$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/97O7QPaarzh2zQnOPMJFWqiLuu8.roa File: 97O7QPaarzh2zQnOPMJFWqiLuu8.roa (raw, json) Hash identifier: oSdpuDwaggXs714czq6g39KF/GDIovh71kYbOftdLIs= Subject key identifier: F7:B3:BB:40:F6:9A:AF:38:76:CD:09:CE:3C:C2:45:5A:A8:8B:BA:EF Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 22D4 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/97O7QPaarzh2zQnOPMJFWqiLuu8.roa Signing time: Mon 26 Aug 2024 05:34:24 +0000 ROA not before: Mon 26 Aug 2024 05:34:24 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24163 IP address blocks: 211.76.32.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Sep 2024 03:51:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8916 (0x22d4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:34:24 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F7B3BB40F69AAF3876CD09CE3CC2455AA88BBAEF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:9e:07:ee:00:22:2d:ac:71:d5:1a:c7:ab:10: b2:99:31:59:3a:d0:40:f8:d2:97:c2:2d:d7:6a:2c: 2d:f0:c3:de:c0:82:e4:39:07:1c:2e:7d:7a:55:e4: 65:62:bc:a8:b5:52:09:63:74:8b:d4:cd:4d:ac:8d: d4:d7:88:4b:b5:06:1b:10:e5:c5:20:c0:b7:5c:d1: be:88:e1:ed:4a:e4:ab:5d:fe:e5:6d:50:80:c4:57: 4e:ab:a8:74:a6:29:9a:6a:99:71:7a:08:69:35:11: 57:ac:b3:cf:7f:9b:b1:6d:c7:63:fd:7e:b6:c3:81: 1d:29:c9:81:3b:9a:fb:fb:f1:e1:7a:10:9d:d8:ab: 08:eb:dd:e3:51:5f:e0:47:02:0f:5f:98:46:be:bb: d1:21:04:ad:e6:8a:12:a5:43:48:06:de:fb:10:5b: 02:59:f2:05:d6:15:39:1c:1b:88:1b:f4:86:c6:b2: 9d:d6:c0:1d:4a:8f:4b:ed:e8:f1:23:10:93:09:08: 81:6f:58:99:ce:96:2d:5b:c6:a6:99:e0:46:8a:ad: 50:a8:07:f0:59:4e:f9:7b:f3:5a:0c:9b:99:97:6f: cd:16:62:f7:a4:ad:26:33:80:47:40:63:32:b9:ea: e5:1c:76:97:55:0a:17:25:b0:34:29:c1:d5:63:3f: 6b:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:B3:BB:40:F6:9A:AF:38:76:CD:09:CE:3C:C2:45:5A:A8:8B:BA:EF X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/97O7QPaarzh2zQnOPMJFWqiLuu8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.32.0/21 Signature Algorithm: sha256WithRSAEncryption 6c:7a:3c:ec:f3:82:15:5b:0d:56:bb:b9:5a:9a:60:5a:2f:fe: 92:06:81:bb:77:70:f7:80:ce:df:55:8b:af:56:42:85:cb:e6: c9:fb:61:b8:b2:7d:55:42:39:84:83:71:2f:57:c7:a2:84:ef: aa:a7:24:6a:0d:f1:c4:87:b2:a2:58:ba:d2:e0:d7:a8:d1:2b: a3:d1:54:75:e2:42:9b:1a:9a:c6:20:bc:89:26:b8:ca:8f:d7: 72:59:d4:54:71:2d:11:e9:52:fb:d0:8f:ad:65:03:cc:b4:c1: 5e:b1:1e:83:c7:36:1a:cc:09:bf:91:36:98:3b:fc:0f:49:1a: e7:2c:f1:f3:2a:36:fa:b5:97:a1:78:3c:b1:ac:cf:45:37:c5: 40:82:5b:3d:da:a1:11:0d:9d:f0:d2:bc:f9:86:b1:65:82:33: b4:b2:c2:de:84:92:eb:fc:97:ef:1f:15:13:56:3a:f7:4e:0e: 16:a1:5a:33:12:9c:0b:e7:aa:ac:f1:dc:93:ee:7e:93:b7:f0: ae:1b:81:8b:19:96:7d:7d:69:5a:a4:2f:79:e8:aa:56:28:2d: 6c:0d:c1:80:e7:47:1a:29:27:21:d9:f9:0a:a5:55:e3:17:d2: 7c:f7:14:5a:13:88:33:1a:89:eb:2b:e9:b2:69:d2:14:6d:c0: df:80:e2:15 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICItQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTM0MjRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEY3QjNCQjQwRjY5QUFG Mzg3NkNEMDlDRTNDQzI0NTVBQTg4QkJBRUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLngfuACItrHHVGserELKZMVk60ED40pfCLddqLC3ww97AguQ5 BxwufXpV5GVivKi1UgljdIvUzU2sjdTXiEu1BhsQ5cUgwLdc0b6I4e1K5Ktd/uVt UIDEV06rqHSmKZpqmXF6CGk1EVess89/m7Ftx2P9frbDgR0pyYE7mvv78eF6EJ3Y qwjr3eNRX+BHAg9fmEa+u9EhBK3mihKlQ0gG3vsQWwJZ8gXWFTkcG4gb9IbGsp3W wB1Kj0vt6PEjEJMJCIFvWJnOli1bxqaZ4EaKrVCoB/BZTvl781oMm5mXb80WYvek rSYzgEdAYzK56uUcdpdVChclsDQpwdVjP2tDAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU97O7QPaarzh2zQnOPMJFWqiLuu8wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzk3TzdRUGFhcnpoMnpRbk9Q TUpGV3FpTHV1OC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPT TCAwDQYJKoZIhvcNAQELBQADggEBAGx6POzzghVbDVa7uVqaYFov/pIGgbt3cPeA zt9Vi69WQoXL5sn7YbiyfVVCOYSDcS9Xx6KE76qnJGoN8cSHsqJYutLg16jRK6PR VHXiQpsamsYgvIkmuMqP13JZ1FRxLRHpUvvQj61lA8y0wV6xHoPHNhrMCb+RNpg7 /A9JGucs8fMqNvq1l6F4PLGsz0U3xUCCWz3aoRENnfDSvPmGsWWCM7Sywt6Ekuv8 l+8fFRNWOvdODhahWjMSnAvnqqzx3JPufpO38K4bgYsZln19aVqkL3noqlYoLWwN wYDnRxopJyHZ+QqlVeMX0nz3FFoTiDMaiesr6bJp0hRtwN+A4hU= -----END CERTIFICATE-----Generated at Fri Sep 27 23:52:57 2024 by rpki-client on console-ams.rpki-client.org