$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/KJLGHmugtrtC6MOXPPOxh_9Rs5U.roa File: KJLGHmugtrtC6MOXPPOxh_9Rs5U.roa (raw, json) Hash identifier: 8fl3IR9EZ1wM9l4xWg/sZIR8k59K38E+qL+rL7pTrEc= Subject key identifier: 28:92:C6:1E:6B:A0:B6:BB:42:E8:C3:97:3C:F3:B1:87:FF:51:B3:95 Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Certificate serial: 0CDC Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/KJLGHmugtrtC6MOXPPOxh_9Rs5U.roa Signing time: Mon 26 Aug 2024 05:27:37 +0000 ROA not before: Mon 26 Aug 2024 05:27:37 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 17709 IP address blocks: 2405:9200::/32 maxlen: 64 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3292 (0xcdc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Validity Not Before: Aug 26 05:27:37 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2892C61E6BA0B6BB42E8C3973CF3B187FF51B395 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:ac:79:02:13:69:1d:7c:43:1f:bc:af:c6:e7: b8:6b:b7:79:19:df:d7:cb:f5:01:95:aa:15:f9:a2: 60:31:97:de:ec:5d:29:c6:21:2a:76:d7:58:15:f6: b5:d6:87:d9:14:24:86:11:98:23:95:bf:b8:43:c2: a5:d3:df:a8:5a:d8:6b:b1:d0:08:ad:0c:c3:fd:cb: 13:c9:b3:a7:59:0d:b2:09:2d:3b:91:97:c2:14:7b: 41:e4:33:1a:a0:b9:7c:16:9b:2a:a1:b7:3a:dd:ba: 83:b6:33:ad:86:ad:05:9e:63:89:72:18:09:c5:a6: fe:46:39:b3:2e:f0:71:7f:6c:b3:35:9f:37:48:57: a5:b3:53:30:7f:56:c5:ed:a2:50:13:cf:59:6b:cc: 20:64:65:50:92:d5:ef:e8:d4:f8:14:81:43:b1:ba: 84:89:38:17:c5:cc:3d:f9:ca:a4:4f:c6:51:0e:d3: b4:0a:2e:cc:2e:e1:61:6e:f4:31:84:0f:91:ff:3c: 65:90:e6:e6:91:74:29:f4:e9:ef:1a:32:8d:40:87: 8c:8d:3b:48:8d:a1:a2:4c:49:f2:a8:b9:c3:42:ad: b3:dd:29:e0:c7:e0:3c:23:bc:da:7d:b2:e7:0d:80: 8a:bf:81:43:1e:17:c3:14:12:71:d2:be:83:81:d2: 3c:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:92:C6:1E:6B:A0:B6:BB:42:E8:C3:97:3C:F3:B1:87:FF:51:B3:95 X509v3 Authority Key Identifier: keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/KJLGHmugtrtC6MOXPPOxh_9Rs5U.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2405:9200::/32 Signature Algorithm: sha256WithRSAEncryption cb:3d:88:6a:30:68:5c:cc:32:7e:77:c2:0b:3f:8e:df:3e:6d: 71:60:5c:4c:6d:79:92:c2:bc:c1:c2:d0:10:f0:3e:ef:f7:89: 04:27:07:17:39:32:95:65:36:6e:67:67:ff:d0:a2:6c:fe:5b: 43:04:e5:de:f2:18:e1:e1:91:09:d1:db:38:21:7d:b2:cc:88: 55:ab:69:8d:e1:c5:fd:a9:bf:20:fe:68:b6:8e:a3:6b:be:06: de:96:5e:97:b6:e5:24:e4:b5:6b:5e:09:24:b2:f1:01:81:28: f2:e2:73:7f:77:fa:63:31:e7:13:e1:3d:11:e1:b8:ef:81:b0: bd:86:cf:93:08:92:a7:39:11:01:b4:18:c2:12:f2:90:3f:22: 5b:4d:86:8f:28:9f:ac:f6:3f:0f:69:a0:06:c8:ae:a9:23:2a: b4:57:56:d3:7f:bb:05:ec:c5:55:c9:df:46:69:19:2d:71:32: d3:a7:79:15:9e:22:2f:c8:27:a5:35:a4:a9:b3:fd:7a:2d:8d: e4:36:82:95:55:70:5e:4e:ec:ef:ca:e1:52:eb:07:d6:75:58: fc:d9:5e:ec:2c:5b:cf:a6:d9:24:10:c0:45:c8:15:de:70:ed: f5:77:09:d3:16:71:e4:cf:e4:c4:ad:6a:86:61:40:47:77:7d: a6:e7:bf:57 -----BEGIN CERTIFICATE----- MIIE0TCCA7mgAwIBAgICDNwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMy NzIwRUIwQkVBMDA1QzNFREU1NzRFMzFDMEFCNzU2M0ZBMENDNzAeFw0yNDA4MjYw NTI3MzdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI4OTJDNjFFNkJBMEI2 QkI0MkU4QzM5NzNDRjNCMTg3RkY1MUIzOTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDarHkCE2kdfEMfvK/G57hrt3kZ39fL9QGVqhX5omAxl97sXSnG ISp211gV9rXWh9kUJIYRmCOVv7hDwqXT36ha2Gux0AitDMP9yxPJs6dZDbIJLTuR l8IUe0HkMxqguXwWmyqhtzrduoO2M62GrQWeY4lyGAnFpv5GObMu8HF/bLM1nzdI V6WzUzB/VsXtolATz1lrzCBkZVCS1e/o1PgUgUOxuoSJOBfFzD35yqRPxlEO07QK Lswu4WFu9DGED5H/PGWQ5uaRdCn06e8aMo1Ah4yNO0iNoaJMSfKoucNCrbPdKeDH 4DwjvNp9sucNgIq/gUMeF8MUEnHSvoOB0jxRAgMBAAGjggHtMIIB6TAdBgNVHQ4E FgQUKJLGHmugtrtC6MOXPPOxh/9Rs5UwHwYDVR0jBBgwFoAUgycg6wvqAFw+3ldO McCrdWP6DMcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEJDT00v Z3ljZzZ3dnFBRnctM2xkT01jQ3JkV1A2RE1jLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9neWNnNnd2cUFGdy0zbGRPTWNDcmRXUDZETWMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQkNPTS9LSkxHSG11Z3RydEM2TU9YUFBP eGhfOVJzNVUucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMCAGCCsGAQUFBwEHAQH/BBEwDzANBAIAAjAHAwUAJAWS ADANBgkqhkiG9w0BAQsFAAOCAQEAyz2IajBoXMwyfnfCCz+O3z5tcWBcTG15ksK8 wcLQEPA+7/eJBCcHFzkylWU2bmdn/9CibP5bQwTl3vIY4eGRCdHbOCF9ssyIVatp jeHF/am/IP5oto6ja74G3pZel7blJOS1a14JJLLxAYEo8uJzf3f6YzHnE+E9EeG4 74GwvYbPkwiSpzkRAbQYwhLykD8iW02GjyifrPY/D2mgBsiuqSMqtFdW03+7BezF VcnfRmkZLXEy06d5FZ4iL8gnpTWkqbP9ei2N5DaClVVwXk7s78rhUusH1nVY/Nle 7Cxbz6bZJBDARcgV3nDt9XcJ0xZx5M/kxK1qhmFAR3d9pue/Vw== -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:45 2024 by rpki-client on console-fra.rpki-client.org