$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KBT/SAn8OQwJO8XK6FGkBuETtDX3G_o.roa File: SAn8OQwJO8XK6FGkBuETtDX3G_o.roa (raw, json) Hash identifier: ycZugRhBbk8Jtwu16NKEuZ+3B4AS20kxbvkjnyHRwew= Subject key identifier: 48:09:FC:39:0C:09:3B:C5:CA:E8:51:A4:06:E1:13:B4:35:F7:1B:FA Certificate issuer: /CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C Certificate serial: 0CB3 Authority key identifier: 2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/SAn8OQwJO8XK6FGkBuETtDX3G_o.roa Signing time: Mon 26 Aug 2024 05:19:28 +0000 ROA not before: Mon 26 Aug 2024 05:19:28 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18042 IP address blocks: 61.67.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3251 (0xcb3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2DBED751DA8F01930418E2DE2432D0D03A97DA7C Validity Not Before: Aug 26 05:19:28 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4809FC390C093BC5CAE851A406E113B435F71BFA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:ae:18:83:41:d5:1e:31:42:80:29:bc:1b:8d: be:36:7a:b7:3f:9e:91:ed:ca:c6:6c:7d:0b:10:f3: d0:28:9d:92:2e:1b:ae:52:77:f5:4f:bb:9a:d9:fe: df:c7:4b:9d:22:54:4f:86:49:54:87:8f:fa:f7:a3: 06:2b:3c:09:84:9e:fd:87:62:aa:ff:ae:5e:d4:fc: 09:2c:5f:41:ab:41:72:5b:0b:40:23:b1:85:e6:88: 16:3e:d2:f7:bd:80:be:a8:74:ad:f0:a8:11:90:24: f2:13:61:40:85:c3:e3:06:5a:f6:7d:d7:c6:70:be: 2b:60:b2:4f:75:25:03:5b:30:97:03:30:91:39:48: 8a:83:b6:85:91:53:d8:c1:ef:af:6f:6e:3d:06:49: 63:fa:ea:13:79:e1:f4:ba:33:72:74:96:ad:77:95: 05:a5:71:76:8c:17:e6:55:47:fa:cf:1f:73:a3:d0: 4e:94:b1:1b:44:70:03:96:be:ab:81:3a:b9:32:fc: 59:bf:d1:71:f3:51:da:e6:d3:43:93:0e:26:64:89: 06:e0:cc:b0:4a:27:8d:2b:36:f1:75:d9:60:80:ad: f3:65:12:92:8e:96:d1:f6:c3:f5:21:a5:ef:a2:45: eb:ee:aa:18:af:82:cb:00:b7:53:aa:85:ea:29:a6: a4:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:09:FC:39:0C:09:3B:C5:CA:E8:51:A4:06:E1:13:B4:35:F7:1B:FA X509v3 Authority Key Identifier: keyid:2D:BE:D7:51:DA:8F:01:93:04:18:E2:DE:24:32:D0:D0:3A:97:DA:7C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Lb7XUdqPAZMEGOLeJDLQ0DqX2nw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KBT/SAn8OQwJO8XK6FGkBuETtDX3G_o.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.67.209.0/24 Signature Algorithm: sha256WithRSAEncryption b5:30:ea:38:19:52:8d:22:5c:8d:49:ed:93:7e:eb:0e:d5:bb: 7a:5c:0b:0e:90:a6:b3:ca:ea:b8:55:bf:ce:f9:8d:3e:3a:00: 81:34:ba:30:f7:f5:9a:6c:ed:66:5c:91:71:1e:d1:ed:e3:54: 36:e8:a9:c2:5e:dc:04:49:69:35:1d:63:7c:28:fc:3d:ff:1c: f4:a0:21:1a:2d:9c:90:61:ef:4c:b9:53:f9:d0:34:05:ca:34: be:76:48:11:b3:a8:30:cc:4d:fd:5f:00:a9:2d:e0:54:2a:4b: d9:9a:c9:56:8d:e3:1d:5a:ea:99:24:41:a7:b4:70:53:45:c9: 84:b6:ce:bd:30:69:e0:28:8b:3e:cb:b1:b2:c0:68:92:d2:3f: 12:87:69:0b:60:65:ed:c7:75:c8:7a:36:d0:d1:86:e1:52:4e: f1:a9:28:f8:7d:bb:63:73:e3:8f:4d:aa:5b:8e:79:31:02:06: 76:d1:82:f5:13:32:2e:d8:2d:31:62:1f:6e:e6:08:19:ea:d0: 7b:ef:7b:13:85:cf:0e:c9:c2:77:f9:dc:33:72:aa:eb:38:0b: e0:e6:95:f8:0c:b5:94:a2:e0:79:e4:13:51:74:63:dd:36:b7: 42:dd:0c:a6:43:06:35:bd:3b:1a:81:a7:fe:19:a7:2e:05:93: fb:1b:04:4d -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDLMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkRC RUQ3NTFEQThGMDE5MzA0MThFMkRFMjQzMkQwRDAzQTk3REE3QzAeFw0yNDA4MjYw NTE5MjhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ4MDlGQzM5MEMwOTNC QzVDQUU4NTFBNDA2RTExM0I0MzVGNzFCRkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXrhiDQdUeMUKAKbwbjb42erc/npHtysZsfQsQ89AonZIuG65S d/VPu5rZ/t/HS50iVE+GSVSHj/r3owYrPAmEnv2HYqr/rl7U/AksX0GrQXJbC0Aj sYXmiBY+0ve9gL6odK3wqBGQJPITYUCFw+MGWvZ918Zwvitgsk91JQNbMJcDMJE5 SIqDtoWRU9jB769vbj0GSWP66hN54fS6M3J0lq13lQWlcXaMF+ZVR/rPH3Oj0E6U sRtEcAOWvquBOrky/Fm/0XHzUdrm00OTDiZkiQbgzLBKJ40rNvF12WCArfNlEpKO ltH2w/Uhpe+iRevuqhivgssAt1OqheoppqThAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUSAn8OQwJO8XK6FGkBuETtDX3G/owHwYDVR0jBBgwFoAULb7XUdqPAZMEGOLe JDLQ0DqX2nwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0JUL0xi N1hVZHFQQVpNRUdPTGVKRExRMERxWDJudy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev TGI3WFVkcVBBWk1FR09MZUpETFEwRHFYMm53LmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0JUL1NBbjhPUXdKTzhYSzZGR2tCdUVUdERY M0dfby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAA9Q9EwDQYJ KoZIhvcNAQELBQADggEBALUw6jgZUo0iXI1J7ZN+6w7Vu3pcCw6QprPK6rhVv875 jT46AIE0ujD39Zps7WZckXEe0e3jVDboqcJe3ARJaTUdY3wo/D3/HPSgIRotnJBh 70y5U/nQNAXKNL52SBGzqDDMTf1fAKkt4FQqS9mayVaN4x1a6pkkQae0cFNFyYS2 zr0waeAoiz7LsbLAaJLSPxKHaQtgZe3Hdch6NtDRhuFSTvGpKPh9u2Nz449NqluO eTECBnbRgvUTMi7YLTFiH27mCBnq0HvvexOFzw7Jwnf53DNyqus4C+DmlfgMtZSi 4HnkE1F0Y902t0LdDKZDBjW9OxqBp/4Zpy4Fk/sbBE0= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:08 2024 by rpki-client on console-ams.rpki-client.org