$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/ozSOMKSSOZWu80-2GP_UnIdTiSI.roa File: ozSOMKSSOZWu80-2GP_UnIdTiSI.roa (raw, json) Hash identifier: a//Ral0PyEsNOlGUDKZAqmO9/rYbP4ltgN8rdJz5Ocs= Subject key identifier: A3:34:8E:30:A4:92:39:95:AE:F3:4F:B6:18:FF:D4:9C:87:53:89:22 Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Certificate serial: 0D5B Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/ozSOMKSSOZWu80-2GP_UnIdTiSI.roa Signing time: Mon 26 Aug 2024 05:19:44 +0000 ROA not before: Mon 26 Aug 2024 05:19:44 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 18049 IP address blocks: 211.78.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3419 (0xd5b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Validity Not Before: Aug 26 05:19:44 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A3348E30A4923995AEF34FB618FFD49C87538922 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:da:6f:6e:b3:d3:fe:3d:77:dd:38:3c:cc:19: 47:de:96:f7:bc:93:0a:33:75:a6:7d:17:79:ea:4b: d7:60:c1:d5:d2:36:2d:46:18:38:92:9a:32:8a:0d: f8:96:c3:ab:69:08:56:88:38:ee:3b:60:3a:ef:8d: 51:91:31:ed:0b:3a:47:34:df:92:ee:d5:ca:1b:a8: 10:cb:52:7c:1b:dc:8d:29:8d:6e:4d:6b:d9:ed:13: 36:b2:ba:bd:c0:04:51:54:a6:6a:06:97:c4:c8:e0: 9b:4e:64:34:94:8c:9e:12:c3:f2:b1:41:55:f9:cd: 8b:4e:74:ae:b9:ee:42:ba:6b:ce:91:49:c3:a0:bf: 93:36:e8:14:42:fa:e1:ec:86:5b:2d:bf:39:08:24: 32:1b:ff:20:ff:77:80:68:f4:49:e2:e4:0b:6c:c8: 46:a0:88:b0:5d:c7:f2:64:be:53:4c:bc:46:fc:48: 39:72:ac:d4:20:87:42:7e:2a:10:fc:e6:c1:69:69: b1:68:2a:55:5a:08:71:07:4d:e6:7d:94:b1:c6:ba: 48:8a:4c:2d:48:88:2b:59:07:1c:75:0d:b0:8d:0c: 3f:76:89:e3:a3:58:60:53:fb:5e:4b:d4:f2:f4:58: 3f:5e:21:16:57:95:fe:49:b5:8c:3d:0e:ba:8e:1e: 54:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:34:8E:30:A4:92:39:95:AE:F3:4F:B6:18:FF:D4:9C:87:53:89:22 X509v3 Authority Key Identifier: keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/ozSOMKSSOZWu80-2GP_UnIdTiSI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.78.32.0/19 Signature Algorithm: sha256WithRSAEncryption 5c:bd:19:ec:16:81:17:84:0a:f9:ca:19:11:97:9a:d6:d6:88: e4:82:3d:b1:39:93:78:f6:8b:0b:d8:17:3f:ab:45:64:d1:99: ca:18:33:07:c3:01:4d:84:5f:c2:78:56:66:6f:80:d5:e7:bc: 75:9c:15:e5:4f:71:d7:05:8a:c2:d5:95:58:46:a6:34:a0:b5: ab:74:d1:51:60:91:76:48:4f:82:0e:b4:cd:47:35:5d:1f:28: 52:f4:ac:8b:39:0d:5c:89:14:1e:2e:b9:15:36:7d:54:86:bf: b9:be:3d:85:5a:23:16:0f:57:7a:80:68:5e:e7:e9:27:9e:e1: 28:18:aa:8b:3a:21:e7:bb:e6:f2:77:19:0a:f3:3e:e0:0c:5a: 70:72:dd:4b:f9:3e:3c:b6:8a:2b:91:d0:12:ef:ec:4f:99:03: 37:3a:46:d6:b2:18:11:6e:cd:eb:cb:35:6d:60:bf:ca:fc:3a: 05:51:1c:45:b6:fc:b7:14:a3:90:c9:02:58:a0:00:43:25:2a: dc:5b:e9:65:30:37:2b:04:74:70:77:7b:e5:c1:63:3c:b5:73: 52:a3:06:c7:3d:e1:e6:75:a4:33:b0:06:58:78:4b:54:cb:a5: ce:52:a6:f4:bb:22:ec:19:6f:bf:37:92:6b:75:1f:9d:a8:c2: 7a:fe:19:e6 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDVswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3 MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yNDA4MjYw NTE5NDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEEzMzQ4RTMwQTQ5MjM5 OTVBRUYzNEZCNjE4RkZENDlDODc1Mzg5MjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDA2m9us9P+PXfdODzMGUfelve8kwozdaZ9F3nqS9dgwdXSNi1G GDiSmjKKDfiWw6tpCFaIOO47YDrvjVGRMe0LOkc035Lu1cobqBDLUnwb3I0pjW5N a9ntEzayur3ABFFUpmoGl8TI4JtOZDSUjJ4Sw/KxQVX5zYtOdK657kK6a86RScOg v5M26BRC+uHshlstvzkIJDIb/yD/d4Bo9Eni5AtsyEagiLBdx/JkvlNMvEb8SDly rNQgh0J+KhD85sFpabFoKlVaCHEHTeZ9lLHGukiKTC1IiCtZBxx1DbCNDD92ieOj WGBT+15L1PL0WD9eIRZXlf5JtYw9DrqOHlS7AgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUozSOMKSSOZWu80+2GP/UnIdTiSIwHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL296U09NS1NTT1pXdTgwLTJHUF9Vbklk VGlTSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAXTTiAwDQYJ KoZIhvcNAQELBQADggEBAFy9GewWgReECvnKGRGXmtbWiOSCPbE5k3j2iwvYFz+r RWTRmcoYMwfDAU2EX8J4VmZvgNXnvHWcFeVPcdcFisLVlVhGpjSgtat00VFgkXZI T4IOtM1HNV0fKFL0rIs5DVyJFB4uuRU2fVSGv7m+PYVaIxYPV3qAaF7n6See4SgY qos6Iee75vJ3GQrzPuAMWnBy3Uv5Pjy2iiuR0BLv7E+ZAzc6RtayGBFuzevLNW1g v8r8OgVRHEW2/LcUo5DJAligAEMlKtxb6WUwNysEdHB3e+XBYzy1c1KjBsc94eZ1 pDOwBlh4S1TLpc5SpvS7IuwZb783kmt1H52ownr+GeY= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:52 2024 by rpki-client on console-fra.rpki-client.org