$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/O2spXk0z2fxXMlb0VqM6KXPB3PM.roa File: O2spXk0z2fxXMlb0VqM6KXPB3PM.roa (raw, json) Hash identifier: p0wAZDgjEju1PyrK++4vFAO+VyXRzNjMaRY1t4Ce/jw= Subject key identifier: 3B:6B:29:5E:4D:33:D9:FC:57:32:56:F4:56:A3:3A:29:73:C1:DC:F3 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 22C6 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/O2spXk0z2fxXMlb0VqM6KXPB3PM.roa Signing time: Mon 26 Aug 2024 05:34:21 +0000 ROA not before: Mon 26 Aug 2024 05:34:21 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 61.58.96.0/20 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8902 (0x22c6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:34:21 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3B6B295E4D33D9FC573256F456A33A2973C1DCF3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:38:f8:22:4a:8c:d4:35:1e:7a:cb:4b:3f:23: aa:c5:98:b6:9d:f0:8b:91:fa:a2:d3:7e:f6:5b:b1: 68:99:13:f8:4a:5b:10:43:df:63:d8:1d:34:cf:3e: 73:ec:e5:ee:8c:59:98:51:c1:cd:af:5e:07:0f:fa: aa:60:e5:12:05:1d:4c:d4:be:fe:6c:96:26:12:f4: 09:db:91:9a:27:ee:62:1f:dd:c0:a0:40:de:7c:0d: a0:f5:57:e0:b5:b1:d5:5f:ab:cf:79:7b:ba:83:19: 2d:34:3e:9d:f0:af:cd:c0:2e:37:13:ae:cc:7c:96: 88:dd:0a:85:3e:82:ca:ce:d0:30:f2:8d:4a:fa:da: b0:2d:12:9b:5c:6a:e4:e3:4f:a8:54:c3:06:f7:b6: da:29:01:02:76:3f:b8:69:29:11:94:96:1d:27:a2: 7d:5c:5d:c0:cb:fd:4a:97:46:c9:fe:44:93:12:81: 5d:6d:26:d2:f1:32:54:c9:88:f5:b7:92:ca:05:c1: 96:52:fb:7c:98:db:86:af:5d:05:45:ea:5f:e9:d4: 8b:6a:51:8b:b8:76:c8:85:ec:cd:7a:61:b0:52:83: ee:7b:c9:54:12:4e:0c:ac:1c:0e:0e:82:17:58:0f: df:61:59:a8:90:d8:09:7d:00:0e:a4:b6:05:1d:bc: 92:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:6B:29:5E:4D:33:D9:FC:57:32:56:F4:56:A3:3A:29:73:C1:DC:F3 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/O2spXk0z2fxXMlb0VqM6KXPB3PM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.58.96.0/20 Signature Algorithm: sha256WithRSAEncryption 91:6f:d4:d9:38:13:df:67:2d:e1:d6:34:b0:4f:2f:75:d3:01: ae:5c:2e:40:6b:36:3a:a0:18:c9:44:3e:68:d6:d6:19:56:b7: 96:03:8e:a9:4c:fd:56:ec:cf:c2:56:45:9f:93:55:5f:51:59: da:87:08:81:da:9f:08:a7:21:57:5c:33:2b:0a:ef:ad:8e:b0: 9d:70:67:84:f9:50:30:f5:8d:ab:5f:37:47:a8:f9:5e:60:c1: 01:95:f9:3d:a1:9c:ab:b2:39:e8:8d:19:14:85:e3:a6:4b:5a: 06:34:ed:79:c3:df:ce:c0:48:10:2c:51:eb:a0:f6:85:c5:88: ac:3b:ba:c7:fb:85:57:88:63:4b:a5:7a:3e:71:a3:c4:43:0d: e2:f2:24:cd:03:90:f5:e8:b5:cc:9e:5c:69:17:dd:16:47:14: a4:04:4f:c3:8b:bd:b1:81:16:38:70:2d:54:66:32:06:93:65: ef:63:e5:0a:d3:ab:41:37:90:64:e5:f1:ef:16:84:6d:dd:51: e9:97:98:f9:f4:1c:ae:bb:41:1b:d0:43:46:45:83:d1:3b:8d: ce:3b:34:ca:b6:65:e2:95:cf:b5:1a:2b:6c:f7:98:7a:67:c8: 50:f8:8b:e8:a1:6c:d7:84:f1:19:8d:18:bd:41:72:7d:49:3d: 10:62:85:f5 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIsYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTM0MjFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNCNkIyOTVFNEQzM0Q5 RkM1NzMyNTZGNDU2QTMzQTI5NzNDMURDRjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJOPgiSozUNR56y0s/I6rFmLad8IuR+qLTfvZbsWiZE/hKWxBD 32PYHTTPPnPs5e6MWZhRwc2vXgcP+qpg5RIFHUzUvv5sliYS9AnbkZon7mIf3cCg QN58DaD1V+C1sdVfq895e7qDGS00Pp3wr83ALjcTrsx8lojdCoU+gsrO0DDyjUr6 2rAtEptcauTjT6hUwwb3ttopAQJ2P7hpKRGUlh0non1cXcDL/UqXRsn+RJMSgV1t JtLxMlTJiPW3ksoFwZZS+3yY24avXQVF6l/p1ItqUYu4dsiF7M16YbBSg+57yVQS TgysHA4OghdYD99hWaiQ2Al9AA6ktgUdvJKdAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUO2spXk0z2fxXMlb0VqM6KXPB3PMwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL08yc3BYazB6MmZ4WE1sYjBW cU02S1hQQjNQTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQ9 OmAwDQYJKoZIhvcNAQELBQADggEBAJFv1Nk4E99nLeHWNLBPL3XTAa5cLkBrNjqg GMlEPmjW1hlWt5YDjqlM/Vbsz8JWRZ+TVV9RWdqHCIHanwinIVdcMysK762OsJ1w Z4T5UDD1jatfN0eo+V5gwQGV+T2hnKuyOeiNGRSF46ZLWgY07XnD387ASBAsUeug 9oXFiKw7usf7hVeIY0ulej5xo8RDDeLyJM0DkPXotcyeXGkX3RZHFKQET8OLvbGB FjhwLVRmMgaTZe9j5QrTq0E3kGTl8e8WhG3dUemXmPn0HK67QRvQQ0ZFg9E7jc47 NMq2ZeKVz7UaK2z3mHpnyFD4i+ihbNeE8RmNGL1Bcn1JPRBihfU= -----END CERTIFICATE-----Generated at Fri Nov 22 14:13:18 2024 by rpki-client on console-fra.rpki-client.org