$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/77fJ3ZR6_r0oN1OYAtPA4flyH0k.roa File: 77fJ3ZR6_r0oN1OYAtPA4flyH0k.roa (raw, json) Hash identifier: 8hWuplzIlV+ngx+/bfCa5JbB+e5ZH5fI5K1hD+hfY7Q= Subject key identifier: EF:B7:C9:DD:94:7A:FE:BD:28:37:53:98:02:D3:C0:E1:F9:72:1F:49 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 226A Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/77fJ3ZR6_r0oN1OYAtPA4flyH0k.roa Signing time: Mon 26 Aug 2024 05:33:59 +0000 ROA not before: Mon 26 Aug 2024 05:33:59 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24163 IP address blocks: 211.76.48.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:55:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8810 (0x226a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:59 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=EFB7C9DD947AFEBD2837539802D3C0E1F9721F49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:4a:49:b2:d6:73:cb:9f:5b:b1:be:75:be:db: 94:6d:77:1b:01:27:b3:5f:da:76:0a:ee:e3:ab:0f: 11:37:10:63:74:62:7b:7d:0c:73:81:4a:b4:0d:46: 0d:d3:e7:bd:61:e2:99:20:27:08:6a:53:cb:60:c5: 4f:35:c1:d9:32:89:e9:c8:5f:af:ed:50:89:d0:2d: 3d:28:dc:50:24:38:56:1b:88:36:fb:b7:5c:7d:75: e8:bb:6d:66:69:20:87:d6:a1:58:ab:50:75:f2:68: f3:fc:60:07:e7:dd:fd:9a:1f:63:0d:ee:5d:62:2d: 5a:0f:3a:99:ae:60:7f:ea:e7:25:c0:d0:8e:f6:c2: 38:46:ba:0a:26:eb:70:e7:75:56:90:6e:b9:f1:df: 24:95:f2:77:21:4a:5a:b3:09:0d:2f:71:eb:23:7c: 9f:1f:2a:dc:35:92:f5:55:9f:e2:79:bf:41:61:33: 60:59:a0:1f:c6:34:47:d8:b4:7e:5f:c1:10:1a:b7: 4c:f3:62:49:69:3e:31:49:38:4c:a8:ec:ef:7c:2e: a8:75:04:e3:44:32:70:72:ce:6f:12:9a:41:a0:07: 2f:38:68:8a:92:d4:4e:30:2c:fa:75:02:d1:36:09: 61:51:80:18:e8:20:ec:2a:29:a6:ca:86:e6:2c:88: e4:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:B7:C9:DD:94:7A:FE:BD:28:37:53:98:02:D3:C0:E1:F9:72:1F:49 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/77fJ3ZR6_r0oN1OYAtPA4flyH0k.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.48.0/22 Signature Algorithm: sha256WithRSAEncryption 02:98:2f:57:d9:34:e8:c4:b9:02:2e:d8:cd:e0:a1:1a:8c:bc: 2d:fe:42:a4:5d:ad:a4:fc:2d:56:bb:c5:e0:86:d8:cf:71:13: ec:f5:a7:fd:6a:a8:98:33:0a:e5:a8:d3:6b:fd:03:5e:fa:88: e7:84:66:b3:33:18:42:58:3b:9f:43:e8:41:36:e9:95:a6:44: 49:32:3d:38:ee:a1:95:da:67:bf:aa:ad:c0:4e:5e:20:03:f7: 00:e3:a2:47:e6:fb:a9:1b:2b:87:4e:7c:07:bc:d6:73:fd:d2: 69:b1:04:14:b6:3f:fb:93:c1:66:66:da:9f:b9:3f:da:d0:42: 09:60:bd:46:e4:73:63:ce:76:e6:57:31:d3:cc:c7:54:c1:8d: 37:d2:36:3f:c2:ce:1c:ee:cc:52:80:f0:68:39:67:62:95:ab: e8:c8:2d:a4:fd:d8:6d:9e:d4:c7:67:6e:6a:e1:cf:20:a4:91: cc:0e:08:4b:12:8d:75:86:4f:b7:48:70:97:a7:9c:04:43:ee: 8c:93:39:b7:58:34:46:73:45:16:ba:07:eb:25:2a:a2:a8:f0: eb:74:69:8c:57:5b:c0:f7:cf:cb:ed:b9:b8:d7:dc:a1:34:98: d7:70:26:c3:ef:d6:5e:74:60:fe:cd:1b:43:9f:a3:d9:08:e6: 2e:c7:03:e7 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICImowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzNTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEVGQjdDOUREOTQ3QUZF QkQyODM3NTM5ODAyRDNDMEUxRjk3MjFGNDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCvSkmy1nPLn1uxvnW+25RtdxsBJ7Nf2nYK7uOrDxE3EGN0Ynt9 DHOBSrQNRg3T571h4pkgJwhqU8tgxU81wdkyienIX6/tUInQLT0o3FAkOFYbiDb7 t1x9dei7bWZpIIfWoVirUHXyaPP8YAfn3f2aH2MN7l1iLVoPOpmuYH/q5yXA0I72 wjhGugom63DndVaQbrnx3ySV8nchSlqzCQ0vcesjfJ8fKtw1kvVVn+J5v0FhM2BZ oB/GNEfYtH5fwRAat0zzYklpPjFJOEyo7O98Lqh1BONEMnByzm8SmkGgBy84aIqS 1E4wLPp1AtE2CWFRgBjoIOwqKabKhuYsiOT5AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU77fJ3ZR6/r0oN1OYAtPA4flyH0kwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzc3ZkozWlI2X3Iwb04xT1lB dFBBNGZseUgway5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALT TDAwDQYJKoZIhvcNAQELBQADggEBAAKYL1fZNOjEuQIu2M3goRqMvC3+QqRdraT8 LVa7xeCG2M9xE+z1p/1qqJgzCuWo02v9A176iOeEZrMzGEJYO59D6EE26ZWmREky PTjuoZXaZ7+qrcBOXiAD9wDjokfm+6kbK4dOfAe81nP90mmxBBS2P/uTwWZm2p+5 P9rQQglgvUbkc2POduZXMdPMx1TBjTfSNj/CzhzuzFKA8Gg5Z2KVq+jILaT92G2e 1MdnbmrhzyCkkcwOCEsSjXWGT7dIcJennARD7oyTObdYNEZzRRa6B+slKqKo8Ot0 aYxXW8D3z8vtubjX3KE0mNdwJsPv1l50YP7NG0Ofo9kI5i7HA+c= -----END CERTIFICATE-----Generated at Mon Nov 25 20:56:44 2024 by rpki-client on console-fra.rpki-client.org