$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/7AkCS3NRub-UeVS9CwWwhTMb-EA.roa File: 7AkCS3NRub-UeVS9CwWwhTMb-EA.roa (raw, json) Hash identifier: g2L4ZWHA57Q2DF0egqLYN4XLi2nQPI/KgGk9zDLBNiA= Subject key identifier: EC:09:02:4B:73:51:B9:BF:94:79:54:BD:0B:05:B0:85:33:1B:F8:40 Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Certificate serial: 0D72 Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/7AkCS3NRub-UeVS9CwWwhTMb-EA.roa Signing time: Mon 26 Aug 2024 05:19:49 +0000 ROA not before: Mon 26 Aug 2024 05:19:49 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9922 IP address blocks: 61.61.80.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3442 (0xd72) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Validity Not Before: Aug 26 05:19:49 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=EC09024B7351B9BF947954BD0B05B085331BF840 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:8f:7d:5f:5b:6b:b4:56:46:c0:40:48:99:76: 74:e5:6d:b5:48:f4:03:85:b6:43:18:98:43:c0:8b: 8e:a9:8b:b1:dc:c4:41:9a:c4:95:c7:ec:92:40:92: 78:9d:a8:e6:27:80:3d:3c:18:7d:c1:77:3e:e5:03: 92:1c:41:a8:04:0b:12:a4:e4:bf:52:c1:7a:30:17: 43:70:05:e2:ef:80:1d:47:ce:87:7b:fd:58:74:05: 2d:cc:74:3f:f2:79:1f:df:37:25:26:df:aa:af:ee: 1a:77:af:95:79:7c:ab:c7:8a:73:1c:41:00:21:c8: 07:48:e3:d8:4a:1a:96:57:a4:4b:40:c8:a1:bd:6b: 02:82:26:2e:b9:2b:80:80:9a:4c:09:64:1d:18:8f: 64:bd:de:e4:59:e3:cc:c9:18:df:81:e1:44:0c:34: 0c:82:b4:8f:ed:b0:74:c6:40:32:a8:64:76:c5:87: c6:c5:b1:8e:3e:42:36:47:25:98:09:9b:6c:28:77: f4:73:b0:3c:7c:13:0d:02:5c:13:51:79:48:88:64: eb:aa:7f:e0:a4:f3:83:a4:92:81:30:e0:a7:bc:15: 50:3d:73:6b:50:3d:22:ee:42:8b:a7:07:76:d9:40: aa:b3:07:15:29:c6:96:a8:62:9d:66:2c:f1:74:54: 1f:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:09:02:4B:73:51:B9:BF:94:79:54:BD:0B:05:B0:85:33:1B:F8:40 X509v3 Authority Key Identifier: keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/7AkCS3NRub-UeVS9CwWwhTMb-EA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.80.0/20 Signature Algorithm: sha256WithRSAEncryption 53:ab:14:ab:00:bc:c5:93:91:d3:3c:12:54:a4:32:89:b3:7e: d9:dd:eb:8f:4a:d8:d9:67:a3:22:e1:16:8f:ce:62:ff:d5:8d: 47:07:f3:b7:98:93:ca:b3:05:c7:9d:24:48:6b:6e:6f:0e:a9: e2:3a:99:ea:e4:95:94:db:05:24:30:6c:70:ff:e3:07:c7:c4: 95:83:81:95:a4:60:90:4c:a9:ed:73:11:57:e2:c6:f1:12:f7: 8d:78:28:ee:c5:e1:44:09:05:b6:2b:8b:24:a8:b3:34:aa:ca: a9:5a:a0:36:26:44:a9:37:06:1a:72:45:27:a7:79:6b:40:6a: 77:8e:04:5e:b2:17:45:53:40:57:bc:9d:1b:b8:43:fa:1a:0b: 16:1a:50:09:10:91:ae:f7:b2:f3:6e:5f:cd:48:b2:17:aa:5d: 04:48:a2:8e:6b:98:9a:ee:58:11:d5:e0:1e:f5:4f:8a:74:8f: 97:32:23:b1:48:b6:6f:cb:89:5a:87:55:36:c6:c4:88:87:a3: 54:6d:84:c1:cf:43:d7:63:21:e1:9b:50:a8:66:13:97:fd:b2: 48:e9:e4:19:e7:c8:35:3a:c1:de:a1:00:bd:a8:24:8f:54:0e: fe:82:48:c5:ce:03:12:1b:03:30:58:99:e6:24:5a:32:87:e3: 46:16:ba:09 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDXIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3 MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yNDA4MjYw NTE5NDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEVDMDkwMjRCNzM1MUI5 QkY5NDc5NTRCRDBCMDVCMDg1MzMxQkY4NDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDxj31fW2u0VkbAQEiZdnTlbbVI9AOFtkMYmEPAi46pi7HcxEGa xJXH7JJAknidqOYngD08GH3Bdz7lA5IcQagECxKk5L9SwXowF0NwBeLvgB1Hzod7 /Vh0BS3MdD/yeR/fNyUm36qv7hp3r5V5fKvHinMcQQAhyAdI49hKGpZXpEtAyKG9 awKCJi65K4CAmkwJZB0Yj2S93uRZ48zJGN+B4UQMNAyCtI/tsHTGQDKoZHbFh8bF sY4+QjZHJZgJm2wod/RzsDx8Ew0CXBNReUiIZOuqf+Ck84OkkoEw4Ke8FVA9c2tQ PSLuQounB3bZQKqzBxUpxpaoYp1mLPF0VB8HAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU7AkCS3NRub+UeVS9CwWwhTMb+EAwHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0dULzdBa0NTM05SdWItVWVWUzlDd1d3aFRN Yi1FQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQ9PVAwDQYJ KoZIhvcNAQELBQADggEBAFOrFKsAvMWTkdM8ElSkMomzftnd649K2NlnoyLhFo/O Yv/VjUcH87eYk8qzBcedJEhrbm8OqeI6merklZTbBSQwbHD/4wfHxJWDgZWkYJBM qe1zEVfixvES9414KO7F4UQJBbYriySoszSqyqlaoDYmRKk3BhpyRSeneWtAaneO BF6yF0VTQFe8nRu4Q/oaCxYaUAkQka73svNuX81IsheqXQRIoo5rmJruWBHV4B71 T4p0j5cyI7FItm/LiVqHVTbGxIiHo1RthMHPQ9djIeGbUKhmE5f9skjp5BnnyDU6 wd6hAL2oJI9UDv6CSMXOAxIbAzBYmeYkWjKH40YWugk= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:52 2024 by rpki-client on console-fra.rpki-client.org