$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/UGUxQSjEUOX0zX4tdal828s1sA0.roa File: UGUxQSjEUOX0zX4tdal828s1sA0.roa (raw, json) Hash identifier: fOI4uLBhW1RKRXnyZuuYY9bWIwgpCx4r4jLJ4Buc17Y= Subject key identifier: 50:65:31:41:28:C4:50:E5:F4:CD:7E:2D:75:A9:7C:DB:CB:35:B0:0D Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Certificate serial: 0CE6 Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/UGUxQSjEUOX0zX4tdal828s1sA0.roa Signing time: Mon 26 Aug 2024 05:25:24 +0000 ROA not before: Mon 26 Aug 2024 05:25:24 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9676 IP address blocks: 101.0.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3302 (0xce6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Validity Not Before: Aug 26 05:25:24 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5065314128C450E5F4CD7E2D75A97CDBCB35B00D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:ea:5c:b0:66:06:68:af:9a:74:54:1c:15:c0: 0d:89:23:7e:e6:08:db:95:ee:4f:b9:1c:ae:60:f0: f5:fc:86:0b:6b:08:56:b2:75:71:ee:30:19:c1:f6: 88:66:0b:80:28:12:80:c9:92:16:2c:0e:2c:83:b6: 6a:43:64:dc:74:d2:c2:27:9e:a5:ae:33:d8:f5:0b: af:18:51:86:14:f4:c8:f5:a2:33:40:18:d8:f9:4f: ce:e2:0b:54:90:64:12:9b:d8:31:50:0f:2d:ac:2a: 4a:f5:73:a0:41:52:b0:4e:02:07:20:5e:f6:99:af: ea:ad:79:7f:84:76:e9:d2:98:62:2d:41:56:db:fb: 1a:8a:5f:3f:08:aa:c9:f1:d0:cc:e0:98:ad:c6:48: 63:90:cf:e4:e4:ea:d9:dc:74:9b:e4:89:03:a8:ab: 98:6d:58:a0:c9:d9:a5:df:53:33:86:58:74:91:08: 91:5c:6e:a0:08:ea:29:c0:59:5d:17:02:59:13:cc: 83:c2:d0:aa:46:2b:10:03:79:b7:0a:3c:9d:19:f3: 68:ff:18:f0:97:10:93:be:57:a3:23:49:6a:00:b2: 47:e5:3b:be:8f:dc:11:1e:48:1f:6c:42:6d:0a:0f: df:54:d0:81:4c:6e:95:d4:8a:21:aa:1b:c3:6b:98: 07:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:65:31:41:28:C4:50:E5:F4:CD:7E:2D:75:A9:7C:DB:CB:35:B0:0D X509v3 Authority Key Identifier: keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/UGUxQSjEUOX0zX4tdal828s1sA0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 101.0.192.0/19 Signature Algorithm: sha256WithRSAEncryption 09:e5:4c:d2:54:b5:1a:a8:89:98:fb:91:d3:bd:b6:6d:97:24: 1c:8b:0c:4d:9d:df:7d:b0:cd:2d:f6:38:79:a8:d0:2b:9a:99: fc:10:86:c3:0f:7b:4a:9f:3f:0e:93:eb:cc:e4:6b:a5:ad:ec: ac:c7:fb:23:44:f4:d8:5f:5d:36:19:6b:af:49:57:56:98:10: c0:4e:27:fa:3e:0e:9f:f0:b0:58:93:0b:18:5e:06:00:9f:c7: e7:37:da:19:06:53:10:aa:ba:ab:aa:5a:be:93:56:cb:ca:25: 6b:24:69:7b:89:68:3a:e9:7e:8b:a3:87:fa:1f:82:a5:6b:3c: 14:11:df:be:51:09:56:80:ce:6e:a9:09:9d:fd:34:cf:76:68: 78:02:36:c3:22:11:8a:d2:6a:36:9c:a1:46:fe:19:fd:39:0c: 3b:4d:9e:7d:e7:e7:13:09:18:fe:c9:37:76:e2:97:18:25:6b: 4b:6c:38:51:b5:a8:a4:b6:1e:40:77:23:ee:de:b2:cf:25:f4: ff:b4:f8:b5:40:ed:45:66:66:e0:81:78:af:b7:57:1a:43:ed: 39:e5:47:41:9e:8d:6d:b8:a9:4f:90:a3:9f:90:a2:36:1a:6e: 68:9c:7c:bd:4d:3e:bf:63:1b:04:20:52:dc:b0:1a:e8:51:0f: 4c:58:24:70 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICDOYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDFB NTMyNjFCMjAwMUZBN0VCNTc3OTNFMkU1NzlCNzMyMkY4RTc2QTAeFw0yNDA4MjYw NTI1MjRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDUwNjUzMTQxMjhDNDUw RTVGNENEN0UyRDc1QTk3Q0RCQ0IzNUIwMEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDM6lywZgZor5p0VBwVwA2JI37mCNuV7k+5HK5g8PX8hgtrCFay dXHuMBnB9ohmC4AoEoDJkhYsDiyDtmpDZNx00sInnqWuM9j1C68YUYYU9Mj1ojNA GNj5T87iC1SQZBKb2DFQDy2sKkr1c6BBUrBOAgcgXvaZr+qteX+EdunSmGItQVbb +xqKXz8Iqsnx0MzgmK3GSGOQz+Tk6tncdJvkiQOoq5htWKDJ2aXfUzOGWHSRCJFc bqAI6inAWV0XAlkTzIPC0KpGKxADebcKPJ0Z82j/GPCXEJO+V6MjSWoAskflO76P 3BEeSB9sQm0KD99U0IFMbpXUiiGqG8NrmAebAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUUGUxQSjEUOX0zX4tdal828s1sA0wHwYDVR0jBBgwFoAUAaUyYbIAH6frV3k+ LlebcyL452owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FWRUNP TS9BYVV5WWJJQUg2ZnJWM2stTGxlYmN5TDQ1Mm8uY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0FhVXlZYklBSDZmclYzay1MbGViY3lMNDUyby5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBVkVDT00vVUdVeFFTakVVT1gwelg0 dGRhbDgyOHMxc0EwLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME BWUAwDANBgkqhkiG9w0BAQsFAAOCAQEACeVM0lS1GqiJmPuR0722bZckHIsMTZ3f fbDNLfY4eajQK5qZ/BCGww97Sp8/DpPrzORrpa3srMf7I0T02F9dNhlrr0lXVpgQ wE4n+j4On/CwWJMLGF4GAJ/H5zfaGQZTEKq6q6pavpNWy8olayRpe4loOul+i6OH +h+CpWs8FBHfvlEJVoDObqkJnf00z3ZoeAI2wyIRitJqNpyhRv4Z/TkMO02efefn EwkY/sk3duKXGCVrS2w4UbWopLYeQHcj7t6yzyX0/7T4tUDtRWZm4IF4r7dXGkPt OeVHQZ6NbbipT5Cjn5CiNhpuaJx8vU0+v2MbBCBS3LAa6FEPTFgkcA== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:35 2024 by rpki-client on console-ams.rpki-client.org