$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/D_3D6nEILQNHmp37IJZL1RiJChk.roa File: D_3D6nEILQNHmp37IJZL1RiJChk.roa (raw, json) Hash identifier: oU7l+A/MGSCndTFXtbDaUz9sNtc8bWyElvgkhyAPjR4= Subject key identifier: 0F:FD:C3:EA:71:08:2D:03:47:9A:9D:FB:20:96:4B:D5:18:89:0A:19 Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Certificate serial: 0CDD Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/D_3D6nEILQNHmp37IJZL1RiJChk.roa Signing time: Mon 26 Aug 2024 05:25:22 +0000 ROA not before: Mon 26 Aug 2024 05:25:22 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9676 IP address blocks: 122.201.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3293 (0xcdd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Validity Not Before: Aug 26 05:25:22 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=0FFDC3EA71082D03479A9DFB20964BD518890A19 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:da:c6:61:b3:f8:2b:b5:c9:dd:7f:48:2b:d1: 80:16:87:dc:e7:25:71:08:41:af:8e:31:fd:ca:d2: ca:5e:ee:51:56:ef:4a:98:d9:a2:13:e3:ca:62:87: 0b:85:86:99:96:01:a9:b0:a2:8e:4d:62:06:ff:c4: 7f:ea:56:87:38:fa:b4:4d:71:c2:cf:d1:84:b0:7d: 04:cb:7f:66:9f:a6:3b:a6:06:14:22:ec:37:7c:97: 9e:66:bc:23:ed:9f:d4:4f:d8:92:92:0b:14:82:fb: 60:2f:5e:22:e4:fb:8b:21:46:3b:3c:44:93:5c:72: 81:4c:3f:db:24:30:5c:63:3e:ad:a5:f3:ed:c8:06: fc:76:70:73:99:19:f0:6e:3b:38:a7:d0:dd:dd:de: 1a:81:22:82:39:c1:60:a6:db:9a:0c:28:fd:33:6a: f0:d6:38:76:70:c8:92:74:fd:04:8f:42:24:c2:f8: 6e:f2:bf:92:45:7f:45:1c:18:92:ca:15:c6:39:7e: 3a:d9:f6:55:25:e3:2f:6c:1d:1c:9f:0c:18:4d:3c: 5f:94:a1:e7:50:b5:55:99:73:80:e3:d8:9e:a6:ff: f2:c8:0a:7e:89:6f:4b:63:7e:a6:c5:8a:54:e1:e1: 4c:3d:b2:c7:01:67:53:f0:39:88:1b:2a:d2:74:10: a6:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:FD:C3:EA:71:08:2D:03:47:9A:9D:FB:20:96:4B:D5:18:89:0A:19 X509v3 Authority Key Identifier: keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/D_3D6nEILQNHmp37IJZL1RiJChk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.201.128.0/17 Signature Algorithm: sha256WithRSAEncryption d1:29:b6:60:fc:0a:c6:93:82:a1:c6:75:3a:bd:e6:8f:15:a2: c3:6e:5c:98:3f:89:1b:da:d5:1a:00:e6:4d:a5:b1:e4:d5:cd: e0:a2:18:ce:5c:89:6f:e8:8c:30:b6:ab:bc:01:70:87:b4:96: f4:6e:b6:9a:2f:de:ef:ea:5a:d7:84:17:ca:dd:5e:9e:1b:9e: bb:e1:4a:41:49:1f:77:9d:45:bb:c6:2e:17:21:b6:b7:8c:fd: 06:6b:58:9c:6e:87:e0:81:79:7e:bd:1a:f8:40:2d:59:2a:c9: 68:f7:d9:17:e7:9f:0f:a1:f4:16:44:6d:69:03:c8:06:15:79: 31:59:a9:69:5c:cc:c0:d4:df:3f:c5:35:36:f4:36:c3:df:2a: f8:e6:bf:c3:b3:60:64:9b:56:a4:8b:42:84:9d:fb:4e:37:ce: ac:9e:b0:e8:84:ef:b8:5f:6a:13:8d:47:71:46:ac:25:20:e8: d8:41:c9:ca:0e:88:b2:33:0d:4e:ac:45:e3:ab:e2:86:55:42: ae:6d:27:74:9e:14:4c:54:bb:59:51:b5:11:e1:54:f3:2f:06: 82:81:9f:e6:eb:9e:a4:11:09:54:6d:14:5e:04:27:f0:0b:d4: 54:c1:d0:15:4f:71:37:bd:0f:e2:43:f8:d8:8d:14:04:d8:a1: 0d:cd:03:9a -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDN0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDFB NTMyNjFCMjAwMUZBN0VCNTc3OTNFMkU1NzlCNzMyMkY4RTc2QTAeFw0yNDA4MjYw NTI1MjJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDBGRkRDM0VBNzEwODJE MDM0NzlBOURGQjIwOTY0QkQ1MTg4OTBBMTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCu2sZhs/grtcndf0gr0YAWh9znJXEIQa+OMf3K0spe7lFW70qY 2aIT48pihwuFhpmWAamwoo5NYgb/xH/qVoc4+rRNccLP0YSwfQTLf2afpjumBhQi 7Dd8l55mvCPtn9RP2JKSCxSC+2AvXiLk+4shRjs8RJNccoFMP9skMFxjPq2l8+3I Bvx2cHOZGfBuOzin0N3d3hqBIoI5wWCm25oMKP0zavDWOHZwyJJ0/QSPQiTC+G7y v5JFf0UcGJLKFcY5fjrZ9lUl4y9sHRyfDBhNPF+UoedQtVWZc4Dj2J6m//LICn6J b0tjfqbFilTh4Uw9sscBZ1PwOYgbKtJ0EKY5AgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUD/3D6nEILQNHmp37IJZL1RiJChkwHwYDVR0jBBgwFoAUAaUyYbIAH6frV3k+ LlebcyL452owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FWRUNP TS9BYVV5WWJJQUg2ZnJWM2stTGxlYmN5TDQ1Mm8uY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0FhVXlZYklBSDZmclYzay1MbGViY3lMNDUyby5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBVkVDT00vRF8zRDZuRUlMUU5IbXAz N0lKWkwxUmlKQ2hrLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME B3rJgDANBgkqhkiG9w0BAQsFAAOCAQEA0Sm2YPwKxpOCocZ1Or3mjxWiw25cmD+J G9rVGgDmTaWx5NXN4KIYzlyJb+iMMLarvAFwh7SW9G62mi/e7+pa14QXyt1enhue u+FKQUkfd51Fu8YuFyG2t4z9BmtYnG6H4IF5fr0a+EAtWSrJaPfZF+efD6H0FkRt aQPIBhV5MVmpaVzMwNTfP8U1NvQ2w98q+Oa/w7NgZJtWpItChJ37TjfOrJ6w6ITv uF9qE41HcUasJSDo2EHJyg6IsjMNTqxF46vihlVCrm0ndJ4UTFS7WVG1EeFU8y8G goGf5uuepBEJVG0UXgQn8AvUVMHQFU9xN70P4kP42I0UBNihDc0Dmg== -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:44 2024 by rpki-client on console-fra.rpki-client.org