$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/T2sodMCRHzKScq-tpD--ZbUJL3Y.roa File: T2sodMCRHzKScq-tpD--ZbUJL3Y.roa (raw, json) Hash identifier: d48UGAu0KTjaSIPHpXq3+DFJM50wZ483q4JTkeiVKsc= Subject key identifier: 4F:6B:28:74:C0:91:1F:32:92:72:AF:AD:A4:3F:BE:65:B5:09:2F:76 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 21BC Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/T2sodMCRHzKScq-tpD--ZbUJL3Y.roa Signing time: Mon 26 Aug 2024 05:33:18 +0000 ROA not before: Mon 26 Aug 2024 05:33:18 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 2407:4b00:ff01::/48 maxlen: 48 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8636 (0x21bc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:18 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4F6B2874C0911F329272AFADA43FBE65B5092F76 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:5f:88:c6:e8:3f:f4:6e:21:7d:e8:22:3a:25: 0a:3e:ec:68:e0:e9:92:08:dd:24:b5:16:ef:d0:b9: 03:fb:9c:ab:bd:cc:f1:f6:40:57:55:d6:b3:f1:85: e9:a3:1a:bb:ad:76:4c:1d:2c:fd:ec:16:6b:bb:64: 2e:ac:26:e0:09:10:8b:20:58:71:00:d6:01:28:0c: cc:74:c7:b4:67:31:4e:e7:2f:c9:29:4b:46:04:a7: 09:67:af:7a:d8:89:12:27:e0:ef:d4:75:5e:71:68: 48:b1:4c:bd:b4:0e:45:f8:19:f7:d8:a0:f5:d2:a9: 6d:24:de:d8:08:a3:5f:64:b6:aa:88:fb:bf:c0:75: ae:cc:ad:01:d1:da:fb:ce:68:8b:52:d1:c0:2d:ad: df:90:8e:05:a9:dd:c8:22:81:83:81:9b:d7:d9:ac: a6:bf:2d:9f:22:6d:9f:9b:f3:3d:85:9b:16:07:e2: d4:63:74:00:7c:1a:08:52:ae:ce:63:f4:87:7d:8e: 25:a0:38:7e:33:3b:9f:8b:f0:51:b4:9d:c5:01:17: f2:21:f6:fd:07:c1:5f:37:7d:9a:d9:7c:d1:c8:35: ad:dd:b6:4c:16:6a:d7:4d:79:a6:12:98:57:18:2e: 53:1f:65:e9:f5:45:40:92:df:5d:95:4b:b3:8d:3c: 4f:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:6B:28:74:C0:91:1F:32:92:72:AF:AD:A4:3F:BE:65:B5:09:2F:76 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/T2sodMCRHzKScq-tpD--ZbUJL3Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv6: 2407:4b00:ff01::/48 Signature Algorithm: sha256WithRSAEncryption 31:36:3e:9d:50:3f:2d:b0:66:d3:40:0a:58:9f:38:e7:aa:1c: 05:45:92:ab:35:14:35:63:0d:68:b8:71:e2:d6:65:5a:b4:30: 51:17:cc:44:07:06:07:73:c3:e8:fa:56:f3:c0:6e:0e:f4:bc: ed:32:68:69:65:44:8d:a7:89:81:f4:33:f3:7d:ee:81:9d:92: f4:d7:99:d2:c5:e1:12:a4:94:3d:20:2e:bb:42:2e:e4:6b:91: ab:75:ea:ce:02:e2:7b:e1:7d:bb:16:d9:37:ec:64:61:04:8b: 8e:95:cf:b8:cd:b2:55:0c:12:aa:fb:21:44:c1:8e:7d:a4:60: 5e:41:e5:66:62:dd:ad:40:4e:0a:68:bb:d2:a8:d3:a5:f0:09: 45:d8:3d:7a:eb:c2:6a:8a:ce:ab:33:78:25:7e:c7:2e:65:18: c9:0e:10:e7:bb:2c:8c:6b:4d:df:e5:2e:63:48:59:50:a9:0a: 50:b7:c0:eb:02:dc:09:88:b9:f2:e4:ea:04:b0:05:f0:f4:33: 60:dd:1d:0b:1f:74:ff:b9:0f:db:78:7a:af:c3:8c:f8:c5:ce: d9:8c:5f:42:4e:4b:0a:c8:69:7a:44:91:ac:f4:a7:aa:4f:2b: e2:8e:dd:72:91:d4:70:33:8c:fd:6e:e2:6c:fa:c4:a1:3b:bb: b1:87:de:01 -----BEGIN CERTIFICATE----- MIIE1TCCA72gAwIBAgICIbwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzMThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDRGNkIyODc0QzA5MTFG MzI5MjcyQUZBREE0M0ZCRTY1QjUwOTJGNzYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDkX4jG6D/0biF96CI6JQo+7Gjg6ZII3SS1Fu/QuQP7nKu9zPH2 QFdV1rPxhemjGrutdkwdLP3sFmu7ZC6sJuAJEIsgWHEA1gEoDMx0x7RnMU7nL8kp S0YEpwlnr3rYiRIn4O/UdV5xaEixTL20DkX4GffYoPXSqW0k3tgIo19ktqqI+7/A da7MrQHR2vvOaItS0cAtrd+QjgWp3cgigYOBm9fZrKa/LZ8ibZ+b8z2FmxYH4tRj dAB8GghSrs5j9Id9jiWgOH4zO5+L8FG0ncUBF/Ih9v0HwV83fZrZfNHINa3dtkwW atdNeaYSmFcYLlMfZen1RUCS312VS7ONPE8tAgMBAAGjggHxMIIB7TAdBgNVHQ4E FgQUT2sodMCRHzKScq+tpD++ZbUJL3YwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1Qyc29kTUNSSHpLU2NxLXRw RC0tWmJVSkwzWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk B0sA/wEwDQYJKoZIhvcNAQELBQADggEBADE2Pp1QPy2wZtNAClifOOeqHAVFkqs1 FDVjDWi4ceLWZVq0MFEXzEQHBgdzw+j6VvPAbg70vO0yaGllRI2niYH0M/N97oGd kvTXmdLF4RKklD0gLrtCLuRrkat16s4C4nvhfbsW2TfsZGEEi46Vz7jNslUMEqr7 IUTBjn2kYF5B5WZi3a1ATgpou9Ko06XwCUXYPXrrwmqKzqszeCV+xy5lGMkOEOe7 LIxrTd/lLmNIWVCpClC3wOsC3AmIufLk6gSwBfD0M2DdHQsfdP+5D9t4eq/DjPjF ztmMX0JOSwrIaXpEkaz0p6pPK+KO3XKR1HAzjP1u4mz6xKE7u7GH3gE= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:41 2024 by rpki-client on console-ams.rpki-client.org