$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/ulfXhiuh2fjfvYYvyUggaw8hg_8.roa File: ulfXhiuh2fjfvYYvyUggaw8hg_8.roa (raw, json) Hash identifier: vwIPN67iJyUQhYEoY9jYnDgrSwuuNQRPPcpnNAcNfHA= Subject key identifier: BA:57:D7:86:2B:A1:D9:F8:DF:BD:86:2F:C9:48:20:6B:0F:21:83:FF Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Certificate serial: 0D63 Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/ulfXhiuh2fjfvYYvyUggaw8hg_8.roa Signing time: Mon 26 Aug 2024 05:19:46 +0000 ROA not before: Mon 26 Aug 2024 05:19:46 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4780 IP address blocks: 211.78.24.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3427 (0xd63) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Validity Not Before: Aug 26 05:19:46 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=BA57D7862BA1D9F8DFBD862FC948206B0F2183FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:59:6a:f2:0d:8d:0b:a9:2b:bb:f5:5b:fb:da: 82:49:80:e9:9c:97:10:d7:94:6b:a6:61:b0:11:b2: 48:7d:42:5f:50:06:2d:a5:44:61:4b:b1:c3:4f:c6: 96:1c:09:c0:19:5f:bc:47:aa:0f:e4:e0:09:07:b7: f7:8b:47:98:7f:ce:14:54:70:7b:d1:73:f1:05:30: 57:b8:92:1f:42:3d:45:c1:91:56:97:94:39:ca:2c: 21:40:05:2e:a9:36:a3:71:91:55:e6:95:fc:00:30: 85:88:cf:38:31:54:a3:3a:d7:e4:32:af:ef:1c:2c: 62:da:31:78:a1:46:15:a4:0a:f7:09:bc:ca:63:4d: 8c:43:2c:9f:39:13:8e:69:77:11:af:e3:f7:e4:84: 81:b4:7d:62:2f:ee:13:cc:10:80:a0:a1:00:5d:96: 9e:f0:01:19:0e:8e:1e:2c:d3:d2:8e:70:59:fa:2a: bd:ec:f5:14:2e:5a:16:5f:bf:a9:90:24:0d:7e:29: 20:43:a8:d2:03:75:16:56:89:0d:be:c7:73:c6:ab: 6d:b8:50:2a:67:30:a3:3e:0d:d6:26:83:59:58:36: ba:6e:4a:6b:71:51:49:d8:60:98:c7:95:d5:67:89: 69:f9:20:e9:9f:9f:52:4c:96:b2:67:1b:05:4b:87: 85:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:57:D7:86:2B:A1:D9:F8:DF:BD:86:2F:C9:48:20:6B:0F:21:83:FF X509v3 Authority Key Identifier: keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/ulfXhiuh2fjfvYYvyUggaw8hg_8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.78.24.0/21 Signature Algorithm: sha256WithRSAEncryption 0d:f9:41:fa:72:bb:19:22:78:d3:3c:0e:a0:6d:79:f6:46:0a: 35:bc:20:dd:e0:11:2b:16:f4:f8:7c:c8:65:90:c0:bc:a6:4f: 92:42:99:79:8c:9f:d4:93:07:38:f3:09:1b:b7:3c:88:32:cf: b3:2a:e6:a7:f3:f8:40:eb:85:ba:db:b7:fe:d4:5c:00:08:3b: c7:f2:a7:99:f4:88:77:9c:56:7b:eb:b6:1e:43:29:90:51:b7: d2:62:20:5f:f6:54:b6:c8:1c:cf:fc:0a:9a:d1:a8:9d:88:e2: c9:05:1b:0b:86:54:62:a7:27:6b:e9:c8:22:66:b0:21:d7:d3: 17:c7:88:2f:16:fb:4e:07:1a:2d:b7:48:c5:41:90:fd:e3:0a: eb:3b:3c:be:ff:67:63:df:fc:69:55:04:8c:b6:e8:4b:ea:13: 14:9f:46:ef:37:cf:30:03:cf:f6:f2:7e:a1:8f:b1:02:60:cc: 7d:87:ef:7e:c1:b0:64:b0:8f:64:ad:25:dc:70:48:08:dc:19: 35:95:bb:d2:6e:30:f0:9e:1f:29:56:ff:f4:21:af:e5:4f:0f: 6e:1d:ff:28:d4:4d:c7:ad:cd:55:a2:eb:48:ff:5d:4c:80:ef: e4:52:3a:bc:cd:9b:14:af:de:d7:51:48:99:ca:a8:31:0b:03: 7d:ef:dc:04 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDWMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3 MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yNDA4MjYw NTE5NDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEJBNTdENzg2MkJBMUQ5 RjhERkJEODYyRkM5NDgyMDZCMEYyMTgzRkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDAWWryDY0LqSu79Vv72oJJgOmclxDXlGumYbARskh9Ql9QBi2l RGFLscNPxpYcCcAZX7xHqg/k4AkHt/eLR5h/zhRUcHvRc/EFMFe4kh9CPUXBkVaX lDnKLCFABS6pNqNxkVXmlfwAMIWIzzgxVKM61+Qyr+8cLGLaMXihRhWkCvcJvMpj TYxDLJ85E45pdxGv4/fkhIG0fWIv7hPMEICgoQBdlp7wARkOjh4s09KOcFn6Kr3s 9RQuWhZfv6mQJA1+KSBDqNIDdRZWiQ2+x3PGq224UCpnMKM+DdYmg1lYNrpuSmtx UUnYYJjHldVniWn5IOmfn1JMlrJnGwVLh4XBAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUulfXhiuh2fjfvYYvyUggaw8hg/8wHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL3VsZlhoaXVoMmZqZnZZWXZ5VWdnYXc4 aGdfOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPTThgwDQYJ KoZIhvcNAQELBQADggEBAA35QfpyuxkieNM8DqBtefZGCjW8IN3gESsW9Ph8yGWQ wLymT5JCmXmMn9STBzjzCRu3PIgyz7Mq5qfz+EDrhbrbt/7UXAAIO8fyp5n0iHec Vnvrth5DKZBRt9JiIF/2VLbIHM/8CprRqJ2I4skFGwuGVGKnJ2vpyCJmsCHX0xfH iC8W+04HGi23SMVBkP3jCus7PL7/Z2Pf/GlVBIy26EvqExSfRu83zzADz/byfqGP sQJgzH2H737BsGSwj2StJdxwSAjcGTWVu9JuMPCeHylW//Qhr+VPD24d/yjUTcet zVWi60j/XUyA7+RSOrzNmxSv3tdRSJnKqDELA33v3AQ= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:52 2024 by rpki-client on console-fra.rpki-client.org