$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/dK4cADUtwWUqL_bAqcOzBeuQA_M.roa File: dK4cADUtwWUqL_bAqcOzBeuQA_M.roa (raw, json) Hash identifier: qUEskkvk2dOOIKNRmMce3NxdtKOvQRZR3EwPoUH4WAc= Subject key identifier: 74:AE:1C:00:35:2D:C1:65:2A:2F:F6:C0:A9:C3:B3:05:EB:90:03:F3 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2284 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/dK4cADUtwWUqL_bAqcOzBeuQA_M.roa Signing time: Mon 26 Aug 2024 05:34:05 +0000 ROA not before: Mon 26 Aug 2024 05:34:05 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24163 IP address blocks: 119.77.140.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Sep 2024 03:51:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8836 (0x2284) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:34:05 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=74AE1C00352DC1652A2FF6C0A9C3B305EB9003F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:31:94:37:fa:ea:6a:2d:b8:98:98:55:0a:fa: 8a:7f:59:c0:ae:8a:da:f9:2c:3d:54:74:e9:47:04: 39:92:1e:c4:e9:8c:df:cb:a0:53:56:3d:47:06:bf: 2a:dd:15:37:83:61:93:98:d2:e9:de:44:a3:1b:41: 50:58:54:39:7a:ae:ce:99:1a:fe:e7:ce:27:71:e9: c3:48:c8:a3:d9:54:15:41:07:1f:c4:9e:a1:06:81: 42:32:6b:60:ec:49:20:85:88:77:7d:a2:45:e5:6a: 9a:94:36:23:ea:8f:2d:5b:f3:9c:79:0f:c2:a7:f5: 50:2b:7b:43:b4:56:24:b5:78:13:75:75:d5:81:38: d3:42:99:a5:0c:9d:f3:a2:53:ff:e5:7c:bb:06:2c: 13:14:b6:42:95:bf:2c:e3:1e:18:09:ec:80:9f:a9: a0:69:51:e1:fc:7f:a8:f0:e5:85:1e:3b:5e:37:e2: 4e:92:d3:b4:45:66:b9:f1:c4:b7:9e:af:04:61:6e: 57:d8:92:2f:07:d3:a1:40:41:1d:28:19:fd:f5:c1: e1:be:48:29:6e:c2:16:3f:b3:45:89:11:b2:c4:7e: a8:41:40:2b:ed:da:6b:a0:81:57:e7:c2:a4:78:51: 5f:2c:b9:7a:1b:b8:0a:31:53:a8:45:b1:f9:97:41: 4d:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:AE:1C:00:35:2D:C1:65:2A:2F:F6:C0:A9:C3:B3:05:EB:90:03:F3 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/dK4cADUtwWUqL_bAqcOzBeuQA_M.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 119.77.140.0/22 Signature Algorithm: sha256WithRSAEncryption 22:7f:13:0e:a1:58:f6:80:e7:a5:a6:4d:a9:68:06:82:ff:17: 4a:60:30:3f:64:10:f8:64:3e:d9:54:0b:4d:20:89:9e:be:c2: a0:00:c6:97:54:b6:a3:4b:6c:2a:f6:5a:15:85:28:d6:46:ea: 08:f7:74:1f:27:b4:7e:8c:63:5a:a3:56:82:3a:9e:be:2e:f0: 8a:b1:27:dd:ef:0f:89:e8:1e:76:3f:87:12:6d:01:6f:2b:90: b8:c5:25:5c:9d:c9:0e:79:58:91:b2:62:5c:88:75:81:6f:70: f5:ba:4f:bc:8a:b1:e2:1a:db:50:64:60:6c:a8:fb:18:f6:a1: 15:f7:6c:92:36:32:26:b7:d3:e2:26:48:e1:09:dd:7d:58:bd: 6a:de:b6:14:22:5b:7d:01:6e:ab:94:12:18:0e:02:db:61:e6: 47:e8:d5:f9:82:53:e0:88:a4:25:cc:77:24:07:8e:32:7b:bb: 13:b9:fe:53:be:a7:8c:0b:22:46:e2:f8:63:04:3c:1f:a4:6d: 48:72:b6:50:5a:f8:36:1b:89:4b:fa:e5:6d:66:a3:da:7a:6a: 6f:c5:89:93:56:79:9e:97:7d:97:41:e3:c6:c3:04:0f:4f:3f: 7e:9e:69:f0:db:a9:86:e6:df:c0:5a:75:05:e9:dc:40:4e:85: 7d:04:dc:53 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIoQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTM0MDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDc0QUUxQzAwMzUyREMx NjUyQTJGRjZDMEE5QzNCMzA1RUI5MDAzRjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDsMZQ3+upqLbiYmFUK+op/WcCuitr5LD1UdOlHBDmSHsTpjN/L oFNWPUcGvyrdFTeDYZOY0uneRKMbQVBYVDl6rs6ZGv7nzidx6cNIyKPZVBVBBx/E nqEGgUIya2DsSSCFiHd9okXlapqUNiPqjy1b85x5D8Kn9VAre0O0ViS1eBN1ddWB ONNCmaUMnfOiU//lfLsGLBMUtkKVvyzjHhgJ7ICfqaBpUeH8f6jw5YUeO1434k6S 07RFZrnxxLeerwRhblfYki8H06FAQR0oGf31weG+SCluwhY/s0WJEbLEfqhBQCvt 2muggVfnwqR4UV8suXobuAoxU6hFsfmXQU3xAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUdK4cADUtwWUqL/bAqcOzBeuQA/MwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2RLNGNBRFV0d1dVcUxfYkFx Y096QmV1UUFfTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ3 TYwwDQYJKoZIhvcNAQELBQADggEBACJ/Ew6hWPaA56WmTaloBoL/F0pgMD9kEPhk PtlUC00giZ6+wqAAxpdUtqNLbCr2WhWFKNZG6gj3dB8ntH6MY1qjVoI6nr4u8Iqx J93vD4noHnY/hxJtAW8rkLjFJVydyQ55WJGyYlyIdYFvcPW6T7yKseIa21BkYGyo +xj2oRX3bJI2Mia30+ImSOEJ3X1YvWrethQiW30BbquUEhgOAtth5kfo1fmCU+CI pCXMdyQHjjJ7uxO5/lO+p4wLIkbi+GMEPB+kbUhytlBa+DYbiUv65W1mo9p6am/F iZNWeZ6XfZdB48bDBA9PP36eafDbqYbm38BadQXp3EBOhX0E3FM= -----END CERTIFICATE-----Generated at Fri Sep 27 23:52:58 2024 by rpki-client on console-ams.rpki-client.org