$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Y2gQjlceuzn_WnHCjlKBZLvPtEs.roa File: Y2gQjlceuzn_WnHCjlKBZLvPtEs.roa (raw, json) Hash identifier: Hg//Q0WXYVCdDBpRBkm6aWzFUniGx/qULr2wJ8ZLykI= Subject key identifier: 63:68:10:8E:57:1E:BB:39:FF:5A:71:C2:8E:52:81:64:BB:CF:B4:4B Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2214 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Y2gQjlceuzn_WnHCjlKBZLvPtEs.roa Signing time: Mon 26 Aug 2024 05:33:39 +0000 ROA not before: Mon 26 Aug 2024 05:33:39 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 61.61.212.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8724 (0x2214) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:39 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6368108E571EBB39FF5A71C28E528164BBCFB44B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:d9:9f:6b:d3:e4:6c:1e:6c:8c:c5:9a:10:74: 95:49:0c:e9:b6:37:64:3d:4e:6c:e8:75:92:5f:af: 79:b9:f8:49:23:e5:de:aa:d7:5f:6f:13:7c:c0:8b: 3b:8e:f2:4c:0c:80:68:7e:fc:b9:a4:ba:2f:76:74: f5:3d:77:ea:76:42:9f:6b:c8:41:90:6e:5c:f2:cd: 98:99:94:ba:ea:ed:b3:2c:55:bb:e3:ac:6b:8d:c1: cf:77:8e:b7:30:bf:e4:05:4f:7f:ff:21:e4:14:88: cb:15:6e:f7:b8:29:71:ae:90:34:70:de:89:e7:14: ef:89:34:b9:91:cb:fb:aa:ce:43:92:cb:14:3e:ad: ad:66:27:16:6c:0a:58:dc:cb:35:6c:2f:a2:5e:1a: 24:4c:5c:0a:a9:18:ee:a1:50:3a:f0:12:c8:61:b6: 15:ec:36:16:19:30:50:47:9d:fb:29:a5:42:da:99: fe:73:f3:87:95:1e:77:ba:32:ed:4c:14:d3:b1:c5: d9:53:62:aa:8c:e4:fd:b2:83:90:50:77:80:ff:2b: 72:d5:a1:1f:97:b0:bc:5e:11:9e:e6:b3:30:ad:ed: 04:a0:28:db:af:33:7a:82:4c:b7:fe:a0:0d:a3:8e: 90:1f:16:74:59:b6:9c:81:70:ad:05:ea:ba:06:e9: c9:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:68:10:8E:57:1E:BB:39:FF:5A:71:C2:8E:52:81:64:BB:CF:B4:4B X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Y2gQjlceuzn_WnHCjlKBZLvPtEs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.212.0/22 Signature Algorithm: sha256WithRSAEncryption 8c:70:38:d8:82:82:1a:48:e9:ce:f5:1d:fa:a3:c9:7a:49:f6: 7c:a6:74:17:49:11:f6:f6:dd:28:6c:07:b0:69:4c:ae:ce:7e: b2:81:c2:3b:f2:22:bf:c4:c9:04:57:ca:d9:e1:52:d6:83:c5: 77:31:d5:5a:e1:8e:ee:b7:e0:d3:a2:9a:2d:b1:4d:41:90:18: b2:d4:21:d8:cd:c9:51:d5:ed:cd:33:7d:ea:75:29:18:0d:cc: c5:0e:b6:6f:87:26:a6:5e:b1:ab:8c:70:bc:07:92:af:a6:b1: 3d:8c:cc:a6:57:a5:6d:91:8f:36:8c:09:09:8f:66:4d:1b:24: 60:4e:d4:44:c6:54:5d:b8:49:3d:d7:10:78:2d:fe:60:e1:ea: c0:a1:ed:3d:2b:c9:81:13:3e:ab:b5:28:0b:22:0a:37:ef:de: aa:7f:f4:38:c6:84:1e:c4:16:61:b4:ff:9c:82:39:cc:86:7e: 68:0b:24:6a:88:80:c6:73:38:02:c8:8a:41:3f:d2:7e:7a:df: 17:5c:4e:90:0e:47:fd:4f:8d:31:3c:22:32:c7:92:39:99:f6: e1:cb:1c:7c:1a:28:bf:5a:d0:b9:01:0e:b5:a4:62:8d:56:d5: fb:61:a2:d9:80:65:e5:ac:be:48:dc:54:ba:05:fb:f0:36:5c: df:ac:72:d4 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIhQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzMzlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDYzNjgxMDhFNTcxRUJC MzlGRjVBNzFDMjhFNTI4MTY0QkJDRkI0NEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDj2Z9r0+RsHmyMxZoQdJVJDOm2N2Q9TmzodZJfr3m5+Ekj5d6q 119vE3zAizuO8kwMgGh+/Lmkui92dPU9d+p2Qp9ryEGQblzyzZiZlLrq7bMsVbvj rGuNwc93jrcwv+QFT3//IeQUiMsVbve4KXGukDRw3onnFO+JNLmRy/uqzkOSyxQ+ ra1mJxZsCljcyzVsL6JeGiRMXAqpGO6hUDrwEshhthXsNhYZMFBHnfsppULamf5z 84eVHne6Mu1MFNOxxdlTYqqM5P2yg5BQd4D/K3LVoR+XsLxeEZ7mszCt7QSgKNuv M3qCTLf+oA2jjpAfFnRZtpyBcK0F6roG6ckfAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUY2gQjlceuzn/WnHCjlKBZLvPtEswHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1kyZ1FqbGNldXpuX1duSENq bEtCWkx2UHRFcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAI9 PdQwDQYJKoZIhvcNAQELBQADggEBAIxwONiCghpI6c71HfqjyXpJ9nymdBdJEfb2 3ShsB7BpTK7OfrKBwjvyIr/EyQRXytnhUtaDxXcx1Vrhju634NOimi2xTUGQGLLU IdjNyVHV7c0zfep1KRgNzMUOtm+HJqZesauMcLwHkq+msT2MzKZXpW2RjzaMCQmP Zk0bJGBO1ETGVF24ST3XEHgt/mDh6sCh7T0ryYETPqu1KAsiCjfv3qp/9DjGhB7E FmG0/5yCOcyGfmgLJGqIgMZzOALIikE/0n563xdcTpAOR/1PjTE8IjLHkjmZ9uHL HHwaKL9a0LkBDrWkYo1W1fthotmAZeWsvkjcVLoF+/A2XN+sctQ= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:41 2024 by rpki-client on console-ams.rpki-client.org