$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/63p0_1Xj6MRoktTOf4o52okD4uE.roa File: 63p0_1Xj6MRoktTOf4o52okD4uE.roa (raw, json) Hash identifier: f4is9Riv0HFcP/lo+c7r56zqtJk5DhyDQFQnf9xI9dw= Subject key identifier: EB:7A:74:FF:55:E3:E8:C4:68:92:D4:CE:7F:8A:39:DA:89:03:E2:E1 Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Certificate serial: 0BC4 Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/63p0_1Xj6MRoktTOf4o52okD4uE.roa Signing time: Fri 01 Sep 2023 09:40:39 +0000 ROA not before: Fri 01 Sep 2023 09:40:39 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9676 IP address blocks: 210.62.176.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 04:08:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3012 (0xbc4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Validity Not Before: Sep 1 09:40:39 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=EB7A74FF55E3E8C46892D4CE7F8A39DA8903E2E1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:c5:24:82:e1:79:70:a0:bc:39:b5:ba:ca:20: d7:47:c2:c1:41:89:07:2d:ae:9a:4d:63:38:6c:02: ba:16:bc:90:75:04:2e:c4:ed:44:82:58:f2:eb:89: c7:71:91:e2:54:22:4a:50:ae:cb:bb:48:90:50:a6: b8:8a:d7:c3:33:96:02:2f:5e:b3:8d:c2:22:68:09: cf:c9:7a:45:90:5c:3f:fd:62:59:2e:7b:42:3c:09: 36:2b:1b:02:38:ff:91:d2:13:f9:3f:a8:ba:9b:2b: fc:51:20:78:56:d3:42:37:b4:d6:93:53:54:1f:7a: 08:7d:95:5e:1a:3a:84:23:f5:ff:93:9f:ee:b5:46: b8:4e:8d:6a:99:99:39:60:89:f2:30:a0:e7:5e:77: 57:c0:83:a5:cb:39:50:54:fc:33:1e:f2:cf:ff:85: e8:b0:5e:fd:6f:3b:27:37:a6:c3:dd:93:69:bd:49: 07:7d:3a:28:16:4a:73:6c:b0:eb:be:34:df:36:d0: e6:81:06:0b:12:ff:0e:6d:2f:c0:6b:b1:9a:e3:00: 67:82:f9:b1:b8:c6:e8:d1:7c:85:01:d2:3c:cf:8f: 06:93:1b:97:be:f9:9f:31:59:04:8d:4b:2a:ac:aa: 82:78:43:e7:9f:8b:99:e2:63:4b:02:f6:b7:bb:23: f9:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:7A:74:FF:55:E3:E8:C4:68:92:D4:CE:7F:8A:39:DA:89:03:E2:E1 X509v3 Authority Key Identifier: keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/63p0_1Xj6MRoktTOf4o52okD4uE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 210.62.176.0/20 Signature Algorithm: sha256WithRSAEncryption 32:76:ae:fc:ab:f8:93:4d:ff:c6:b4:38:2b:5a:f8:90:7c:f8: 0d:86:cb:ed:5d:0d:75:07:08:e5:55:6a:66:f8:f9:73:60:f5: e3:7e:d8:bd:f6:37:1c:92:e5:a7:0c:80:8a:14:93:89:15:7f: 48:ff:36:af:43:ec:3a:26:78:9e:37:e4:67:e0:6f:e4:1e:62: f5:37:60:7d:a3:e7:99:bf:f5:8a:77:f9:1e:00:c6:46:09:52: 75:e6:e6:68:05:49:17:c8:d8:e0:13:69:f5:ef:1c:d6:31:12: 27:21:99:e5:08:fb:67:1f:8f:41:91:53:db:1b:e6:fc:70:53: 9f:68:64:b6:ff:6d:92:51:19:7c:0a:b8:fc:a2:1a:c6:74:d2: 8a:3b:06:ba:f4:74:e4:92:38:ea:bb:61:bb:53:7b:2d:5b:89: ed:9f:4a:1f:c0:76:ae:08:18:79:11:fe:34:db:ae:7b:c9:28: 85:2f:63:4c:d6:45:5a:d6:bb:ca:03:0d:12:29:8e:cf:a5:50: 10:98:2c:4e:f4:43:70:c3:8d:98:6e:4e:c7:0d:41:4e:c0:1b: 60:7b:29:7a:a1:2f:73:f1:82:88:7a:8d:44:f0:e9:61:14:13: 55:f2:10:2c:3c:40:13:5f:e5:72:1c:dc:92:00:1c:6e:d4:ab: 69:8b:da:1e -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICC8QwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDFB NTMyNjFCMjAwMUZBN0VCNTc3OTNFMkU1NzlCNzMyMkY4RTc2QTAeFw0yMzA5MDEw OTQwMzlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEVCN0E3NEZGNTVFM0U4 QzQ2ODkyRDRDRTdGOEEzOURBODkwM0UyRTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQChxSSC4XlwoLw5tbrKINdHwsFBiQctrppNYzhsAroWvJB1BC7E 7USCWPLricdxkeJUIkpQrsu7SJBQpriK18MzlgIvXrONwiJoCc/JekWQXD/9Ylku e0I8CTYrGwI4/5HSE/k/qLqbK/xRIHhW00I3tNaTU1Qfegh9lV4aOoQj9f+Tn+61 RrhOjWqZmTlgifIwoOded1fAg6XLOVBU/DMe8s//heiwXv1vOyc3psPdk2m9SQd9 OigWSnNssOu+NN820OaBBgsS/w5tL8BrsZrjAGeC+bG4xujRfIUB0jzPjwaTG5e+ +Z8xWQSNSyqsqoJ4Q+efi5niY0sC9re7I/npAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU63p0/1Xj6MRoktTOf4o52okD4uEwHwYDVR0jBBgwFoAUAaUyYbIAH6frV3k+ LlebcyL452owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FWRUNP TS9BYVV5WWJJQUg2ZnJWM2stTGxlYmN5TDQ1Mm8uY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0FhVXlZYklBSDZmclYzay1MbGViY3lMNDUyby5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBVkVDT00vNjNwMF8xWGo2TVJva3RU T2Y0bzUyb2tENHVFLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BNI+sDANBgkqhkiG9w0BAQsFAAOCAQEAMnau/Kv4k03/xrQ4K1r4kHz4DYbL7V0N dQcI5VVqZvj5c2D1437YvfY3HJLlpwyAihSTiRV/SP82r0PsOiZ4njfkZ+Bv5B5i 9TdgfaPnmb/1inf5HgDGRglSdebmaAVJF8jY4BNp9e8c1jESJyGZ5Qj7Zx+PQZFT 2xvm/HBTn2hktv9tklEZfAq4/KIaxnTSijsGuvR05JI46rthu1N7LVuJ7Z9KH8B2 rggYeRH+NNuue8kohS9jTNZFWta7ygMNEimOz6VQEJgsTvRDcMONmG5Oxw1BTsAb YHspeqEvc/GCiHqNRPDpYRQTVfIQLDxAE1/lchzckgAcbtSraYvaHg== -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:03 2024 by rpki-client on console-fra.rpki-client.org