$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/PxbT4OmSUSYCqNeZkUSZXvHLJC0.roa File: PxbT4OmSUSYCqNeZkUSZXvHLJC0.roa (raw, json) Hash identifier: NoaUqhOr/YD2T4Je9wnjpNUnVulAmDbmYRVh50qXSaY= Subject key identifier: 3F:16:D3:E0:E9:92:51:26:02:A8:D7:99:91:44:99:5E:F1:CB:24:2D Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Certificate serial: 0D6A Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/PxbT4OmSUSYCqNeZkUSZXvHLJC0.roa Signing time: Mon 26 Aug 2024 05:19:47 +0000 ROA not before: Mon 26 Aug 2024 05:19:47 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9919 IP address blocks: 61.61.48.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3434 (0xd6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Validity Not Before: Aug 26 05:19:47 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3F16D3E0E992512602A8D7999144995EF1CB242D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:f5:90:aa:58:d5:af:5d:4f:15:8f:75:69:b2: 48:22:84:2d:c0:cf:2a:e2:0c:93:4e:7b:fc:8f:f0: ec:60:1d:dc:8b:d0:94:d9:8d:ca:2d:da:fc:08:5a: 80:c8:a9:f4:8d:70:8f:5e:0c:72:6c:b3:61:3d:65: 88:2e:35:71:07:83:ab:26:33:31:a3:50:20:6e:85: 2d:49:46:80:e4:36:0f:93:53:20:8d:f0:61:58:be: b8:45:d1:35:6a:cf:f3:4b:a7:10:15:55:40:08:28: 88:db:6f:b5:30:d8:cf:03:73:2e:3d:55:d5:02:ce: f6:f0:7b:2c:a0:ff:a8:d4:30:f2:da:00:c6:bc:c9: 96:ed:02:1a:54:cc:3a:8c:08:00:f8:6e:f7:71:af: 20:91:6a:ec:0d:d8:f0:30:09:dd:7b:9b:bc:b1:09: fb:53:7a:67:da:9a:70:6d:3c:95:8b:bd:24:75:91: f6:cd:bb:21:32:63:0f:3f:f0:03:f8:ca:fd:50:9f: b0:5e:f1:15:ba:45:d7:96:03:24:1b:92:92:54:42: e5:98:d9:95:d0:e4:83:10:c8:5e:43:d9:88:37:3d: 8e:2d:48:a1:6b:5a:0b:db:65:af:a4:97:9d:95:d0: 57:ad:4d:38:36:e9:d2:31:55:89:0f:da:92:59:e4: f4:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:16:D3:E0:E9:92:51:26:02:A8:D7:99:91:44:99:5E:F1:CB:24:2D X509v3 Authority Key Identifier: keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/PxbT4OmSUSYCqNeZkUSZXvHLJC0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.48.0/24 Signature Algorithm: sha256WithRSAEncryption 3b:33:b8:03:0d:70:25:3c:7a:4d:8f:68:5a:26:28:3d:df:f6: b6:49:94:61:ef:aa:5a:24:1a:bc:34:ac:e6:e1:1f:95:f8:a1: b1:81:50:83:66:93:59:de:b5:ba:4f:c6:1f:8e:ef:23:d0:dc: 8e:b3:56:47:02:d0:7a:f3:ff:48:15:6e:06:07:2c:8f:65:8c: 4c:06:e6:f8:77:f1:4a:d6:87:ce:8f:a3:bf:61:4b:54:2b:96: ac:47:4b:b7:7f:df:31:df:c9:a3:89:9f:4a:1a:37:d6:53:56: 50:13:8e:ff:81:9d:de:06:f9:09:db:57:26:31:ea:a3:78:de: fa:81:b4:1d:60:03:53:4a:c4:6e:e8:6e:41:3c:03:22:28:8d: 9e:a1:cd:62:2a:71:91:0f:83:bc:cc:45:ec:cc:f6:bc:fb:2e: 15:28:13:67:02:2f:72:0e:97:3d:95:f2:d1:99:3a:7c:6a:c7: f9:92:c2:20:84:52:e4:79:13:0d:bc:04:6a:ca:91:1a:b4:29: 4f:95:1f:ff:53:55:e3:e8:40:09:b3:71:68:be:eb:7a:e1:c2: fa:bf:3e:a1:2e:63:51:60:65:44:cd:73:91:26:42:c0:3d:ea: d7:3d:33:f5:72:69:ab:bd:35:4a:d3:0b:63:da:0f:95:dd:36: 69:21:41:75 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDWowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3 MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yNDA4MjYw NTE5NDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNGMTZEM0UwRTk5MjUx MjYwMkE4RDc5OTkxNDQ5OTVFRjFDQjI0MkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDH9ZCqWNWvXU8Vj3VpskgihC3AzyriDJNOe/yP8OxgHdyL0JTZ jcot2vwIWoDIqfSNcI9eDHJss2E9ZYguNXEHg6smMzGjUCBuhS1JRoDkNg+TUyCN 8GFYvrhF0TVqz/NLpxAVVUAIKIjbb7Uw2M8Dcy49VdUCzvbweyyg/6jUMPLaAMa8 yZbtAhpUzDqMCAD4bvdxryCRauwN2PAwCd17m7yxCftTemfamnBtPJWLvSR1kfbN uyEyYw8/8AP4yv1Qn7Be8RW6RdeWAyQbkpJUQuWY2ZXQ5IMQyF5D2Yg3PY4tSKFr WgvbZa+kl52V0FetTTg26dIxVYkP2pJZ5PRbAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUPxbT4OmSUSYCqNeZkUSZXvHLJC0wHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1B4YlQ0T21TVVNZQ3FOZVprVVNaWHZI TEpDMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAA9PTAwDQYJ KoZIhvcNAQELBQADggEBADszuAMNcCU8ek2PaFomKD3f9rZJlGHvqlokGrw0rObh H5X4obGBUINmk1netbpPxh+O7yPQ3I6zVkcC0Hrz/0gVbgYHLI9ljEwG5vh38UrW h86Po79hS1QrlqxHS7d/3zHfyaOJn0oaN9ZTVlATjv+Bnd4G+QnbVyYx6qN43vqB tB1gA1NKxG7obkE8AyIojZ6hzWIqcZEPg7zMRezM9rz7LhUoE2cCL3IOlz2V8tGZ Onxqx/mSwiCEUuR5Ew28BGrKkRq0KU+VH/9TVePoQAmzcWi+63rhwvq/PqEuY1Fg ZUTNc5EmQsA96tc9M/Vyaau9NUrTC2PaD5XdNmkhQXU= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:40 2024 by rpki-client on console-fra.rpki-client.org