$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/30Tx98IVQRawOaTDKDwzA4qmFhw.roa File: 30Tx98IVQRawOaTDKDwzA4qmFhw.roa (raw, json) Hash identifier: hVssyFotaBfe6MN7504Se5oExbDsqgL9zQO7yF4Qa3k= Subject key identifier: DF:44:F1:F7:C2:15:41:16:B0:39:A4:C3:28:3C:33:03:8A:A6:16:1C Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Certificate serial: 0CDA Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/30Tx98IVQRawOaTDKDwzA4qmFhw.roa Signing time: Mon 26 Aug 2024 05:25:21 +0000 ROA not before: Mon 26 Aug 2024 05:25:21 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9676 IP address blocks: 118.99.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3290 (0xcda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Validity Not Before: Aug 26 05:25:21 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=DF44F1F7C2154116B039A4C3283C33038AA6161C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:47:b9:3b:00:b8:ee:16:bf:f6:43:44:e9:12: 29:cc:73:5d:32:ef:84:e4:55:b1:8e:36:60:98:2b: 80:5d:a5:ce:a3:19:12:83:3e:60:33:04:ee:8c:4b: 15:d7:72:22:f6:8e:d9:6c:97:18:91:20:b3:ec:63: 2b:27:93:18:ee:95:66:b5:9d:72:7a:5b:ed:51:ac: 1b:87:20:1a:67:3f:e2:a6:22:c5:0e:7e:df:39:cc: 6f:ea:e3:93:a0:fa:7f:8f:ef:a2:1b:ca:6d:bf:c8: 27:7a:be:06:39:97:7c:04:1d:c2:22:5e:35:42:5e: 66:ef:2e:54:80:67:85:60:bc:e2:48:fc:43:76:71: fa:d8:1f:82:56:56:4b:9d:9b:a0:d0:7d:08:7c:3d: a9:c1:87:c5:ec:7c:85:00:c5:1a:ff:17:b9:cb:24: c5:5f:2f:14:68:96:e7:46:ec:f2:50:8b:f0:84:57: 5d:5f:2f:8f:f2:df:20:75:36:c2:80:a9:e1:6e:a2: 7a:0d:79:f1:75:f4:2c:b7:07:8b:41:48:f6:50:30: 3a:5b:56:98:bd:2f:f8:e4:50:68:f6:72:c1:88:8d: 63:e0:2f:2b:27:91:90:e5:56:66:97:1b:ff:05:31: 50:b2:f6:0c:8a:43:2f:5b:a9:e0:e6:da:a6:7d:ed: ad:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:44:F1:F7:C2:15:41:16:B0:39:A4:C3:28:3C:33:03:8A:A6:16:1C X509v3 Authority Key Identifier: keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/30Tx98IVQRawOaTDKDwzA4qmFhw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 118.99.128.0/17 Signature Algorithm: sha256WithRSAEncryption be:41:de:63:0a:93:46:3b:80:c8:de:2b:70:2a:36:6c:a3:94: 11:44:22:74:66:65:dc:70:55:1b:07:77:a8:50:0d:8f:34:23: ed:b6:3d:11:44:42:22:13:78:9d:b0:a0:68:b5:f6:54:e4:3e: 36:c7:c2:d2:99:5b:12:0f:0a:a9:09:66:6c:22:53:0f:f8:94: 40:bf:34:8c:81:ac:b5:ec:48:d1:32:3d:eb:c2:9f:2a:1d:82: c0:34:f0:e0:50:b4:9a:97:ee:f0:ea:ae:e9:ed:ff:d4:2e:23: 63:f0:c4:1f:12:fc:c2:69:35:f7:59:08:62:a7:35:21:cb:57: 0e:7d:1c:46:88:fb:82:70:bc:12:42:a2:88:9c:13:9b:9b:5b: a1:ec:6e:a5:b8:0f:db:f4:64:8e:9f:5c:61:82:de:94:8e:fb: 26:67:26:f4:43:50:9d:fb:a4:08:9e:98:ac:63:e8:2b:09:96: f5:06:59:da:cd:81:51:a5:a3:a1:ec:0b:60:31:7a:b4:89:47: 07:dc:60:57:17:c2:d7:d3:38:ec:4f:a0:f3:44:1d:4d:ab:32: 8c:f6:b9:5d:04:a7:c5:4b:d4:b7:66:e4:3a:a3:1b:d9:78:af: a2:cf:21:05:75:5b:82:02:f0:12:05:05:60:4e:9b:4a:0f:88: f1:e6:84:e0 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDNowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDFB NTMyNjFCMjAwMUZBN0VCNTc3OTNFMkU1NzlCNzMyMkY4RTc2QTAeFw0yNDA4MjYw NTI1MjFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKERGNDRGMUY3QzIxNTQx MTZCMDM5QTRDMzI4M0MzMzAzOEFBNjE2MUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCcR7k7ALjuFr/2Q0TpEinMc10y74TkVbGONmCYK4Bdpc6jGRKD PmAzBO6MSxXXciL2jtlslxiRILPsYysnkxjulWa1nXJ6W+1RrBuHIBpnP+KmIsUO ft85zG/q45Og+n+P76Ibym2/yCd6vgY5l3wEHcIiXjVCXmbvLlSAZ4VgvOJI/EN2 cfrYH4JWVkudm6DQfQh8PanBh8XsfIUAxRr/F7nLJMVfLxRoludG7PJQi/CEV11f L4/y3yB1NsKAqeFuonoNefF19Cy3B4tBSPZQMDpbVpi9L/jkUGj2csGIjWPgLysn kZDlVmaXG/8FMVCy9gyKQy9bqeDm2qZ97a0DAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU30Tx98IVQRawOaTDKDwzA4qmFhwwHwYDVR0jBBgwFoAUAaUyYbIAH6frV3k+ LlebcyL452owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FWRUNP TS9BYVV5WWJJQUg2ZnJWM2stTGxlYmN5TDQ1Mm8uY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0FhVXlZYklBSDZmclYzay1MbGViY3lMNDUyby5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBVkVDT00vMzBUeDk4SVZRUmF3T2FU REtEd3pBNHFtRmh3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME B3ZjgDANBgkqhkiG9w0BAQsFAAOCAQEAvkHeYwqTRjuAyN4rcCo2bKOUEUQidGZl 3HBVGwd3qFANjzQj7bY9EURCIhN4nbCgaLX2VOQ+NsfC0plbEg8KqQlmbCJTD/iU QL80jIGstexI0TI968KfKh2CwDTw4FC0mpfu8Oqu6e3/1C4jY/DEHxL8wmk191kI Yqc1IctXDn0cRoj7gnC8EkKiiJwTm5tboexupbgP2/Rkjp9cYYLelI77Jmcm9ENQ nfukCJ6YrGPoKwmW9QZZ2s2BUaWjoewLYDF6tIlHB9xgVxfC19M47E+g80QdTasy jPa5XQSnxUvUt2bkOqMb2Xivos8hBXVbggLwEgUFYE6bSg+I8eaE4A== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:34 2024 by rpki-client on console-ams.rpki-client.org