$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/-7kyndErW055Ghmb98HEP-EiQY4.roa File: -7kyndErW055Ghmb98HEP-EiQY4.roa (raw, json) Hash identifier: 0TF4cDOCgKNugp73P6AC82kAhCTyAbPlubMBI4kduLE= Subject key identifier: FB:B9:32:9D:D1:2B:5B:4E:79:1A:19:9B:F7:C1:C4:3F:E1:22:41:8E Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Certificate serial: 0D67 Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/-7kyndErW055Ghmb98HEP-EiQY4.roa Signing time: Mon 26 Aug 2024 05:19:46 +0000 ROA not before: Mon 26 Aug 2024 05:19:46 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131602 IP address blocks: 211.78.24.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3431 (0xd67) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Validity Not Before: Aug 26 05:19:46 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=FBB9329DD12B5B4E791A199BF7C1C43FE122418E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:96:c3:f1:e9:c4:04:7a:4c:ce:74:54:9a:53: 2a:8b:a2:8e:9d:38:64:bf:00:db:bb:a0:11:a1:7d: d2:7b:30:97:c9:4d:98:40:3c:6b:0c:16:aa:2b:88: 75:aa:bc:96:f6:66:e3:74:e8:e6:c5:a1:a8:6e:47: 39:e2:22:d5:7c:d0:7e:6b:e2:3d:a1:9e:2d:c4:71: 80:e4:8c:c0:fa:65:0b:0f:7f:ca:02:92:9d:8b:54: 30:c3:9b:98:63:97:8d:b3:cf:3a:a0:e4:18:d0:f3: c7:8c:f5:e5:1e:f4:62:78:69:4e:0d:5c:18:7f:0e: a9:74:cf:88:1c:82:b1:a9:27:45:c5:d1:1b:64:be: 8d:3c:bb:4f:49:bb:7b:1c:39:f8:db:63:8f:22:34: 1f:c5:42:be:48:c4:f5:1d:f8:80:1b:78:dc:1d:2b: 61:88:5b:70:86:24:02:47:9c:98:5e:53:dc:3a:01: 29:2d:b6:31:6b:b8:c9:71:f6:26:a5:73:8e:35:e4: 5d:17:92:85:53:75:e7:3c:f6:09:4d:a7:11:c2:be: 59:6f:da:cc:36:7c:7a:f3:e0:61:52:4f:8e:9c:15: 92:2f:01:01:6b:66:8e:d2:ff:55:69:a4:25:fa:51: 53:aa:6d:71:4d:96:00:0b:c5:5c:63:a2:c3:e3:d0: 3e:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:B9:32:9D:D1:2B:5B:4E:79:1A:19:9B:F7:C1:C4:3F:E1:22:41:8E X509v3 Authority Key Identifier: keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/-7kyndErW055Ghmb98HEP-EiQY4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.78.24.0/21 Signature Algorithm: sha256WithRSAEncryption a5:c8:f5:7e:de:db:6a:17:35:17:61:b1:0c:78:68:34:01:22: 18:6f:3a:4f:30:ba:39:50:47:73:f4:5f:ec:92:ae:1c:27:f1: 44:15:38:68:fb:eb:53:01:fe:1d:62:9d:ac:d5:ec:3e:f1:e1: 86:77:8a:65:5f:a3:46:03:31:e0:49:25:19:2e:30:31:6b:2c: 85:88:45:8e:18:e9:63:4c:77:7d:9c:88:b6:a1:90:13:0f:bc: ee:f1:a7:17:80:5a:43:36:dd:0f:2e:6b:eb:de:54:ad:c4:c7: 8a:87:31:b1:40:46:89:50:ff:b7:e1:6e:58:eb:4c:05:c3:51: 69:89:86:70:4f:5b:c6:4d:df:0f:91:f3:0f:a1:c4:03:40:6d: 6d:09:60:1e:f3:aa:aa:69:e2:d5:9f:3a:ea:ac:c5:88:c4:72: ad:aa:9f:47:57:cb:45:18:cf:98:9e:77:13:5d:e2:42:b7:96: 16:7f:11:03:a0:dc:13:48:c0:e7:97:82:3f:02:9f:d3:f4:f4: 62:34:d7:f4:eb:2a:78:43:56:ff:df:61:e2:f8:5f:ce:1a:e1: c9:8d:e8:6b:2b:7e:01:1c:d5:6f:ec:75:3a:04:c8:a3:ed:a8: a8:de:1f:70:24:a8:3f:b4:5b:43:2b:73:25:ec:66:15:e9:0a: d9:51:0e:d3 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDWcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3 MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yNDA4MjYw NTE5NDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEZCQjkzMjlERDEyQjVC NEU3OTFBMTk5QkY3QzFDNDNGRTEyMjQxOEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMlsPx6cQEekzOdFSaUyqLoo6dOGS/ANu7oBGhfdJ7MJfJTZhA PGsMFqoriHWqvJb2ZuN06ObFoahuRzniItV80H5r4j2hni3EcYDkjMD6ZQsPf8oC kp2LVDDDm5hjl42zzzqg5BjQ88eM9eUe9GJ4aU4NXBh/Dql0z4gcgrGpJ0XF0Rtk vo08u09Ju3scOfjbY48iNB/FQr5IxPUd+IAbeNwdK2GIW3CGJAJHnJheU9w6ASkt tjFruMlx9ialc4415F0XkoVTdec89glNpxHCvllv2sw2fHrz4GFST46cFZIvAQFr Zo7S/1VppCX6UVOqbXFNlgALxVxjosPj0D7xAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU+7kyndErW055Ghmb98HEP+EiQY4wHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0dULy03a3luZEVyVzA1NUdobWI5OEhFUC1F aVFZNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPTThgwDQYJ KoZIhvcNAQELBQADggEBAKXI9X7e22oXNRdhsQx4aDQBIhhvOk8wujlQR3P0X+yS rhwn8UQVOGj761MB/h1inazV7D7x4YZ3imVfo0YDMeBJJRkuMDFrLIWIRY4Y6WNM d32ciLahkBMPvO7xpxeAWkM23Q8ua+veVK3Ex4qHMbFARolQ/7fhbljrTAXDUWmJ hnBPW8ZN3w+R8w+hxANAbW0JYB7zqqpp4tWfOuqsxYjEcq2qn0dXy0UYz5iedxNd 4kK3lhZ/EQOg3BNIwOeXgj8Cn9P09GI01/TrKnhDVv/fYeL4X84a4cmN6GsrfgEc 1W/sdToEyKPtqKjeH3AkqD+0W0MrcyXsZhXpCtlRDtM= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:52 2024 by rpki-client on console-fra.rpki-client.org