$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/a7_cFFjJKOpJ3hDwbAM5a3e4F4M.roa File: a7_cFFjJKOpJ3hDwbAM5a3e4F4M.roa (raw, json) Hash identifier: JfzBmwcOxvLnsz9gqryt2JIzGJ20O7HM+LcTWfSCnVg= Subject key identifier: 6B:BF:DC:14:58:C9:28:EA:49:DE:10:F0:6C:03:39:6B:77:B8:17:83 Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Certificate serial: 0BC7 Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/a7_cFFjJKOpJ3hDwbAM5a3e4F4M.roa Signing time: Fri 01 Sep 2023 09:40:39 +0000 ROA not before: Fri 01 Sep 2023 09:40:39 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9676 IP address blocks: 61.58.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 04:08:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3015 (0xbc7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Validity Not Before: Sep 1 09:40:39 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=6BBFDC1458C928EA49DE10F06C03396B77B81783 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:02:b2:f4:5a:83:cb:b3:77:b7:d0:f7:8e:c6: 41:f4:08:53:c0:62:53:ee:c3:2f:25:8c:de:2e:b7: 79:4d:c5:17:30:56:f0:0e:4d:ba:b6:c2:37:d7:32: eb:db:b8:0c:91:75:04:63:62:19:c8:78:e5:39:8f: 1c:5d:a5:46:66:9f:c7:0c:fe:04:d7:14:ea:75:95: cc:46:a0:f9:34:7e:a5:8d:cc:93:0b:d4:5c:65:fb: 2b:95:67:52:0a:96:42:d6:e2:2e:bf:ce:fe:82:4b: 73:af:ea:6b:00:ae:a5:97:73:8c:0f:81:2f:29:29: d6:30:2b:10:fd:8a:b1:3a:c9:db:77:5e:92:9a:40: 3d:d2:e3:fb:96:1e:6f:9a:53:2f:72:77:49:9e:df: 1d:44:7d:8e:91:4e:ca:eb:f0:02:e6:da:4d:0f:45: b6:88:7a:72:2f:77:d0:35:b1:8f:19:bc:08:d0:47: 18:09:ce:2d:c7:d9:cd:bd:2d:48:b6:f3:98:5a:3b: 81:7f:de:b8:a4:b1:3d:70:79:91:53:71:32:01:e5: 76:80:37:b0:c4:77:ca:1c:e4:46:b6:45:aa:88:01: bf:bf:15:10:db:37:a6:9f:e9:7e:ed:77:b8:18:1a: f3:51:61:c1:62:68:e6:67:bd:90:99:ee:c4:2c:cb: a4:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:BF:DC:14:58:C9:28:EA:49:DE:10:F0:6C:03:39:6B:77:B8:17:83 X509v3 Authority Key Identifier: keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/a7_cFFjJKOpJ3hDwbAM5a3e4F4M.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.58.192.0/18 Signature Algorithm: sha256WithRSAEncryption cc:4c:9e:3d:35:38:36:1d:57:00:75:5f:ce:ea:f9:fe:5c:36: 13:15:6b:80:fc:c1:ec:98:7e:81:0e:41:7c:12:78:e2:f6:22: 86:98:2d:c2:48:9f:86:f1:83:b4:31:62:70:87:13:c8:a5:08: a6:77:a5:63:72:0e:81:05:4e:3b:85:5d:20:d2:be:63:dc:8f: fa:60:77:ba:bf:6d:6a:57:27:66:be:63:b1:79:45:e1:ee:dd: e8:a8:48:69:4a:7c:84:7a:42:04:ad:a6:38:96:a0:2e:6f:b6: 2d:21:34:02:21:6f:42:7b:69:b8:47:50:78:cd:a7:63:b2:9a: a4:3e:2b:98:8c:aa:b9:1d:88:e5:4f:ee:df:a3:80:ec:0b:e2: b5:b9:b1:38:ac:cb:f8:1d:51:59:01:13:3e:e8:37:10:f2:44: b6:f5:11:00:01:a7:8a:a3:ac:c0:40:31:63:e2:45:78:4f:9a: 74:fc:70:8d:32:a9:5c:28:a3:60:b9:19:24:09:33:de:ad:12: b0:85:c2:b1:32:43:7a:22:32:66:d6:1e:33:23:df:af:1c:1a: 3e:f9:a1:ff:23:57:b6:5d:82:85:1f:0d:8e:19:06:38:b7:e6: 15:f3:67:13:b4:60:eb:b3:64:7b:b8:fe:5d:c0:33:72:67:5d: 35:21:3a:5a -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICC8cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDFB NTMyNjFCMjAwMUZBN0VCNTc3OTNFMkU1NzlCNzMyMkY4RTc2QTAeFw0yMzA5MDEw OTQwMzlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDZCQkZEQzE0NThDOTI4 RUE0OURFMTBGMDZDMDMzOTZCNzdCODE3ODMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCArL0WoPLs3e30PeOxkH0CFPAYlPuwy8ljN4ut3lNxRcwVvAO Tbq2wjfXMuvbuAyRdQRjYhnIeOU5jxxdpUZmn8cM/gTXFOp1lcxGoPk0fqWNzJML 1Fxl+yuVZ1IKlkLW4i6/zv6CS3Ov6msArqWXc4wPgS8pKdYwKxD9irE6ydt3XpKa QD3S4/uWHm+aUy9yd0me3x1EfY6RTsrr8ALm2k0PRbaIenIvd9A1sY8ZvAjQRxgJ zi3H2c29LUi285haO4F/3riksT1weZFTcTIB5XaAN7DEd8oc5Ea2RaqIAb+/FRDb N6af6X7td7gYGvNRYcFiaOZnvZCZ7sQsy6TbAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUa7/cFFjJKOpJ3hDwbAM5a3e4F4MwHwYDVR0jBBgwFoAUAaUyYbIAH6frV3k+ LlebcyL452owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FWRUNP TS9BYVV5WWJJQUg2ZnJWM2stTGxlYmN5TDQ1Mm8uY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0FhVXlZYklBSDZmclYzay1MbGViY3lMNDUyby5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBVkVDT00vYTdfY0ZGakpLT3BKM2hE d2JBTTVhM2U0RjRNLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME Bj06wDANBgkqhkiG9w0BAQsFAAOCAQEAzEyePTU4Nh1XAHVfzur5/lw2ExVrgPzB 7Jh+gQ5BfBJ44vYihpgtwkifhvGDtDFicIcTyKUIpnelY3IOgQVOO4VdINK+Y9yP +mB3ur9talcnZr5jsXlF4e7d6KhIaUp8hHpCBK2mOJagLm+2LSE0AiFvQntpuEdQ eM2nY7KapD4rmIyquR2I5U/u36OA7AvitbmxOKzL+B1RWQETPug3EPJEtvURAAGn iqOswEAxY+JFeE+adPxwjTKpXCijYLkZJAkz3q0SsIXCsTJDeiIyZtYeMyPfrxwa Pvmh/yNXtl2ChR8NjhkGOLfmFfNnE7Rg67Nke7j+XcAzcmddNSE6Wg== -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:03 2024 by rpki-client on console-fra.rpki-client.org