$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/9XfHTjXSwQkpn1mnHFc5GbB8Foc.roa File: 9XfHTjXSwQkpn1mnHFc5GbB8Foc.roa (raw, json) Hash identifier: mu30MPREg4bgF8QZJki7N6f8ZbjMw5GRkXLI0kcnMYo= Subject key identifier: F5:77:C7:4E:35:D2:C1:09:29:9F:59:A7:1C:57:39:19:B0:7C:16:87 Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Certificate serial: 0CD9 Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/9XfHTjXSwQkpn1mnHFc5GbB8Foc.roa Signing time: Mon 26 Aug 2024 05:25:21 +0000 ROA not before: Mon 26 Aug 2024 05:25:21 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9676 IP address blocks: 61.63.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3289 (0xcd9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Validity Not Before: Aug 26 05:25:21 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F577C74E35D2C109299F59A71C573919B07C1687 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:20:ff:67:33:26:4f:05:c4:09:b9:ec:37:d0: 11:45:55:0e:8e:60:ed:7e:44:74:6d:df:5a:05:b0: b3:ff:57:b2:86:35:c1:7a:90:39:40:8a:f7:d2:f5: 23:ed:b2:41:14:49:9f:5c:c6:ad:a2:37:21:f1:4a: 49:66:f5:32:a2:90:b8:de:3a:ff:af:2b:41:af:65: b1:85:a0:2c:7b:49:e1:a0:1d:02:4d:88:fb:db:28: b3:ad:ab:91:0a:27:12:e5:e9:49:3f:33:a0:4f:0b: 94:32:d3:c5:45:1b:df:af:ce:1c:0a:33:d1:77:f8: b4:10:a1:6c:7a:64:d1:b4:93:a3:8a:5b:6f:b8:4a: 21:f3:a3:0a:1f:e0:f2:1a:1d:db:8e:cc:6b:06:ee: b5:5b:ee:08:ff:58:48:1f:e1:6f:17:a2:66:3b:8e: 4a:35:d6:10:23:7e:e9:20:ed:7a:bc:89:60:75:45: 83:e4:b8:ab:3c:4f:62:a5:56:38:40:82:8e:3b:1c: 3f:e7:97:57:88:2d:ec:3e:b5:24:e1:82:97:da:b6: e5:c4:80:a8:18:b9:a1:a8:c5:ba:45:a7:2d:b9:5e: 24:39:2f:60:64:68:19:ba:6a:fc:42:88:56:3d:39: e6:d6:3c:0e:1f:c9:fe:06:34:0c:67:cd:3e:82:b6: 48:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:77:C7:4E:35:D2:C1:09:29:9F:59:A7:1C:57:39:19:B0:7C:16:87 X509v3 Authority Key Identifier: keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/9XfHTjXSwQkpn1mnHFc5GbB8Foc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.63.128.0/19 Signature Algorithm: sha256WithRSAEncryption 76:c0:64:26:a4:64:1b:08:08:c6:f8:a3:36:e3:d8:5a:ca:63: 64:b9:27:9e:39:a0:cd:24:6f:e7:13:8e:fd:22:d6:1e:cb:8c: c2:d5:fd:11:7d:81:5c:04:ee:f5:a8:30:16:d8:0c:38:74:8f: e4:8e:95:44:68:f4:ec:78:25:e5:6f:ce:1d:79:b9:e1:b2:98: e3:99:a3:75:db:5d:e1:6c:2b:f2:b9:fb:23:67:d7:bb:44:30: 67:23:9e:78:6b:72:25:c2:3e:c9:8c:08:28:53:21:c4:50:08: f4:5f:7a:9c:1e:76:cf:4c:cf:bf:b9:c4:c3:a4:8b:21:da:bf: c6:9b:92:6b:df:58:01:08:b3:e0:3b:96:9a:de:a2:66:11:ae: c7:ff:cc:12:8e:b5:bd:06:6f:65:41:b7:46:9e:ab:a7:95:11: 73:b8:41:0d:0a:70:66:ae:2e:97:07:7c:2b:e0:4c:6b:56:a1: 6d:c3:f0:56:84:86:65:02:1f:50:79:e7:e2:4c:e5:46:22:f6: cc:24:23:6d:4f:68:3a:5f:e2:09:32:c3:99:0f:c0:a4:20:9b: 36:9d:51:ab:4e:12:53:b3:bf:1e:27:dd:2c:21:cb:0e:fe:88: d4:69:2e:85:d7:01:be:58:dd:f3:15:f9:f9:c9:11:29:00:93: c0:cf:59:ba -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDNkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDFB NTMyNjFCMjAwMUZBN0VCNTc3OTNFMkU1NzlCNzMyMkY4RTc2QTAeFw0yNDA4MjYw NTI1MjFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEY1NzdDNzRFMzVEMkMx MDkyOTlGNTlBNzFDNTczOTE5QjA3QzE2ODcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8IP9nMyZPBcQJuew30BFFVQ6OYO1+RHRt31oFsLP/V7KGNcF6 kDlAivfS9SPtskEUSZ9cxq2iNyHxSklm9TKikLjeOv+vK0GvZbGFoCx7SeGgHQJN iPvbKLOtq5EKJxLl6Uk/M6BPC5Qy08VFG9+vzhwKM9F3+LQQoWx6ZNG0k6OKW2+4 SiHzowof4PIaHduOzGsG7rVb7gj/WEgf4W8XomY7jko11hAjfukg7Xq8iWB1RYPk uKs8T2KlVjhAgo47HD/nl1eILew+tSThgpfatuXEgKgYuaGoxbpFpy25XiQ5L2Bk aBm6avxCiFY9OebWPA4fyf4GNAxnzT6Ctkh3AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQU9XfHTjXSwQkpn1mnHFc5GbB8FocwHwYDVR0jBBgwFoAUAaUyYbIAH6frV3k+ LlebcyL452owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FWRUNP TS9BYVV5WWJJQUg2ZnJWM2stTGxlYmN5TDQ1Mm8uY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0FhVXlZYklBSDZmclYzay1MbGViY3lMNDUyby5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBVkVDT00vOVhmSFRqWFN3UWtwbjFt bkhGYzVHYkI4Rm9jLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BT0/gDANBgkqhkiG9w0BAQsFAAOCAQEAdsBkJqRkGwgIxvijNuPYWspjZLknnjmg zSRv5xOO/SLWHsuMwtX9EX2BXATu9agwFtgMOHSP5I6VRGj07Hgl5W/OHXm54bKY 45mjddtd4Wwr8rn7I2fXu0QwZyOeeGtyJcI+yYwIKFMhxFAI9F96nB52z0zPv7nE w6SLIdq/xpuSa99YAQiz4DuWmt6iZhGux//MEo61vQZvZUG3Rp6rp5URc7hBDQpw Zq4ulwd8K+BMa1ahbcPwVoSGZQIfUHnn4kzlRiL2zCQjbU9oOl/iCTLDmQ/ApCCb Np1Rq04SU7O/HifdLCHLDv6I1GkuhdcBvljd8xX5+ckRKQCTwM9Zug== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:34 2024 by rpki-client on console-ams.rpki-client.org