$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/NW2Ba6MxjuQ8_3y_ddz7maMVP6w.roa File: NW2Ba6MxjuQ8_3y_ddz7maMVP6w.roa (raw, json) Hash identifier: T96zX9Ymv8xwQxZ5uznqUchiocWynhA815PWZlEmXb8= Subject key identifier: 35:6D:81:6B:A3:31:8E:E4:3C:FF:7C:BF:75:DC:FB:99:A3:15:3F:AC Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Certificate serial: 0BBF Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/NW2Ba6MxjuQ8_3y_ddz7maMVP6w.roa Signing time: Fri 01 Sep 2023 09:40:37 +0000 ROA not before: Fri 01 Sep 2023 09:40:37 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9676 IP address blocks: 61.63.128.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 04:08:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3007 (0xbbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Validity Not Before: Sep 1 09:40:37 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=356D816BA3318EE43CFF7CBF75DCFB99A3153FAC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:37:50:30:e3:54:b4:7f:51:4d:b6:4b:d4:64: 51:bb:9b:7e:aa:f5:73:e7:5e:55:3e:2e:04:73:5d: 45:3a:b7:6b:2d:15:b0:8c:22:de:0d:7f:b8:7c:76: e2:36:23:bd:cd:64:d7:c5:1c:61:fa:22:12:0b:38: 71:a3:2b:22:9a:02:dd:a7:46:61:ae:6d:0e:f9:ce: 62:86:7a:17:fd:06:14:e4:cb:d4:f3:5a:81:6d:ac: 18:e4:cd:21:05:88:11:8e:b1:88:5a:89:a4:99:24: f6:15:45:5f:3f:91:a5:12:67:c5:47:9c:92:89:c9: 15:26:0e:bb:1c:7b:35:41:2c:ee:7b:54:e4:7d:d7: 79:42:4b:78:3d:10:cc:4e:93:fd:c5:88:4e:fd:4e: 26:72:68:59:90:e8:bc:ab:f7:2d:23:c6:08:0a:e1: 78:cc:a7:38:1e:71:de:5e:85:68:92:da:84:88:3f: 76:89:3e:cc:d8:44:36:f5:f8:63:a5:61:61:c6:43: ed:df:8d:8b:42:12:7a:9d:11:8b:d6:70:d7:cd:1a: e8:03:e4:91:92:78:8b:0e:0b:82:8d:83:e2:3e:ea: 21:84:f6:fd:c2:ee:7d:af:75:dd:0d:db:61:12:80: 2c:e4:17:fc:f3:a1:81:8f:f3:31:67:fc:59:11:fd: b5:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:6D:81:6B:A3:31:8E:E4:3C:FF:7C:BF:75:DC:FB:99:A3:15:3F:AC X509v3 Authority Key Identifier: keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/NW2Ba6MxjuQ8_3y_ddz7maMVP6w.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.63.128.0/19 Signature Algorithm: sha256WithRSAEncryption b1:48:29:70:87:69:d3:42:60:4a:74:94:54:10:9c:4c:5a:c8: 97:2f:4a:e0:60:b0:9c:79:54:f9:5c:7b:9e:0b:7e:d1:4f:c5: 66:43:24:d2:64:60:d6:26:fb:41:52:2f:30:88:27:58:28:d3: 84:ed:cb:02:b4:b3:01:4d:47:fd:3a:b3:3f:8a:88:38:2e:e1: 7b:87:68:44:60:e5:40:b4:17:f8:5d:57:b9:11:a6:f8:08:9a: d5:06:e9:d4:31:be:c7:00:8a:2a:f2:74:63:d1:43:b5:29:e4: 0e:0d:3d:c7:61:09:b4:8b:90:e8:f7:f2:5d:b1:84:59:b1:b1: e7:61:cd:dd:5e:ea:e0:84:74:83:75:4a:30:94:de:26:a7:35: 86:16:df:bc:21:f8:2c:ce:3e:29:bb:8d:12:ba:f5:fe:49:69: d0:6f:59:37:e5:80:ec:e2:1f:5f:d3:e6:cc:17:d5:64:73:63: 5c:05:20:6e:60:06:71:3a:c6:71:66:b7:23:15:b9:12:e5:63: 84:70:5c:3d:87:87:d9:01:0d:ec:9b:ab:0a:7c:6a:32:18:83: 26:37:d1:24:f6:bd:57:38:23:9f:10:87:1c:6f:01:19:92:dc: 8b:c6:bc:90:fa:84:13:be:c2:c8:1f:0b:39:0b:a9:fb:2e:f1: 0e:d9:60:39 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICC78wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDFB NTMyNjFCMjAwMUZBN0VCNTc3OTNFMkU1NzlCNzMyMkY4RTc2QTAeFw0yMzA5MDEw OTQwMzdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDM1NkQ4MTZCQTMzMThF RTQzQ0ZGN0NCRjc1RENGQjk5QTMxNTNGQUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGN1Aw41S0f1FNtkvUZFG7m36q9XPnXlU+LgRzXUU6t2stFbCM It4Nf7h8duI2I73NZNfFHGH6IhILOHGjKyKaAt2nRmGubQ75zmKGehf9BhTky9Tz WoFtrBjkzSEFiBGOsYhaiaSZJPYVRV8/kaUSZ8VHnJKJyRUmDrscezVBLO57VOR9 13lCS3g9EMxOk/3FiE79TiZyaFmQ6Lyr9y0jxggK4XjMpzgecd5ehWiS2oSIP3aJ PszYRDb1+GOlYWHGQ+3fjYtCEnqdEYvWcNfNGugD5JGSeIsOC4KNg+I+6iGE9v3C 7n2vdd0N22ESgCzkF/zzoYGP8zFn/FkR/bXrAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUNW2Ba6MxjuQ8/3y/ddz7maMVP6wwHwYDVR0jBBgwFoAUAaUyYbIAH6frV3k+ LlebcyL452owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FWRUNP TS9BYVV5WWJJQUg2ZnJWM2stTGxlYmN5TDQ1Mm8uY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0FhVXlZYklBSDZmclYzay1MbGViY3lMNDUyby5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBVkVDT00vTlcyQmE2TXhqdVE4XzN5 X2RkejdtYU1WUDZ3LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BT0/gDANBgkqhkiG9w0BAQsFAAOCAQEAsUgpcIdp00JgSnSUVBCcTFrIly9K4GCw nHlU+Vx7ngt+0U/FZkMk0mRg1ib7QVIvMIgnWCjThO3LArSzAU1H/TqzP4qIOC7h e4doRGDlQLQX+F1XuRGm+Aia1Qbp1DG+xwCKKvJ0Y9FDtSnkDg09x2EJtIuQ6Pfy XbGEWbGx52HN3V7q4IR0g3VKMJTeJqc1hhbfvCH4LM4+KbuNErr1/klp0G9ZN+WA 7OIfX9PmzBfVZHNjXAUgbmAGcTrGcWa3IxW5EuVjhHBcPYeH2QEN7JurCnxqMhiD JjfRJPa9VzgjnxCHHG8BGZLci8a8kPqEE77CyB8LOQup+y7xDtlgOQ== -----END CERTIFICATE-----Generated at Mon Jun 3 02:57:43 2024 by rpki-client on console-fra.rpki-client.org