$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/UsqQThbyPFeHKLscawOocLzHOD4.roa File: UsqQThbyPFeHKLscawOocLzHOD4.roa (raw, json) Hash identifier: JII6rRs3sSA+XYv28p5qDRCqbHDnUHDaeZJ9UGciT08= Subject key identifier: 52:CA:90:4E:16:F2:3C:57:87:28:BB:1C:6B:03:A8:70:BC:C7:38:3E Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 226D Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/UsqQThbyPFeHKLscawOocLzHOD4.roa Signing time: Mon 26 Aug 2024 05:34:00 +0000 ROA not before: Mon 26 Aug 2024 05:34:00 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 61.61.208.0/21 maxlen: 29 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8813 (0x226d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:34:00 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=52CA904E16F23C578728BB1C6B03A870BCC7383E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:9c:7c:03:e7:a3:01:16:ab:9d:97:9c:b9:3c: 3e:b8:b2:37:07:59:f3:17:8e:dd:21:76:99:1e:30: f5:aa:e9:8c:bd:bb:af:34:d2:69:20:72:ea:f3:ae: 5e:53:56:d9:9e:3f:83:c1:be:a5:f6:df:10:4f:02: 8f:d0:a6:09:7f:8a:68:0e:4c:31:74:ed:ab:32:25: 99:d7:72:8a:cc:83:fb:bd:bf:8d:62:8b:93:04:7f: ea:1c:a2:9f:5e:2a:0f:65:c9:94:89:0f:fc:e7:c6: b3:33:22:ef:c0:63:42:85:97:0b:4e:e1:ba:18:8b: f6:13:fc:be:c1:f2:de:fb:35:ea:b1:71:00:47:f6: f0:08:0c:40:c0:df:76:ff:56:e9:eb:d0:05:b4:e2: 19:57:9a:55:db:54:fe:90:f0:96:9f:13:dc:68:07: 7b:21:ab:22:60:22:d4:a8:0e:69:4b:1d:93:5c:c1: ad:55:e8:af:77:f1:9e:e1:98:a6:67:37:10:88:c8: 00:ea:2c:cc:69:ca:b0:0a:86:14:a6:90:66:88:61: 11:3f:0c:2d:8d:36:72:8b:2f:9a:ea:59:44:77:01: 85:14:df:cb:20:10:57:96:e9:d6:1c:9c:89:6e:ef: 3a:a4:26:75:15:01:3f:4e:b7:f3:b0:33:7d:1a:66: 51:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:CA:90:4E:16:F2:3C:57:87:28:BB:1C:6B:03:A8:70:BC:C7:38:3E X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/UsqQThbyPFeHKLscawOocLzHOD4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.208.0/21 Signature Algorithm: sha256WithRSAEncryption 6c:fb:e1:b3:5a:a3:32:a0:2c:4d:ef:e0:46:dd:f5:d4:ea:1c: 71:ca:32:d3:d5:59:73:27:68:71:82:a5:78:0e:91:bf:e1:4f: 47:f1:e2:8b:0e:66:13:d1:7f:f8:9f:cb:e7:5f:25:f9:53:64: 40:18:ab:fa:a6:84:e8:3f:2d:14:da:8f:97:27:99:41:30:e4: 95:74:8c:48:02:d4:18:e4:f3:b3:cf:c0:9c:f5:b2:d8:2e:49: 80:cb:f8:94:aa:a6:68:80:7c:fa:53:3b:8c:53:a8:d6:54:59: 4a:68:b4:2d:65:80:48:ec:20:5a:a6:3f:c9:43:21:c1:3c:c7: 70:8f:a8:c1:fc:c3:8f:48:1b:eb:f5:48:4d:84:65:4f:7c:35: 63:2f:0d:5d:aa:46:ad:fe:eb:c9:34:53:2c:03:87:19:dd:cb: 69:64:6e:ef:23:05:ff:c0:77:20:0c:44:82:ff:d0:fb:36:1a: 26:2e:ce:4f:1d:20:ae:2a:ef:73:1b:81:29:b9:ad:b5:5b:1d: 9d:35:64:70:50:c8:68:76:f8:ed:97:de:2f:04:e4:eb:81:8b: 81:f0:f7:02:05:6a:6d:e1:fd:25:f9:21:28:b7:32:17:d6:95: f9:e6:f8:2b:a0:e9:07:53:00:c6:58:c6:52:f0:2c:67:29:25: 7d:2a:6e:8d -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIm0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTM0MDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDUyQ0E5MDRFMTZGMjND NTc4NzI4QkIxQzZCMDNBODcwQkNDNzM4M0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3nHwD56MBFqudl5y5PD64sjcHWfMXjt0hdpkeMPWq6Yy9u680 0mkgcurzrl5TVtmeP4PBvqX23xBPAo/Qpgl/imgOTDF07asyJZnXcorMg/u9v41i i5MEf+ocop9eKg9lyZSJD/znxrMzIu/AY0KFlwtO4boYi/YT/L7B8t77NeqxcQBH 9vAIDEDA33b/Vunr0AW04hlXmlXbVP6Q8JafE9xoB3shqyJgItSoDmlLHZNcwa1V 6K938Z7hmKZnNxCIyADqLMxpyrAKhhSmkGaIYRE/DC2NNnKLL5rqWUR3AYUU38sg EFeW6dYcnIlu7zqkJnUVAT9Ot/OwM30aZlHTAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUUsqQThbyPFeHKLscawOocLzHOD4wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1VzcVFUaGJ5UEZlSEtMc2Nh d09vY0x6SE9ENC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAM9 PdAwDQYJKoZIhvcNAQELBQADggEBAGz74bNaozKgLE3v4Ebd9dTqHHHKMtPVWXMn aHGCpXgOkb/hT0fx4osOZhPRf/ify+dfJflTZEAYq/qmhOg/LRTaj5cnmUEw5JV0 jEgC1Bjk87PPwJz1stguSYDL+JSqpmiAfPpTO4xTqNZUWUpotC1lgEjsIFqmP8lD IcE8x3CPqMH8w49IG+v1SE2EZU98NWMvDV2qRq3+68k0UywDhxndy2lkbu8jBf/A dyAMRIL/0Ps2GiYuzk8dIK4q73MbgSm5rbVbHZ01ZHBQyGh2+O2X3i8E5OuBi4Hw 9wIFam3h/SX5ISi3MhfWlfnm+Cug6QdTAMZYxlLwLGcpJX0qbo0= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:59 2024 by rpki-client on console-fra.rpki-client.org