$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/FglsAnX3EQdELxY19yu65B0rqQU.roa File: FglsAnX3EQdELxY19yu65B0rqQU.roa (raw, json) Hash identifier: yIIOzPsx8S4ME3wDW3Ng92UVS+ET8UIzjXvmVyMq364= Subject key identifier: 16:09:6C:02:75:F7:11:07:44:2F:16:35:F7:2B:BA:E4:1D:2B:A9:05 Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Certificate serial: 0D78 Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/FglsAnX3EQdELxY19yu65B0rqQU.roa Signing time: Mon 26 Aug 2024 05:19:51 +0000 ROA not before: Mon 26 Aug 2024 05:19:51 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131627 IP address blocks: 61.61.168.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3448 (0xd78) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Validity Not Before: Aug 26 05:19:51 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=16096C0275F71107442F1635F72BBAE41D2BA905 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:f4:8c:54:7d:f6:29:c6:bb:41:b4:6b:5c:54: 3b:07:ed:e5:6a:31:43:32:91:2e:69:02:10:a8:8d: 28:c7:01:a4:12:05:a4:6e:0e:b0:7f:40:95:33:d9: 56:fe:45:da:eb:12:06:6f:ac:1a:83:a1:4b:1f:7f: b3:38:63:3f:91:07:a5:af:3c:a3:29:fc:48:76:dd: 55:2d:fd:64:3d:14:fb:43:68:2a:28:25:10:6a:a3: a8:2a:1e:00:15:83:77:71:7a:a8:53:10:d7:83:2b: 81:9a:ee:09:95:4f:8d:e4:ff:9c:5e:e6:f1:16:35: 0b:3b:06:ad:50:d1:40:c4:4a:05:55:51:23:a9:16: b9:4c:e4:57:92:25:85:58:66:56:b6:2e:71:fb:80: 47:c9:a1:ce:e7:b7:17:dc:88:2c:ca:ff:8c:0e:da: 67:11:fb:c3:b1:08:57:a4:9c:d9:0c:f4:59:2f:3d: 8a:41:15:48:fc:f4:11:0d:73:89:55:3c:4c:7b:98: c4:30:41:8a:17:23:db:94:3a:9e:36:7a:f0:7e:42: 32:e6:17:65:53:ea:a5:fd:a6:0e:db:74:21:19:4f: c0:de:94:29:d1:a3:e1:f1:75:4b:59:37:68:bf:0f: b1:e7:b8:e6:91:c3:24:c6:ed:f1:74:25:4f:06:2f: bc:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:09:6C:02:75:F7:11:07:44:2F:16:35:F7:2B:BA:E4:1D:2B:A9:05 X509v3 Authority Key Identifier: keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/FglsAnX3EQdELxY19yu65B0rqQU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.168.0/21 Signature Algorithm: sha256WithRSAEncryption 6b:90:8e:97:4a:c3:9e:60:28:2e:09:c6:39:97:81:d5:8f:d2: 5c:ce:ad:b9:9f:51:ac:3b:ce:f6:67:c2:1f:e3:de:e9:47:f7: 50:e0:45:c3:e5:70:b3:ae:fa:59:37:57:71:93:a9:a9:0a:b0: 21:48:9a:9b:9d:9d:af:a3:9e:a0:69:b1:cd:8f:be:18:f8:2b: 12:3a:0e:c8:59:31:76:b8:27:67:39:84:08:74:e2:bf:9d:72: 80:fe:25:bd:c4:00:25:4d:69:0a:ba:ec:1b:b3:bb:48:26:1c: f6:f2:9f:aa:26:92:a0:ef:01:9f:5a:9b:9d:08:4c:a4:26:89: 33:8b:d3:63:f6:99:b5:40:c9:2e:71:f0:83:3e:74:d1:6f:56: ef:7c:4e:e3:6d:8f:22:5b:3a:22:e2:50:71:e0:c4:19:0c:13: 5a:2d:83:4f:ec:e8:63:79:e1:b7:72:06:34:02:0a:43:50:f7: af:1a:4e:20:b0:28:3a:0b:ca:6d:d7:c3:0b:22:ad:b8:13:8f: 3e:a3:43:7e:00:1c:87:df:e4:ce:17:63:4b:ad:be:90:d1:a6: c1:f7:5a:ff:ad:65:7d:4e:ab:d5:51:a4:47:e8:54:c9:67:5b: 68:1e:f3:dc:1c:21:f9:8a:d5:8c:bf:36:9c:83:fe:47:35:d8: 88:49:70:8e -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDXgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3 MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yNDA4MjYw NTE5NTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE2MDk2QzAyNzVGNzEx MDc0NDJGMTYzNUY3MkJCQUU0MUQyQkE5MDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDY9IxUffYpxrtBtGtcVDsH7eVqMUMykS5pAhCojSjHAaQSBaRu DrB/QJUz2Vb+RdrrEgZvrBqDoUsff7M4Yz+RB6WvPKMp/Eh23VUt/WQ9FPtDaCoo JRBqo6gqHgAVg3dxeqhTENeDK4Ga7gmVT43k/5xe5vEWNQs7Bq1Q0UDESgVVUSOp FrlM5FeSJYVYZla2LnH7gEfJoc7ntxfciCzK/4wO2mcR+8OxCFeknNkM9FkvPYpB FUj89BENc4lVPEx7mMQwQYoXI9uUOp42evB+QjLmF2VT6qX9pg7bdCEZT8DelCnR o+HxdUtZN2i/D7HnuOaRwyTG7fF0JU8GL7xDAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUFglsAnX3EQdELxY19yu65B0rqQUwHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL0ZnbHNBblgzRVFkRUx4WTE5eXU2NUIw cnFRVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAM9PagwDQYJ KoZIhvcNAQELBQADggEBAGuQjpdKw55gKC4JxjmXgdWP0lzOrbmfUaw7zvZnwh/j 3ulH91DgRcPlcLOu+lk3V3GTqakKsCFImpudna+jnqBpsc2Pvhj4KxI6DshZMXa4 J2c5hAh04r+dcoD+Jb3EACVNaQq67Buzu0gmHPbyn6omkqDvAZ9am50ITKQmiTOL 02P2mbVAyS5x8IM+dNFvVu98TuNtjyJbOiLiUHHgxBkME1otg0/s6GN54bdyBjQC CkNQ968aTiCwKDoLym3XwwsirbgTjz6jQ34AHIff5M4XY0utvpDRpsH3Wv+tZX1O q9VRpEfoVMlnW2ge89wcIfmK1Yy/NpyD/kc12IhJcI4= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:40 2024 by rpki-client on console-fra.rpki-client.org