$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/erKTtabu1kZzRU4zpfRAbOv93yg.roa File: erKTtabu1kZzRU4zpfRAbOv93yg.roa (raw, json) Hash identifier: 5D1ZxJmNsL+Ap+XLBhQlrcrc4a4zFaOpEZ2ewnA2VpM= Subject key identifier: 7A:B2:93:B5:A6:EE:D6:46:73:45:4E:33:A5:F4:40:6C:EB:FD:DF:28 Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Certificate serial: 0BC5 Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/erKTtabu1kZzRU4zpfRAbOv93yg.roa Signing time: Fri 01 Sep 2023 09:40:39 +0000 ROA not before: Fri 01 Sep 2023 09:40:39 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9676 IP address blocks: 61.65.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 04:08:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3013 (0xbc5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Validity Not Before: Sep 1 09:40:39 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=7AB293B5A6EED64673454E33A5F4406CEBFDDF28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:c5:ca:c9:14:d0:5a:53:c5:6b:9c:af:06:f6: ed:bd:68:db:b0:e1:fb:80:8c:49:23:fe:f0:4a:de: 76:a4:01:04:53:cf:cc:c8:d4:a3:2b:c5:e4:12:d4: aa:59:18:fe:12:81:f8:91:9a:15:35:1d:9e:81:9c: b5:66:e5:3d:ee:5a:5a:ea:86:3a:32:fc:89:33:79: 07:1e:6a:d7:bf:7d:ee:33:46:ef:10:6a:18:0e:df: 10:b9:f8:64:c1:74:5c:fc:6b:0f:81:33:97:27:3a: 27:e0:65:dc:cd:c5:a6:cc:ac:2f:37:3a:38:16:bc: 7b:68:56:75:58:85:fa:e9:75:8d:cd:52:08:73:d2: 8f:4a:65:74:02:49:09:ea:8f:70:bc:48:0e:cf:89: 53:95:73:fd:4c:10:fd:22:a7:7b:86:c3:21:5b:14: 40:81:3e:9d:58:1f:9a:0c:33:c6:2b:82:00:f5:2f: 7f:91:1e:3c:11:d2:f9:a6:7f:c4:fd:89:08:85:e5: 0c:3a:60:7b:fb:55:ff:1a:f8:ea:4a:bd:7a:0d:a8: 38:df:c1:b5:ae:3c:2e:1d:50:41:37:01:05:5f:25: b9:e2:e1:b7:b9:84:31:86:e9:ed:10:d5:1a:32:2d: a8:8a:51:d1:a3:48:88:05:5f:97:a6:84:3e:e8:13: 71:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:B2:93:B5:A6:EE:D6:46:73:45:4E:33:A5:F4:40:6C:EB:FD:DF:28 X509v3 Authority Key Identifier: keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/erKTtabu1kZzRU4zpfRAbOv93yg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.65.0.0/17 Signature Algorithm: sha256WithRSAEncryption 53:a8:82:e9:d4:5f:9f:ae:85:f1:f1:78:7c:76:87:59:68:c0: 12:0e:2e:3b:55:3c:3c:14:5d:98:1c:31:58:da:2d:29:28:f5: 63:1e:61:69:2d:c6:2f:8f:5e:a3:9e:1d:3a:ca:70:58:c7:ca: 29:81:93:0e:44:df:29:11:ef:fa:b4:47:10:dd:c2:10:d2:57: 2d:3c:2c:75:a9:fd:a4:29:80:29:0d:a7:17:e6:e2:3f:88:2b: e9:da:fe:0b:9b:e2:d4:a9:b3:37:db:77:74:47:e3:82:5e:3f: 8d:48:fb:3a:2e:a2:04:31:c9:9b:fd:5d:9d:5e:6a:a8:4b:ff: e4:71:fd:ec:0c:71:aa:ae:97:6c:50:9d:0a:78:34:d5:e1:44: bf:34:4c:fd:76:68:25:23:cc:08:80:d4:25:af:78:1c:6c:79: 10:c8:45:4b:9f:b6:ac:53:c7:36:13:c2:1a:31:9b:fa:4d:3f: bb:46:66:01:b8:88:f6:9c:5a:ed:03:f4:fc:28:77:d7:fd:f0: 6c:7b:e8:58:62:f5:7a:69:86:8f:26:96:23:7e:4b:b3:25:6c: 15:6f:62:6c:eb:1f:46:a0:d5:11:78:b2:80:e4:b8:c1:6b:a8: 83:7e:4d:d1:57:87:07:2e:04:17:f2:a8:a7:f8:02:d4:10:6c: da:8a:11:68 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICC8UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDFB NTMyNjFCMjAwMUZBN0VCNTc3OTNFMkU1NzlCNzMyMkY4RTc2QTAeFw0yMzA5MDEw OTQwMzlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDdBQjI5M0I1QTZFRUQ2 NDY3MzQ1NEUzM0E1RjQ0MDZDRUJGRERGMjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCdxcrJFNBaU8VrnK8G9u29aNuw4fuAjEkj/vBK3nakAQRTz8zI 1KMrxeQS1KpZGP4SgfiRmhU1HZ6BnLVm5T3uWlrqhjoy/IkzeQceate/fe4zRu8Q ahgO3xC5+GTBdFz8aw+BM5cnOifgZdzNxabMrC83OjgWvHtoVnVYhfrpdY3NUghz 0o9KZXQCSQnqj3C8SA7PiVOVc/1MEP0ip3uGwyFbFECBPp1YH5oMM8YrggD1L3+R HjwR0vmmf8T9iQiF5Qw6YHv7Vf8a+OpKvXoNqDjfwbWuPC4dUEE3AQVfJbni4be5 hDGG6e0Q1RoyLaiKUdGjSIgFX5emhD7oE3GTAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUerKTtabu1kZzRU4zpfRAbOv93ygwHwYDVR0jBBgwFoAUAaUyYbIAH6frV3k+ LlebcyL452owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FWRUNP TS9BYVV5WWJJQUg2ZnJWM2stTGxlYmN5TDQ1Mm8uY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0FhVXlZYklBSDZmclYzay1MbGViY3lMNDUyby5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBVkVDT00vZXJLVHRhYnUxa1p6UlU0 enBmUkFiT3Y5M3lnLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME Bz1BADANBgkqhkiG9w0BAQsFAAOCAQEAU6iC6dRfn66F8fF4fHaHWWjAEg4uO1U8 PBRdmBwxWNotKSj1Yx5haS3GL49eo54dOspwWMfKKYGTDkTfKRHv+rRHEN3CENJX LTwsdan9pCmAKQ2nF+biP4gr6dr+C5vi1KmzN9t3dEfjgl4/jUj7Oi6iBDHJm/1d nV5qqEv/5HH97Axxqq6XbFCdCng01eFEvzRM/XZoJSPMCIDUJa94HGx5EMhFS5+2 rFPHNhPCGjGb+k0/u0ZmAbiI9pxa7QP0/Ch31/3wbHvoWGL1emmGjyaWI35LsyVs FW9ibOsfRqDVEXiygOS4wWuog35N0VeHBy4EF/Kop/gC1BBs2ooRaA== -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:52 2024 by rpki-client on console-ams.rpki-client.org