$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/RTkuA2ac1QrEC50zF9MzZvB8TSo.roa File: RTkuA2ac1QrEC50zF9MzZvB8TSo.roa (raw, json) Hash identifier: 16CaJICKhxwT7BJeFkYgrif7fcP6SHNJPIgrPX3g6zo= Subject key identifier: 45:39:2E:03:66:9C:D5:0A:C4:0B:9D:33:17:D3:33:66:F0:7C:4D:2A Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 21C2 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/RTkuA2ac1QrEC50zF9MzZvB8TSo.roa Signing time: Mon 26 Aug 2024 05:33:19 +0000 ROA not before: Mon 26 Aug 2024 05:33:19 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 61.64.4.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8642 (0x21c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:19 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=45392E03669CD50AC40B9D3317D33366F07C4D2A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:db:ff:41:9e:18:49:e2:a0:b6:aa:29:5f:87: 89:75:41:88:56:f5:1b:02:58:ac:3a:33:39:12:d0: 9a:47:b9:97:e3:de:ea:e3:d5:3f:d4:4e:d8:58:0d: a8:5d:8c:60:d4:cd:ba:65:a7:3f:9b:d2:97:ed:de: 8a:56:07:1e:c9:f3:7e:f5:37:fc:df:eb:b8:96:25: d1:a9:8c:7d:d3:f6:c6:01:f7:72:11:02:82:44:67: a9:8e:36:94:7f:de:2f:65:14:77:60:a5:e4:2a:34: 6b:dd:4f:80:19:12:96:a3:be:6c:51:e6:93:94:02: 39:0b:d0:9c:e9:e6:0b:f6:87:eb:9c:c8:fe:bc:71: 02:00:51:86:a1:02:e6:1a:49:f2:dc:89:15:e2:3d: 44:3b:33:f3:ff:60:78:5b:12:b8:6f:fc:14:26:71: 7b:f0:8a:0a:cd:8e:12:35:72:cf:82:69:95:c0:e7: 10:c8:13:60:16:24:0f:a3:fe:91:48:60:df:47:eb: 46:4f:91:85:9c:93:29:2b:c1:2d:f2:cc:00:e8:95: 76:10:15:68:a0:60:13:cb:a1:41:47:bb:20:4a:f5: 58:ec:39:d5:3d:af:7d:09:2d:ec:79:cd:79:95:53: 4b:21:b5:67:3a:e4:75:a0:15:51:d2:c0:ab:68:ef: 7d:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:39:2E:03:66:9C:D5:0A:C4:0B:9D:33:17:D3:33:66:F0:7C:4D:2A X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/RTkuA2ac1QrEC50zF9MzZvB8TSo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.64.4.0/22 Signature Algorithm: sha256WithRSAEncryption 83:e5:7e:27:70:6c:00:80:cc:a9:66:4c:a2:94:c6:3d:7a:fb: 6b:0a:f8:63:74:90:05:31:5e:54:6a:5c:65:63:e1:ec:67:ca: db:d1:2f:6e:70:b5:8e:13:4f:74:8f:5c:4b:d9:d2:a6:84:6c: cf:32:50:83:76:ef:cb:28:32:ba:7f:1c:1e:47:70:6d:ee:79: e6:75:39:97:3c:e3:4b:6d:56:bf:c1:cd:b9:ce:e1:d2:2e:26: c8:3e:35:92:ad:1a:b6:cf:59:2f:08:84:94:2d:c1:92:04:99: 52:ad:28:15:69:a9:1e:32:73:45:fc:c4:51:be:69:e8:c4:6e: 62:5f:c6:58:eb:1d:cb:7b:11:01:7f:a0:2d:68:af:89:37:fe: 65:35:60:40:3d:36:7d:b5:69:1d:66:a1:c9:70:6b:ea:9e:db: 9e:ca:e8:b2:3f:66:d5:58:17:cd:2e:8f:a0:74:f9:77:9f:c9: 10:22:9e:d9:6f:be:ab:25:26:de:48:17:a0:7b:54:30:c6:48: 5a:81:42:bd:60:df:bb:ca:03:8d:7b:77:f9:b0:86:78:59:73: c0:19:c9:c3:79:0b:d0:54:81:2f:58:08:67:6d:b4:4d:68:5c: e5:04:bc:74:b2:79:62:6e:78:62:e4:41:4b:ca:a0:ae:36:57: a7:fb:58:b0 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIcIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzMTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ1MzkyRTAzNjY5Q0Q1 MEFDNDBCOUQzMzE3RDMzMzY2RjA3QzREMkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDU2/9BnhhJ4qC2qilfh4l1QYhW9RsCWKw6MzkS0JpHuZfj3urj 1T/UTthYDahdjGDUzbplpz+b0pft3opWBx7J8371N/zf67iWJdGpjH3T9sYB93IR AoJEZ6mONpR/3i9lFHdgpeQqNGvdT4AZEpajvmxR5pOUAjkL0Jzp5gv2h+ucyP68 cQIAUYahAuYaSfLciRXiPUQ7M/P/YHhbErhv/BQmcXvwigrNjhI1cs+CaZXA5xDI E2AWJA+j/pFIYN9H60ZPkYWckykrwS3yzADolXYQFWigYBPLoUFHuyBK9VjsOdU9 r30JLex5zXmVU0shtWc65HWgFVHSwKto730dAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQURTkuA2ac1QrEC50zF9MzZvB8TSowHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1JUa3VBMmFjMVFyRUM1MHpG OU16WnZCOFRTby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAI9 QAQwDQYJKoZIhvcNAQELBQADggEBAIPlfidwbACAzKlmTKKUxj16+2sK+GN0kAUx XlRqXGVj4exnytvRL25wtY4TT3SPXEvZ0qaEbM8yUIN278soMrp/HB5HcG3ueeZ1 OZc840ttVr/BzbnO4dIuJsg+NZKtGrbPWS8IhJQtwZIEmVKtKBVpqR4yc0X8xFG+ aejEbmJfxljrHct7EQF/oC1or4k3/mU1YEA9Nn21aR1moclwa+qe257K6LI/ZtVY F80uj6B0+XefyRAintlvvqslJt5IF6B7VDDGSFqBQr1g37vKA417d/mwhnhZc8AZ ycN5C9BUgS9YCGdttE1oXOUEvHSyeWJueGLkQUvKoK42V6f7WLA= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:25 2024 by rpki-client on console-ams.rpki-client.org