$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/FNz_5S0vXBdc5PAthCcua6JNXH0.roa File: FNz_5S0vXBdc5PAthCcua6JNXH0.roa (raw, json) Hash identifier: fxsR5pIzjoIsJvx0UcIEPetnE8JmXfqiizKrcO3kx/Y= Subject key identifier: 14:DC:FF:E5:2D:2F:5C:17:5C:E4:F0:2D:84:27:2E:6B:A2:4D:5C:7D Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Certificate serial: 0BB9 Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/FNz_5S0vXBdc5PAthCcua6JNXH0.roa Signing time: Fri 01 Sep 2023 09:40:36 +0000 ROA not before: Fri 01 Sep 2023 09:40:36 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9676 IP address blocks: 122.201.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 04:08:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3001 (0xbb9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Validity Not Before: Sep 1 09:40:36 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=14DCFFE52D2F5C175CE4F02D84272E6BA24D5C7D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c4:aa:09:c2:9d:07:f4:c3:e8:68:12:b7:38: 6e:72:6a:20:f4:35:75:97:92:8b:6e:14:5b:f7:14: 25:93:1c:1a:a0:ef:cf:b2:88:8c:a3:36:57:ec:58: 31:74:d5:f0:00:b8:45:bb:ca:10:5d:65:e0:42:82: c6:76:5a:05:4c:7d:6f:31:20:9f:c5:3e:6c:f3:cd: f0:b5:a0:ee:e2:df:28:89:1e:bb:94:fa:32:af:b7: 8b:ff:6d:ca:c4:ff:4f:3c:95:02:4d:31:36:79:23: 43:ee:ff:73:51:3d:ce:ee:b9:17:39:4d:31:6f:a1: 4e:02:df:9b:03:00:f9:d6:97:f5:0e:20:b5:9e:52: 3e:86:de:19:cd:53:f6:ca:96:68:b7:61:5a:f9:3a: 0a:7b:72:26:26:9e:91:ee:f3:dd:64:3e:0e:29:23: cc:d9:49:5a:4a:ec:41:36:f8:24:5e:0b:ad:7e:46: 5d:93:3e:2c:14:92:90:2f:e6:94:ef:e5:fd:4d:5c: f1:73:fd:de:af:47:af:dd:d9:91:95:7b:60:ae:c6: a5:04:57:7d:40:56:7e:1b:fb:87:68:99:3b:38:65: 6b:b7:60:3a:fa:e6:40:8f:33:86:12:01:74:2d:15: 0a:56:2e:50:bb:72:51:03:6c:f5:07:91:2f:bf:6d: 0a:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:DC:FF:E5:2D:2F:5C:17:5C:E4:F0:2D:84:27:2E:6B:A2:4D:5C:7D X509v3 Authority Key Identifier: keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/FNz_5S0vXBdc5PAthCcua6JNXH0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.201.128.0/17 Signature Algorithm: sha256WithRSAEncryption 86:d8:ac:95:a6:27:ed:85:f3:0d:20:f3:81:f5:24:75:7e:18: d3:69:45:5b:00:61:ae:eb:e0:b6:bf:3e:25:2f:57:79:31:db: d6:5a:1b:d9:e9:ab:60:97:25:ee:21:2e:dd:24:5c:66:5e:e0: 11:4b:22:ec:97:e8:a6:14:a1:c5:e2:4c:1f:ae:57:d8:29:a0: 50:8f:c3:bb:de:6c:c0:19:8f:20:52:b0:c4:04:5b:24:0b:ad: b5:df:20:de:6a:a8:78:1a:62:20:ef:c1:90:42:5c:ba:80:30: 59:11:35:7c:60:1c:8c:5e:ed:2d:65:95:75:ec:e3:e3:28:00: f2:53:21:3d:fb:2d:a3:9b:a3:cf:d5:1d:3d:8d:63:18:b3:cc: 1c:3e:9a:31:8c:2a:4b:95:55:e6:3f:34:9d:d9:69:14:cc:6c: 9c:71:50:6b:70:c3:d3:ba:70:52:52:1f:ea:1f:9e:4d:0d:e2: 96:5c:c4:8c:88:1b:c6:6b:1f:d5:b6:4b:2b:7d:a2:98:af:00: 9b:9d:fc:48:11:9a:f3:3b:ba:b3:96:ec:f4:f9:6f:ac:fc:12: de:29:2e:45:51:4b:0d:d5:51:17:c1:f6:db:df:c8:47:4c:b8: 64:6f:55:ed:ff:1b:82:b1:fa:c2:06:bc:46:e2:eb:fa:0c:70: 90:bb:4f:9b -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICC7kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDFB NTMyNjFCMjAwMUZBN0VCNTc3OTNFMkU1NzlCNzMyMkY4RTc2QTAeFw0yMzA5MDEw OTQwMzZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDE0RENGRkU1MkQyRjVD MTc1Q0U0RjAyRDg0MjcyRTZCQTI0RDVDN0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIxKoJwp0H9MPoaBK3OG5yaiD0NXWXkotuFFv3FCWTHBqg78+y iIyjNlfsWDF01fAAuEW7yhBdZeBCgsZ2WgVMfW8xIJ/FPmzzzfC1oO7i3yiJHruU +jKvt4v/bcrE/088lQJNMTZ5I0Pu/3NRPc7uuRc5TTFvoU4C35sDAPnWl/UOILWe Uj6G3hnNU/bKlmi3YVr5Ogp7ciYmnpHu891kPg4pI8zZSVpK7EE2+CReC61+Rl2T PiwUkpAv5pTv5f1NXPFz/d6vR6/d2ZGVe2CuxqUEV31AVn4b+4domTs4ZWu3YDr6 5kCPM4YSAXQtFQpWLlC7clEDbPUHkS+/bQpvAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUFNz/5S0vXBdc5PAthCcua6JNXH0wHwYDVR0jBBgwFoAUAaUyYbIAH6frV3k+ LlebcyL452owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FWRUNP TS9BYVV5WWJJQUg2ZnJWM2stTGxlYmN5TDQ1Mm8uY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0FhVXlZYklBSDZmclYzay1MbGViY3lMNDUyby5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBVkVDT00vRk56XzVTMHZYQmRjNVBB dGhDY3VhNkpOWEgwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME B3rJgDANBgkqhkiG9w0BAQsFAAOCAQEAhtislaYn7YXzDSDzgfUkdX4Y02lFWwBh ruvgtr8+JS9XeTHb1lob2emrYJcl7iEu3SRcZl7gEUsi7JfophShxeJMH65X2Cmg UI/Du95swBmPIFKwxARbJAuttd8g3mqoeBpiIO/BkEJcuoAwWRE1fGAcjF7tLWWV dezj4ygA8lMhPfsto5ujz9UdPY1jGLPMHD6aMYwqS5VV5j80ndlpFMxsnHFQa3DD 07pwUlIf6h+eTQ3illzEjIgbxmsf1bZLK32imK8Am538SBGa8zu6s5bs9PlvrPwS 3ikuRVFLDdVRF8H229/IR0y4ZG9V7f8bgrH6wga8RuLr+gxwkLtPmw== -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:03 2024 by rpki-client on console-fra.rpki-client.org