$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/13YWiaGyMV9q_5JnuEknhHQZeUs.roa File: 13YWiaGyMV9q_5JnuEknhHQZeUs.roa (raw, json) Hash identifier: +fGjzetuThIyG4KNcc0v+mmowX+xf+NRB7ZrN7xokjA= Subject key identifier: D7:76:16:89:A1:B2:31:5F:6A:FF:92:67:B8:49:27:84:74:19:79:4B Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 21F5 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/13YWiaGyMV9q_5JnuEknhHQZeUs.roa Signing time: Mon 26 Aug 2024 05:33:30 +0000 ROA not before: Mon 26 Aug 2024 05:33:30 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4662 IP address blocks: 61.61.224.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8693 (0x21f5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:30 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D7761689A1B2315F6AFF9267B84927847419794B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:7f:54:db:b3:af:d0:64:b6:36:ee:02:89:64: 89:3a:4a:1b:1b:f2:94:e2:a4:d4:17:07:d9:f3:46: cf:a1:79:14:0c:c5:a5:07:4c:d6:a7:a2:3a:09:af: 3e:f8:83:a7:aa:7b:4b:a7:62:08:0f:00:b1:dd:05: 21:a5:2f:b6:b6:58:48:20:63:fd:90:ee:30:aa:59: 20:61:01:64:fd:0d:9e:9b:e4:03:77:34:5e:1f:4a: 48:ff:00:07:0d:64:8c:19:5d:67:d2:72:70:85:89: 83:fa:ad:cc:97:ca:3b:a7:a5:56:8e:7d:14:9c:f8: 38:3f:88:8b:2a:e2:b1:0f:41:f9:18:2e:bf:3d:35: 93:a1:c8:e0:43:71:7d:0c:61:dc:69:39:8f:d8:e6: 0a:80:2a:de:25:2d:e1:35:7d:5e:3c:f1:e9:e3:60: 18:7b:e6:70:7f:9c:37:53:64:a9:d2:32:64:68:8e: ea:38:53:e3:07:ac:7e:9e:5b:37:2c:6c:a4:8a:86: 14:8d:67:e8:f0:d5:b3:bd:16:f8:a9:4a:e6:af:51: 47:27:21:d5:60:21:50:7c:33:eb:b6:99:e1:d5:5d: 4b:0b:2c:57:4f:09:20:e0:35:3a:1b:36:5d:b4:d0: 78:98:f2:97:1b:df:5a:4b:d3:28:fa:53:31:af:55: 43:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:76:16:89:A1:B2:31:5F:6A:FF:92:67:B8:49:27:84:74:19:79:4B X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/13YWiaGyMV9q_5JnuEknhHQZeUs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.224.0/20 Signature Algorithm: sha256WithRSAEncryption 3d:c9:e9:f4:5b:a5:ef:f5:2a:63:63:87:8a:96:65:26:b8:45: a0:21:81:44:be:47:82:49:57:25:4d:40:c9:40:87:68:8e:e7: 6c:fb:c7:61:f4:ed:c3:30:ad:e5:51:85:17:17:82:30:f5:c0: e0:db:e0:f7:e6:97:04:7e:2a:a1:70:8a:00:e9:9a:ba:f2:e7: 26:e1:ae:dd:10:9e:2c:90:35:15:76:4c:34:6b:1e:0a:14:ad: cd:79:2b:cf:9f:e3:34:6b:05:e5:b3:3c:a3:2d:6f:8b:00:24: 41:ee:7a:ee:b5:0b:f6:f5:5c:19:5a:bf:aa:d2:26:0c:4e:18: 07:8b:29:48:ad:96:c1:64:e3:45:ef:f4:f0:a4:e1:05:30:85: 4b:e5:37:b5:45:52:10:84:c0:f0:39:46:ba:28:87:64:5b:ae: 7a:cb:ea:92:db:5b:e7:0d:bc:47:94:22:b0:9f:1a:b7:17:7b: 26:3f:ab:9c:97:e1:28:fb:0b:cb:9c:98:8e:12:93:b5:cd:f9: 42:a1:4b:b8:e8:7c:6f:9f:fc:53:d5:4d:4c:c0:2c:b3:92:d8: 28:70:d1:7e:da:71:60:97:a7:1c:b8:1a:2c:98:e4:a7:59:33: e1:6d:c7:52:02:73:a0:c8:44:dc:af:31:2c:9d:b1:b4:78:17: b4:42:28:17 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIfUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzMzBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQ3NzYxNjg5QTFCMjMx NUY2QUZGOTI2N0I4NDkyNzg0NzQxOTc5NEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCof1Tbs6/QZLY27gKJZIk6Shsb8pTipNQXB9nzRs+heRQMxaUH TNanojoJrz74g6eqe0unYggPALHdBSGlL7a2WEggY/2Q7jCqWSBhAWT9DZ6b5AN3 NF4fSkj/AAcNZIwZXWfScnCFiYP6rcyXyjunpVaOfRSc+Dg/iIsq4rEPQfkYLr89 NZOhyOBDcX0MYdxpOY/Y5gqAKt4lLeE1fV488enjYBh75nB/nDdTZKnSMmRojuo4 U+MHrH6eWzcsbKSKhhSNZ+jw1bO9FvipSuavUUcnIdVgIVB8M+u2meHVXUsLLFdP CSDgNTobNl200HiY8pcb31pL0yj6UzGvVUOdAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU13YWiaGyMV9q/5JnuEknhHQZeUswHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzEzWVdpYUd5TVY5cV81Sm51 RWtuaEhRWmVVcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQ9 PeAwDQYJKoZIhvcNAQELBQADggEBAD3J6fRbpe/1KmNjh4qWZSa4RaAhgUS+R4JJ VyVNQMlAh2iO52z7x2H07cMwreVRhRcXgjD1wODb4PfmlwR+KqFwigDpmrry5ybh rt0QniyQNRV2TDRrHgoUrc15K8+f4zRrBeWzPKMtb4sAJEHueu61C/b1XBlav6rS JgxOGAeLKUitlsFk40Xv9PCk4QUwhUvlN7VFUhCEwPA5Rrooh2RbrnrL6pLbW+cN vEeUIrCfGrcXeyY/q5yX4Sj7C8ucmI4Sk7XN+UKhS7jofG+f/FPVTUzALLOS2Chw 0X7acWCXpxy4GiyY5KdZM+Ftx1ICc6DIRNyvMSydsbR4F7RCKBc= -----END CERTIFICATE-----Generated at Fri Nov 22 14:13:18 2024 by rpki-client on console-fra.rpki-client.org