$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KGT/UBS4JWjvueOqWBcNYWYHNN-tyKs.roa File: UBS4JWjvueOqWBcNYWYHNN-tyKs.roa (raw, json) Hash identifier: O+e8BVqpqkgw7l7oXkyrEWOMsRmxe2MEotxYgPz4QWI= Subject key identifier: 50:14:B8:25:68:EF:B9:E3:AA:58:17:0D:61:66:07:34:DF:AD:C8:AB Certificate issuer: /CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Certificate serial: 0D74 Authority key identifier: 47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/UBS4JWjvueOqWBcNYWYHNN-tyKs.roa Signing time: Mon 26 Aug 2024 05:19:50 +0000 ROA not before: Mon 26 Aug 2024 05:19:50 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131602 IP address blocks: 211.78.8.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3444 (0xd74) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4772F715345B542E1D708BCB2571FCD72DD26BF3 Validity Not Before: Aug 26 05:19:50 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5014B82568EFB9E3AA58170D61660734DFADC8AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:07:1f:55:cb:03:6c:34:b2:c3:ab:54:84:6d: e1:16:3b:df:c2:95:b9:d8:d2:d3:79:d2:b1:37:57: b6:3e:3f:9b:de:65:d1:4d:f4:fc:81:65:19:f0:1c: 60:65:00:ec:3a:1f:12:76:8e:37:48:7a:2b:7c:8d: be:dc:3b:0c:5e:4c:db:14:8f:b4:4a:ca:f2:89:6f: 92:71:16:79:e4:d1:7e:29:41:69:f7:2b:72:0b:1a: d1:e6:01:96:b7:d6:c6:9c:5c:af:cb:13:39:aa:7e: 46:12:35:48:39:2d:93:c8:ef:86:eb:90:a0:e4:96: d9:1f:93:62:08:0d:b0:42:41:20:65:84:0c:60:d8: 13:21:3e:41:90:cd:f8:d6:01:f1:ba:97:82:fd:89: 51:5f:1c:77:ad:89:91:6a:74:0a:52:94:77:43:29: 55:46:ad:92:d8:02:5d:d9:de:b7:95:06:cf:d5:1e: 88:ab:b2:cd:1c:57:20:b4:f8:ca:3d:3b:07:78:9d: 33:78:19:14:e0:46:0f:43:e5:42:cc:ce:8b:74:8e: c7:84:aa:c6:fa:ac:00:de:cd:8f:de:2a:3b:c6:0e: bb:f6:e8:b7:9a:36:43:7e:26:0e:62:04:ff:13:19: 61:6a:43:c0:ba:75:1f:47:31:37:17:6b:d9:a4:11: 0f:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:14:B8:25:68:EF:B9:E3:AA:58:17:0D:61:66:07:34:DF:AD:C8:AB X509v3 Authority Key Identifier: keyid:47:72:F7:15:34:5B:54:2E:1D:70:8B:CB:25:71:FC:D7:2D:D2:6B:F3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/R3L3FTRbVC4dcIvLJXH81y3Sa_M.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/R3L3FTRbVC4dcIvLJXH81y3Sa_M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KGT/UBS4JWjvueOqWBcNYWYHNN-tyKs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.78.8.0/22 Signature Algorithm: sha256WithRSAEncryption 15:09:84:24:d4:36:fb:04:df:7d:aa:7f:68:6b:d9:17:f2:52: 17:51:5f:12:b8:28:12:dc:0d:4a:98:31:21:b5:ae:55:7e:82: 6e:45:2b:27:94:3c:d7:e0:47:54:c2:0b:6e:a3:f4:37:79:11: 40:94:a0:68:2f:60:e5:db:18:30:9d:ce:cf:42:38:95:5c:d6: f3:5b:d6:0a:17:9a:e3:c4:0b:66:6e:75:50:0b:b6:31:52:8b: fe:b1:b4:25:4e:a2:8a:d8:7d:48:f5:b1:97:92:34:bc:ec:37: 3e:66:5d:a7:6f:37:9b:b1:74:c1:48:92:df:e2:7f:b0:a8:57: af:42:ba:8f:56:d5:7d:df:98:f9:1d:f3:20:bc:23:9b:da:3a: 4b:c1:a9:5f:ac:af:3a:d6:be:38:3e:cb:3f:18:8a:ec:5f:0e: ce:7a:8a:4b:6c:6c:db:9a:c7:ed:47:98:7f:cf:79:bf:48:38: 90:90:59:18:65:bd:fd:47:ea:e7:48:1c:91:9b:95:58:86:dd: a7:41:5b:13:a0:a2:1f:58:4b:77:f2:98:86:cb:6b:dc:e4:31: 30:de:81:9e:fb:64:e7:22:48:b5:e5:ce:4c:05:f0:fe:4c:bf: 83:82:a0:cf:06:dd:cf:1f:cc:86:10:8f:5f:0d:2c:d3:3e:53: f0:f6:aa:00 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICDXQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDc3 MkY3MTUzNDVCNTQyRTFENzA4QkNCMjU3MUZDRDcyREQyNkJGMzAeFw0yNDA4MjYw NTE5NTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDUwMTRCODI1NjhFRkI5 RTNBQTU4MTcwRDYxNjYwNzM0REZBREM4QUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDABx9VywNsNLLDq1SEbeEWO9/ClbnY0tN50rE3V7Y+P5veZdFN 9PyBZRnwHGBlAOw6HxJ2jjdIeit8jb7cOwxeTNsUj7RKyvKJb5JxFnnk0X4pQWn3 K3ILGtHmAZa31sacXK/LEzmqfkYSNUg5LZPI74brkKDkltkfk2IIDbBCQSBlhAxg 2BMhPkGQzfjWAfG6l4L9iVFfHHetiZFqdApSlHdDKVVGrZLYAl3Z3reVBs/VHoir ss0cVyC0+Mo9Owd4nTN4GRTgRg9D5ULMzot0jseEqsb6rADezY/eKjvGDrv26Lea NkN+Jg5iBP8TGWFqQ8C6dR9HMTcXa9mkEQ+NAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUUBS4JWjvueOqWBcNYWYHNN+tyKswHwYDVR0jBBgwFoAUR3L3FTRbVC4dcIvL JXH81y3Sa/MwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1Iz TDNGVFJiVkM0ZGNJdkxKWEg4MXkzU2FfTS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UjNMM0ZUUmJWQzRkY0l2TEpYSDgxeTNTYV9NLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0dUL1VCUzRKV2p2dWVPcVdCY05ZV1lITk4t dHlLcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALTTggwDQYJ KoZIhvcNAQELBQADggEBABUJhCTUNvsE332qf2hr2RfyUhdRXxK4KBLcDUqYMSG1 rlV+gm5FKyeUPNfgR1TCC26j9Dd5EUCUoGgvYOXbGDCdzs9COJVc1vNb1goXmuPE C2ZudVALtjFSi/6xtCVOoorYfUj1sZeSNLzsNz5mXadvN5uxdMFIkt/if7CoV69C uo9W1X3fmPkd8yC8I5vaOkvBqV+srzrWvjg+yz8YiuxfDs56iktsbNuax+1HmH/P eb9IOJCQWRhlvf1H6udIHJGblViG3adBWxOgoh9YS3fymIbLa9zkMTDegZ77ZOci SLXlzkwF8P5Mv4OCoM8G3c8fzIYQj18NLNM+U/D2qgA= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:40 2024 by rpki-client on console-fra.rpki-client.org