$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/YoYoE11xI9vneHSJMzQTpMpUZo0.roa File: YoYoE11xI9vneHSJMzQTpMpUZo0.roa (raw, json) Hash identifier: iTuLyQfL/ATM2KlYMWuRXqSluv2dnXUvXEorRzuWdjg= Subject key identifier: 62:86:28:13:5D:71:23:DB:E7:78:74:89:33:34:13:A4:CA:54:66:8D Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Certificate serial: 0B64 Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/YoYoE11xI9vneHSJMzQTpMpUZo0.roa Signing time: Fri 01 Sep 2023 09:45:55 +0000 ROA not before: Fri 01 Sep 2023 09:45:55 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 18182 IP address blocks: 27.105.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 03 Jun 2024 10:33:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2916 (0xb64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Validity Not Before: Sep 1 09:45:55 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=628628135D7123DBE7787489333413A4CA54668D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:9b:8e:2a:cc:ef:db:31:3c:55:1c:5c:a7:52: f0:26:6b:b0:a6:96:17:04:f9:1f:39:58:bf:64:af: cb:2b:99:73:e6:65:9c:d3:89:b8:a9:80:d6:59:de: d7:7b:75:a4:c3:f8:56:12:82:84:b5:13:78:f4:0f: 43:d5:6d:53:d5:45:9e:12:6a:54:66:fa:93:21:33: b0:23:2c:e9:7c:01:c8:46:42:c9:cf:d4:71:75:1f: 14:c2:20:a3:58:a6:32:06:37:0e:7f:a4:14:17:32: 42:a1:c2:c3:88:d1:8d:b7:89:71:93:6b:25:b9:d4: 4d:41:a2:db:20:3a:87:9f:e8:a9:b3:f4:06:30:8d: c2:de:7a:e5:5d:81:71:36:94:0d:98:7b:6b:ab:9b: aa:c2:ef:08:e0:85:f4:90:ce:a7:3a:7f:78:05:64: 21:c4:53:00:f4:8a:0a:65:c7:1a:20:28:d4:27:3c: 9e:37:b0:87:fd:29:5e:83:73:cd:27:64:1a:a9:31: d7:83:ef:f5:28:d6:c3:da:2b:2c:3d:f4:cf:21:24: 45:28:d2:9b:16:25:8f:3d:25:47:9c:8b:c5:fa:7a: a8:37:33:f4:f3:eb:75:b0:c4:bc:7f:70:61:5b:8f: ed:69:54:df:1d:18:79:55:ad:af:25:ef:b4:8e:e5: ec:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:86:28:13:5D:71:23:DB:E7:78:74:89:33:34:13:A4:CA:54:66:8D X509v3 Authority Key Identifier: keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/YoYoE11xI9vneHSJMzQTpMpUZo0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 27.105.0.0/16 Signature Algorithm: sha256WithRSAEncryption 60:cc:a2:c2:21:82:fe:3b:61:72:2b:36:15:82:15:e1:94:ff: cc:4c:c0:f3:d2:79:ad:c8:54:66:de:ee:62:81:09:77:32:ca: d0:17:91:dd:02:46:9c:49:70:66:94:be:b1:e3:0b:3e:49:f0: f6:43:78:33:5e:98:9f:d6:19:b6:7d:07:7c:52:cd:e5:da:2e: 53:42:fb:59:7a:81:62:71:21:6d:8b:84:af:c7:59:92:67:ae: 7e:e0:88:60:22:f9:22:34:eb:a5:71:41:c9:c3:53:c9:22:5c: b7:0c:38:8f:df:25:cb:7f:42:da:c3:9f:62:b8:77:35:eb:98: 53:c4:6f:7c:fe:75:7e:5c:cb:c2:ea:da:09:88:47:d7:c0:ce: 16:44:91:07:63:2f:49:6f:66:ee:2b:3d:24:b8:50:6c:07:d5: 6c:be:78:aa:c0:fb:c7:a1:f9:9e:2a:1e:88:93:62:36:a6:00: cf:68:63:ce:b4:92:21:77:89:e4:f4:7a:a4:d1:9e:32:58:d8: 59:b5:96:33:f0:54:3d:76:62:0c:ca:ab:9a:b8:30:2e:54:fe: 02:4c:ac:e2:d3:8e:f3:aa:8c:d4:b9:bd:82:93:78:d7:fa:77: 8a:0d:32:7a:b8:0b:11:8f:76:35:4c:ed:e5:37:5a:70:13:c6: 20:4c:a0:05 -----BEGIN CERTIFICATE----- MIIEzzCCA7egAwIBAgICC2QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0NC NTQ1NDE1M0FDQ0VDRTg1MjBEMzM5MDdENTRFNTZDNUNBOUE0QjAeFw0yMzA5MDEw OTQ1NTVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDYyODYyODEzNUQ3MTIz REJFNzc4NzQ4OTMzMzQxM0E0Q0E1NDY2OEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxm44qzO/bMTxVHFynUvAma7CmlhcE+R85WL9kr8srmXPmZZzT ibipgNZZ3td7daTD+FYSgoS1E3j0D0PVbVPVRZ4SalRm+pMhM7AjLOl8AchGQsnP 1HF1HxTCIKNYpjIGNw5/pBQXMkKhwsOI0Y23iXGTayW51E1BotsgOoef6Kmz9AYw jcLeeuVdgXE2lA2Ye2urm6rC7wjghfSQzqc6f3gFZCHEUwD0igplxxogKNQnPJ43 sIf9KV6Dc80nZBqpMdeD7/Uo1sPaKyw99M8hJEUo0psWJY89JUeci8X6eqg3M/Tz 63WwxLx/cGFbj+1pVN8dGHlVra8l77SO5ezZAgMBAAGjggHrMIIB5zAdBgNVHQ4E FgQUYoYoE11xI9vneHSJMzQTpMpUZo0wHwYDVR0jBBgwFoAUzLVFQVOszs6FINM5 B9VOVsXKmkswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU09ORVQv ekxWRlFWT3N6czZGSU5NNUI5Vk9Wc1hLbWtzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS96TFZGUVZPc3pzNkZJTk01QjlWT1ZzWEtta3MuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TT05FVC9Zb1lvRTExeEk5dm5lSFNKTXpR VHBNcFVabzAucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB4GCCsGAQUFBwEHAQH/BA8wDTALBAIAATAFAwMAG2kw DQYJKoZIhvcNAQELBQADggEBAGDMosIhgv47YXIrNhWCFeGU/8xMwPPSea3IVGbe 7mKBCXcyytAXkd0CRpxJcGaUvrHjCz5J8PZDeDNemJ/WGbZ9B3xSzeXaLlNC+1l6 gWJxIW2LhK/HWZJnrn7giGAi+SI066VxQcnDU8kiXLcMOI/fJct/QtrDn2K4dzXr mFPEb3z+dX5cy8Lq2gmIR9fAzhZEkQdjL0lvZu4rPSS4UGwH1Wy+eKrA+8eh+Z4q HoiTYjamAM9oY860kiF3ieT0eqTRnjJY2Fm1ljPwVD12YgzKq5q4MC5U/gJMrOLT jvOqjNS5vYKTeNf6d4oNMnq4CxGPdjVM7eU3WnATxiBMoAU= -----END CERTIFICATE-----Generated at Sat Jun 1 22:20:21 2024 by rpki-client on console-fra.rpki-client.org