$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/UGaQETIOpWSpuqKZL4Bb_mH3Sjk.roa File: UGaQETIOpWSpuqKZL4Bb_mH3Sjk.roa (raw, json) Hash identifier: GLCbM0700skfoa1o/AyMZpJm9+T0wSMc/jxAtyHus0E= Subject key identifier: 50:66:90:11:32:0E:A5:64:A9:BA:A2:99:2F:80:5B:FE:61:F7:4A:39 Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Certificate serial: 0CEB Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/UGaQETIOpWSpuqKZL4Bb_mH3Sjk.roa Signing time: Mon 26 Aug 2024 05:12:50 +0000 ROA not before: Mon 26 Aug 2024 05:12:50 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9244 IP address blocks: 113.21.176.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Sep 2024 17:21:35 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3307 (0xceb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Validity Not Before: Aug 26 05:12:50 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=50669011320EA564A9BAA2992F805BFE61F74A39 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:16:c0:db:d5:44:6a:02:fa:6e:5e:e1:5f:b7: e6:22:53:99:a0:95:3c:2b:64:29:67:10:d7:e0:99: 01:54:9a:09:67:1a:ce:37:ba:91:f8:63:e4:26:60: d2:50:6b:3c:c6:77:89:38:af:21:6d:09:5a:7f:68: 3e:60:c7:75:72:b2:b1:b8:cf:3a:ca:0d:d5:81:ed: 0d:90:53:6b:09:fa:80:35:15:b0:62:18:fc:37:d3: 1b:f9:93:c5:54:b9:34:f9:9f:dd:7b:d2:47:97:fc: 5c:c8:d5:7f:38:56:4e:21:5e:1e:a5:11:01:02:ba: f1:5b:71:8e:de:7c:54:16:3a:8a:36:54:72:69:f8: 03:20:b8:0f:15:7e:a8:c5:83:a1:cc:0f:e1:93:8e: 52:de:06:2e:79:2c:63:76:47:bb:af:bf:19:d5:11: 32:c8:37:1b:7f:41:01:49:92:13:98:d1:ae:42:ec: 7c:0b:a7:fd:5e:2e:2c:1e:48:64:da:cc:88:0d:3d: 18:28:92:67:9c:20:fc:44:36:fb:60:1d:ab:c1:cb: e0:e1:11:48:be:65:6b:d5:93:19:be:fd:34:1c:7b: d8:97:18:c7:53:34:24:39:d0:66:38:31:5b:dc:42: c2:54:6a:f2:6e:de:9b:cf:28:e5:28:bb:9c:b9:49: b8:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:66:90:11:32:0E:A5:64:A9:BA:A2:99:2F:80:5B:FE:61:F7:4A:39 X509v3 Authority Key Identifier: keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/UGaQETIOpWSpuqKZL4Bb_mH3Sjk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 113.21.176.0/21 Signature Algorithm: sha256WithRSAEncryption 6f:dc:f2:31:b9:d5:df:a9:f6:e2:26:51:8a:c6:a4:52:cf:c4: 9b:67:9c:7d:9d:47:ba:3b:fb:d8:27:c4:51:3b:61:03:9e:90: db:19:83:99:37:75:c7:38:d4:c1:f8:5d:cb:19:b6:c9:6a:f2: ac:a9:40:22:6a:e9:95:8b:45:19:c7:05:1e:2c:48:e2:54:5c: 0c:b1:1a:42:e9:e5:3f:2f:61:c9:8d:ee:3a:37:7b:f8:4b:3b: 2d:83:48:95:f8:d0:a2:9a:6a:5e:aa:e9:fe:01:39:6b:f2:a6: 2a:4e:82:5f:03:2d:3e:a6:52:ab:f7:f3:20:65:42:26:d2:e6: a0:3f:cf:5a:73:bf:26:36:58:27:10:9e:76:29:b5:f8:21:e3: bb:07:54:76:d6:a8:ed:6d:61:2f:ff:58:b4:a0:b0:5a:7b:df: 80:1f:ab:08:66:48:b4:03:2e:77:75:80:db:b1:e8:4e:e5:82: 42:67:6a:84:28:3a:47:19:f9:6b:19:74:78:ae:8e:f9:3a:15: 96:4f:34:97:8e:8a:4a:f3:b9:1a:75:ab:59:02:52:43:0a:04: ab:60:ab:5d:25:3f:19:8d:f2:ec:ec:48:08:d3:d5:72:b9:09: 3f:0f:da:10:39:a9:61:78:ac:8e:d2:80:99:0e:0a:66:63:47: 7d:fe:af:0b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICDOswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yNDA4MjYw NTEyNTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDUwNjY5MDExMzIwRUE1 NjRBOUJBQTI5OTJGODA1QkZFNjFGNzRBMzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+FsDb1URqAvpuXuFft+YiU5mglTwrZClnENfgmQFUmglnGs43 upH4Y+QmYNJQazzGd4k4ryFtCVp/aD5gx3VysrG4zzrKDdWB7Q2QU2sJ+oA1FbBi GPw30xv5k8VUuTT5n9170keX/FzI1X84Vk4hXh6lEQECuvFbcY7efFQWOoo2VHJp +AMguA8VfqjFg6HMD+GTjlLeBi55LGN2R7uvvxnVETLINxt/QQFJkhOY0a5C7HwL p/1eLiweSGTazIgNPRgokmecIPxENvtgHavBy+DhEUi+ZWvVkxm+/TQce9iXGMdT NCQ50GY4MVvcQsJUavJu3pvPKOUou5y5SbhRAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUUGaQETIOpWSpuqKZL4Bb/mH3SjkwHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVUL1VHYVFFVElPcFdTcHVxS1pM NEJiX21IM1Nqay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBANx FbAwDQYJKoZIhvcNAQELBQADggEBAG/c8jG51d+p9uImUYrGpFLPxJtnnH2dR7o7 +9gnxFE7YQOekNsZg5k3dcc41MH4XcsZtslq8qypQCJq6ZWLRRnHBR4sSOJUXAyx GkLp5T8vYcmN7jo3e/hLOy2DSJX40KKaal6q6f4BOWvypipOgl8DLT6mUqv38yBl QibS5qA/z1pzvyY2WCcQnnYptfgh47sHVHbWqO1tYS//WLSgsFp734AfqwhmSLQD Lnd1gNux6E7lgkJnaoQoOkcZ+WsZdHiujvk6FZZPNJeOikrzuRp1q1kCUkMKBKtg q10lPxmN8uzsSAjT1XK5CT8P2hA5qWF4rI7SgJkOCmZjR33+rws= -----END CERTIFICATE-----Generated at Sat Sep 28 12:03:22 2024 by rpki-client on console-fra.rpki-client.org