$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/AK7tpmf7SKb10Enp5uGurm2jLpM.roa File: AK7tpmf7SKb10Enp5uGurm2jLpM.roa (raw, json) Hash identifier: TeOGCKRxvp2/n4eWR1B6tLiXrTFYbFIbZNiSJEK4M+A= Subject key identifier: 00:AE:ED:A6:67:FB:48:A6:F5:D0:49:E9:E6:E1:AE:AE:6D:A3:2E:93 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 21E8 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/AK7tpmf7SKb10Enp5uGurm2jLpM.roa Signing time: Mon 26 Aug 2024 05:33:27 +0000 ROA not before: Mon 26 Aug 2024 05:33:27 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24163 IP address blocks: 61.56.176.0/20 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8680 (0x21e8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:27 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=00AEEDA667FB48A6F5D049E9E6E1AEAE6DA32E93 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:35:4e:80:57:8b:d3:42:bd:09:dc:a7:45:7b: f4:a9:12:3e:a4:cc:9d:56:7e:97:d8:4b:92:db:03: aa:9c:e4:7e:55:7e:b1:5a:8e:c9:11:e0:3c:59:65: 6d:19:4e:f9:cd:11:53:51:28:5b:07:46:00:a4:a0: a6:a8:8e:23:e3:95:13:28:5a:6c:7a:33:da:24:c3: 25:28:dd:c7:c4:4b:14:8d:4a:99:fe:3e:6a:cb:0f: 65:99:70:3f:fb:4c:2f:cb:21:c8:42:f6:fa:6e:6c: 97:f2:b5:4f:02:2a:7f:4c:14:5e:81:94:5e:8e:8e: aa:1e:41:88:12:63:06:30:ee:30:9b:05:15:07:50: e8:d3:60:38:1b:bc:25:5b:24:ca:05:03:6d:04:30: df:ee:61:76:fa:23:7a:8d:18:44:cb:7a:24:54:77: 2d:63:8c:94:41:e1:b6:f1:ba:2c:f5:d7:af:27:40: ed:dd:34:79:8f:df:43:37:02:bf:1f:4c:9d:93:26: 91:0e:c7:30:8d:a7:3e:9d:1b:30:80:74:05:5d:eb: e9:af:9a:79:ae:72:28:f9:2f:a5:64:e2:0a:29:ea: df:24:e0:62:c3:90:0e:15:39:01:3c:57:50:77:5f: fa:61:3d:a1:43:af:2d:13:f6:34:e0:4e:05:ce:f0: a6:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:AE:ED:A6:67:FB:48:A6:F5:D0:49:E9:E6:E1:AE:AE:6D:A3:2E:93 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/AK7tpmf7SKb10Enp5uGurm2jLpM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.56.176.0/20 Signature Algorithm: sha256WithRSAEncryption 53:34:94:f3:9c:5b:62:02:84:fb:e4:af:12:08:71:a0:de:ef: 74:53:82:b8:13:7a:84:dd:0c:22:b2:bc:13:6c:a0:f4:67:39: 39:f1:2a:b1:86:de:bc:1d:d3:46:2b:ef:62:d3:4f:5c:80:34: 29:ed:60:cf:84:37:fe:42:be:76:9c:23:3c:e0:d8:c8:b9:89: 81:9b:64:7d:f2:70:e3:3f:c0:69:69:7b:8a:aa:e4:0d:ca:e1: 21:27:3f:21:a7:0b:0b:84:47:c7:40:68:02:3f:e1:f5:10:f3: ed:69:55:91:36:66:cc:9d:f6:e8:95:34:db:5c:4f:99:46:45: 04:d9:f8:b8:6f:ee:cc:11:12:e5:92:a0:3c:66:06:64:61:e3: 2c:6e:6b:62:26:0d:8c:0a:00:72:ab:78:99:b9:aa:45:13:23: 66:a7:50:13:87:72:c6:a5:99:28:be:3c:a1:07:e7:c9:ea:13: 72:41:8b:db:cc:93:8c:fe:25:93:6a:20:34:ea:4a:b2:ab:1b: f8:d8:9e:26:6b:4f:b2:6d:9b:6a:7c:25:22:f8:23:49:4f:6c: 79:0e:ef:b0:62:96:a0:47:c1:39:8c:8f:f9:1a:0f:86:68:be: 60:75:5e:39:10:ce:63:3c:9a:24:dc:19:a5:91:db:7d:46:10: e3:b8:39:51 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIegwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzMjdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDAwQUVFREE2NjdGQjQ4 QTZGNUQwNDlFOUU2RTFBRUFFNkRBMzJFOTMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCmNU6AV4vTQr0J3KdFe/SpEj6kzJ1WfpfYS5LbA6qc5H5VfrFa jskR4DxZZW0ZTvnNEVNRKFsHRgCkoKaojiPjlRMoWmx6M9okwyUo3cfESxSNSpn+ PmrLD2WZcD/7TC/LIchC9vpubJfytU8CKn9MFF6BlF6OjqoeQYgSYwYw7jCbBRUH UOjTYDgbvCVbJMoFA20EMN/uYXb6I3qNGETLeiRUdy1jjJRB4bbxuiz1168nQO3d NHmP30M3Ar8fTJ2TJpEOxzCNpz6dGzCAdAVd6+mvmnmucij5L6Vk4gop6t8k4GLD kA4VOQE8V1B3X/phPaFDry0T9jTgTgXO8KaXAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUAK7tpmf7SKb10Enp5uGurm2jLpMwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0FLN3RwbWY3U0tiMTBFbnA1 dUd1cm0yakxwTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQ9 OLAwDQYJKoZIhvcNAQELBQADggEBAFM0lPOcW2IChPvkrxIIcaDe73RTgrgTeoTd DCKyvBNsoPRnOTnxKrGG3rwd00Yr72LTT1yANCntYM+EN/5CvnacIzzg2Mi5iYGb ZH3ycOM/wGlpe4qq5A3K4SEnPyGnCwuER8dAaAI/4fUQ8+1pVZE2Zsyd9uiVNNtc T5lGRQTZ+Lhv7swREuWSoDxmBmRh4yxua2ImDYwKAHKreJm5qkUTI2anUBOHcsal mSi+PKEH58nqE3JBi9vMk4z+JZNqIDTqSrKrG/jYniZrT7Jtm2p8JSL4I0lPbHkO 77BilqBHwTmMj/kaD4ZovmB1XjkQzmM8miTcGaWR231GEOO4OVE= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:40 2024 by rpki-client on console-ams.rpki-client.org