$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/hqfyDisbcCYY-ieXomLokKivHCU.roa File: hqfyDisbcCYY-ieXomLokKivHCU.roa (raw, json) Hash identifier: HSaHqvVxHaAGgN95JJ3fj44tzFkidXhe4uapXtftfgM= Subject key identifier: 86:A7:F2:0E:2B:1B:70:26:18:FA:27:97:A2:62:E8:90:A8:AF:1C:25 Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Certificate serial: 0CE2 Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/hqfyDisbcCYY-ieXomLokKivHCU.roa Signing time: Mon 26 Aug 2024 05:25:23 +0000 ROA not before: Mon 26 Aug 2024 05:25:23 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9676 IP address blocks: 2402:9c00::/32 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3298 (0xce2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Validity Not Before: Aug 26 05:25:23 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=86A7F20E2B1B702618FA2797A262E890A8AF1C25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:8d:18:56:45:12:28:70:0f:b3:27:83:5e:db: cb:da:3b:5b:30:42:32:a8:ce:12:fa:ba:61:85:bf: f4:fc:50:19:9d:a9:fc:13:fb:7e:1f:ac:b2:9a:f5: cb:86:da:77:57:13:f0:40:0a:27:3b:1d:ea:2e:80: 00:a5:5b:61:0d:e3:65:0f:f8:78:02:63:77:7f:f2: a3:d7:87:5f:0c:51:7b:38:96:83:a4:14:1d:74:c5: dc:c3:1d:80:b2:4a:12:84:ea:ac:b7:78:8b:51:1f: 80:4e:dd:52:c5:fc:00:55:d9:30:fc:b6:a3:25:be: 5b:32:71:bd:aa:3a:f9:fe:8b:f5:9c:92:f8:92:3d: 7b:71:e2:0a:c3:61:65:2f:a3:cf:ed:32:83:4d:f6: 64:85:0b:94:b9:92:b1:d1:80:b7:6f:7d:bf:90:90: 5e:94:4a:98:c6:a5:31:b0:cb:e2:1f:bb:44:2c:d8: f3:21:3a:f9:21:30:4c:c3:6b:c5:f3:77:97:5e:ae: 08:f3:03:48:30:49:87:ba:75:87:d2:40:2e:56:0c: c8:05:97:07:b7:95:cd:00:30:ad:45:81:b9:01:f8: 49:d5:dd:f6:a2:f7:b6:27:cc:9e:8b:03:0d:9b:c6: 6f:6f:03:03:d6:12:da:5e:21:13:49:4c:c7:a8:76: 97:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:A7:F2:0E:2B:1B:70:26:18:FA:27:97:A2:62:E8:90:A8:AF:1C:25 X509v3 Authority Key Identifier: keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/hqfyDisbcCYY-ieXomLokKivHCU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2402:9c00::/32 Signature Algorithm: sha256WithRSAEncryption 19:06:20:8b:9d:2f:62:bd:4c:9a:57:28:82:be:f4:9c:d9:7e: 30:93:19:3b:f1:d9:4b:90:59:ae:57:ad:e9:be:65:42:d2:8b: f2:e7:9c:2c:76:59:c8:7a:f0:81:1e:08:b0:06:4a:7f:59:db: 5e:68:da:8d:08:49:02:af:41:9f:fa:15:a9:0d:09:63:15:2d: e9:02:26:57:9a:f9:42:fb:c0:2a:0e:68:cf:e1:44:d7:bc:04: 0a:15:29:15:8b:c6:8c:14:0b:cc:a1:29:d4:5e:43:eb:83:27: 21:9e:33:59:dc:bb:06:35:b7:11:5c:2a:42:44:9a:4b:69:c8: 53:e0:6e:f4:47:12:fc:1b:bc:ce:ae:b4:0e:06:da:23:2b:b8: 09:a1:19:25:1c:62:6f:48:3f:94:18:b1:08:a0:7b:ba:36:d6: ba:1c:3c:fb:a2:00:be:b1:c4:fb:2d:30:ba:03:fe:22:7b:b5: e9:36:a9:36:ef:79:41:83:79:57:bc:25:33:69:f5:2c:6d:95: 1d:2c:17:7d:66:4b:c6:d1:76:1a:e4:4d:5e:83:e5:06:c0:7f: 49:18:7e:9a:cf:b3:0b:f3:21:85:21:b4:5a:88:5e:d0:11:79: 0b:a3:98:d0:3e:48:28:f3:9a:47:32:1f:bc:fe:ec:86:6b:15: 48:20:f2:ea -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICDOIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDFB NTMyNjFCMjAwMUZBN0VCNTc3OTNFMkU1NzlCNzMyMkY4RTc2QTAeFw0yNDA4MjYw NTI1MjNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg2QTdGMjBFMkIxQjcw MjYxOEZBMjc5N0EyNjJFODkwQThBRjFDMjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRjRhWRRIocA+zJ4Ne28vaO1swQjKozhL6umGFv/T8UBmdqfwT +34frLKa9cuG2ndXE/BACic7HeougAClW2EN42UP+HgCY3d/8qPXh18MUXs4loOk FB10xdzDHYCyShKE6qy3eItRH4BO3VLF/ABV2TD8tqMlvlsycb2qOvn+i/WckviS PXtx4grDYWUvo8/tMoNN9mSFC5S5krHRgLdvfb+QkF6USpjGpTGwy+Ifu0Qs2PMh OvkhMEzDa8Xzd5dergjzA0gwSYe6dYfSQC5WDMgFlwe3lc0AMK1FgbkB+EnV3fai 97YnzJ6LAw2bxm9vAwPWEtpeIRNJTMeodpeLAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUhqfyDisbcCYY+ieXomLokKivHCUwHwYDVR0jBBgwFoAUAaUyYbIAH6frV3k+ LlebcyL452owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FWRUNP TS9BYVV5WWJJQUg2ZnJWM2stTGxlYmN5TDQ1Mm8uY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0FhVXlZYklBSDZmclYzay1MbGViY3lMNDUyby5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBVkVDT00vaHFmeURpc2JjQ1lZLWll WG9tTG9rS2l2SENVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAgBggrBgEFBQcBBwEB/wQRMA8wDQQCAAIwBwMF ACQCnAAwDQYJKoZIhvcNAQELBQADggEBABkGIIudL2K9TJpXKIK+9JzZfjCTGTvx 2UuQWa5Xrem+ZULSi/LnnCx2Wch68IEeCLAGSn9Z215o2o0ISQKvQZ/6FakNCWMV LekCJlea+UL7wCoOaM/hRNe8BAoVKRWLxowUC8yhKdReQ+uDJyGeM1ncuwY1txFc KkJEmktpyFPgbvRHEvwbvM6utA4G2iMruAmhGSUcYm9IP5QYsQige7o21rocPPui AL6xxPstMLoD/iJ7tek2qTbveUGDeVe8JTNp9SxtlR0sF31mS8bRdhrkTV6D5QbA f0kYfprPswvzIYUhtFqIXtAReQujmNA+SCjzmkcyH7z+7IZrFUgg8uo= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:13 2024 by rpki-client on console-ams.rpki-client.org