$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/M1xXZ6Y5rolxAx_rBtGdcYN5aSY.roa File: M1xXZ6Y5rolxAx_rBtGdcYN5aSY.roa (raw, json) Hash identifier: ir5d342EM2pjofrjJivQF1WD5e9N26fDJzIEgKRoU5Q= Subject key identifier: 33:5C:57:67:A6:39:AE:89:71:03:1F:EB:06:D1:9D:71:83:79:69:26 Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Certificate serial: 0D64 Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/M1xXZ6Y5rolxAx_rBtGdcYN5aSY.roa Signing time: Mon 26 Aug 2024 05:19:46 +0000 ROA not before: Mon 26 Aug 2024 05:19:46 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18049 IP address blocks: 61.61.64.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3428 (0xd64) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Validity Not Before: Aug 26 05:19:46 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=335C5767A639AE8971031FEB06D19D7183796926 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:ee:6d:ff:88:b5:00:6e:fd:d8:f7:e1:72:f7: 3b:04:53:ce:65:15:49:fd:c3:1a:62:3e:8a:34:fa: aa:cd:52:a5:b4:22:85:de:ea:7d:63:c2:f3:7f:17: 2d:68:85:c6:64:7c:0c:2e:07:73:b8:94:5a:88:21: 93:50:4e:56:2e:b2:e3:69:95:af:e4:0a:df:70:ee: 1a:78:5c:6c:52:cb:95:60:0c:43:e1:21:fb:cb:5f: b7:ca:9c:7a:db:6b:39:0a:ae:00:87:ab:22:1e:99: 25:c7:34:77:5b:2f:84:5a:d0:49:c5:4f:4b:a1:6e: 89:0a:1f:b0:95:35:3c:d2:10:20:be:80:4c:73:3e: 24:20:70:15:f9:93:6b:00:f8:c2:cb:d6:4f:fd:33: 6c:e0:a4:7b:04:b8:09:ae:b6:f8:7e:86:a9:31:42: b3:9c:9e:aa:6e:c2:41:a9:0c:6c:30:b1:6a:e7:31: f2:57:19:74:5b:c7:6c:2a:eb:26:3f:91:73:32:b4: 9c:51:e7:f0:f9:14:fe:ea:70:80:86:07:ed:d6:31: af:74:cf:d1:16:e1:cf:d2:0d:9a:7a:0c:52:f3:3a: 80:82:8d:90:03:15:b2:c9:83:0f:66:83:ea:6a:e8: b4:11:41:33:ff:6e:f5:2f:6e:a7:c5:f6:26:93:5e: 20:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:5C:57:67:A6:39:AE:89:71:03:1F:EB:06:D1:9D:71:83:79:69:26 X509v3 Authority Key Identifier: keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/M1xXZ6Y5rolxAx_rBtGdcYN5aSY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.64.0/22 Signature Algorithm: sha256WithRSAEncryption a6:86:f8:bd:7b:2b:79:ed:cc:61:53:96:63:a9:a1:5f:98:71: c9:f8:04:b1:a6:d9:c3:24:a6:59:af:40:94:84:b6:22:31:2c: 4d:08:7f:e1:ba:8b:c6:bd:c1:68:f0:b3:9b:38:73:47:2a:d8: 52:d9:7c:28:9c:8f:f7:00:cd:d1:57:87:25:93:da:02:a1:78: e0:cb:2e:ba:8b:27:eb:12:36:78:7b:6d:24:ed:8f:ab:67:f1: fb:03:0a:75:57:93:1e:54:70:2e:16:0a:7a:2e:1f:39:ce:7f: 61:d1:cd:b4:ef:57:38:2a:a6:ca:a1:1d:12:2f:ef:18:ca:e2: 2c:3a:03:0e:d5:76:ae:74:ef:bc:60:0d:2f:1c:98:b0:b2:cb: ac:9a:75:8b:d7:22:d1:4b:51:dc:34:18:05:54:b1:b6:11:d4: c1:64:c4:07:01:5e:e6:6e:f5:9f:a4:f3:7d:fd:2a:df:11:7d: 27:af:ca:1f:a5:3b:42:b5:f9:f3:ee:cc:96:fe:96:40:89:fd: 3b:85:ca:0c:b8:aa:ec:56:42:f6:fd:b7:7f:65:e0:b7:61:9f: e1:e9:eb:27:74:d2:f2:f1:00:1b:b1:34:6c:52:23:d6:d4:f0: ba:47:80:18:55:99:46:88:c3:c2:7e:00:ac:d0:c1:b3:25:ac: e4:b4:13:51 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDWQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3 MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yNDA4MjYw NTE5NDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDMzNUM1NzY3QTYzOUFF ODk3MTAzMUZFQjA2RDE5RDcxODM3OTY5MjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCs7m3/iLUAbv3Y9+Fy9zsEU85lFUn9wxpiPoo0+qrNUqW0IoXe 6n1jwvN/Fy1ohcZkfAwuB3O4lFqIIZNQTlYusuNpla/kCt9w7hp4XGxSy5VgDEPh IfvLX7fKnHrbazkKrgCHqyIemSXHNHdbL4Ra0EnFT0uhbokKH7CVNTzSECC+gExz PiQgcBX5k2sA+MLL1k/9M2zgpHsEuAmutvh+hqkxQrOcnqpuwkGpDGwwsWrnMfJX GXRbx2wq6yY/kXMytJxR5/D5FP7qcICGB+3WMa90z9EW4c/SDZp6DFLzOoCCjZAD FbLJgw9mg+pq6LQRQTP/bvUvbqfF9iaTXiBDAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUM1xXZ6Y5rolxAx/rBtGdcYN5aSYwHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL00xeFhaNlk1cm9seEF4X3JCdEdkY1lO NWFTWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAI9PUAwDQYJ KoZIhvcNAQELBQADggEBAKaG+L17K3ntzGFTlmOpoV+Yccn4BLGm2cMkplmvQJSE tiIxLE0If+G6i8a9wWjws5s4c0cq2FLZfCicj/cAzdFXhyWT2gKheODLLrqLJ+sS Nnh7bSTtj6tn8fsDCnVXkx5UcC4WCnouHznOf2HRzbTvVzgqpsqhHRIv7xjK4iw6 Aw7Vdq5077xgDS8cmLCyy6yadYvXItFLUdw0GAVUsbYR1MFkxAcBXuZu9Z+k8339 Kt8RfSevyh+lO0K1+fPuzJb+lkCJ/TuFygy4quxWQvb9t39l4Ldhn+Hp6yd00vLx ABuxNGxSI9bU8LpHgBhVmUaIw8J+AKzQwbMlrOS0E1E= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:40 2024 by rpki-client on console-fra.rpki-client.org