$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/aidX89saKMBU404BRGnbO5FGer8.roa File: aidX89saKMBU404BRGnbO5FGer8.roa (raw, json) Hash identifier: swJuC90DlTDfhfTjp1KrjsEnFYNjb+tMnoq3KVkMEkI= Subject key identifier: 6A:27:57:F3:DB:1A:28:C0:54:E3:4E:01:44:69:DB:3B:91:46:7A:BF Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Certificate serial: 0D6E Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/aidX89saKMBU404BRGnbO5FGer8.roa Signing time: Mon 26 Aug 2024 05:19:48 +0000 ROA not before: Mon 26 Aug 2024 05:19:48 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131627 IP address blocks: 61.61.144.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3438 (0xd6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Validity Not Before: Aug 26 05:19:48 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6A2757F3DB1A28C054E34E014469DB3B91467ABF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:c9:b8:ce:3a:bd:a7:7e:86:34:ac:85:4f:57: a2:3c:36:25:0f:7c:f4:f6:ce:81:e1:ae:b6:d4:58: 6c:ff:35:4e:c4:32:38:a2:dc:87:19:1b:b1:d9:91: 25:de:dd:fd:ba:5d:da:39:2c:23:a1:bb:6d:b1:a6: 81:34:dc:74:28:c5:f3:ef:05:4b:96:cf:8b:61:31: 3e:e7:64:24:49:76:18:98:69:5b:33:08:cd:7f:3a: 60:35:86:c4:27:a9:f1:28:1c:43:b5:f7:b5:03:dd: df:13:97:a4:a0:20:9a:89:a9:8b:7f:98:82:e9:cd: 27:59:c9:bc:dc:f5:a4:74:16:6d:63:f0:9c:90:a7: 46:9d:6e:2c:2f:e8:58:01:93:36:68:b7:de:89:e4: 0d:4f:45:02:b9:0a:f3:1b:29:f4:3a:f4:08:06:eb: 2f:fb:ac:8d:34:74:01:03:cf:5c:16:06:75:7a:33: 30:bc:31:d6:46:6e:1b:90:76:db:0d:51:91:32:a4: 8b:fa:f2:b1:13:e9:60:22:8d:00:a0:5f:bd:2b:c0: 23:3e:48:a9:ac:50:3d:73:25:17:2c:95:76:9a:a5: f1:6c:92:fe:53:89:36:fc:da:b2:f1:24:ca:f3:e3: 08:4d:52:53:b7:a6:72:7d:9d:f4:04:93:0b:b4:3e: 4f:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:27:57:F3:DB:1A:28:C0:54:E3:4E:01:44:69:DB:3B:91:46:7A:BF X509v3 Authority Key Identifier: keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/aidX89saKMBU404BRGnbO5FGer8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.144.0/21 Signature Algorithm: sha256WithRSAEncryption 82:44:f0:6f:d4:b0:1e:4a:74:89:33:a2:d5:80:e5:a1:5a:53: ad:11:33:20:9c:01:ef:08:d8:37:4a:2c:09:d3:e0:d2:80:61: 66:d0:48:9c:a8:80:78:7f:6f:2a:25:d8:11:a7:31:1c:5c:fe: e1:e1:db:b0:c4:66:a4:9b:3a:bf:28:f2:8f:3a:d2:34:7d:c7: da:47:da:30:2b:cc:24:d4:89:17:96:35:0b:8f:1e:4d:14:13: 26:e3:e2:9a:9b:9a:d6:19:7b:cf:b6:76:c9:0c:da:4d:29:c4: b9:a5:0e:d0:a8:18:6c:88:a3:05:c1:23:2d:78:81:77:4c:1b: ad:34:d9:be:e0:cc:ef:51:53:55:48:85:29:e2:35:2e:17:04: 22:6b:61:47:6f:2b:89:75:20:cb:c3:f6:d8:ab:2f:85:99:58: 4c:f1:c1:f0:e1:d9:e8:35:da:d3:53:78:f8:b8:75:d1:87:94: 41:f8:e4:f9:13:c4:5d:32:38:19:61:32:48:43:ae:96:8f:8e: 72:fb:2e:ce:a4:e2:12:20:ee:7a:ab:e7:dc:14:b9:fe:07:11: 8f:39:a4:55:78:0a:16:a5:50:c5:68:43:c2:ce:cd:5b:25:3d: db:98:29:c3:df:9c:22:1b:a8:f5:05:eb:d2:01:4b:8d:1e:2a: ce:a9:38:38 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDW4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3 MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yNDA4MjYw NTE5NDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZBMjc1N0YzREIxQTI4 QzA1NEUzNEUwMTQ0NjlEQjNCOTE0NjdBQkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6ybjOOr2nfoY0rIVPV6I8NiUPfPT2zoHhrrbUWGz/NU7EMjii 3IcZG7HZkSXe3f26Xdo5LCOhu22xpoE03HQoxfPvBUuWz4thMT7nZCRJdhiYaVsz CM1/OmA1hsQnqfEoHEO197UD3d8Tl6SgIJqJqYt/mILpzSdZybzc9aR0Fm1j8JyQ p0adbiwv6FgBkzZot96J5A1PRQK5CvMbKfQ69AgG6y/7rI00dAEDz1wWBnV6MzC8 MdZGbhuQdtsNUZEypIv68rET6WAijQCgX70rwCM+SKmsUD1zJRcslXaapfFskv5T iTb82rLxJMrz4whNUlO3pnJ9nfQEkwu0Pk+nAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUaidX89saKMBU404BRGnbO5FGer8wHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL2FpZFg4OXNhS01CVTQwNEJSR25iTzVG R2VyOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAM9PZAwDQYJ KoZIhvcNAQELBQADggEBAIJE8G/UsB5KdIkzotWA5aFaU60RMyCcAe8I2DdKLAnT 4NKAYWbQSJyogHh/byol2BGnMRxc/uHh27DEZqSbOr8o8o860jR9x9pH2jArzCTU iReWNQuPHk0UEybj4pqbmtYZe8+2dskM2k0pxLmlDtCoGGyIowXBIy14gXdMG600 2b7gzO9RU1VIhSniNS4XBCJrYUdvK4l1IMvD9tirL4WZWEzxwfDh2eg12tNTePi4 ddGHlEH45PkTxF0yOBlhMkhDrpaPjnL7Ls6k4hIg7nqr59wUuf4HEY85pFV4Chal UMVoQ8LOzVslPduYKcPfnCIbqPUF69IBS40eKs6pODg= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:40 2024 by rpki-client on console-fra.rpki-client.org