$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/-WvPtYlZI2MuilMqUnwWLNJdRok.roa File: -WvPtYlZI2MuilMqUnwWLNJdRok.roa (raw, json) Hash identifier: V7RAfPmUtznyYnPmpKHOURmaDUxkMbsCReKZp6C+klo= Subject key identifier: F9:6B:CF:B5:89:59:23:63:2E:8A:53:2A:52:7C:16:2C:D2:5D:46:89 Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Certificate serial: 0D68 Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/-WvPtYlZI2MuilMqUnwWLNJdRok.roa Signing time: Mon 26 Aug 2024 05:19:47 +0000 ROA not before: Mon 26 Aug 2024 05:19:47 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9919 IP address blocks: 61.61.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3432 (0xd68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Validity Not Before: Aug 26 05:19:47 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F96BCFB5895923632E8A532A527C162CD25D4689 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:32:7f:59:79:18:0f:52:df:76:58:dc:5b:b2: 89:dd:bc:af:cd:7f:a5:39:f3:ec:c9:8c:b1:9f:e8: a8:48:f1:9a:02:38:cf:2e:95:0f:9f:2c:f4:d5:b3: fb:2d:25:27:4b:30:ff:36:fe:ef:20:35:2a:49:d1: 22:0c:af:2e:77:1c:2d:a3:87:6c:67:2c:bf:df:89: e4:5d:28:09:23:51:5b:d8:4a:53:12:72:d2:57:02: f1:4c:d4:92:02:fa:30:3c:d2:f9:c8:48:02:f6:6b: 6b:75:e2:86:92:48:ec:0f:03:0f:b2:cf:ee:8a:49: 02:dd:32:3e:b9:d8:0a:cd:94:a3:34:74:00:60:ac: f6:e2:90:a0:7f:10:cb:bb:6a:88:fd:36:4c:a5:96: 2a:04:c0:87:24:08:c4:95:5f:16:49:92:c7:87:66: 15:d0:50:2f:f0:9e:e5:ef:15:8d:ad:2e:a4:8c:fb: 98:e6:5b:a3:07:78:42:89:f5:5f:d9:2b:05:d3:6b: d6:22:ed:95:e9:be:f9:b0:ec:d8:f0:d9:00:62:8b: ee:3e:b1:3a:40:20:3f:00:b3:25:5a:60:11:9f:39: 1e:a7:aa:d8:e9:1c:ff:53:6a:e2:f6:eb:76:96:1f: 51:45:7c:f2:b0:3e:13:ac:0e:db:7f:1c:44:15:76: d9:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:6B:CF:B5:89:59:23:63:2E:8A:53:2A:52:7C:16:2C:D2:5D:46:89 X509v3 Authority Key Identifier: keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/-WvPtYlZI2MuilMqUnwWLNJdRok.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.128.0/18 Signature Algorithm: sha256WithRSAEncryption 3c:66:52:b1:4a:27:34:56:14:e9:38:e8:e3:27:ee:c0:8e:2f: 97:04:fd:73:61:cf:74:f5:5a:dd:1d:48:9a:01:ba:b7:ea:71: 16:5a:1a:06:8d:44:1f:20:e7:9b:17:3a:d1:35:8d:b1:fe:76: 12:6b:ca:fc:04:84:b0:bc:ab:9d:af:c0:ee:14:86:dc:f8:34: 72:25:cc:13:6c:38:a7:1e:25:c3:e7:c3:46:50:1f:99:83:98: 3b:8e:70:72:6b:af:9a:49:69:0c:c4:8c:7c:5f:94:3f:43:11: 28:a3:58:2e:3f:71:41:98:1a:46:5e:4f:80:d4:d5:97:5f:02: bb:c2:5d:8e:cd:83:1a:0e:3d:72:c3:c5:65:01:f9:51:ec:93: d3:68:ea:07:2c:cc:96:72:bb:0e:32:01:51:ec:78:19:b7:10: 45:87:0d:e3:a3:6a:9b:de:65:e5:02:06:67:dc:66:1b:75:92: e2:15:91:b3:77:63:93:c3:c3:2b:a0:52:e4:11:17:0d:6b:94: f2:ba:d1:22:66:2d:88:26:6c:b9:6b:4b:a0:5b:c4:22:7e:a0: 2e:3b:37:d0:4e:11:b2:fd:74:f3:7d:6c:2f:be:01:45:a1:ba: a0:39:0d:4e:33:e3:5c:36:05:ce:f3:0f:8b:ea:fc:2d:6f:bf: 13:ad:8b:b5 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDWgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3 MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yNDA4MjYw NTE5NDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEY5NkJDRkI1ODk1OTIz NjMyRThBNTMyQTUyN0MxNjJDRDI1RDQ2ODkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBMn9ZeRgPUt92WNxbsondvK/Nf6U58+zJjLGf6KhI8ZoCOM8u lQ+fLPTVs/stJSdLMP82/u8gNSpJ0SIMry53HC2jh2xnLL/fieRdKAkjUVvYSlMS ctJXAvFM1JIC+jA80vnISAL2a2t14oaSSOwPAw+yz+6KSQLdMj652ArNlKM0dABg rPbikKB/EMu7aoj9NkyllioEwIckCMSVXxZJkseHZhXQUC/wnuXvFY2tLqSM+5jm W6MHeEKJ9V/ZKwXTa9Yi7ZXpvvmw7Njw2QBii+4+sTpAID8AsyVaYBGfOR6nqtjp HP9TauL263aWH1FFfPKwPhOsDtt/HEQVdtldAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU+WvPtYlZI2MuilMqUnwWLNJdRokwHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0dULy1XdlB0WWxaSTJNdWlsTXFVbndXTE5K ZFJvay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAY9PYAwDQYJ KoZIhvcNAQELBQADggEBADxmUrFKJzRWFOk46OMn7sCOL5cE/XNhz3T1Wt0dSJoB urfqcRZaGgaNRB8g55sXOtE1jbH+dhJryvwEhLC8q52vwO4Uhtz4NHIlzBNsOKce JcPnw0ZQH5mDmDuOcHJrr5pJaQzEjHxflD9DESijWC4/cUGYGkZeT4DU1ZdfArvC XY7NgxoOPXLDxWUB+VHsk9No6gcszJZyuw4yAVHseBm3EEWHDeOjapveZeUCBmfc Zht1kuIVkbN3Y5PDwyugUuQRFw1rlPK60SJmLYgmbLlrS6BbxCJ+oC47N9BOEbL9 dPN9bC++AUWhuqA5DU4z41w2Bc7zD4vq/C1vvxOti7U= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:52 2024 by rpki-client on console-fra.rpki-client.org