$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/87THd3brvAct4JdlWIHcccYxglw.roa File: 87THd3brvAct4JdlWIHcccYxglw.roa (raw, json) Hash identifier: fhRJ/WKauBuPbvptYdl4kzmJlw/ckuO/1BZpcl33GNw= Subject key identifier: F3:B4:C7:77:76:EB:BC:07:2D:E0:97:65:58:81:DC:71:C6:31:82:5C Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Certificate serial: 0D6D Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/87THd3brvAct4JdlWIHcccYxglw.roa Signing time: Mon 26 Aug 2024 05:19:48 +0000 ROA not before: Mon 26 Aug 2024 05:19:48 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9918 IP address blocks: 61.61.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3437 (0xd6d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Validity Not Before: Aug 26 05:19:48 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F3B4C77776EBBC072DE097655881DC71C631825C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:8f:82:d7:71:a3:f0:98:83:5e:40:c7:e5:f3: 94:c6:83:6b:5b:8a:a0:9c:72:44:d1:ef:20:fc:05: 2a:3e:8d:39:91:36:87:c9:8f:03:98:ef:77:73:68: 51:d3:aa:ea:ba:b0:a4:3d:22:5b:6c:a2:2b:80:3a: 2d:f8:ca:c9:2a:71:03:f8:35:d2:9e:92:01:80:db: 7e:33:5e:cf:a7:03:43:9d:17:75:72:1d:58:61:60: 2c:32:5c:ef:27:53:ee:32:b7:0a:9b:b6:b1:00:29: 88:d7:d9:d3:1a:68:4c:12:e1:ae:34:9c:6a:0a:0a: 74:86:25:5b:76:b5:18:30:c7:f7:8d:a1:13:07:04: 95:87:f0:ff:98:26:07:ce:e8:a9:4f:95:ef:5d:c0: 99:82:f6:d6:cd:4f:ca:9c:bf:51:cc:09:24:6d:8b: 9c:09:1f:1a:21:46:bf:bd:8e:b4:ba:2c:59:e7:fe: de:10:38:f2:1b:4a:71:ff:b3:78:8d:d1:b4:19:c9: 18:c4:69:a8:8d:c6:8e:bd:31:af:5a:ed:7b:de:cd: 5b:14:93:25:c0:46:76:fb:9e:8d:3d:4b:ac:bb:ff: c6:ab:ae:10:aa:ac:2c:d0:a0:1e:d5:c4:a0:1f:b0: 39:26:7b:96:46:a9:8c:c3:23:82:be:a7:32:6e:12: 3f:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:B4:C7:77:76:EB:BC:07:2D:E0:97:65:58:81:DC:71:C6:31:82:5C X509v3 Authority Key Identifier: keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/87THd3brvAct4JdlWIHcccYxglw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.0.0/17 Signature Algorithm: sha256WithRSAEncryption 8b:8d:14:70:ca:cd:ff:1d:7c:85:80:b7:7d:1b:30:17:38:ca: 8d:f3:92:43:ff:6d:3e:5d:84:11:43:a2:4d:94:86:ab:74:ee: 5a:f5:39:38:17:51:3a:57:b4:7f:44:dc:1a:c7:e2:2a:63:c0: a1:1d:ff:64:81:50:76:82:ad:0c:ca:4a:90:d0:35:29:e1:4e: 49:0e:4b:b3:81:97:2d:a6:04:88:1e:61:52:1a:7e:5f:b4:13: 02:21:57:69:d1:f5:ab:4f:b6:fc:3a:31:cb:f4:a8:ed:77:bc: e6:a8:c9:c9:a3:ad:0b:b8:6f:86:b3:44:70:70:43:2c:f0:bf: 20:6a:90:d5:49:f7:85:b1:d8:99:58:48:51:ed:7f:4a:b1:ac: 0f:bf:bc:c3:1a:94:c7:ce:02:53:3e:99:6a:17:e0:c4:57:fb: 2f:c4:12:d9:86:81:16:70:56:ac:a2:c5:fc:1e:9f:31:5f:53: b5:6d:fe:75:f2:13:09:cf:d7:ed:a0:98:37:b2:a6:d7:d3:1b: 53:36:d5:6f:59:15:d4:3d:fd:c6:65:82:d9:0c:8b:3f:9f:59: 1b:fc:54:87:f4:71:2d:05:ad:e0:07:c9:22:7c:e4:a5:25:20: 2a:33:ec:ee:9e:ee:03:a2:8c:f6:32:5f:e6:87:82:44:92:a3: 37:3f:a7:b0 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDW0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3 MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yNDA4MjYw NTE5NDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEYzQjRDNzc3NzZFQkJD MDcyREUwOTc2NTU4ODFEQzcxQzYzMTgyNUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCgj4LXcaPwmINeQMfl85TGg2tbiqCcckTR7yD8BSo+jTmRNofJ jwOY73dzaFHTquq6sKQ9IltsoiuAOi34yskqcQP4NdKekgGA234zXs+nA0OdF3Vy HVhhYCwyXO8nU+4ytwqbtrEAKYjX2dMaaEwS4a40nGoKCnSGJVt2tRgwx/eNoRMH BJWH8P+YJgfO6KlPle9dwJmC9tbNT8qcv1HMCSRti5wJHxohRr+9jrS6LFnn/t4Q OPIbSnH/s3iN0bQZyRjEaaiNxo69Ma9a7XvezVsUkyXARnb7no09S6y7/8arrhCq rCzQoB7VxKAfsDkme5ZGqYzDI4K+pzJuEj9/AgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU87THd3brvAct4JdlWIHcccYxglwwHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0dULzg3VEhkM2JydkFjdDRKZGxXSUhjY2NZ eGdsdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAc9PQAwDQYJ KoZIhvcNAQELBQADggEBAIuNFHDKzf8dfIWAt30bMBc4yo3zkkP/bT5dhBFDok2U hqt07lr1OTgXUTpXtH9E3BrH4ipjwKEd/2SBUHaCrQzKSpDQNSnhTkkOS7OBly2m BIgeYVIafl+0EwIhV2nR9atPtvw6Mcv0qO13vOaoycmjrQu4b4azRHBwQyzwvyBq kNVJ94Wx2JlYSFHtf0qxrA+/vMMalMfOAlM+mWoX4MRX+y/EEtmGgRZwVqyixfwe nzFfU7Vt/nXyEwnP1+2gmDeyptfTG1M21W9ZFdQ9/cZlgtkMiz+fWRv8VIf0cS0F reAHySJ85KUlICoz7O6e7gOijPYyX+aHgkSSozc/p7A= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:52 2024 by rpki-client on console-fra.rpki-client.org