$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/mfQ7h_43OMtPO-dPcGoaWwbxRhU.roa File: mfQ7h_43OMtPO-dPcGoaWwbxRhU.roa (raw, json) Hash identifier: TIXOyFtBvJgEr+APkfLxMR+wUCQkC2RWkFIBoQXwKCw= Subject key identifier: 99:F4:3B:87:FE:37:38:CB:4F:3B:E7:4F:70:6A:1A:5B:06:F1:46:15 Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Certificate serial: 0C2A Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/mfQ7h_43OMtPO-dPcGoaWwbxRhU.roa Signing time: Fri 01 Sep 2023 09:14:03 +0000 ROA not before: Fri 01 Sep 2023 09:14:03 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 36408 IP address blocks: 61.61.69.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 03:39:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3114 (0xc2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Validity Not Before: Sep 1 09:14:03 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=99F43B87FE3738CB4F3BE74F706A1A5B06F14615 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b4:8c:e3:72:47:87:3a:ba:5f:02:12:ce:79: cc:17:79:74:c4:22:0b:67:55:55:5c:e8:33:00:90: 61:33:e6:40:45:66:e3:91:90:96:d1:59:92:46:69: 4a:8b:01:01:42:2d:c4:45:61:ac:d3:1b:74:b3:c1: 81:a3:20:d0:c6:c0:24:91:58:e3:47:3c:b1:b7:e0: 92:50:b6:8f:3d:f8:9c:16:ac:01:93:a3:14:0a:33: 61:94:78:ab:d8:07:9a:cc:76:b8:0e:56:4b:10:9e: 2e:4d:e3:81:db:d2:12:54:72:01:ec:2e:dc:e9:5d: 65:da:51:9e:23:79:c6:36:fa:b8:6b:73:ef:5a:8e: 5d:15:11:4c:b8:50:30:49:3b:e1:61:3c:6a:be:da: 7a:bd:5b:ae:cd:02:74:7a:c6:66:4e:d0:20:35:be: 4f:cc:ee:b1:68:d4:fb:43:7a:1c:38:b6:d2:6f:ad: c6:a2:76:7e:e1:ec:33:af:a7:59:2c:d6:da:55:23: 34:59:8b:49:60:bd:b2:de:b9:93:4e:bd:2f:3a:c1: d2:fc:5b:c3:19:15:e0:19:bb:3a:0b:81:e3:cf:a3: 5b:0c:26:de:ae:c2:70:3e:62:b1:f9:f7:52:bd:29: 23:ce:7e:02:05:4b:c9:e5:1d:bc:41:6d:20:35:de: 83:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:F4:3B:87:FE:37:38:CB:4F:3B:E7:4F:70:6A:1A:5B:06:F1:46:15 X509v3 Authority Key Identifier: keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/mfQ7h_43OMtPO-dPcGoaWwbxRhU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.69.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:15:c7:a1:ca:79:db:98:bd:be:f9:75:dc:ba:db:4c:8a:44: 44:7e:a2:46:54:51:5e:3d:91:cb:c0:59:88:73:a5:bb:70:78: 25:73:07:59:6b:22:6f:9e:21:07:a1:77:f0:38:28:a1:a0:d8: 82:db:04:fd:5c:55:2b:5d:13:ea:c2:28:75:38:cf:77:0e:5c: f4:1c:69:95:e8:04:5f:64:f9:ca:f3:d8:b8:d4:8e:f3:06:95: a3:93:0b:34:26:3e:04:0e:7c:40:ed:9d:47:c8:45:fa:cf:44: 94:21:2c:13:5c:2c:8c:95:40:15:58:f6:ce:29:a2:9c:d5:ff: d8:ce:65:73:38:95:33:05:4f:d3:48:0d:25:ed:d4:b6:44:be: 46:db:17:25:49:7e:c9:11:71:42:9f:87:6e:a9:54:e5:1b:63: fb:c0:1e:c7:ed:01:e4:2f:ff:45:90:e0:06:27:83:83:f1:c0: aa:d4:f1:ce:d0:61:98:19:92:49:1b:6c:57:6b:96:ba:12:40: 5d:83:e5:06:5b:87:90:13:4e:7c:d4:25:ea:82:1e:a5:f1:35: 80:9f:25:ca:47:a7:40:09:90:27:b4:51:5e:17:60:a2:a8:2a: ea:58:05:1d:57:04:74:d1:7a:76:8c:30:49:eb:28:a6:94:40: 89:83:c7:a8 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDCowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3 MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yMzA5MDEw OTE0MDNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDk5RjQzQjg3RkUzNzM4 Q0I0RjNCRTc0RjcwNkExQTVCMDZGMTQ2MTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxtIzjckeHOrpfAhLOecwXeXTEIgtnVVVc6DMAkGEz5kBFZuOR kJbRWZJGaUqLAQFCLcRFYazTG3SzwYGjINDGwCSRWONHPLG34JJQto89+JwWrAGT oxQKM2GUeKvYB5rMdrgOVksQni5N44Hb0hJUcgHsLtzpXWXaUZ4jecY2+rhrc+9a jl0VEUy4UDBJO+FhPGq+2nq9W67NAnR6xmZO0CA1vk/M7rFo1PtDehw4ttJvrcai dn7h7DOvp1ks1tpVIzRZi0lgvbLeuZNOvS86wdL8W8MZFeAZuzoLgePPo1sMJt6u wnA+YrH591K9KSPOfgIFS8nlHbxBbSA13oOBAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUmfQ7h/43OMtPO+dPcGoaWwbxRhUwHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL21mUTdoXzQzT010UE8tZFBjR29hV3di eFJoVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAA9PUUwDQYJ KoZIhvcNAQELBQADggEBAEwVx6HKeduYvb75ddy620yKRER+okZUUV49kcvAWYhz pbtweCVzB1lrIm+eIQehd/A4KKGg2ILbBP1cVStdE+rCKHU4z3cOXPQcaZXoBF9k +crz2LjUjvMGlaOTCzQmPgQOfEDtnUfIRfrPRJQhLBNcLIyVQBVY9s4popzV/9jO ZXM4lTMFT9NIDSXt1LZEvkbbFyVJfskRcUKfh26pVOUbY/vAHsftAeQv/0WQ4AYn g4PxwKrU8c7QYZgZkkkbbFdrlroSQF2D5QZbh5ATTnzUJeqCHqXxNYCfJcpHp0AJ kCe0UV4XYKKoKupYBR1XBHTRenaMMEnrKKaUQImDx6g= -----END CERTIFICATE-----Generated at Mon Jun 3 02:57:40 2024 by rpki-client on console-fra.rpki-client.org