$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/8utBuLHuJG2T4buKOwJKGYLDxcc.roa File: 8utBuLHuJG2T4buKOwJKGYLDxcc.roa (raw, json) Hash identifier: plQZSwr/KNPQTPxs60nUPBdeDF1sfY2UP8nw/b8akC4= Subject key identifier: F2:EB:41:B8:B1:EE:24:6D:93:E1:BB:8A:3B:02:4A:19:82:C3:C5:C7 Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Certificate serial: 0D4F Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/8utBuLHuJG2T4buKOwJKGYLDxcc.roa Signing time: Mon 26 Aug 2024 05:19:40 +0000 ROA not before: Mon 26 Aug 2024 05:19:40 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18049 IP address blocks: 61.61.16.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3407 (0xd4f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Validity Not Before: Aug 26 05:19:40 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F2EB41B8B1EE246D93E1BB8A3B024A1982C3C5C7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:ce:78:a8:62:fc:cc:0b:19:5b:9d:56:24:a2: 31:cf:fd:1c:e5:4a:7b:3b:98:cf:38:27:6f:62:b2: 86:74:9c:fb:1e:4c:5c:aa:b6:ee:d4:07:bd:a7:26: cb:98:56:b1:d7:19:80:c3:d6:06:9a:87:e9:2c:0e: ad:ff:2e:ff:30:8a:33:89:8c:6f:d4:94:bb:60:22: 59:51:88:50:3c:ff:8c:85:93:36:61:46:ac:eb:83: 16:a2:f9:e6:e3:de:7a:e3:9b:fc:55:d9:96:c7:0f: 21:76:67:ad:1f:77:51:b2:66:36:c9:34:9c:43:e7: 2e:2d:22:ee:49:88:8d:00:b6:c0:c5:4a:70:00:b9: d8:1c:92:1b:de:ab:2b:4d:e6:f9:86:7f:10:23:46: ed:92:99:45:ee:98:b7:6d:a5:27:af:1d:2a:b0:d6: 23:2c:78:a0:61:f9:6c:2b:c4:15:bf:72:45:18:ee: 2a:83:6e:46:33:76:b2:3a:65:49:be:65:7c:4c:8b: 3a:9e:37:3f:19:a6:80:01:e7:f7:0b:98:43:c6:73: 94:87:a9:a8:45:d3:17:34:36:e3:20:85:65:5d:34: b3:f8:f7:a8:81:a0:41:a5:00:91:ae:f5:58:65:d5: c9:20:a8:d3:66:36:d2:29:61:73:b4:b1:3f:83:c3: 0e:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:EB:41:B8:B1:EE:24:6D:93:E1:BB:8A:3B:02:4A:19:82:C3:C5:C7 X509v3 Authority Key Identifier: keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/8utBuLHuJG2T4buKOwJKGYLDxcc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.16.0/20 Signature Algorithm: sha256WithRSAEncryption 8d:c1:0b:2d:eb:b5:39:73:b9:1c:c2:36:24:87:db:d3:40:39: 83:a4:5a:b7:01:a8:6f:bf:f1:34:7f:c6:1f:26:dd:99:86:12: f2:aa:ff:b3:44:8f:86:95:83:74:c1:75:0a:28:dd:c2:a9:d4: bb:07:c2:dd:3e:0d:20:18:0c:96:ce:d4:f3:9d:ab:bd:1c:0b: 8e:86:89:1a:a4:99:a7:da:26:da:4d:ca:67:18:99:0b:2b:fd: 3c:e9:bc:9a:f0:ac:bc:72:33:cf:62:1b:5d:f6:31:0c:60:f6: f2:ee:2f:fe:1e:b7:2f:82:da:37:43:a1:62:83:09:c2:22:20: bd:58:8a:7b:78:42:65:44:fb:b1:e6:a4:c1:d1:8f:4d:98:49: f0:4b:e4:d3:57:70:9a:34:7d:97:73:89:89:66:c6:fe:f7:52: 80:21:38:53:e9:2a:3a:22:44:15:40:e8:dd:7f:5d:c0:8e:e0: 8e:69:a1:b9:2f:63:d4:53:6e:0a:01:8b:49:c8:df:a3:aa:fb: c4:57:e5:1f:99:fe:ae:c8:14:7f:86:c5:13:63:32:61:3a:c4: 62:e0:39:1f:20:25:40:93:03:d0:47:46:69:da:47:81:45:c8: d3:6c:64:2e:1b:4b:a9:8a:62:f2:14:f5:70:ca:e3:51:56:71: c9:8d:53:b4 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDU8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3 MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yNDA4MjYw NTE5NDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEYyRUI0MUI4QjFFRTI0 NkQ5M0UxQkI4QTNCMDI0QTE5ODJDM0M1QzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEznioYvzMCxlbnVYkojHP/RzlSns7mM84J29isoZ0nPseTFyq tu7UB72nJsuYVrHXGYDD1gaah+ksDq3/Lv8wijOJjG/UlLtgIllRiFA8/4yFkzZh Rqzrgxai+ebj3nrjm/xV2ZbHDyF2Z60fd1GyZjbJNJxD5y4tIu5JiI0AtsDFSnAA udgckhveqytN5vmGfxAjRu2SmUXumLdtpSevHSqw1iMseKBh+WwrxBW/ckUY7iqD bkYzdrI6ZUm+ZXxMizqeNz8ZpoAB5/cLmEPGc5SHqahF0xc0NuMghWVdNLP496iB oEGlAJGu9Vhl1ckgqNNmNtIpYXO0sT+Dww7hAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQU8utBuLHuJG2T4buKOwJKGYLDxccwHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0dULzh1dEJ1TEh1SkcyVDRidUtPd0pLR1lM RHhjYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQ9PRAwDQYJ KoZIhvcNAQELBQADggEBAI3BCy3rtTlzuRzCNiSH29NAOYOkWrcBqG+/8TR/xh8m 3ZmGEvKq/7NEj4aVg3TBdQoo3cKp1LsHwt0+DSAYDJbO1POdq70cC46GiRqkmafa JtpNymcYmQsr/TzpvJrwrLxyM89iG132MQxg9vLuL/4ety+C2jdDoWKDCcIiIL1Y int4QmVE+7HmpMHRj02YSfBL5NNXcJo0fZdziYlmxv73UoAhOFPpKjoiRBVA6N1/ XcCO4I5pobkvY9RTbgoBi0nI36Oq+8RX5R+Z/q7IFH+GxRNjMmE6xGLgOR8gJUCT A9BHRmnaR4FFyNNsZC4bS6mKYvIU9XDK41FWccmNU7Q= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:52 2024 by rpki-client on console-fra.rpki-client.org