$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/jX3mx2g8zLaglCYSeNNCdAGxQk8.roa File: jX3mx2g8zLaglCYSeNNCdAGxQk8.roa (raw, json) Hash identifier: DF1hGsFOoqDsj7naFTWas/95bTY8cJGYmfOXWRg4Y1o= Subject key identifier: 8D:7D:E6:C7:68:3C:CC:B6:A0:94:26:12:78:D3:42:74:01:B1:42:4F Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Certificate serial: 0BC3 Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/jX3mx2g8zLaglCYSeNNCdAGxQk8.roa Signing time: Fri 01 Sep 2023 09:40:38 +0000 ROA not before: Fri 01 Sep 2023 09:40:38 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 9676 IP address blocks: 122.201.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 04:08:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3011 (0xbc3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Validity Not Before: Sep 1 09:40:38 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=8D7DE6C7683CCCB6A094261278D3427401B1424F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:42:b6:35:3c:78:25:af:ae:c5:c6:7f:7f:cb: a6:1c:65:ba:b1:cc:35:1f:c1:8c:5c:8a:24:19:5b: 97:c2:c1:70:1f:b5:63:09:8a:5b:a6:39:8c:29:9c: 30:9e:63:38:89:52:d8:d4:ab:4b:0a:f4:fa:f9:18: 97:de:0c:90:a7:2e:7e:9b:b6:b8:6f:af:09:7b:95: cf:81:eb:64:82:d3:00:9e:08:d1:7f:15:99:66:d1: 7b:42:0a:5e:ff:d4:bd:c9:0e:35:ec:49:64:cb:e0: 21:ef:8f:42:fb:f7:99:74:18:f5:c0:3b:6c:49:81: 27:15:bb:7c:4b:60:7c:36:8f:52:85:7f:7c:7a:e1: a6:ae:5a:25:a5:59:42:a4:c5:34:79:4f:b1:9a:c0: d9:9e:ef:c8:a7:1c:89:81:b1:4a:10:ab:b0:8a:ca: ea:be:d6:d4:8a:0c:8c:99:e1:12:cb:b4:94:05:fc: 97:e6:dd:5b:fe:f7:f7:90:c1:a1:1f:d5:2b:0b:1a: 75:e2:a7:43:1d:fc:59:f5:c8:4d:30:45:3c:07:c7: 3e:d3:35:8b:28:be:84:d6:be:c1:51:61:e7:b3:32: 9c:0b:2f:8d:99:20:85:b7:e6:f2:5e:c2:46:31:23: c2:8c:46:9c:af:2a:5d:d4:a2:3d:a7:07:bf:68:c7: 07:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:7D:E6:C7:68:3C:CC:B6:A0:94:26:12:78:D3:42:74:01:B1:42:4F X509v3 Authority Key Identifier: keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/jX3mx2g8zLaglCYSeNNCdAGxQk8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.201.128.0/17 Signature Algorithm: sha256WithRSAEncryption 19:3f:65:1d:e3:77:82:8e:97:20:d1:da:54:f6:ca:37:ee:13: c4:a3:4a:9a:d4:30:d4:22:ed:ee:b2:28:68:11:cc:70:92:6f: 82:86:69:4d:93:95:c8:5a:08:7f:62:23:11:e9:76:44:38:c2: e1:cb:f9:aa:56:0f:a4:61:c5:b6:88:90:f6:e1:79:7f:17:f3: 8f:1d:dc:cb:2f:a9:c9:a7:75:c3:d2:c7:30:f0:c7:f1:6d:39: f1:b2:ea:c7:72:26:ee:77:22:53:35:9b:09:f5:e2:a3:0f:ad: 92:08:b4:eb:8b:c5:c1:85:13:3a:9e:d9:f0:df:f8:b7:68:4e: e9:25:b3:48:42:cf:d9:58:93:e5:6c:29:42:f0:56:3e:ea:ea: 69:c3:d4:7c:4f:98:05:d5:cc:c7:a6:8c:3e:a7:61:03:9b:11: 86:9b:db:74:00:ec:2a:96:f8:d6:ce:aa:f7:2c:cb:11:0b:06: eb:f4:54:83:b5:b0:ce:3f:0f:30:05:ac:e0:ce:cc:96:a5:d0: 30:3e:13:f7:e5:37:c3:d6:7d:9c:90:ad:5c:7c:a5:d7:17:33: 7d:d0:97:7f:36:3b:b6:6b:d0:1f:74:03:c9:e3:16:fb:da:ee: b4:68:5c:25:ca:cd:e2:ba:a1:c1:b1:37:18:f2:30:45:a2:d6: 91:9a:c6:1b -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICC8MwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDFB NTMyNjFCMjAwMUZBN0VCNTc3OTNFMkU1NzlCNzMyMkY4RTc2QTAeFw0yMzA5MDEw OTQwMzhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDhEN0RFNkM3NjgzQ0ND QjZBMDk0MjYxMjc4RDM0Mjc0MDFCMTQyNEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwQrY1PHglr67Fxn9/y6YcZbqxzDUfwYxciiQZW5fCwXAftWMJ ilumOYwpnDCeYziJUtjUq0sK9Pr5GJfeDJCnLn6btrhvrwl7lc+B62SC0wCeCNF/ FZlm0XtCCl7/1L3JDjXsSWTL4CHvj0L795l0GPXAO2xJgScVu3xLYHw2j1KFf3x6 4aauWiWlWUKkxTR5T7GawNme78inHImBsUoQq7CKyuq+1tSKDIyZ4RLLtJQF/Jfm 3Vv+9/eQwaEf1SsLGnXip0Md/Fn1yE0wRTwHxz7TNYsovoTWvsFRYeezMpwLL42Z IIW35vJewkYxI8KMRpyvKl3Uoj2nB79oxwcPAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUjX3mx2g8zLaglCYSeNNCdAGxQk8wHwYDVR0jBBgwFoAUAaUyYbIAH6frV3k+ LlebcyL452owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FWRUNP TS9BYVV5WWJJQUg2ZnJWM2stTGxlYmN5TDQ1Mm8uY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0FhVXlZYklBSDZmclYzay1MbGViY3lMNDUyby5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBVkVDT00valgzbXgyZzh6TGFnbENZ U2VOTkNkQUd4UWs4LnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME B3rJgDANBgkqhkiG9w0BAQsFAAOCAQEAGT9lHeN3go6XINHaVPbKN+4TxKNKmtQw 1CLt7rIoaBHMcJJvgoZpTZOVyFoIf2IjEel2RDjC4cv5qlYPpGHFtoiQ9uF5fxfz jx3cyy+pyad1w9LHMPDH8W058bLqx3Im7nciUzWbCfXiow+tkgi064vFwYUTOp7Z 8N/4t2hO6SWzSELP2ViT5WwpQvBWPurqacPUfE+YBdXMx6aMPqdhA5sRhpvbdADs Kpb41s6q9yzLEQsG6/RUg7Wwzj8PMAWs4M7MlqXQMD4T9+U3w9Z9nJCtXHyl1xcz fdCXfzY7tmvQH3QDyeMW+9rutGhcJcrN4rqhwbE3GPIwRaLWkZrGGw== -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:52 2024 by rpki-client on console-ams.rpki-client.org