$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/xvegpzUJXk1UddfkbC_v7hkv5z0.roa File: xvegpzUJXk1UddfkbC_v7hkv5z0.roa (raw, json) Hash identifier: f+vKMGadWNjZVjoInAsv6WnEoCRCs6l52mECmXFkexY= Subject key identifier: C6:F7:A0:A7:35:09:5E:4D:54:75:D7:E4:6C:2F:EF:EE:19:2F:E7:3D Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Certificate serial: 0C2D Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/xvegpzUJXk1UddfkbC_v7hkv5z0.roa Signing time: Fri 01 Sep 2023 09:14:03 +0000 ROA not before: Fri 01 Sep 2023 09:14:03 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 4780 IP address blocks: 61.61.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 03:39:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3117 (0xc2d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Validity Not Before: Sep 1 09:14:03 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=C6F7A0A735095E4D5475D7E46C2FEFEE192FE73D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:7a:18:bc:a3:ce:73:b6:13:57:2a:c2:7e:a2: b6:4a:39:61:f5:1e:4f:a6:98:78:82:51:70:12:02: f7:83:76:cb:1b:62:9b:f8:9b:1f:d7:47:02:20:cb: c2:ac:a8:03:23:68:a7:46:c1:4a:b5:9c:f0:66:8b: a7:69:d9:e9:3a:6d:fc:24:6c:21:69:8e:06:d3:86: 13:b0:51:d2:4e:f5:bf:5d:4a:6a:ed:c3:07:09:c9: 4d:d6:59:d0:68:d0:63:1b:fa:1b:7c:49:8b:4e:33: 01:7d:30:a3:d8:79:d8:86:d0:db:0a:4e:b7:7f:08: 4a:9a:16:6d:ea:c7:dd:fb:18:a1:3b:c5:fb:a1:77: 33:29:db:c2:6e:c2:79:1b:19:34:03:8d:06:5d:c6: f4:7b:06:13:d4:05:c2:18:47:2e:5b:0f:dc:86:78: d2:6c:53:00:d4:d5:ab:91:9f:0d:bd:8d:d1:e1:11: a3:01:71:cc:88:f7:b4:91:3c:0b:5a:90:48:f5:85: c6:d0:60:d8:5e:28:7a:85:c0:2a:6a:32:0d:5c:8d: a3:2b:55:24:0c:3a:0c:ac:c5:4d:68:6f:51:cb:16: 92:0b:27:fd:5b:05:af:4d:e3:96:5a:e9:9d:45:57: 1a:33:ad:e2:41:db:9f:71:ef:05:74:c7:24:c2:91: 77:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:F7:A0:A7:35:09:5E:4D:54:75:D7:E4:6C:2F:EF:EE:19:2F:E7:3D X509v3 Authority Key Identifier: keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/xvegpzUJXk1UddfkbC_v7hkv5z0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.0.0/17 Signature Algorithm: sha256WithRSAEncryption 53:99:09:a4:22:20:95:da:0e:8c:07:69:32:32:75:1a:f5:51: 0c:78:13:3f:66:46:e2:cb:9d:4d:7b:50:98:e6:a2:09:4e:40: 57:f6:1d:3f:98:33:56:38:0b:ba:71:3f:1f:c7:f6:90:13:9d: ab:15:b7:bd:63:c7:f7:f9:ca:69:4f:ae:68:34:57:f9:4c:ae: bd:e5:cf:3d:d2:eb:c5:18:ad:41:58:a2:ed:11:41:b3:81:78: b5:ca:2d:d0:af:a8:e5:83:a3:25:ad:7b:df:4e:ec:72:e3:42: 4b:da:48:68:ed:11:a3:2d:cc:93:a8:82:d1:50:94:b2:31:ab: c6:13:e0:93:50:aa:ea:39:6f:9a:d1:6b:74:e7:8f:50:9c:c6: da:f6:73:55:43:dd:75:61:6f:45:1f:a4:18:f2:be:af:66:15: 1c:94:58:e5:64:71:38:48:4c:48:63:cd:f5:75:97:ab:63:2a: 0e:4e:b2:10:db:94:56:51:0a:e0:65:b8:8d:a2:6d:b4:b2:1b: 97:ef:62:9d:2b:2f:50:4e:6f:53:39:e1:aa:15:d3:bc:be:7b: 32:4c:fa:b0:e9:ec:53:34:91:d6:d2:23:08:d5:0c:ef:42:a4: 3b:83:f6:2b:62:ee:50:7a:8a:2b:1a:08:7e:1f:bb:d2:bf:8a: f3:8c:08:ab -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDC0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3 MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yMzA5MDEw OTE0MDNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEM2RjdBMEE3MzUwOTVF NEQ1NDc1RDdFNDZDMkZFRkVFMTkyRkU3M0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCkehi8o85zthNXKsJ+orZKOWH1Hk+mmHiCUXASAveDdssbYpv4 mx/XRwIgy8KsqAMjaKdGwUq1nPBmi6dp2ek6bfwkbCFpjgbThhOwUdJO9b9dSmrt wwcJyU3WWdBo0GMb+ht8SYtOMwF9MKPYediG0NsKTrd/CEqaFm3qx937GKE7xfuh dzMp28JuwnkbGTQDjQZdxvR7BhPUBcIYRy5bD9yGeNJsUwDU1auRnw29jdHhEaMB ccyI97SRPAtakEj1hcbQYNheKHqFwCpqMg1cjaMrVSQMOgysxU1ob1HLFpILJ/1b Ba9N45Za6Z1FVxozreJB259x7wV0xyTCkXeHAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUxvegpzUJXk1UddfkbC/v7hkv5z0wHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL3h2ZWdwelVKWGsxVWRkZmtiQ192N2hr djV6MC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAc9PQAwDQYJ KoZIhvcNAQELBQADggEBAFOZCaQiIJXaDowHaTIydRr1UQx4Ez9mRuLLnU17UJjm oglOQFf2HT+YM1Y4C7pxPx/H9pATnasVt71jx/f5ymlPrmg0V/lMrr3lzz3S68UY rUFYou0RQbOBeLXKLdCvqOWDoyWte99O7HLjQkvaSGjtEaMtzJOogtFQlLIxq8YT 4JNQquo5b5rRa3Tnj1Ccxtr2c1VD3XVhb0UfpBjyvq9mFRyUWOVkcThITEhjzfV1 l6tjKg5OshDblFZRCuBluI2ibbSyG5fvYp0rL1BOb1M54aoV07y+ezJM+rDp7FM0 kdbSIwjVDO9CpDuD9iti7lB6iisaCH4fu9K/ivOMCKs= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:01 2024 by rpki-client on console-fra.rpki-client.org