$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KBT/gnv9_3CPdojMAaJgOFZ607gX7jU.roa File: gnv9_3CPdojMAaJgOFZ607gX7jU.roa (raw, json) Hash identifier: /HuErrgBNMdUkg071YszQhf32IgRYORAGdZNXlg/SqY= Subject key identifier: 82:7B:FD:FF:70:8F:76:88:CC:01:A2:60:38:56:7A:D3:B8:17:EE:35 Certificate issuer: /CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C Certificate serial: 0CAE Authority key identifier: 2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/gnv9_3CPdojMAaJgOFZ607gX7jU.roa Signing time: Mon 26 Aug 2024 05:19:27 +0000 ROA not before: Mon 26 Aug 2024 05:19:27 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18042 IP address blocks: 58.86.38.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Sep 2024 03:51:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3246 (0xcae) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C Validity Not Before: Aug 26 05:19:27 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=827BFDFF708F7688CC01A26038567AD3B817EE35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:d1:3d:f7:d5:dd:2f:22:8a:e8:c7:3a:d9:c8: f3:c8:60:61:3d:9f:0a:c7:17:47:e1:cc:a1:10:b7: 21:af:45:e7:f6:8e:f8:49:b3:c4:3c:67:5d:21:ee: f8:dc:b7:94:cf:17:25:c1:82:c9:85:b1:27:ca:c7: 3a:ce:a4:ce:54:04:91:5c:b3:d9:4f:45:9f:88:4b: 56:3d:2b:98:a6:e8:58:4e:79:77:d7:fd:43:fe:b2: f1:01:1b:44:8e:d8:5f:74:76:d2:35:89:33:16:01: a4:d2:a3:e6:d4:de:5c:97:03:d4:f8:fe:2c:4f:4d: 9d:2d:71:31:69:92:19:59:f2:ff:a9:e4:40:3b:53: 0c:22:6d:34:cd:8a:1a:82:f5:06:40:39:68:60:01: dd:3f:53:35:c4:0c:b2:33:d0:15:28:14:3b:4e:ad: 74:68:59:3f:f2:a1:9f:31:7e:bb:eb:7d:68:91:b8: 55:ec:70:8e:a8:44:86:43:39:4a:ad:4f:f4:50:ca: 72:e6:9e:1b:42:3d:b2:c7:77:ca:37:46:e5:27:f6: 0f:bc:d0:1d:d4:08:5f:dc:87:49:22:49:57:57:79: bc:72:2c:38:cb:1b:66:e3:38:e3:8a:1e:88:c2:f7: f4:a7:c2:b8:87:e2:e7:45:19:96:16:c0:69:82:b2: c8:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:7B:FD:FF:70:8F:76:88:CC:01:A2:60:38:56:7A:D3:B8:17:EE:35 X509v3 Authority Key Identifier: keyid:2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/gnv9_3CPdojMAaJgOFZ607gX7jU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 58.86.38.0/24 Signature Algorithm: sha256WithRSAEncryption c2:cf:2b:31:58:e9:1e:85:79:4a:73:ad:ad:4b:8d:8f:5b:16: 83:d5:64:c4:24:42:12:d2:82:eb:3e:39:27:d8:e7:e2:24:5b: 9a:5d:56:1d:9d:26:22:53:ab:71:af:7b:3f:f2:77:6a:69:d5: 4d:97:1c:ee:ff:14:88:ae:20:1d:08:09:b6:b8:46:b2:63:96: b3:f1:64:4c:6e:17:f0:2a:96:1c:c7:5b:c8:b3:f1:47:8c:9c: fe:f3:56:47:25:22:d2:83:41:e7:97:56:73:16:e3:7a:09:be: c5:dc:57:9e:9d:4d:cd:45:1c:15:60:9d:09:14:65:94:23:b9: bb:80:bb:f5:ad:da:eb:af:b2:f0:0f:80:35:20:3e:78:5d:92: 66:38:5a:50:a3:ba:60:fa:b6:1c:e8:b5:68:c5:76:f5:fd:72: 7d:f1:cc:a2:3c:38:28:f1:c6:34:45:17:42:6d:76:94:42:ec: 4d:e4:f5:3f:12:71:df:e1:3d:1c:61:c1:b3:5e:83:65:48:6f: 72:b6:79:d1:d1:4a:51:2f:7d:0c:15:15:05:16:47:5f:fa:cf: 74:a4:d4:0a:1f:81:c0:23:9f:bb:81:2c:ac:38:35:74:92:fe: 7c:29:44:3c:ae:6f:99:e8:5d:23:11:ee:5c:d3:51:ad:53:c6: 22:b7:87:40 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDK4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkRC RUQ3NTFEQThGMDE5MzA0MThFMkRFMjQzMkQwRDAzQTk3REE3QzAeFw0yNDA4MjYw NTE5MjdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDgyN0JGREZGNzA4Rjc2 ODhDQzAxQTI2MDM4NTY3QUQzQjgxN0VFMzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDF0T331d0vIoroxzrZyPPIYGE9nwrHF0fhzKEQtyGvRef2jvhJ s8Q8Z10h7vjct5TPFyXBgsmFsSfKxzrOpM5UBJFcs9lPRZ+IS1Y9K5im6FhOeXfX /UP+svEBG0SO2F90dtI1iTMWAaTSo+bU3lyXA9T4/ixPTZ0tcTFpkhlZ8v+p5EA7 UwwibTTNihqC9QZAOWhgAd0/UzXEDLIz0BUoFDtOrXRoWT/yoZ8xfrvrfWiRuFXs cI6oRIZDOUqtT/RQynLmnhtCPbLHd8o3RuUn9g+80B3UCF/ch0kiSVdXebxyLDjL G2bjOOOKHojC9/SnwriH4udFGZYWwGmCssj/AgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUgnv9/3CPdojMAaJgOFZ607gX7jUwHwYDVR0jBBgwFoAULb7XUdqPAZMEGOLe JDLQ0DqX2nwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0JUL0xi N1hVZHFQQVpNRUdPTGVKRExRMERxWDJudy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev TGI3WFVkcVBBWk1FR09MZUpETFEwRHFYMm53LmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0JUL2dudjlfM0NQZG9qTUFhSmdPRlo2MDdn WDdqVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAA6ViYwDQYJ KoZIhvcNAQELBQADggEBAMLPKzFY6R6FeUpzra1LjY9bFoPVZMQkQhLSgus+OSfY 5+IkW5pdVh2dJiJTq3Gvez/yd2pp1U2XHO7/FIiuIB0ICba4RrJjlrPxZExuF/Aq lhzHW8iz8UeMnP7zVkclItKDQeeXVnMW43oJvsXcV56dTc1FHBVgnQkUZZQjubuA u/Wt2uuvsvAPgDUgPnhdkmY4WlCjumD6thzotWjFdvX9cn3xzKI8OCjxxjRFF0Jt dpRC7E3k9T8Scd/hPRxhwbNeg2VIb3K2edHRSlEvfQwVFQUWR1/6z3Sk1AofgcAj n7uBLKw4NXSS/nwpRDyub5noXSMR7lzTUa1TxiK3h0A= -----END CERTIFICATE-----Generated at Fri Sep 27 23:36:46 2024 by rpki-client on console-fra.rpki-client.org