$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/KmW-_Px9pzMPY3PwiH-bttzz5CA.roa File: KmW-_Px9pzMPY3PwiH-bttzz5CA.roa (raw, json) Hash identifier: c9tDXmxscmRIejv1RGt46dO0OenLg5jgrPAepFO6M9g= Subject key identifier: 2A:65:BE:FC:FC:7D:A7:33:0F:63:73:F0:88:7F:9B:B6:DC:F3:E4:20 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2293 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/KmW-_Px9pzMPY3PwiH-bttzz5CA.roa Signing time: Mon 26 Aug 2024 05:34:09 +0000 ROA not before: Mon 26 Aug 2024 05:34:09 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 211.76.56.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8851 (0x2293) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:34:09 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2A65BEFCFC7DA7330F6373F0887F9BB6DCF3E420 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:34:0a:f9:9c:9a:b8:74:5f:db:44:14:80:b0: aa:45:08:cd:cc:c5:fc:03:58:49:c9:9f:fb:fd:45: 88:16:23:a7:e9:5a:e0:f3:67:a0:0c:d4:ec:fe:b8: ce:e6:06:dd:ce:57:94:c3:aa:44:4f:63:ac:25:eb: b5:0b:d1:d6:5f:ea:ca:32:b6:f0:00:02:36:3c:1c: d0:db:30:5b:6e:a6:b7:c9:cf:33:32:49:28:15:52: 55:a0:c5:27:5e:62:8b:e0:f3:6e:10:da:46:3f:29: c7:36:6a:67:97:10:95:da:78:f4:11:e4:ff:f3:d8: 1c:a1:ca:2d:55:45:bf:94:7e:fb:9f:8c:e1:27:06: c2:6e:9c:72:5e:15:fb:9c:5d:3b:d0:a5:31:c6:b9: aa:ff:52:81:7c:8f:08:96:ae:a8:28:0d:26:d7:a0: dc:e5:71:5e:e8:17:19:5e:33:3b:c5:fe:b5:92:f0: 34:6a:46:81:a9:60:70:67:df:b5:69:c8:9d:b6:aa: 5b:8a:72:7d:02:be:73:b1:1b:67:38:f8:8c:2a:a7: 9c:d5:36:df:95:7c:bd:8e:9c:51:ba:fa:dd:d9:cc: f2:f4:4e:d6:d8:ff:bf:6f:a9:55:7f:5f:e8:8f:bf: 2b:46:a8:07:74:28:0e:d4:ac:48:53:4c:d3:2e:a1: 86:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:65:BE:FC:FC:7D:A7:33:0F:63:73:F0:88:7F:9B:B6:DC:F3:E4:20 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/KmW-_Px9pzMPY3PwiH-bttzz5CA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.56.0/22 Signature Algorithm: sha256WithRSAEncryption 69:36:64:99:3d:24:46:c0:9b:13:a0:c7:51:5f:f7:fb:90:61: 97:c5:b4:31:29:5c:a9:ef:98:6d:c0:b8:dd:2d:e3:e4:10:7b: da:1b:9a:0d:56:c4:1d:e1:06:8f:fe:23:a1:da:74:61:86:2c: 30:f9:e6:02:ce:07:41:0d:fb:f7:f7:b1:3f:71:89:a7:2b:02: 01:cd:d6:27:02:7f:ac:2c:5d:2a:1c:a3:dd:41:d3:02:5d:a3: 3a:51:ab:aa:ad:43:1d:c2:d8:3d:b8:27:a8:c2:5f:50:56:da: 9d:84:a2:f1:77:5e:f0:94:db:c7:b1:e6:4c:d6:2a:f6:33:02: 53:55:2d:ad:78:b6:8c:ff:75:f4:4f:f6:45:df:01:b1:01:79: 6d:cd:d9:52:e9:1c:2a:13:59:2d:58:3a:71:18:17:b4:69:55: 4f:6e:30:b8:fc:96:00:2a:8b:f3:76:ba:17:1d:f4:12:68:c0: ab:e1:0d:ad:ae:43:74:96:4a:1a:29:2b:e2:cd:6b:00:e7:02: a8:cc:b8:98:7d:24:a3:6b:d2:e7:d3:27:d7:b4:b5:41:9a:39: b8:11:4c:5d:00:4c:20:af:d7:b7:bb:73:da:09:b2:f3:a8:10: 90:9a:30:b1:34:b9:78:77:ba:eb:61:b1:d3:c8:59:fc:91:58: ae:d9:58:f5 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIpMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTM0MDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDJBNjVCRUZDRkM3REE3 MzMwRjYzNzNGMDg4N0Y5QkI2RENGM0U0MjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDtNAr5nJq4dF/bRBSAsKpFCM3MxfwDWEnJn/v9RYgWI6fpWuDz Z6AM1Oz+uM7mBt3OV5TDqkRPY6wl67UL0dZf6soytvAAAjY8HNDbMFtuprfJzzMy SSgVUlWgxSdeYovg824Q2kY/Kcc2ameXEJXaePQR5P/z2Byhyi1VRb+UfvufjOEn BsJunHJeFfucXTvQpTHGuar/UoF8jwiWrqgoDSbXoNzlcV7oFxleMzvF/rWS8DRq RoGpYHBn37VpyJ22qluKcn0CvnOxG2c4+Iwqp5zVNt+VfL2OnFG6+t3ZzPL0TtbY /79vqVV/X+iPvytGqAd0KA7UrEhTTNMuoYYlAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUKmW+/Px9pzMPY3PwiH+bttzz5CAwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0ttVy1fUHg5cHpNUFkzUHdp SC1idHR6ejVDQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALT TDgwDQYJKoZIhvcNAQELBQADggEBAGk2ZJk9JEbAmxOgx1Ff9/uQYZfFtDEpXKnv mG3AuN0t4+QQe9obmg1WxB3hBo/+I6HadGGGLDD55gLOB0EN+/f3sT9xiacrAgHN 1icCf6wsXSoco91B0wJdozpRq6qtQx3C2D24J6jCX1BW2p2EovF3XvCU28ex5kzW KvYzAlNVLa14toz/dfRP9kXfAbEBeW3N2VLpHCoTWS1YOnEYF7RpVU9uMLj8lgAq i/N2uhcd9BJowKvhDa2uQ3SWShopK+LNawDnAqjMuJh9JKNr0ufTJ9e0tUGaObgR TF0ATCCv17e7c9oJsvOoEJCaMLE0uXh3uuthsdPIWfyRWK7ZWPU= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:41 2024 by rpki-client on console-ams.rpki-client.org