:03:a1:0e:b2:0e:c0:62:dc: 62:ad:16:56:fd:65:b2:20:79:8d:d6:c8:1b:57:c3:e1:43:ed: d9:43:16:6b:1b:81:92:2c:04:03:3d:26:7f:a1:e9:27:d5:db: f7:8e:ba:30:4f:f1:11:23:33:81:6a:3e:b6:b9:4e:dc:16:03: 25:7e:ad:be -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICC2gwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0NC NTQ1NDE1M0FDQ0VDRTg1MjBEMzM5MDdENTRFNTZDNUNBOUE0QjAeFw0yMzA5MDEw OTQ1NTZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDBBNTdBMDhENTE2Njgz NzgxMkJGMEI4NEY3NTQ5NkVDMDlGMTA5MjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDD7Ouid5DZt9wf9Slqspcl4PBBSGfQLRYujk3+IjtiikHMz7nE PZu5DsSI1d1vt9NmEi6Ifq+ZTnaEOWYou+hi6iMENNLzz6JGH0scQHlh8yM592b9 y+f/UkefTWijTi37Knv+I3jViRLk41VS6MsVdBsNgPTETmXul0Dlxz/+TvD/WZqw FM/PSZazYxeX72P3ac1YYbcws4O7/2lrCp41DAarnAreDyUKisJgdwBzVKdwW8xs +4q584JyMfdOTUHV79HvZEHtKjHPC8z7iEl+Zwf/IbxccjCm0zWnPGT7ICJiLmqi uhYhUiEH11tMzKFa9MvfnA1a6Yje3hncNHwrAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUClegjVFmg3gSvwuE91SW7AnxCSMwHwYDVR0jBBgwFoAUzLVFQVOszs6FINM5 B9VOVsXKmkswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU09ORVQv ekxWRlFWT3N6czZGSU5NNUI5Vk9Wc1hLbWtzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS96TFZGUVZPc3pzNkZJTk01QjlWT1ZzWEtta3MuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TT05FVC9DbGVnalZGbWczZ1N2d3VFOTFT VzdBbnhDU00ucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAG2lS MA0GCSqGSIb3DQEBCwUAA4IBAQB+piyLhXjjSDN8GS4y5E1bhm98qo3JyD1kbmq7 PMOKaeQtiNAx2jAutvAoIBOZ/5U6JsM+LDwGLThHR+qekZR+utRzvHNKBS1Ix7I2 hRyRjvtIM5bj1CyFcSjBh2af1fLFdGgHwXj75068mVBnd8f+fLQAmZVuaEQlp7Z4 wM/LaJWbONfYOPJfspAfFP9mwD3VNmbbXwTCiEoXCZFVqL+64Z30hE/y0Qf+E3oM py+PwrWZDaFZSxxdkeMOT/aLA6EOsg7AYtxirRZW/WWyIHmN1sgbV8PhQ+3ZQxZr G4GSLAQDPSZ/oekn1dv3jrowT/ERIzOBaj62uU7cFgMlfq2+ -----END CERTIFICATE-----Generated at Sat May 25 23:03:24 2024 by rpki-client on console-ams.rpki-client.org