$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/3yA4UjxwFXt1_uecGzIE8dEL0EA.roa File: 3yA4UjxwFXt1_uecGzIE8dEL0EA.roa (raw, json) Hash identifier: g3zgJhNR30Mbq8JZ3sTLSGBwYyW/EMPEHEIJoFBcl58= Subject key identifier: DF:20:38:52:3C:70:15:7B:75:FE:E7:9C:1B:32:04:F1:D1:0B:D0:40 Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Certificate serial: 0D5A Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/3yA4UjxwFXt1_uecGzIE8dEL0EA.roa Signing time: Mon 26 Aug 2024 05:19:43 +0000 ROA not before: Mon 26 Aug 2024 05:19:43 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 61.61.156.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3418 (0xd5a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Validity Not Before: Aug 26 05:19:43 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=DF2038523C70157B75FEE79C1B3204F1D10BD040 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:9a:9d:5f:f1:9c:c0:8f:f6:5d:0f:ef:8b:c6: 67:f6:7b:93:d4:a7:b7:59:54:8c:12:9a:33:50:ec: ad:51:98:11:50:7e:c6:14:0b:a1:63:67:6a:d2:45: 22:94:85:20:d1:bd:3d:ad:2d:55:87:a1:a8:4c:d9: 62:70:a4:9c:4e:64:53:de:19:4e:7b:f4:8c:23:de: dd:2c:94:55:85:ed:36:ed:46:df:3c:f9:12:e6:f3: 70:57:42:05:54:cc:dd:86:bd:b0:08:04:f3:c7:15: 4c:f2:78:3b:5f:d4:74:e5:0f:0b:a9:79:ba:5a:5a: 2f:89:30:e6:ec:be:1c:2a:66:fa:84:d7:c5:19:6c: 55:1e:02:ac:9b:3d:e6:e6:cf:6c:21:dd:dd:c3:28: d8:66:fa:93:4a:8d:03:7e:6d:bf:58:cf:40:fb:f9: 0c:7d:24:4c:f3:b2:7c:00:02:28:13:ef:1d:aa:b8: 04:88:2b:df:de:58:08:51:33:0e:51:cf:6e:87:5e: 64:8e:e4:ac:d4:69:80:8c:c4:4e:89:29:41:83:30: 94:ec:22:79:3c:10:a8:cd:f5:98:4d:a4:a1:b3:91: df:93:b8:0e:95:a7:d0:ed:bd:b5:d5:42:72:ae:e0: 8e:1f:47:90:a8:43:ac:14:16:49:52:16:12:dc:be: 16:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:20:38:52:3C:70:15:7B:75:FE:E7:9C:1B:32:04:F1:D1:0B:D0:40 X509v3 Authority Key Identifier: keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/3yA4UjxwFXt1_uecGzIE8dEL0EA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.156.0/22 Signature Algorithm: sha256WithRSAEncryption a1:de:ee:0c:06:96:2b:47:bd:3f:df:fb:56:c9:0a:e1:e6:a9: 7f:cc:95:db:e9:41:fd:17:70:b1:df:b0:d2:6a:dc:c0:82:51: 04:e1:aa:68:6a:7c:42:b3:86:73:c1:dc:fa:a0:92:b8:ae:e9: bd:50:3e:30:74:e4:3b:e6:b7:ef:06:0b:35:53:48:2e:0c:eb: 66:40:91:e4:39:93:d5:01:c1:43:9f:38:fc:e1:65:46:4a:57: 18:fe:7e:fa:71:9d:73:49:a3:d1:b8:ca:9f:97:8e:83:4a:22: a5:66:1e:42:b6:84:01:67:ad:b2:36:78:f1:ea:29:f4:47:20: a2:d0:b2:5b:34:53:5e:f0:d9:2c:4b:91:57:8f:a4:29:64:79: 6c:b6:c7:e6:e1:7a:7b:6f:29:88:fe:10:13:d9:59:fc:2c:34: 31:39:7b:06:ed:7e:03:21:8c:4c:ee:df:bd:48:4f:aa:fa:b0: 96:4e:15:c8:a6:45:d3:40:26:e8:85:fd:8c:8c:12:99:36:c8: 74:bb:6d:41:1e:1e:4d:cd:39:de:25:a7:60:10:0a:71:db:63: 16:ee:6b:af:4c:ed:97:f3:94:09:a3:ee:3e:3c:fa:0a:7b:2c: 6a:0f:66:85:68:d3:7e:1e:bf:f8:73:66:87:a6:d2:f8:b4:ab: 2a:11:0f:e1 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDVowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3 MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yNDA4MjYw NTE5NDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKERGMjAzODUyM0M3MDE1 N0I3NUZFRTc5QzFCMzIwNEYxRDEwQkQwNDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDbmp1f8ZzAj/ZdD++Lxmf2e5PUp7dZVIwSmjNQ7K1RmBFQfsYU C6FjZ2rSRSKUhSDRvT2tLVWHoahM2WJwpJxOZFPeGU579Iwj3t0slFWF7TbtRt88 +RLm83BXQgVUzN2GvbAIBPPHFUzyeDtf1HTlDwupebpaWi+JMObsvhwqZvqE18UZ bFUeAqybPebmz2wh3d3DKNhm+pNKjQN+bb9Yz0D7+Qx9JEzzsnwAAigT7x2quASI K9/eWAhRMw5Rz26HXmSO5KzUaYCMxE6JKUGDMJTsInk8EKjN9ZhNpKGzkd+TuA6V p9DtvbXVQnKu4I4fR5CoQ6wUFklSFhLcvhZ1AgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU3yA4UjxwFXt1/uecGzIE8dEL0EAwHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0dULzN5QTRVanh3Rlh0MV91ZWNHeklFOGRF TDBFQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAI9PZwwDQYJ KoZIhvcNAQELBQADggEBAKHe7gwGlitHvT/f+1bJCuHmqX/MldvpQf0XcLHfsNJq 3MCCUQThqmhqfEKzhnPB3Pqgkriu6b1QPjB05Dvmt+8GCzVTSC4M62ZAkeQ5k9UB wUOfOPzhZUZKVxj+fvpxnXNJo9G4yp+XjoNKIqVmHkK2hAFnrbI2ePHqKfRHIKLQ sls0U17w2SxLkVePpClkeWy2x+bhentvKYj+EBPZWfwsNDE5ewbtfgMhjEzu371I T6r6sJZOFcimRdNAJuiF/YyMEpk2yHS7bUEeHk3NOd4lp2AQCnHbYxbua69M7Zfz lAmj7j48+gp7LGoPZoVo034ev/hzZoem0vi0qyoRD+E= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:40 2024 by rpki-client on console-fra.rpki-client.org