$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/a3KugHgC4LQICkzAjpMwvJtBOZs.roa File: a3KugHgC4LQICkzAjpMwvJtBOZs.roa (raw, json) Hash identifier: zKOYGqOKu9wZ2puiBkKusE3QjKIK7ov9GA4hU+56TBM= Subject key identifier: 6B:72:AE:80:78:02:E0:B4:08:0A:4C:C0:8E:93:30:BC:9B:41:39:9B Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Certificate serial: 0CD1 Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/a3KugHgC4LQICkzAjpMwvJtBOZs.roa Signing time: Mon 26 Aug 2024 05:27:35 +0000 ROA not before: Mon 26 Aug 2024 05:27:35 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131596 IP address blocks: 61.58.64.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3281 (0xcd1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Validity Not Before: Aug 26 05:27:35 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6B72AE807802E0B4080A4CC08E9330BC9B41399B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:1a:91:c3:9e:5c:8c:ff:55:58:41:c3:91:3d: 76:1f:bb:ac:d9:63:d6:0f:4e:2a:04:75:28:83:3c: 07:4f:da:fd:2e:76:b1:91:ce:84:45:ff:fd:30:98: 48:eb:3d:c5:80:c0:ad:bf:7d:e2:84:e1:d5:19:0a: 75:7d:5d:a4:75:70:00:2d:1b:27:33:38:e4:91:e4: 7c:bb:04:af:97:9f:bd:0f:ac:6d:b6:7c:78:8a:04: 30:ad:b1:39:95:59:45:8f:ea:89:2c:d4:68:dd:f7: a3:e5:f7:4b:ab:69:47:4e:98:5e:f7:05:fa:5a:2d: b5:f6:c2:54:eb:13:bd:de:d8:c1:9c:cd:3e:f9:12: de:c6:b0:f5:92:95:46:fe:ae:14:4b:64:ee:ed:be: ca:19:5c:7b:48:fd:45:e6:ce:83:0c:59:f4:9f:c3: 12:51:61:f3:a5:d7:66:93:60:14:06:a1:3d:eb:d0: d0:ff:08:ac:ab:52:7e:b2:1d:c9:bb:37:c4:24:42: a2:38:18:93:1e:31:fe:ba:3d:be:c2:bd:58:c5:89: b8:dc:96:9c:cf:1c:15:22:9d:ff:0c:52:8f:65:b0: bd:de:56:28:0e:91:4b:a7:e0:cc:ad:1b:83:3a:ff: a4:eb:b4:45:bc:79:02:37:69:c6:84:9f:5e:fc:36: 75:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:72:AE:80:78:02:E0:B4:08:0A:4C:C0:8E:93:30:BC:9B:41:39:9B X509v3 Authority Key Identifier: keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/a3KugHgC4LQICkzAjpMwvJtBOZs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.58.64.0/20 Signature Algorithm: sha256WithRSAEncryption 6e:16:9c:39:e2:9b:97:6e:1e:a3:d8:43:7f:b9:63:48:68:ac: d6:61:d8:2c:8e:d9:d7:39:51:b2:6c:8f:34:e4:87:a6:81:e2: da:4a:7e:24:ef:70:d1:a2:78:f6:2c:98:f7:32:7e:60:50:4c: 69:f0:c4:23:08:89:48:48:18:c4:12:d7:d5:4c:67:a2:14:9e: a7:6f:7a:69:b9:21:6c:2f:84:01:c3:7c:64:62:12:66:8e:7b: 5e:dc:27:f8:fb:cd:60:e7:48:5c:01:60:e5:32:a1:c5:88:6a: 63:d5:64:40:2f:80:36:ef:58:c0:5b:45:7b:d1:69:b4:6e:f8: 62:a3:67:71:78:73:ad:e2:e5:8b:2b:02:15:cf:be:64:1f:db: 48:93:ae:2f:a3:0c:c3:7e:48:00:94:97:ea:c4:8d:3d:fb:12: 00:10:94:87:88:c7:d4:28:25:5d:36:fe:d3:ea:f4:32:05:0d: 90:3f:32:3f:92:92:63:aa:4e:35:3f:a5:27:64:96:7b:4a:53: 93:e2:af:f5:46:06:ab:ff:03:55:d1:19:6e:e0:48:4a:8e:c3: 76:31:5e:fa:b6:e4:73:5b:47:f6:44:54:29:b3:b3:7e:79:e6: 86:fd:0f:54:77:63:ce:36:9d:a8:16:93:f2:8c:72:51:d7:1a: ba:73:21:2e -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDNEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMy NzIwRUIwQkVBMDA1QzNFREU1NzRFMzFDMEFCNzU2M0ZBMENDNzAeFw0yNDA4MjYw NTI3MzVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZCNzJBRTgwNzgwMkUw QjQwODBBNENDMDhFOTMzMEJDOUI0MTM5OUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDgGpHDnlyM/1VYQcORPXYfu6zZY9YPTioEdSiDPAdP2v0udrGR zoRF//0wmEjrPcWAwK2/feKE4dUZCnV9XaR1cAAtGyczOOSR5Hy7BK+Xn70PrG22 fHiKBDCtsTmVWUWP6oks1Gjd96Pl90uraUdOmF73BfpaLbX2wlTrE73e2MGczT75 Et7GsPWSlUb+rhRLZO7tvsoZXHtI/UXmzoMMWfSfwxJRYfOl12aTYBQGoT3r0ND/ CKyrUn6yHcm7N8QkQqI4GJMeMf66Pb7CvVjFibjclpzPHBUinf8MUo9lsL3eVigO kUun4MytG4M6/6TrtEW8eQI3acaEn178NnWLAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUa3KugHgC4LQICkzAjpMwvJtBOZswHwYDVR0jBBgwFoAUgycg6wvqAFw+3ldO McCrdWP6DMcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEJDT00v Z3ljZzZ3dnFBRnctM2xkT01jQ3JkV1A2RE1jLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9neWNnNnd2cUFGdy0zbGRPTWNDcmRXUDZETWMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQkNPTS9hM0t1Z0hnQzRMUUlDa3pBanBN d3ZKdEJPWnMucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQEPTpA MA0GCSqGSIb3DQEBCwUAA4IBAQBuFpw54puXbh6j2EN/uWNIaKzWYdgsjtnXOVGy bI805IemgeLaSn4k73DRonj2LJj3Mn5gUExp8MQjCIlISBjEEtfVTGeiFJ6nb3pp uSFsL4QBw3xkYhJmjnte3Cf4+81g50hcAWDlMqHFiGpj1WRAL4A271jAW0V70Wm0 bvhio2dxeHOt4uWLKwIVz75kH9tIk64vowzDfkgAlJfqxI09+xIAEJSHiMfUKCVd Nv7T6vQyBQ2QPzI/kpJjqk41P6UnZJZ7SlOT4q/1Rgar/wNV0Rlu4EhKjsN2MV76 tuRzW0f2RFQps7N+eeaG/Q9Ud2PONp2oFpPyjHJR1xq6cyEu -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:54 2024 by rpki-client on console-fra.rpki-client.org