$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GIGABYTE/9nZsTgG_HfLTyAE0p1bQkBKSDoA.roa File: 9nZsTgG_HfLTyAE0p1bQkBKSDoA.roa (raw, json) Hash identifier: w8ZG/DXOCL/WNlwzHNLQYhLwr+dneP1ESChcw/er1cQ= Subject key identifier: F6:76:6C:4E:01:BF:1D:F2:D3:C8:01:34:A7:56:D0:90:12:92:0E:80 Certificate issuer: /CN=68CAC1FA04D80CFE3E2BE97C7AB1852B6656535F Certificate serial: 123F Authority key identifier: 68:CA:C1:FA:04:D8:0C:FE:3E:2B:E9:7C:7A:B1:85:2B:66:56:53:5F Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/aMrB-gTYDP4-K-l8erGFK2ZWU18.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GIGABYTE/9nZsTgG_HfLTyAE0p1bQkBKSDoA.roa Signing time: Mon 26 Aug 2024 05:17:03 +0000 ROA not before: Mon 26 Aug 2024 05:17:03 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131663 IP address blocks: 2403:b7c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GIGABYTE/aMrB-gTYDP4-K-l8erGFK2ZWU18.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GIGABYTE/aMrB-gTYDP4-K-l8erGFK2ZWU18.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/aMrB-gTYDP4-K-l8erGFK2ZWU18.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4671 (0x123f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68CAC1FA04D80CFE3E2BE97C7AB1852B6656535F Validity Not Before: Aug 26 05:17:03 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F6766C4E01BF1DF2D3C80134A756D09012920E80 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:b4:f5:ae:01:40:43:09:de:bf:c6:81:a8:17: 39:f0:34:49:e9:bc:a7:c5:02:b1:96:11:63:82:56: ff:29:72:2d:98:3b:83:14:06:b1:1d:a7:21:1a:a2: 78:3d:e9:42:8a:82:dd:3a:6a:2c:6b:18:cc:9d:c0: 6e:af:8e:ef:59:a2:93:bb:3c:e3:bf:25:78:27:8c: 8b:d5:06:90:a6:17:25:f4:1f:a6:28:2b:46:d1:b0: 48:e6:23:80:a2:65:5e:c2:76:49:0d:80:61:a6:66: 97:ad:81:99:e5:2a:c1:3d:08:4f:7f:df:4e:c7:bf: c1:f8:20:10:cf:cf:81:75:84:95:53:61:a6:ee:f0: 43:31:8f:5e:f8:be:7e:8f:fe:96:4c:01:dc:f9:b1: 0b:1d:ce:24:50:62:da:eb:13:de:81:ea:06:37:56: 39:14:6e:b2:cb:a7:b3:99:21:e9:de:5a:d6:ec:81: b2:7d:3f:57:55:63:a3:86:42:2c:42:ea:a5:9d:bc: d6:49:d2:0a:1d:fa:b2:1b:27:94:9d:b6:1a:82:c4: ee:71:00:26:dd:a6:95:07:7e:6d:a4:5b:63:15:9a: 00:e8:3c:73:9a:a9:1a:86:c3:a8:18:b2:00:04:f1: 06:9e:e0:f8:e1:63:55:9c:f4:86:de:3b:39:97:f5: 22:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:76:6C:4E:01:BF:1D:F2:D3:C8:01:34:A7:56:D0:90:12:92:0E:80 X509v3 Authority Key Identifier: keyid:68:CA:C1:FA:04:D8:0C:FE:3E:2B:E9:7C:7A:B1:85:2B:66:56:53:5F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GIGABYTE/aMrB-gTYDP4-K-l8erGFK2ZWU18.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/aMrB-gTYDP4-K-l8erGFK2ZWU18.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GIGABYTE/9nZsTgG_HfLTyAE0p1bQkBKSDoA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2403:b7c0::/32 Signature Algorithm: sha256WithRSAEncryption a4:c0:2b:4d:21:77:c1:ef:de:21:8d:20:91:c9:b8:32:70:70: 72:d0:18:64:3a:0b:0d:bc:1a:71:da:0d:47:e2:0d:28:c8:77: 7f:51:bc:d1:f7:ff:c9:2c:b6:4a:a1:d2:33:8f:cd:e8:7d:f9: 95:8f:79:2c:5b:b7:f3:59:73:5b:1a:52:85:68:a1:55:86:98: 82:fb:67:70:cd:1a:2a:27:52:36:2e:09:75:6c:21:73:1f:c1: c2:e8:54:f5:3f:63:45:5b:83:e2:6b:b7:ab:6d:b5:62:f9:13: f7:a4:f3:3c:7a:bf:ef:13:e7:33:87:53:7e:a8:7b:b0:53:b9: 30:3c:e9:9e:8b:c8:4e:66:35:eb:0f:00:52:27:1c:84:72:bb: 11:ff:bc:b6:df:28:34:c6:12:d0:19:66:db:2a:05:88:e5:f5: e2:66:82:7c:ea:97:43:34:55:99:93:84:a2:b9:f9:6d:80:65: 96:b9:d8:07:49:9f:b5:c9:0d:36:ee:e4:5d:e9:7b:04:45:20: ad:2e:9e:6c:94:b8:c1:00:9f:32:ae:18:5f:1c:23:42:17:06: 10:ec:7c:fe:47:17:52:96:19:e6:89:5e:1e:7d:c0:1c:d3:14: 99:43:84:f7:b4:3b:58:d2:b5:f4:22:9c:2b:2d:17:53:91:6a: 90:41:cc:85 -----BEGIN CERTIFICATE----- MIIE1zCCA7+gAwIBAgICEj8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjhD QUMxRkEwNEQ4MENGRTNFMkJFOTdDN0FCMTg1MkI2NjU2NTM1RjAeFw0yNDA4MjYw NTE3MDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEY2NzY2QzRFMDFCRjFE RjJEM0M4MDEzNEE3NTZEMDkwMTI5MjBFODAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDStPWuAUBDCd6/xoGoFznwNEnpvKfFArGWEWOCVv8pci2YO4MU BrEdpyEaong96UKKgt06aixrGMydwG6vju9ZopO7POO/JXgnjIvVBpCmFyX0H6Yo K0bRsEjmI4CiZV7CdkkNgGGmZpetgZnlKsE9CE9/307Hv8H4IBDPz4F1hJVTYabu 8EMxj174vn6P/pZMAdz5sQsdziRQYtrrE96B6gY3VjkUbrLLp7OZIeneWtbsgbJ9 P1dVY6OGQixC6qWdvNZJ0god+rIbJ5SdthqCxO5xACbdppUHfm2kW2MVmgDoPHOa qRqGw6gYsgAE8Qae4PjhY1Wc9IbeOzmX9SKRAgMBAAGjggHzMIIB7zAdBgNVHQ4E FgQU9nZsTgG/HfLTyAE0p1bQkBKSDoAwHwYDVR0jBBgwFoAUaMrB+gTYDP4+K+l8 erGFK2ZWU18wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR0lHQUJZ VEUvYU1yQi1nVFlEUDQtSy1sOGVyR0ZLMlpXVTE4LmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9hTXJCLWdUWURQNC1LLWw4ZXJHRksyWldVMTguY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9HSUdBQllURS85blpzVGdHX0hmTFR5 QUUwcDFiUWtCS1NEb0Eucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAH AwUAJAO3wDANBgkqhkiG9w0BAQsFAAOCAQEApMArTSF3we/eIY0gkcm4MnBwctAY ZDoLDbwacdoNR+INKMh3f1G80ff/ySy2SqHSM4/N6H35lY95LFu381lzWxpShWih VYaYgvtncM0aKidSNi4JdWwhcx/BwuhU9T9jRVuD4mu3q221YvkT96TzPHq/7xPn M4dTfqh7sFO5MDzpnovITmY16w8AUicchHK7Ef+8tt8oNMYS0Blm2yoFiOX14maC fOqXQzRVmZOEorn5bYBllrnYB0mftckNNu7kXel7BEUgrS6ebJS4wQCfMq4YXxwj QhcGEOx8/kcXUpYZ5oleHn3AHNMUmUOE97Q7WNK19CKcKy0XU5FqkEHMhQ== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:51 2024 by rpki-client on console-fra.rpki-client.org