$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/C6n4aYxW89_IkEDhByPpZ4Dsfjc.roa File: C6n4aYxW89_IkEDhByPpZ4Dsfjc.roa (raw, json) Hash identifier: sFNYn6CL/N4lT23ceHuifyZ153nAPHBNlo0XamOVO7A= Subject key identifier: 0B:A9:F8:69:8C:56:F3:DF:C8:90:40:E1:07:23:E9:67:80:EC:7E:37 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2226 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/C6n4aYxW89_IkEDhByPpZ4Dsfjc.roa Signing time: Mon 26 Aug 2024 05:33:44 +0000 ROA not before: Mon 26 Aug 2024 05:33:44 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24163 IP address blocks: 61.60.215.128/25 maxlen: 25 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8742 (0x2226) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:44 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=0BA9F8698C56F3DFC89040E10723E96780EC7E37 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:5f:bb:3f:fd:21:59:19:0f:b6:f5:71:46:2b: 82:10:c5:a4:9b:69:a7:53:a9:84:10:79:0c:9f:3e: 68:10:07:1b:23:e7:85:e9:bb:78:0b:d8:76:f0:af: 14:95:0f:7d:09:70:42:d5:99:89:4f:97:66:7d:07: 54:a9:b7:cc:a9:fe:99:e7:99:0a:90:40:92:62:bb: c4:f4:6e:d0:a7:d6:fa:4b:a0:de:19:24:91:30:ad: 46:0f:6f:8b:86:13:69:6d:59:80:57:d7:81:bc:e3: a1:ff:07:4c:15:5b:2b:7b:30:33:12:36:0b:7d:8f: dc:ae:cb:d3:c1:4b:10:9a:5b:d7:ff:60:4e:87:a7: 78:69:37:f8:30:f6:1e:4f:b6:53:91:a4:12:11:f5: ef:e4:22:08:ca:7f:a5:6b:40:34:2e:83:79:ef:0c: 32:09:6d:ae:65:88:4b:34:5b:c9:4c:e7:1c:27:9a: 83:00:53:a2:1b:05:44:3f:95:13:fd:ee:ad:77:e6: 0e:af:27:d2:91:50:66:48:06:e1:7c:bb:38:c3:fd: fb:e5:ad:1e:1b:af:67:c7:49:0f:11:0b:17:71:82: 9e:e3:93:c3:c0:d3:ea:51:16:e0:8a:64:c6:49:25: e9:c4:b7:83:d5:65:f5:5a:55:82:72:e4:af:2a:d5: 45:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:A9:F8:69:8C:56:F3:DF:C8:90:40:E1:07:23:E9:67:80:EC:7E:37 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/C6n4aYxW89_IkEDhByPpZ4Dsfjc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.60.215.128/25 Signature Algorithm: sha256WithRSAEncryption 8f:16:80:44:99:dc:97:b7:70:c7:a9:34:04:c4:79:af:3d:ff: 4a:45:4e:c4:fb:ae:37:e7:ec:55:d5:92:d0:4b:2b:c0:5f:5e: 99:de:32:44:07:ec:1d:6c:f9:61:8f:49:69:14:d6:97:da:65: c8:be:3f:a4:a0:b0:ca:76:4c:51:47:57:3b:eb:43:28:97:85: c0:5c:13:ec:ae:f7:c1:94:fa:eb:0b:db:74:2f:e6:3d:41:27: b6:3f:c4:69:f1:f8:2e:e2:28:45:5a:1c:cd:b1:c3:c2:42:f7: 2c:d6:eb:14:33:7b:dd:94:27:f2:2b:36:14:e3:fe:f5:4e:6d: ef:c6:c0:78:22:62:e3:dc:f9:3a:b4:19:be:d5:51:53:d4:15: 05:97:2a:88:0b:fa:83:4c:91:45:75:39:6a:b3:75:47:48:ef: cf:d0:da:d1:7d:4d:d0:31:f0:d6:34:fc:dc:84:5b:c9:08:f6: d3:ff:b8:e7:11:d6:34:08:1d:b2:60:30:87:ff:b3:46:e6:7c: 6f:de:ed:38:1f:b7:5c:1c:68:5c:af:4a:d9:c6:5d:04:de:03: cf:f7:b1:1b:1e:47:3c:cc:04:ef:8c:f5:7f:93:42:1a:c2:7c: 83:4a:c9:39:f5:44:3b:ef:50:f7:34:b5:9f:85:74:c6:79:c1: f6:42:86:1d -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICIiYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzNDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDBCQTlGODY5OEM1NkYz REZDODkwNDBFMTA3MjNFOTY3ODBFQzdFMzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNX7s//SFZGQ+29XFGK4IQxaSbaadTqYQQeQyfPmgQBxsj54Xp u3gL2HbwrxSVD30JcELVmYlPl2Z9B1Spt8yp/pnnmQqQQJJiu8T0btCn1vpLoN4Z JJEwrUYPb4uGE2ltWYBX14G846H/B0wVWyt7MDMSNgt9j9yuy9PBSxCaW9f/YE6H p3hpN/gw9h5PtlORpBIR9e/kIgjKf6VrQDQug3nvDDIJba5liEs0W8lM5xwnmoMA U6IbBUQ/lRP97q135g6vJ9KRUGZIBuF8uzjD/fvlrR4br2fHSQ8RCxdxgp7jk8PA 0+pRFuCKZMZJJenEt4PVZfVaVYJy5K8q1UUBAgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUC6n4aYxW89/IkEDhByPpZ4DsfjcwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0M2bjRhWXhXODlfSWtFRGhC eVBwWjREc2ZqYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgABMAcDBQc9 PNeAMA0GCSqGSIb3DQEBCwUAA4IBAQCPFoBEmdyXt3DHqTQExHmvPf9KRU7E+643 5+xV1ZLQSyvAX16Z3jJEB+wdbPlhj0lpFNaX2mXIvj+koLDKdkxRR1c760Mol4XA XBPsrvfBlPrrC9t0L+Y9QSe2P8Rp8fgu4ihFWhzNscPCQvcs1usUM3vdlCfyKzYU 4/71Tm3vxsB4ImLj3Pk6tBm+1VFT1BUFlyqIC/qDTJFFdTlqs3VHSO/P0NrRfU3Q MfDWNPzchFvJCPbT/7jnEdY0CB2yYDCH/7NG5nxv3u04H7dcHGhcr0rZxl0E3gPP 97EbHkc8zATvjPV/k0IawnyDSsk59UQ771D3NLWfhXTGecH2QoYd -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:41 2024 by rpki-client on console-ams.rpki-client.org