$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/NBXwfziOIf-wdIFaQ9tyhZpndY8.roa File: NBXwfziOIf-wdIFaQ9tyhZpndY8.roa (raw, json) Hash identifier: qieVPfTDR4Bs1q0XnW+jzgyo9C+xNCgv6GYBzQ9sCnc= Subject key identifier: 34:15:F0:7F:38:8E:21:FF:B0:74:81:5A:43:DB:72:85:9A:67:75:8F Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 229E Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/NBXwfziOIf-wdIFaQ9tyhZpndY8.roa Signing time: Mon 26 Aug 2024 05:34:11 +0000 ROA not before: Mon 26 Aug 2024 05:34:11 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24165 IP address blocks: 61.58.124.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8862 (0x229e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:34:11 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3415F07F388E21FFB074815A43DB72859A67758F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:39:16:88:db:ca:e8:3c:05:47:a9:eb:ca:e1: ef:24:4a:87:cf:5b:36:e0:cf:e2:ba:f7:9e:ad:93: 1e:62:64:23:28:13:0d:b8:24:ff:af:64:14:7e:29: 21:b9:e5:85:a1:a7:c1:82:bf:8a:9a:51:5b:44:5a: 12:99:b0:77:28:36:d0:ab:88:11:01:e0:51:61:c9: 52:14:04:ce:b2:bf:4d:59:8b:7c:0f:be:4e:79:3a: 1f:47:43:d0:22:d7:c9:18:c5:45:26:b5:e3:73:1e: a3:e2:46:5f:e1:4c:d9:28:00:5b:92:14:68:c2:a4: 18:48:14:15:73:da:87:58:d3:ab:c5:70:a0:54:a1: fb:6b:e2:3e:f2:03:fd:fe:26:ca:ff:9c:62:ca:e8: cf:0a:14:17:bb:fa:a4:6d:64:71:e7:ad:b9:69:95: 33:f4:3d:30:81:7d:e7:f9:5e:64:88:90:b3:cc:19: c3:3e:16:ba:43:f3:90:84:7e:92:70:9b:1f:a8:8d: 5b:5d:5e:a8:38:9f:8d:b7:a4:14:d6:ab:0f:b0:97: 80:a6:e3:e0:89:e1:04:e6:99:3c:23:10:ac:9e:3e: 38:cb:fa:43:16:44:38:97:e5:10:d9:d7:21:b5:06: 26:6c:18:c8:69:03:17:70:2e:20:ce:99:81:f8:54: 1b:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:15:F0:7F:38:8E:21:FF:B0:74:81:5A:43:DB:72:85:9A:67:75:8F X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/NBXwfziOIf-wdIFaQ9tyhZpndY8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.58.124.0/22 Signature Algorithm: sha256WithRSAEncryption 67:a7:40:df:39:a3:78:34:1a:b7:30:8c:65:1c:ce:b3:2c:90: a4:13:ca:06:d5:52:c1:54:54:6e:1e:1b:e6:79:ec:c9:36:6c: ab:2a:b3:18:62:4c:4a:6d:7d:37:dc:36:10:21:b5:0a:6b:8d: 40:c3:a5:8f:7e:39:7c:3f:45:12:27:4b:b8:57:5c:19:0e:72: 6b:17:55:8d:0f:8f:25:85:c3:1e:30:9a:d2:ee:d9:19:1e:da: 9e:78:e3:d6:7b:f7:89:da:40:a5:53:29:af:9b:48:33:f4:a6: 27:e9:ab:1a:a1:b2:d3:4f:a1:0d:7a:dc:ea:b7:c2:c1:a2:cc: 66:3e:d4:61:9e:0e:a6:47:f3:4f:19:7e:12:9f:84:05:23:33: 60:42:73:84:c5:06:8d:66:b0:55:8d:af:8a:26:1d:54:5a:e6: 0f:56:4d:f9:5b:23:64:9a:04:76:e7:d9:63:31:2b:82:6b:12: 15:85:ae:fd:21:fc:f8:0f:16:c2:c0:49:66:55:a0:29:8e:f4: fd:37:e0:f4:62:6b:39:55:72:78:7a:7e:b9:20:9d:00:cf:9d: 0c:07:62:84:93:bb:af:7d:d4:82:50:e5:2a:68:82:51:8d:d2: bd:2e:14:1a:d2:30:bf:b8:1a:65:fe:71:80:c8:a3:e2:81:e5: 92:2a:8f:32 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIp4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTM0MTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDM0MTVGMDdGMzg4RTIx RkZCMDc0ODE1QTQzREI3Mjg1OUE2Nzc1OEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/ORaI28roPAVHqevK4e8kSofPWzbgz+K6956tkx5iZCMoEw24 JP+vZBR+KSG55YWhp8GCv4qaUVtEWhKZsHcoNtCriBEB4FFhyVIUBM6yv01Zi3wP vk55Oh9HQ9Ai18kYxUUmteNzHqPiRl/hTNkoAFuSFGjCpBhIFBVz2odY06vFcKBU oftr4j7yA/3+Jsr/nGLK6M8KFBe7+qRtZHHnrblplTP0PTCBfef5XmSIkLPMGcM+ FrpD85CEfpJwmx+ojVtdXqg4n423pBTWqw+wl4Cm4+CJ4QTmmTwjEKyePjjL+kMW RDiX5RDZ1yG1BiZsGMhpAxdwLiDOmYH4VBujAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUNBXwfziOIf+wdIFaQ9tyhZpndY8wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL05CWHdmemlPSWYtd2RJRmFR OXR5aFpwbmRZOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAI9 OnwwDQYJKoZIhvcNAQELBQADggEBAGenQN85o3g0GrcwjGUczrMskKQTygbVUsFU VG4eG+Z57Mk2bKsqsxhiTEptfTfcNhAhtQprjUDDpY9+OXw/RRInS7hXXBkOcmsX VY0PjyWFwx4wmtLu2Rke2p5449Z794naQKVTKa+bSDP0pifpqxqhstNPoQ163Oq3 wsGizGY+1GGeDqZH808ZfhKfhAUjM2BCc4TFBo1msFWNr4omHVRa5g9WTflbI2Sa BHbn2WMxK4JrEhWFrv0h/PgPFsLASWZVoCmO9P034PRiazlVcnh6frkgnQDPnQwH YoSTu6991IJQ5SpoglGN0r0uFBrSML+4GmX+cYDIo+KB5ZIqjzI= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:41 2024 by rpki-client on console-ams.rpki-client.org