$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/q9eqRA1rSpTntGkikV1mCoEIXzA.roa File: q9eqRA1rSpTntGkikV1mCoEIXzA.roa (raw, json) Hash identifier: /HzNUBEpbpPIqSrtlnDC7fS7n2IQrylj+s1Hfi6TMak= Subject key identifier: AB:D7:AA:44:0D:6B:4A:94:E7:B4:69:22:91:5D:66:0A:81:08:5F:30 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 21B7 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/q9eqRA1rSpTntGkikV1mCoEIXzA.roa Signing time: Mon 26 Aug 2024 05:33:16 +0000 ROA not before: Mon 26 Aug 2024 05:33:16 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24163 IP address blocks: 211.76.44.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Sep 2024 03:51:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8631 (0x21b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:16 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=ABD7AA440D6B4A94E7B46922915D660A81085F30 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:3f:90:fa:09:0e:47:c9:aa:86:f8:f1:df:a7: 26:e2:88:f3:ae:dc:a8:48:72:d3:b5:cf:5e:66:03: 56:d7:65:ec:2d:92:b9:c4:7a:44:c4:db:61:d4:b2: 86:67:60:ee:25:e3:92:fb:61:8b:43:6c:db:e0:e1: e8:27:32:3a:5c:bd:1f:6b:16:b3:7e:a5:d8:89:db: 60:2f:b3:34:3c:cd:98:61:73:cd:db:3e:38:bc:6c: 8e:9d:ab:ca:a5:b8:20:0e:00:2c:3d:8e:46:a7:3a: c0:21:3b:ce:0d:80:75:4f:b1:1f:11:81:5d:dd:6b: 84:f2:92:40:b3:65:69:c6:2a:08:1e:61:25:91:f9: 95:14:84:12:d1:3b:a2:67:57:5d:98:89:1f:9a:c4: 91:ab:02:77:09:7e:ea:54:be:04:37:4a:34:56:19: 35:19:17:2c:24:fe:7c:cd:a1:85:e6:4e:7a:cd:f8: 25:18:26:cd:8e:b7:af:7c:4d:97:1a:6f:11:5b:27: 6e:e4:0f:1a:43:47:d1:28:a9:bd:c1:93:79:82:c0: b5:6a:71:89:9c:31:ea:f8:41:00:82:49:53:55:11: 66:a0:9b:6a:65:40:33:2b:42:c5:c3:ae:72:06:31: 69:4b:47:3b:b8:6a:e9:3e:25:6a:fd:52:d8:81:0c: f5:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:D7:AA:44:0D:6B:4A:94:E7:B4:69:22:91:5D:66:0A:81:08:5F:30 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/q9eqRA1rSpTntGkikV1mCoEIXzA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.44.0/23 Signature Algorithm: sha256WithRSAEncryption 08:5f:9c:80:cf:01:77:17:ef:fe:59:04:c5:46:39:93:1b:e4: a0:2b:fb:ad:52:f0:25:52:a9:95:a7:fc:b9:1b:b0:1c:94:2c: f5:3d:ee:2b:ea:76:f3:00:63:eb:fe:a0:3c:f9:51:ea:a5:f7: 37:01:99:74:bc:41:9a:39:33:4c:9f:79:bd:54:1e:33:59:58: b7:ce:07:36:29:97:6a:ff:a4:57:2a:66:09:3f:70:e4:cb:8b: 80:a6:69:37:27:c2:7b:64:b0:e6:2d:cf:58:97:dd:47:da:27: f6:de:5a:35:63:d7:11:62:a8:9c:32:31:ae:43:ce:94:0d:0f: 61:de:94:1c:27:cd:4f:77:5b:b0:56:55:17:6e:5d:ef:67:92: c4:d6:67:38:2c:9b:04:df:fa:81:30:b2:b8:b3:aa:02:94:06: 80:24:13:e7:d0:26:16:07:6a:b0:0d:2c:8d:19:88:02:1a:fc: 67:ce:30:dd:51:75:f7:07:51:6b:59:05:2c:1a:40:84:f3:09: dd:09:13:4f:d6:79:d0:78:cb:ba:c0:d2:f4:47:de:65:ae:86: 80:f3:ca:63:11:19:89:b4:25:87:7d:d0:2d:85:16:69:0d:c1: e2:67:09:9b:f7:6e:c1:0f:51:ec:19:df:91:26:2d:c7:b6:14: ce:f3:1f:b7 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIbcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzMTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEFCRDdBQTQ0MEQ2QjRB OTRFN0I0NjkyMjkxNUQ2NjBBODEwODVGMzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVP5D6CQ5HyaqG+PHfpybiiPOu3KhIctO1z15mA1bXZewtkrnE ekTE22HUsoZnYO4l45L7YYtDbNvg4egnMjpcvR9rFrN+pdiJ22AvszQ8zZhhc83b Pji8bI6dq8qluCAOACw9jkanOsAhO84NgHVPsR8RgV3da4TykkCzZWnGKggeYSWR +ZUUhBLRO6JnV12YiR+axJGrAncJfupUvgQ3SjRWGTUZFywk/nzNoYXmTnrN+CUY Js2Ot698TZcabxFbJ27kDxpDR9Eoqb3Bk3mCwLVqcYmcMer4QQCCSVNVEWagm2pl QDMrQsXDrnIGMWlLRzu4auk+JWr9UtiBDPUVAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUq9eqRA1rSpTntGkikV1mCoEIXzAwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3E5ZXFSQTFyU3BUbnRHa2lr VjFtQ29FSVh6QS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHT TCwwDQYJKoZIhvcNAQELBQADggEBAAhfnIDPAXcX7/5ZBMVGOZMb5KAr+61S8CVS qZWn/LkbsByULPU97ivqdvMAY+v+oDz5Ueql9zcBmXS8QZo5M0yfeb1UHjNZWLfO BzYpl2r/pFcqZgk/cOTLi4CmaTcnwntksOYtz1iX3UfaJ/beWjVj1xFiqJwyMa5D zpQND2HelBwnzU93W7BWVRduXe9nksTWZzgsmwTf+oEwsrizqgKUBoAkE+fQJhYH arANLI0ZiAIa/GfOMN1RdfcHUWtZBSwaQITzCd0JE0/WedB4y7rA0vRH3mWuhoDz ymMRGYm0JYd90C2FFmkNweJnCZv3bsEPUewZ35EmLce2FM7zH7c= -----END CERTIFICATE-----Generated at Fri Sep 27 23:37:01 2024 by rpki-client on console-fra.rpki-client.org