$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/GzY7GSBkZm6p2FzezFVC6QDdJc0.roa File: GzY7GSBkZm6p2FzezFVC6QDdJc0.roa (raw, json) Hash identifier: bdFpuQlR29Y1WvHxTxBFtQiARtzgp+MFVFWlDW/swV4= Subject key identifier: 1B:36:3B:19:20:64:66:6E:A9:D8:5C:DE:CC:55:42:E9:00:DD:25:CD Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 22D6 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/GzY7GSBkZm6p2FzezFVC6QDdJc0.roa Signing time: Mon 26 Aug 2024 05:34:25 +0000 ROA not before: Mon 26 Aug 2024 05:34:24 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4662 IP address blocks: 122.100.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8918 (0x22d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:34:24 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1B363B192064666EA9D85CDECC5542E900DD25CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:4f:9e:e5:d7:56:8b:45:21:b9:cb:c1:27:2d: 7f:e9:d8:b4:d3:09:7a:ac:e5:51:de:e8:87:8b:8b: dc:2e:4a:12:a1:e2:4b:53:46:19:ed:66:86:6f:e7: c4:f7:b3:b9:3b:e4:75:a3:e1:ad:d3:55:bb:76:c8: fd:68:91:bf:70:cb:cb:fe:21:dc:a7:c9:7e:91:85: 2b:6f:90:bf:77:eb:d8:14:d4:ef:50:17:2b:e0:0e: 43:10:b6:c0:58:d4:a5:3c:70:4c:7c:a9:56:3f:98: 87:22:e3:d0:2e:20:8e:da:bf:77:b7:14:9d:30:4f: c4:e8:27:e6:93:68:94:96:fd:cd:37:c8:75:b2:ab: 89:2c:3c:8e:fe:1d:ce:99:cc:d5:5c:9e:db:18:cc: 82:28:2e:41:fd:5b:7b:e9:07:f7:a1:52:88:43:27: c4:86:e9:20:4f:f4:0b:65:75:b0:94:ec:c5:f5:8e: 64:ca:ec:5a:90:ef:bb:87:0d:19:c1:39:52:e9:6f: 31:5d:35:fa:7e:bc:65:a9:47:5e:11:5b:66:f6:8c: 8d:ee:73:3d:56:ef:7a:70:8a:de:40:e4:df:e3:a5: 51:a5:86:e6:79:6a:26:67:f4:72:85:b5:e2:43:5f: 87:4e:70:30:6a:ec:55:5f:6b:35:81:88:ad:3a:42: 94:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:36:3B:19:20:64:66:6E:A9:D8:5C:DE:CC:55:42:E9:00:DD:25:CD X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/GzY7GSBkZm6p2FzezFVC6QDdJc0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.100.64.0/18 Signature Algorithm: sha256WithRSAEncryption 81:56:82:31:c2:c6:15:f3:1f:b2:ad:79:19:30:92:4d:f1:36: f0:ec:1d:d7:7d:86:20:9b:c6:d7:8d:2b:a6:6d:11:72:f1:28: bb:ae:25:b1:f8:b0:ce:31:5e:30:11:a1:12:90:57:30:35:dd: d2:93:58:de:0b:e3:bf:f5:f4:f8:ec:22:2f:e3:0c:43:e7:a2: 27:29:3c:f8:b9:d0:d6:c3:81:0a:6d:2a:9f:ee:94:27:d1:05: 31:74:f1:a8:ee:54:8a:3b:3e:b8:b7:35:37:17:41:20:b5:c3: c1:0c:46:b3:6b:4f:df:dd:31:08:a2:74:9f:3a:4e:04:38:dd: bd:6a:6a:c0:7f:5b:25:e7:c1:99:f1:37:25:63:c9:a0:5b:df: 19:11:9f:3a:3e:9b:97:09:e2:85:57:89:37:f1:7a:07:31:82: 79:ca:f9:f1:a6:b1:6d:c3:00:07:3b:6d:37:a1:23:b0:93:36: 2c:84:09:43:0f:cf:76:c6:45:c7:0e:36:4f:56:09:59:5e:74: be:d5:55:a6:a3:a3:74:50:2a:84:9d:83:aa:e1:ee:8a:84:24: 32:c6:e2:1e:8d:0c:a3:e6:30:b7:8f:6a:a3:bb:48:50:4d:11: 89:64:0c:62:ca:72:5a:8f:75:cd:a0:7e:c8:e8:d9:a4:de:ff: c8:5c:d7:b0 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICItYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTM0MjRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDFCMzYzQjE5MjA2NDY2 NkVBOUQ4NUNERUNDNTU0MkU5MDBERDI1Q0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYT57l11aLRSG5y8EnLX/p2LTTCXqs5VHe6IeLi9wuShKh4ktT RhntZoZv58T3s7k75HWj4a3TVbt2yP1okb9wy8v+IdynyX6RhStvkL9369gU1O9Q FyvgDkMQtsBY1KU8cEx8qVY/mIci49AuII7av3e3FJ0wT8ToJ+aTaJSW/c03yHWy q4ksPI7+Hc6ZzNVcntsYzIIoLkH9W3vpB/ehUohDJ8SG6SBP9AtldbCU7MX1jmTK 7FqQ77uHDRnBOVLpbzFdNfp+vGWpR14RW2b2jI3ucz1W73pwit5A5N/jpVGlhuZ5 aiZn9HKFteJDX4dOcDBq7FVfazWBiK06QpRbAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUGzY7GSBkZm6p2FzezFVC6QDdJc0wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0d6WTdHU0JrWm02cDJGemV6 RlZDNlFEZEpjMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAZ6 ZEAwDQYJKoZIhvcNAQELBQADggEBAIFWgjHCxhXzH7KteRkwkk3xNvDsHdd9hiCb xteNK6ZtEXLxKLuuJbH4sM4xXjARoRKQVzA13dKTWN4L47/19PjsIi/jDEPnoicp PPi50NbDgQptKp/ulCfRBTF08ajuVIo7Pri3NTcXQSC1w8EMRrNrT9/dMQiidJ86 TgQ43b1qasB/WyXnwZnxNyVjyaBb3xkRnzo+m5cJ4oVXiTfxegcxgnnK+fGmsW3D AAc7bTehI7CTNiyECUMPz3bGRccONk9WCVledL7VVaajo3RQKoSdg6rh7oqEJDLG 4h6NDKPmMLePaqO7SFBNEYlkDGLKclqPdc2gfsjo2aTe/8hc17A= -----END CERTIFICATE-----Generated at Fri Nov 22 14:13:18 2024 by rpki-client on console-fra.rpki-client.org