$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/83rc0f0cGvX1HguRKfFBBeTCTi8.roa File: 83rc0f0cGvX1HguRKfFBBeTCTi8.roa (raw, json) Hash identifier: 4eTmRVDfkWuKJkcCxF3Fs7mBNqUNgS+9Agmn9Pf7Gss= Subject key identifier: F3:7A:DC:D1:FD:1C:1A:F5:F5:1E:0B:91:29:F1:41:05:E4:C2:4E:2F Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Certificate serial: 0CDB Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/83rc0f0cGvX1HguRKfFBBeTCTi8.roa Signing time: Mon 26 Aug 2024 05:25:21 +0000 ROA not before: Mon 26 Aug 2024 05:25:21 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9676 IP address blocks: 60.245.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3291 (0xcdb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Validity Not Before: Aug 26 05:25:21 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F37ADCD1FD1C1AF5F51E0B9129F14105E4C24E2F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:7d:28:99:3d:9b:c7:90:a9:1b:88:34:16:f1: 77:ca:1d:52:5a:a4:0c:d2:05:f8:41:3d:4f:fb:e9: 34:f6:ec:1e:14:f5:8d:28:60:04:21:65:59:41:a7: 80:e2:70:cc:bc:bb:02:37:80:a1:0f:bb:5a:f7:07: 87:0c:db:55:0c:f3:3e:b9:11:be:d3:a9:15:53:ec: 8e:7f:99:f2:e7:02:90:da:81:94:e5:2d:5f:26:93: 83:e3:dc:c4:ca:c2:04:8e:c7:a1:5e:0c:e4:3f:5f: 8b:7f:15:72:06:a2:d7:7d:72:8a:3f:27:bf:e3:93: cc:f2:fb:a1:19:01:f9:77:30:25:a4:ce:cf:6a:82: 51:6d:06:42:73:17:7d:de:7e:86:61:45:0d:19:5a: e6:78:47:63:c0:07:f9:95:5c:6d:20:96:e0:14:c3: 2b:fd:10:f4:95:ea:22:ae:fb:8d:7d:b2:aa:e4:11: 85:fc:f8:63:ac:06:29:9d:be:11:20:e2:8b:81:f9: 8b:3b:5e:83:00:6b:ff:62:8b:47:fc:8b:6d:81:2b: aa:0d:14:02:93:84:32:55:8e:7c:4e:7e:cf:11:74: 82:ad:74:a5:2f:fc:c1:9d:84:b3:a1:21:b0:3f:5b: 8c:ce:39:81:d8:e6:fe:d6:1f:9b:0c:b9:83:49:12: 73:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:7A:DC:D1:FD:1C:1A:F5:F5:1E:0B:91:29:F1:41:05:E4:C2:4E:2F X509v3 Authority Key Identifier: keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/83rc0f0cGvX1HguRKfFBBeTCTi8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.245.0.0/18 Signature Algorithm: sha256WithRSAEncryption 9b:b1:22:3c:fe:d3:9f:7b:4e:63:38:93:71:b1:9e:44:3b:c8: 6d:10:67:b5:eb:a1:c4:eb:30:97:5f:bd:57:0c:81:a8:8c:44: 85:0b:fa:70:a0:2e:c4:61:f5:5d:ed:28:27:ad:2b:f6:34:0f: cc:be:55:67:2f:69:4e:90:fd:b6:86:29:b1:2a:e5:e7:67:d5: ee:c5:3b:91:91:46:fa:c4:73:66:4d:11:e5:9f:b5:3b:dc:8c: 03:73:a1:79:8f:5a:f2:36:71:82:6e:33:46:43:69:5c:cb:8e: b4:82:26:99:f3:b6:02:3e:64:71:7c:71:04:0b:a9:af:c2:47: ae:9f:4c:f0:b7:f8:fd:23:28:42:93:20:03:cc:86:94:1c:5a: a4:cb:37:ad:ba:db:45:27:a8:0a:2b:d4:b5:38:ad:a4:7c:2c: cd:5e:bc:c7:2e:19:58:f1:9b:cd:ef:c3:74:8f:2c:58:bc:7a: 16:36:4e:a8:a7:46:16:47:6b:e2:ff:0f:bf:42:f3:d2:eb:bc: a3:dc:11:12:35:cd:9f:a4:4a:29:07:2a:ec:cf:7f:94:34:61: 4a:47:1d:0b:f0:f0:c3:62:a7:41:1b:fc:e3:30:ba:50:9f:63: 5c:62:b2:92:d9:d7:eb:c8:f7:80:0a:45:4e:9c:ac:54:10:5d: 0c:e5:a9:1b -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDNswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDFB NTMyNjFCMjAwMUZBN0VCNTc3OTNFMkU1NzlCNzMyMkY4RTc2QTAeFw0yNDA4MjYw NTI1MjFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEYzN0FEQ0QxRkQxQzFB RjVGNTFFMEI5MTI5RjE0MTA1RTRDMjRFMkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYfSiZPZvHkKkbiDQW8XfKHVJapAzSBfhBPU/76TT27B4U9Y0o YAQhZVlBp4DicMy8uwI3gKEPu1r3B4cM21UM8z65Eb7TqRVT7I5/mfLnApDagZTl LV8mk4Pj3MTKwgSOx6FeDOQ/X4t/FXIGotd9coo/J7/jk8zy+6EZAfl3MCWkzs9q glFtBkJzF33efoZhRQ0ZWuZ4R2PAB/mVXG0gluAUwyv9EPSV6iKu+419sqrkEYX8 +GOsBimdvhEg4ouB+Ys7XoMAa/9ii0f8i22BK6oNFAKThDJVjnxOfs8RdIKtdKUv /MGdhLOhIbA/W4zOOYHY5v7WH5sMuYNJEnNPAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU83rc0f0cGvX1HguRKfFBBeTCTi8wHwYDVR0jBBgwFoAUAaUyYbIAH6frV3k+ LlebcyL452owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FWRUNP TS9BYVV5WWJJQUg2ZnJWM2stTGxlYmN5TDQ1Mm8uY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0FhVXlZYklBSDZmclYzay1MbGViY3lMNDUyby5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBVkVDT00vODNyYzBmMGNHdlgxSGd1 UktmRkJCZVRDVGk4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME Bjz1ADANBgkqhkiG9w0BAQsFAAOCAQEAm7EiPP7Tn3tOYziTcbGeRDvIbRBnteuh xOswl1+9VwyBqIxEhQv6cKAuxGH1Xe0oJ60r9jQPzL5VZy9pTpD9toYpsSrl52fV 7sU7kZFG+sRzZk0R5Z+1O9yMA3OheY9a8jZxgm4zRkNpXMuOtIImmfO2Aj5kcXxx BAupr8JHrp9M8Lf4/SMoQpMgA8yGlBxapMs3rbrbRSeoCivUtTitpHwszV68xy4Z WPGbze/DdI8sWLx6FjZOqKdGFkdr4v8Pv0Lz0uu8o9wREjXNn6RKKQcq7M9/lDRh SkcdC/Dww2KnQRv84zC6UJ9jXGKyktnX68j3gApFTpysVBBdDOWpGw== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:34 2024 by rpki-client on console-ams.rpki-client.org