$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/3GqTBYIEDUMMeNw_ZxlIKkYj8eE.roa File: 3GqTBYIEDUMMeNw_ZxlIKkYj8eE.roa (raw, json) Hash identifier: duBKnqblITAKL+UI6kMapr3yNjL1vFFwAi6sFIAU6XE= Subject key identifier: DC:6A:93:05:82:04:0D:43:0C:78:DC:3F:67:19:48:2A:46:23:F1:E1 Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Certificate serial: 0D73 Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/3GqTBYIEDUMMeNw_ZxlIKkYj8eE.roa Signing time: Mon 26 Aug 2024 05:19:50 +0000 ROA not before: Mon 26 Aug 2024 05:19:50 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18049 IP address blocks: 61.61.52.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3443 (0xd73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Validity Not Before: Aug 26 05:19:50 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=DC6A930582040D430C78DC3F6719482A4623F1E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:06:c2:39:d9:17:b4:af:7a:8b:f1:cc:5b:f8: cb:12:44:f4:52:6d:54:6c:d2:ae:80:9d:e6:a1:44: 7e:76:6e:47:13:96:25:7d:23:6c:f9:b8:5d:0e:cd: 42:df:13:68:52:a9:a8:00:20:92:99:53:c4:1e:81: 34:9b:53:3a:b9:f3:3f:71:d3:c4:df:8d:59:ad:14: 9a:41:05:a7:94:5e:78:0f:33:71:99:a2:2b:91:36: a5:ee:e2:6e:51:f7:f8:aa:ee:8a:78:27:ed:d7:d5: 85:b0:f1:52:6d:29:2d:f0:c3:22:10:1b:ed:28:63: e2:dd:7a:37:cf:ea:c1:47:b6:ad:59:45:a6:48:75: 94:73:62:4f:9a:ce:be:e9:f1:2d:f0:21:55:4d:6e: 33:07:d3:db:27:ca:3d:8e:67:d0:b5:c6:eb:8f:f3: 20:ca:98:3e:f7:c7:b0:01:c1:da:45:a6:5d:56:e7: e9:6b:21:a9:09:4c:3b:67:d5:00:b2:d5:20:cc:5f: 58:24:8e:43:33:6a:c6:5e:ea:73:79:87:74:ee:b6: 89:98:61:4d:a5:a0:54:0e:7a:31:47:ab:dc:e5:b1: ca:eb:83:34:36:85:0d:fd:57:2c:1c:77:4f:70:81: ef:63:8f:32:54:be:17:b1:df:df:fa:6d:96:36:0e: f7:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:6A:93:05:82:04:0D:43:0C:78:DC:3F:67:19:48:2A:46:23:F1:E1 X509v3 Authority Key Identifier: keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/3GqTBYIEDUMMeNw_ZxlIKkYj8eE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.52.0/22 Signature Algorithm: sha256WithRSAEncryption 43:cc:13:ea:4c:51:c1:43:13:a7:40:30:58:c8:ba:31:1d:b2: 37:54:4b:16:1e:cb:bb:bf:5e:e4:9d:d6:d1:13:c9:1b:e4:14: e9:4b:33:7d:99:d5:e3:46:bd:7b:b1:12:92:96:71:15:94:7f: d0:59:ea:e7:3b:20:60:d9:a3:da:da:8d:06:4b:1b:4b:60:54: 0e:27:b5:66:bb:a4:44:ca:af:65:e3:34:10:16:a9:34:e1:27: eb:02:b3:9a:ae:82:f7:22:e2:d8:a8:13:e5:48:e5:f6:5d:01: 35:fd:8b:0b:c2:b3:dd:09:34:52:ba:9d:a5:f2:bf:b7:69:ae: 2d:ba:ca:2f:ca:e9:b3:79:06:c1:73:fc:f2:42:a4:dc:88:cc: d7:7a:0b:36:2b:47:36:1f:3a:68:15:27:2d:82:05:d1:26:71: 43:f5:b1:24:c2:25:74:51:9a:ab:5c:6d:03:ff:bc:49:0f:e0: 6f:6b:2e:29:ec:b3:78:e1:81:bb:09:3c:d0:5d:25:69:08:0c: 8a:66:ff:8e:4d:83:3c:08:8b:a4:01:fa:a1:d6:2e:5f:1e:d0: 7b:36:19:82:9f:e8:88:e6:6d:2d:68:29:50:74:f4:c5:21:65: 62:96:fa:5c:50:46:19:48:5f:9a:fe:77:49:7e:77:a7:06:8b: b0:0d:c5:e9 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDXMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3 MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yNDA4MjYw NTE5NTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKERDNkE5MzA1ODIwNDBE NDMwQzc4REMzRjY3MTk0ODJBNDYyM0YxRTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDUBsI52Re0r3qL8cxb+MsSRPRSbVRs0q6AneahRH52bkcTliV9 I2z5uF0OzULfE2hSqagAIJKZU8QegTSbUzq58z9x08TfjVmtFJpBBaeUXngPM3GZ oiuRNqXu4m5R9/iq7op4J+3X1YWw8VJtKS3wwyIQG+0oY+LdejfP6sFHtq1ZRaZI dZRzYk+azr7p8S3wIVVNbjMH09snyj2OZ9C1xuuP8yDKmD73x7ABwdpFpl1W5+lr IakJTDtn1QCy1SDMX1gkjkMzasZe6nN5h3TutomYYU2loFQOejFHq9zlscrrgzQ2 hQ39Vywcd09wge9jjzJUvhex39/6bZY2DvcnAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU3GqTBYIEDUMMeNw/ZxlIKkYj8eEwHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0dULzNHcVRCWUlFRFVNTWVOd19aeGxJS2tZ ajhlRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAI9PTQwDQYJ KoZIhvcNAQELBQADggEBAEPME+pMUcFDE6dAMFjIujEdsjdUSxYey7u/XuSd1tET yRvkFOlLM32Z1eNGvXuxEpKWcRWUf9BZ6uc7IGDZo9rajQZLG0tgVA4ntWa7pETK r2XjNBAWqTThJ+sCs5qugvci4tioE+VI5fZdATX9iwvCs90JNFK6naXyv7dpri26 yi/K6bN5BsFz/PJCpNyIzNd6CzYrRzYfOmgVJy2CBdEmcUP1sSTCJXRRmqtcbQP/ vEkP4G9rLinss3jhgbsJPNBdJWkIDIpm/45NgzwIi6QB+qHWLl8e0Hs2GYKf6Ijm bS1oKVB09MUhZWKW+lxQRhlIX5r+d0l+d6cGi7ANxek= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:32 2024 by rpki-client on console-ams.rpki-client.org