$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/adKtWzfSXtD1MY2-HUs-aZODBaA.roa File: adKtWzfSXtD1MY2-HUs-aZODBaA.roa (raw, json) Hash identifier: ilVhoT9xj7m60ZvY4O3xv5ToF19TMf59rThU+2eAuGA= Subject key identifier: 69:D2:AD:5B:37:D2:5E:D0:F5:31:8D:BE:1D:4B:3E:69:93:83:05:A0 Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Certificate serial: 0BBA Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/adKtWzfSXtD1MY2-HUs-aZODBaA.roa Signing time: Fri 01 Sep 2023 09:40:36 +0000 ROA not before: Fri 01 Sep 2023 09:40:36 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9676 IP address blocks: 61.65.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 04:08:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3002 (0xbba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Validity Not Before: Sep 1 09:40:36 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=69D2AD5B37D25ED0F5318DBE1D4B3E69938305A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:56:43:b7:cc:55:a0:b4:9c:f3:cf:bf:5b:c8: f2:21:15:96:3b:e5:df:c5:54:6f:e4:a7:18:8b:d1: 62:89:d2:62:90:24:d0:ec:7d:89:dc:c9:2c:e9:36: 24:10:cc:3e:bc:8d:ad:e0:9e:9b:4e:5a:fd:a8:09: de:7a:db:f1:82:70:e2:9f:47:5a:c1:62:20:e8:89: ac:96:df:14:39:65:8a:be:a6:fe:7a:7a:6e:71:e5: 85:e2:e5:c6:5f:fa:79:d5:a3:f0:9e:e4:f8:9f:64: 34:fe:c1:ec:7b:02:be:24:c2:34:e4:34:37:16:46: 1f:ec:6e:e2:71:5c:a5:cc:8c:99:d4:af:b6:ae:ef: 2b:fc:70:1b:dd:c0:ab:a1:b1:a0:7c:7c:ef:2a:f0: bc:e6:86:21:35:e1:11:0d:3b:4b:ee:21:f9:b2:ce: b1:6c:29:ad:60:b5:3b:ce:49:17:c4:2e:48:c6:3c: fa:6a:a8:96:68:75:b1:1b:9b:74:ff:3d:c2:8b:e7: f6:b4:73:f0:ed:72:12:b3:db:f2:6d:05:d5:44:d4: 8b:c8:07:00:c3:54:e5:ff:c2:47:b8:0e:fb:21:81: da:e5:a0:10:8e:d4:27:a1:36:3e:ae:3a:59:2c:fc: b1:ec:54:4c:05:99:0a:e0:4a:c8:e0:15:a3:81:18: e2:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:D2:AD:5B:37:D2:5E:D0:F5:31:8D:BE:1D:4B:3E:69:93:83:05:A0 X509v3 Authority Key Identifier: keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/adKtWzfSXtD1MY2-HUs-aZODBaA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.65.128.0/18 Signature Algorithm: sha256WithRSAEncryption 6c:c5:72:b6:2a:f6:9d:44:d9:a5:e5:a1:77:6f:9f:88:e3:1d: 5c:2d:76:82:08:f4:c4:d7:05:82:29:ea:2b:67:c4:fc:ed:ed: f1:6a:aa:02:75:5e:81:e9:29:38:03:27:a9:2d:7a:c7:4b:73: 60:a7:e3:2a:82:29:36:09:92:c4:28:09:46:aa:2f:e2:a7:e4: e1:28:fa:7c:75:04:43:2b:f9:3a:e4:d5:98:b4:bd:9e:c9:fc: ec:56:02:62:84:82:40:c1:8e:79:aa:be:2f:69:92:8c:b5:23: 83:cb:4c:fc:84:1b:ac:1c:df:d2:f1:ee:02:8c:4e:db:83:df: f0:b9:ed:0a:c8:ae:78:f7:2c:66:a3:f5:ff:97:01:50:0b:63: b4:9d:88:ac:3c:61:32:70:fd:b4:ef:33:6f:67:f2:1a:5a:9b: 41:c2:8e:31:0e:b9:ed:66:1e:ad:1c:06:68:8c:de:da:64:f1: f0:6c:40:9a:b9:23:5a:04:aa:6c:d5:2b:c6:77:45:20:bf:95: 6a:90:0e:fe:6a:aa:6d:0c:fc:43:a2:9f:af:d2:7a:14:6b:f4: 82:0c:58:e0:4b:ba:e7:a6:7f:11:1f:65:68:d5:84:d7:8c:0a: 7c:bb:4e:7f:50:d1:51:b5:5b:26:10:98:dc:80:ad:89:f8:78: 16:14:3d:71 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICC7owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDFB NTMyNjFCMjAwMUZBN0VCNTc3OTNFMkU1NzlCNzMyMkY4RTc2QTAeFw0yMzA5MDEw OTQwMzZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDY5RDJBRDVCMzdEMjVF RDBGNTMxOERCRTFENEIzRTY5OTM4MzA1QTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTVkO3zFWgtJzzz79byPIhFZY75d/FVG/kpxiL0WKJ0mKQJNDs fYncySzpNiQQzD68ja3gnptOWv2oCd562/GCcOKfR1rBYiDoiayW3xQ5ZYq+pv56 em5x5YXi5cZf+nnVo/Ce5PifZDT+wex7Ar4kwjTkNDcWRh/sbuJxXKXMjJnUr7au 7yv8cBvdwKuhsaB8fO8q8LzmhiE14RENO0vuIfmyzrFsKa1gtTvOSRfELkjGPPpq qJZodbEbm3T/PcKL5/a0c/DtchKz2/JtBdVE1IvIBwDDVOX/wke4DvshgdrloBCO 1CehNj6uOlks/LHsVEwFmQrgSsjgFaOBGOITAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUadKtWzfSXtD1MY2+HUs+aZODBaAwHwYDVR0jBBgwFoAUAaUyYbIAH6frV3k+ LlebcyL452owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FWRUNP TS9BYVV5WWJJQUg2ZnJWM2stTGxlYmN5TDQ1Mm8uY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0FhVXlZYklBSDZmclYzay1MbGViY3lMNDUyby5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBVkVDT00vYWRLdFd6ZlNYdEQxTVky LUhVcy1hWk9EQmFBLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME Bj1BgDANBgkqhkiG9w0BAQsFAAOCAQEAbMVytir2nUTZpeWhd2+fiOMdXC12ggj0 xNcFginqK2fE/O3t8WqqAnVegekpOAMnqS16x0tzYKfjKoIpNgmSxCgJRqov4qfk 4Sj6fHUEQyv5OuTVmLS9nsn87FYCYoSCQMGOeaq+L2mSjLUjg8tM/IQbrBzf0vHu AoxO24Pf8LntCsiuePcsZqP1/5cBUAtjtJ2IrDxhMnD9tO8zb2fyGlqbQcKOMQ65 7WYerRwGaIze2mTx8GxAmrkjWgSqbNUrxndFIL+VapAO/mqqbQz8Q6Kfr9J6FGv0 ggxY4Eu656Z/ER9laNWE14wKfLtOf1DRUbVbJhCY3ICtifh4FhQ9cQ== -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:52 2024 by rpki-client on console-ams.rpki-client.org