$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/VXAq1lJPqkINPPPIRxk2VZtL44g.roa File: VXAq1lJPqkINPPPIRxk2VZtL44g.roa (raw, json) Hash identifier: f/AC39Ed63o4ZBLJ9c+IEUrCUvVM6SLRM0uQO3UNfXs= Subject key identifier: 55:70:2A:D6:52:4F:AA:42:0D:3C:F3:C8:47:19:36:55:9B:4B:E3:88 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2280 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/VXAq1lJPqkINPPPIRxk2VZtL44g.roa Signing time: Mon 26 Aug 2024 05:34:05 +0000 ROA not before: Mon 26 Aug 2024 05:34:05 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24165 IP address blocks: 61.58.120.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8832 (0x2280) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:34:05 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=55702AD6524FAA420D3CF3C8471936559B4BE388 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:c1:e6:c8:b7:0a:fb:f7:f4:55:b0:26:37:a6: ab:a8:09:96:82:b8:27:75:14:28:df:b0:b4:fc:60: 81:76:86:89:ff:c3:f8:dc:18:dc:05:9a:c8:71:3e: a9:eb:b6:1f:06:df:6c:49:f3:78:57:34:ce:ca:d8: 15:bc:d0:9f:eb:fa:a0:9b:8b:15:39:f0:a9:bd:d8: b9:13:5a:04:c4:72:03:ed:08:7e:59:81:e2:53:65: 76:48:3c:1b:9d:cf:05:80:10:dd:e4:2b:d7:20:56: 9c:1c:ee:6f:33:6c:48:88:1b:eb:f6:9d:75:af:7a: f1:1e:73:67:a7:97:03:4a:6f:d0:5d:a4:39:51:0e: 54:90:6f:33:5d:01:64:01:eb:4b:c8:60:f1:52:94: 29:87:7f:ed:01:89:b5:0c:59:90:f2:8a:37:b6:d0: bb:1e:47:f3:c5:76:e3:e3:fa:80:b2:6d:7d:6a:94: d5:08:dc:62:e8:20:3f:ea:45:cc:a4:0f:a8:35:9f: 54:ac:49:97:cd:7a:25:4e:51:ef:b3:3f:d3:3c:c2: aa:b8:39:6b:67:32:b7:e1:cb:82:04:99:44:5c:d2: c7:59:b2:a3:a2:34:ab:03:76:b6:08:60:d1:3b:7e: ff:4d:4d:65:93:5e:86:d2:5a:be:0d:8c:bf:38:da: 70:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:70:2A:D6:52:4F:AA:42:0D:3C:F3:C8:47:19:36:55:9B:4B:E3:88 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/VXAq1lJPqkINPPPIRxk2VZtL44g.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.58.120.0/22 Signature Algorithm: sha256WithRSAEncryption 31:80:31:0e:c3:4e:9c:d3:40:5d:c7:b9:64:a2:31:74:23:26: 9a:3e:d0:b9:b1:5d:b1:a9:a3:98:4d:99:bb:fa:ee:49:55:14: 5a:6c:ef:c3:28:f0:a7:80:3a:b0:a5:d8:46:cc:ae:2f:16:6d: 2f:51:cd:43:3a:9f:4b:fe:08:b3:09:07:5b:5f:67:a2:3e:da: 92:ef:9b:04:e1:84:69:1e:ea:0f:24:6a:3b:2d:d1:33:5c:91: 10:53:b8:87:17:b9:14:04:86:0d:0e:45:cb:5f:9c:30:a2:cc: 30:ea:13:5a:bf:22:8b:b6:5d:fb:af:f6:c6:78:f0:93:6f:55: 02:11:a6:c3:4f:54:90:09:2b:48:e5:a4:0b:70:5e:21:aa:c9: 67:6b:f8:c1:f3:d6:8f:de:17:c3:c3:30:f4:72:9d:06:9d:ec: 34:0b:24:2c:e3:30:2f:b4:b4:3e:83:4b:1c:0f:0d:78:ff:07: d8:4d:fc:61:bd:11:87:46:a0:4c:3c:cf:89:96:d5:65:88:c3: 9f:68:ea:13:89:8c:7b:fd:93:44:41:2f:57:53:e2:09:5b:c3: 12:34:2e:14:f9:04:bd:a1:27:7a:ab:82:21:76:6f:8e:7b:aa: 00:01:1c:c6:99:df:cf:f9:0d:85:7b:cb:81:34:14:0f:2a:05: a2:71:63:d2 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIoAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTM0MDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU1NzAyQUQ2NTI0RkFB NDIwRDNDRjNDODQ3MTkzNjU1OUI0QkUzODgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGwebItwr79/RVsCY3pquoCZaCuCd1FCjfsLT8YIF2hon/w/jc GNwFmshxPqnrth8G32xJ83hXNM7K2BW80J/r+qCbixU58Km92LkTWgTEcgPtCH5Z geJTZXZIPBudzwWAEN3kK9cgVpwc7m8zbEiIG+v2nXWvevEec2enlwNKb9BdpDlR DlSQbzNdAWQB60vIYPFSlCmHf+0BibUMWZDyije20LseR/PFduPj+oCybX1qlNUI 3GLoID/qRcykD6g1n1SsSZfNeiVOUe+zP9M8wqq4OWtnMrfhy4IEmURc0sdZsqOi NKsDdrYIYNE7fv9NTWWTXobSWr4NjL842nBvAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUVXAq1lJPqkINPPPIRxk2VZtL44gwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1ZYQXExbEpQcWtJTlBQUElS eGsyVlp0TDQ0Zy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAI9 OngwDQYJKoZIhvcNAQELBQADggEBADGAMQ7DTpzTQF3HuWSiMXQjJpo+0LmxXbGp o5hNmbv67klVFFps78Mo8KeAOrCl2EbMri8WbS9RzUM6n0v+CLMJB1tfZ6I+2pLv mwThhGke6g8kajst0TNckRBTuIcXuRQEhg0ORctfnDCizDDqE1q/Iou2Xfuv9sZ4 8JNvVQIRpsNPVJAJK0jlpAtwXiGqyWdr+MHz1o/eF8PDMPRynQad7DQLJCzjMC+0 tD6DSxwPDXj/B9hN/GG9EYdGoEw8z4mW1WWIw59o6hOJjHv9k0RBL1dT4glbwxI0 LhT5BL2hJ3qrgiF2b457qgABHMaZ38/5DYV7y4E0FA8qBaJxY9I= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:55 2024 by rpki-client on console-fra.rpki-client.org