$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/rCp6PgCxNgxn1O0YAaprHQUnyPw.roa File: rCp6PgCxNgxn1O0YAaprHQUnyPw.roa (raw, json) Hash identifier: geS3qMjbfzQgiiwxjylO5tC2zJA2+5hZnT0xkdVj5/k= Subject key identifier: AC:2A:7A:3E:00:B1:36:0C:67:D4:ED:18:01:AA:6B:1D:05:27:C8:FC Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 220D Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/rCp6PgCxNgxn1O0YAaprHQUnyPw.roa Signing time: Mon 26 Aug 2024 05:33:37 +0000 ROA not before: Mon 26 Aug 2024 05:33:37 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24163 IP address blocks: 122.100.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Sep 2024 03:51:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8717 (0x220d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:37 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=AC2A7A3E00B1360C67D4ED1801AA6B1D0527C8FC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:63:3d:3a:78:02:1d:98:c1:10:b9:13:ea:d0: cc:9c:85:b5:c0:a3:f4:18:f8:e3:83:cd:c3:3d:1d: 6a:d9:88:34:3b:91:9d:49:ce:79:5f:ce:3b:9b:80: d1:82:5d:5d:84:1d:a3:7b:a0:1f:8f:28:61:bb:83: e2:76:2c:0d:c7:5c:45:0f:69:59:1a:dc:7c:50:61: cc:52:80:99:72:95:83:fc:5e:54:28:f0:31:4b:00: 7a:b8:c0:1c:24:1e:1b:9c:dc:24:fb:16:cc:57:ca: db:ea:22:35:fa:3c:24:f0:3b:43:45:d5:93:2b:93: 1c:f3:12:40:7a:0e:cf:67:86:5a:ff:3f:18:33:07: 74:4c:59:0c:5f:c4:15:8c:0e:1d:46:9e:5e:f5:11: 20:a9:17:f2:13:0d:fc:24:56:97:c7:04:72:4d:4f: 1f:b1:fc:cf:bc:38:d4:3a:06:83:41:48:8a:c4:b3: 89:70:ce:8d:a8:4a:7b:3c:3d:88:3b:bb:22:18:f3: d3:18:ba:43:0b:51:88:6d:51:b8:90:35:2c:e2:99: e3:c3:1b:04:dc:01:e5:00:fb:7c:84:2f:dd:8c:42: a3:71:bd:f6:6c:c1:a5:f9:47:79:8d:1c:ec:37:33: 41:5e:9c:1c:ea:ec:d0:d1:a9:db:62:8f:4f:d3:44: 3c:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:2A:7A:3E:00:B1:36:0C:67:D4:ED:18:01:AA:6B:1D:05:27:C8:FC X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/rCp6PgCxNgxn1O0YAaprHQUnyPw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.100.64.0/18 Signature Algorithm: sha256WithRSAEncryption 45:29:65:35:e3:b2:0a:51:3e:9a:76:a5:8f:9e:d4:35:45:71: aa:0a:9f:30:3e:40:74:8c:15:0c:d5:01:00:66:0f:4f:86:ac: 4b:4a:d7:a3:3f:a8:74:c9:b5:9d:59:64:ea:a5:bb:f4:78:d7: 32:9e:05:b8:e2:f5:52:99:02:09:35:dd:1f:59:cd:6c:6e:6f: e8:cf:cb:12:08:f1:f0:66:a8:3f:04:35:59:c5:83:29:98:58: c1:44:b9:8d:45:7a:ce:59:fc:01:81:44:8d:c0:b5:53:19:e1: c9:1c:7d:0e:d0:7b:59:b7:ba:72:aa:0e:e6:af:41:a0:6e:43: 50:d8:14:f5:fd:f7:30:63:ff:83:d8:de:7c:db:57:96:e9:42: 26:04:e1:00:94:cb:dc:90:b4:65:0f:e8:13:35:bc:50:1c:66: 1e:af:22:72:a2:08:46:06:a9:e7:80:23:51:95:aa:b4:e4:4b: a9:db:11:19:fb:41:03:a0:c2:f9:59:ee:fe:f9:b8:ba:79:a4: 6e:7f:b1:48:98:44:cb:7b:58:ba:28:81:15:d2:9f:56:73:ff: 00:a0:ad:57:31:40:89:60:62:47:a4:f6:10:44:4c:f7:a6:39: c7:4d:05:e0:6b:06:91:9b:73:ad:42:8b:d9:0d:c0:d4:26:77: cf:89:85:27 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIg0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzMzdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEFDMkE3QTNFMDBCMTM2 MEM2N0Q0RUQxODAxQUE2QjFEMDUyN0M4RkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1Yz06eAIdmMEQuRPq0MychbXAo/QY+OODzcM9HWrZiDQ7kZ1J znlfzjubgNGCXV2EHaN7oB+PKGG7g+J2LA3HXEUPaVka3HxQYcxSgJlylYP8XlQo 8DFLAHq4wBwkHhuc3CT7FsxXytvqIjX6PCTwO0NF1ZMrkxzzEkB6Ds9nhlr/Pxgz B3RMWQxfxBWMDh1Gnl71ESCpF/ITDfwkVpfHBHJNTx+x/M+8ONQ6BoNBSIrEs4lw zo2oSns8PYg7uyIY89MYukMLUYhtUbiQNSzimePDGwTcAeUA+3yEL92MQqNxvfZs waX5R3mNHOw3M0FenBzq7NDRqdtij0/TRDxbAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUrCp6PgCxNgxn1O0YAaprHQUnyPwwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3JDcDZQZ0N4Tmd4bjFPMFlB YXBySFFVbnlQdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAZ6 ZEAwDQYJKoZIhvcNAQELBQADggEBAEUpZTXjsgpRPpp2pY+e1DVFcaoKnzA+QHSM FQzVAQBmD0+GrEtK16M/qHTJtZ1ZZOqlu/R41zKeBbji9VKZAgk13R9ZzWxub+jP yxII8fBmqD8ENVnFgymYWMFEuY1Fes5Z/AGBRI3AtVMZ4ckcfQ7Qe1m3unKqDuav QaBuQ1DYFPX99zBj/4PY3nzbV5bpQiYE4QCUy9yQtGUP6BM1vFAcZh6vInKiCEYG qeeAI1GVqrTkS6nbERn7QQOgwvlZ7v75uLp5pG5/sUiYRMt7WLoogRXSn1Zz/wCg rVcxQIlgYkek9hBETPemOcdNBeBrBpGbc61Ci9kNwNQmd8+JhSc= -----END CERTIFICATE-----Generated at Fri Sep 27 23:37:01 2024 by rpki-client on console-fra.rpki-client.org