$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/eupw2wLbA9wEOzv-tqxNNOnhQgw.roa File: eupw2wLbA9wEOzv-tqxNNOnhQgw.roa (raw, json) Hash identifier: LyW1o6OObbI/7PGni3lkVJTDeJzqF1SnyUEbghTAD3A= Subject key identifier: 7A:EA:70:DB:02:DB:03:DC:04:3B:3B:FE:B6:AC:4D:34:E9:E1:42:0C Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Certificate serial: 0D59 Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/eupw2wLbA9wEOzv-tqxNNOnhQgw.roa Signing time: Mon 26 Aug 2024 05:19:43 +0000 ROA not before: Mon 26 Aug 2024 05:19:43 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131627 IP address blocks: 61.61.70.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3417 (0xd59) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Validity Not Before: Aug 26 05:19:43 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=7AEA70DB02DB03DC043B3BFEB6AC4D34E9E1420C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:cb:57:6a:0d:89:65:ff:18:f4:83:a5:d0:b5: 41:21:31:89:94:53:4b:c2:55:0e:a7:19:84:bb:c2: 46:e2:70:78:0e:65:67:51:df:c9:4f:df:c1:3b:76: 33:9e:29:17:c3:38:0c:65:11:af:05:61:7f:eb:56: 80:80:d1:fc:d4:71:35:53:65:86:9c:a2:40:76:cf: d3:ea:2f:25:fb:1b:40:8c:05:f0:a2:38:4d:63:e4: 12:f9:05:2b:bd:18:79:31:50:51:5a:eb:4e:5e:ae: e4:e8:cb:eb:b4:a6:de:b5:71:1e:8a:d4:20:c9:6a: 4a:af:98:92:5a:2d:0d:67:ab:cf:6e:e8:62:3c:be: a2:36:3e:0e:91:c5:69:1c:2d:75:b1:a9:31:b7:c4: 0a:db:cb:8b:5a:4e:12:f7:74:13:03:61:69:a7:96: 72:5c:c1:b4:01:d3:5a:5a:72:9f:56:6b:bb:fc:d8: 75:96:23:fc:16:3d:55:9a:2c:6e:5b:7a:fc:98:3c: ec:32:72:f0:88:d3:d5:6a:f1:11:24:de:98:5d:cb: db:78:91:3b:85:31:88:6e:7f:5a:22:91:24:0b:e5: 2c:3f:d4:16:da:9a:14:1a:53:3f:88:ed:56:bc:f0: 94:fc:dd:8e:c7:c9:f5:32:2d:12:12:49:ab:12:90: e1:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:EA:70:DB:02:DB:03:DC:04:3B:3B:FE:B6:AC:4D:34:E9:E1:42:0C X509v3 Authority Key Identifier: keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/eupw2wLbA9wEOzv-tqxNNOnhQgw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.70.0/23 Signature Algorithm: sha256WithRSAEncryption 69:2b:f8:8d:85:fa:7a:ea:5d:46:e6:03:48:f7:27:26:db:5a: c4:7c:5b:3d:03:51:17:21:bc:45:b3:6b:1e:0c:bd:9e:38:77: 0e:ee:fa:2e:22:44:35:3c:8c:ee:d8:76:2f:ba:fc:dd:ca:3e: 76:da:a1:49:6e:2c:01:81:07:4a:88:1b:0d:69:a1:93:12:97: 4c:23:a6:15:bd:82:87:83:af:1a:89:9f:03:55:2b:6b:e1:e4: 6c:9b:b1:ef:72:4b:f7:ba:39:b5:da:ca:8e:84:4c:51:31:27: c6:07:6c:cc:1e:67:75:93:59:fc:09:35:f3:a9:24:36:4c:68: 4a:fa:99:f5:18:24:3e:bc:77:22:2f:0b:bd:79:f7:22:a5:3c: 8c:fc:c0:26:7b:78:10:54:3d:5c:41:4e:f3:5d:7d:41:25:05: bc:ed:01:f2:d9:8c:7a:bc:9e:05:aa:f5:24:e3:f3:5d:cd:a7: 42:7e:32:b6:02:b7:f5:33:6a:a9:3a:52:17:58:87:9d:f7:37: 4a:d0:20:fb:4e:93:1c:0d:6f:3f:76:99:dd:db:d7:96:8a:37: 77:f7:7f:a3:23:da:2b:59:16:ca:f8:7f:dd:48:93:b6:1d:2b: 7c:93:47:76:e5:66:ae:28:35:be:23:7a:0d:83:e2:2d:07:3c: 74:77:b7:db -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDVkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3 MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yNDA4MjYw NTE5NDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDdBRUE3MERCMDJEQjAz REMwNDNCM0JGRUI2QUM0RDM0RTlFMTQyMEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqy1dqDYll/xj0g6XQtUEhMYmUU0vCVQ6nGYS7wkbicHgOZWdR 38lP38E7djOeKRfDOAxlEa8FYX/rVoCA0fzUcTVTZYacokB2z9PqLyX7G0CMBfCi OE1j5BL5BSu9GHkxUFFa605eruToy+u0pt61cR6K1CDJakqvmJJaLQ1nq89u6GI8 vqI2Pg6RxWkcLXWxqTG3xArby4taThL3dBMDYWmnlnJcwbQB01pacp9Wa7v82HWW I/wWPVWaLG5bevyYPOwycvCI09Vq8REk3phdy9t4kTuFMYhuf1oikSQL5Sw/1Bba mhQaUz+I7Va88JT83Y7HyfUyLRISSasSkOG/AgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUeupw2wLbA9wEOzv+tqxNNOnhQgwwHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL2V1cHcyd0xiQTl3RU96di10cXhOTk9u aFFndy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAE9PUYwDQYJ KoZIhvcNAQELBQADggEBAGkr+I2F+nrqXUbmA0j3JybbWsR8Wz0DURchvEWzax4M vZ44dw7u+i4iRDU8jO7Ydi+6/N3KPnbaoUluLAGBB0qIGw1poZMSl0wjphW9goeD rxqJnwNVK2vh5Gybse9yS/e6ObXayo6ETFExJ8YHbMweZ3WTWfwJNfOpJDZMaEr6 mfUYJD68dyIvC7159yKlPIz8wCZ7eBBUPVxBTvNdfUElBbztAfLZjHq8ngWq9STj 813Np0J+MrYCt/Uzaqk6UhdYh533N0rQIPtOkxwNbz92md3b15aKN3f3f6Mj2itZ Fsr4f91Ik7YdK3yTR3blZq4oNb4jeg2D4i0HPHR3t9s= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:52 2024 by rpki-client on console-fra.rpki-client.org