$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/2_X2UwLZ1EBGI92C-Otcdd96x50.roa File: 2_X2UwLZ1EBGI92C-Otcdd96x50.roa (raw, json) Hash identifier: hvar6nEttDN+BVuulo0nirfmmlt5UqjBiMztjJQ1i/c= Subject key identifier: DB:F5:F6:53:02:D9:D4:40:46:23:DD:82:F8:EB:5C:75:DF:7A:C7:9D Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 218A Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/2_X2UwLZ1EBGI92C-Otcdd96x50.roa Signing time: Mon 26 Aug 2024 05:33:05 +0000 ROA not before: Mon 26 Aug 2024 05:33:05 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24163 IP address blocks: 61.61.220.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Sep 2024 03:51:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8586 (0x218a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:05 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=DBF5F65302D9D4404623DD82F8EB5C75DF7AC79D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:a3:4d:58:8f:86:40:b1:28:f9:31:c4:2e:93: 72:8d:db:2f:ec:0e:5f:02:e6:93:f0:b5:2a:1a:a3: 47:5d:0d:05:50:fc:bb:29:e7:76:05:17:05:3f:f7: 6f:4d:e4:9e:54:35:94:82:8a:15:2e:72:95:e5:cc: 78:43:f7:f7:f3:8a:f7:b6:84:7b:02:a5:ea:ad:d9: b9:b8:ea:c1:37:6d:5c:d3:b1:a3:f0:79:57:2a:86: 9b:93:3c:2a:80:2b:ac:c8:df:5e:4c:92:23:16:e9: 29:ec:d6:c8:47:d9:6c:0a:a8:f2:e8:ce:9e:20:06: b1:13:e9:9f:46:83:00:7d:94:e0:9e:a1:b8:de:c5: 0b:b4:83:45:dc:66:38:25:fa:eb:31:42:6b:e4:0d: 32:c1:dc:15:aa:52:7d:40:42:e4:65:7e:4a:0d:51: 10:9f:19:0f:34:c0:4d:59:d5:5b:5e:4b:aa:c1:f4: 31:fa:a4:4d:6f:36:77:f2:0a:b2:f2:92:6b:5c:c5: 28:3e:06:06:ef:1b:8a:3b:50:9f:fe:2c:9e:1e:4e: 7c:8d:50:f4:1d:07:37:d9:26:e5:7e:00:9c:6a:72: 7d:9f:ca:79:ab:2b:02:a0:4d:37:81:da:df:4c:d2: 3c:30:ad:20:ba:fe:ed:a7:3d:3c:39:6a:ef:26:d6: ef:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:F5:F6:53:02:D9:D4:40:46:23:DD:82:F8:EB:5C:75:DF:7A:C7:9D X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/2_X2UwLZ1EBGI92C-Otcdd96x50.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.220.0/22 Signature Algorithm: sha256WithRSAEncryption 56:37:9d:36:ca:f4:f3:49:cf:dd:a6:71:91:d9:7d:00:cc:f3: 2b:ee:40:77:31:da:71:0a:96:e9:61:af:d7:83:cb:0a:05:c4: c7:42:4f:e5:af:0e:0b:30:72:88:5a:47:68:b8:8b:2c:ac:5b: 47:8c:07:2b:a0:2d:f1:80:e8:d9:1e:b4:44:51:f3:62:37:90: 78:83:2e:80:a3:17:35:34:e2:05:f9:12:3d:1b:18:63:3e:51: a3:fd:cf:f9:a7:ec:85:58:e4:87:4b:5e:d9:4a:97:39:35:89: 7d:60:58:53:d5:cb:61:9c:a6:4b:14:78:39:26:60:d2:53:95: 03:e9:52:11:cb:0d:b0:b8:d3:9f:23:d8:21:bb:11:02:dd:0d: 24:e1:d6:59:9b:94:c5:d6:76:57:f9:41:61:26:f9:ae:f2:31: 3b:72:f7:91:74:87:64:fb:14:d1:af:26:c7:41:d0:ff:2d:39: d8:38:b1:1d:51:85:cb:f4:a1:70:19:09:27:b9:52:fe:21:0f: 71:8f:5f:f6:34:26:7b:d5:c5:59:9a:9c:c3:91:07:0d:ba:98: 3f:6f:50:10:3b:0e:ed:ee:6f:0f:1a:5c:0c:bd:3f:37:29:c9: 73:ef:b6:40:f5:ff:01:57:1e:06:37:1e:56:fd:5c:e0:e2:5f: 30:df:25:d6 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIYowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzMDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKERCRjVGNjUzMDJEOUQ0 NDA0NjIzREQ4MkY4RUI1Qzc1REY3QUM3OUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCo01Yj4ZAsSj5McQuk3KN2y/sDl8C5pPwtSoao0ddDQVQ/Lsp 53YFFwU/929N5J5UNZSCihUucpXlzHhD9/fzive2hHsCpeqt2bm46sE3bVzTsaPw eVcqhpuTPCqAK6zI315MkiMW6Sns1shH2WwKqPLozp4gBrET6Z9GgwB9lOCeobje xQu0g0XcZjgl+usxQmvkDTLB3BWqUn1AQuRlfkoNURCfGQ80wE1Z1VteS6rB9DH6 pE1vNnfyCrLykmtcxSg+BgbvG4o7UJ/+LJ4eTnyNUPQdBzfZJuV+AJxqcn2fynmr KwKgTTeB2t9M0jwwrSC6/u2nPTw5au8m1u8PAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU2/X2UwLZ1EBGI92C+Otcdd96x50wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzJfWDJVd0xaMUVCR0k5MkMt T3RjZGQ5Nng1MC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAI9 PdwwDQYJKoZIhvcNAQELBQADggEBAFY3nTbK9PNJz92mcZHZfQDM8yvuQHcx2nEK lulhr9eDywoFxMdCT+WvDgswcohaR2i4iyysW0eMByugLfGA6NketERR82I3kHiD LoCjFzU04gX5Ej0bGGM+UaP9z/mn7IVY5IdLXtlKlzk1iX1gWFPVy2GcpksUeDkm YNJTlQPpUhHLDbC4058j2CG7EQLdDSTh1lmblMXWdlf5QWEm+a7yMTty95F0h2T7 FNGvJsdB0P8tOdg4sR1Rhcv0oXAZCSe5Uv4hD3GPX/Y0JnvVxVmanMORBw26mD9v UBA7Du3ubw8aXAy9PzcpyXPvtkD1/wFXHgY3Hlb9XODiXzDfJdY= -----END CERTIFICATE-----Generated at Fri Sep 27 23:52:57 2024 by rpki-client on console-ams.rpki-client.org