$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/5iD6bdheouTk3Kx-biI8nMEDdRY.roa File: 5iD6bdheouTk3Kx-biI8nMEDdRY.roa (raw, json) Hash identifier: xvQFMuTcV/zfywiMC85mREnrsonmwO7qpG4tKZj7lok= Subject key identifier: E6:20:FA:6D:D8:5E:A2:E4:E4:DC:AC:7E:6E:22:3C:9C:C1:03:75:16 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2199 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/5iD6bdheouTk3Kx-biI8nMEDdRY.roa Signing time: Mon 26 Aug 2024 05:33:08 +0000 ROA not before: Mon 26 Aug 2024 05:33:08 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 211.76.64.0/21 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8601 (0x2199) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:08 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E620FA6DD85EA2E4E4DCAC7E6E223C9CC1037516 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:02:55:22:41:c0:0a:5b:2e:97:cc:a8:9c:46: 02:d2:d3:10:5a:40:3f:c7:d9:00:fe:b3:b5:31:5f: 23:e6:1e:37:cf:7e:95:b7:d2:fa:ec:8a:90:28:1d: 20:c5:21:83:a4:ce:74:d5:eb:ab:ae:66:bf:59:57: a4:d9:d7:68:17:0d:ad:0c:36:71:00:23:7c:21:c9: cc:4c:0e:89:96:41:11:62:75:83:02:e1:fa:1b:f2: 61:b5:08:4f:30:6b:f4:5c:28:57:43:1b:86:cb:31: 46:fb:44:76:93:0f:42:3e:73:d7:b2:91:84:79:bc: 7b:72:73:ee:2a:c1:9d:b4:17:63:df:0a:75:87:b7: ee:08:2f:47:9b:ef:a4:89:b1:49:29:9a:ed:23:24: 2f:68:bc:59:c7:7a:b4:8b:90:64:40:68:d5:ca:6a: 15:9f:cc:ad:a2:dc:0e:e6:5b:73:43:79:d1:3f:f4: c0:fb:f0:69:56:33:87:6c:65:88:7c:ac:3b:52:be: e5:91:29:8c:2d:31:89:9d:82:14:00:ed:65:22:2a: af:f2:64:16:dc:c6:19:d5:b7:cc:1f:ca:d0:62:df: fb:86:df:3d:1f:57:83:c9:1a:4f:14:15:72:39:f5: 4e:3e:b1:d8:38:c1:b0:36:b5:f4:bb:97:4c:f1:6f: ac:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:20:FA:6D:D8:5E:A2:E4:E4:DC:AC:7E:6E:22:3C:9C:C1:03:75:16 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/5iD6bdheouTk3Kx-biI8nMEDdRY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.64.0/21 Signature Algorithm: sha256WithRSAEncryption 4d:80:e2:57:27:c1:77:69:b7:10:f8:7a:bc:47:db:f0:e4:2f: 0b:23:2c:44:b9:d1:68:84:d1:a7:25:d5:65:c5:12:fe:19:17: 16:ca:f0:a1:1b:44:77:ce:15:31:9d:bb:1e:28:24:0b:aa:94: 4e:e9:ee:3c:a8:74:df:3d:31:e6:03:e1:81:49:6a:41:68:15: 79:3f:32:49:45:8f:9e:87:1f:42:96:4a:80:ad:62:2f:ea:fe: 9c:86:2d:8b:07:34:8c:d2:10:bc:85:09:4d:c8:79:f4:5a:40: c7:b1:32:d8:2a:c9:f7:f5:9e:c7:e3:a5:d7:ea:9c:af:99:f2: 5d:1d:68:f6:96:a5:55:bd:56:9f:c3:a1:84:25:54:89:49:82: e8:4a:f3:8e:dc:00:91:be:62:a6:11:59:aa:97:4f:ca:f3:e4: 03:01:0a:9c:87:b1:0a:97:75:e4:13:61:3f:55:47:e2:da:c4: 92:2a:f4:2f:fc:15:61:57:40:c4:9f:52:89:3c:94:5f:63:39: 9a:2a:05:77:fd:d5:30:bd:e3:15:4c:dc:43:a5:b1:95:c3:b1: 6e:65:ea:dc:c0:b1:f6:72:4b:15:43:f1:48:f7:c0:31:5c:70: 78:b5:04:06:b0:48:41:06:21:37:8a:57:56:b0:87:23:99:c4: d7:3e:91:aa -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIZkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzMDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEU2MjBGQTZERDg1RUEy RTRFNERDQUM3RTZFMjIzQzlDQzEwMzc1MTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDUAlUiQcAKWy6XzKicRgLS0xBaQD/H2QD+s7UxXyPmHjfPfpW3 0vrsipAoHSDFIYOkznTV66uuZr9ZV6TZ12gXDa0MNnEAI3whycxMDomWQRFidYMC 4fob8mG1CE8wa/RcKFdDG4bLMUb7RHaTD0I+c9eykYR5vHtyc+4qwZ20F2PfCnWH t+4IL0eb76SJsUkpmu0jJC9ovFnHerSLkGRAaNXKahWfzK2i3A7mW3NDedE/9MD7 8GlWM4dsZYh8rDtSvuWRKYwtMYmdghQA7WUiKq/yZBbcxhnVt8wfytBi3/uG3z0f V4PJGk8UFXI59U4+sdg4wbA2tfS7l0zxb6xXAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU5iD6bdheouTk3Kx+biI8nMEDdRYwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzVpRDZiZGhlb3VUazNLeC1i aUk4bk1FRGRSWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPT TEAwDQYJKoZIhvcNAQELBQADggEBAE2A4lcnwXdptxD4erxH2/DkLwsjLES50WiE 0acl1WXFEv4ZFxbK8KEbRHfOFTGdux4oJAuqlE7p7jyodN89MeYD4YFJakFoFXk/ MklFj56HH0KWSoCtYi/q/pyGLYsHNIzSELyFCU3IefRaQMexMtgqyff1nsfjpdfq nK+Z8l0daPaWpVW9Vp/DoYQlVIlJguhK847cAJG+YqYRWaqXT8rz5AMBCpyHsQqX deQTYT9VR+LaxJIq9C/8FWFXQMSfUok8lF9jOZoqBXf91TC94xVM3EOlsZXDsW5l 6tzAsfZySxVD8Uj3wDFccHi1BAawSEEGITeKV1awhyOZxNc+kao= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:40 2024 by rpki-client on console-ams.rpki-client.org