$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/YEfdEQkVtMfQ-R6P7cc4ieBZHCE.roa File: YEfdEQkVtMfQ-R6P7cc4ieBZHCE.roa (raw, json) Hash identifier: b7o2OQK6QCAUrRjI/9QAXgMmcmTXxGvJ7M1max9hcrg= Subject key identifier: 60:47:DD:11:09:15:B4:C7:D0:F9:1E:8F:ED:C7:38:89:E0:59:1C:21 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2260 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/YEfdEQkVtMfQ-R6P7cc4ieBZHCE.roa Signing time: Mon 26 Aug 2024 05:33:56 +0000 ROA not before: Mon 26 Aug 2024 05:33:56 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24165 IP address blocks: 115.165.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:55:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8800 (0x2260) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:56 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6047DD110915B4C7D0F91E8FEDC73889E0591C21 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:35:f3:f4:6e:85:13:c3:38:e7:08:ba:9c:6d: 0c:fb:96:b8:00:55:bd:c7:89:eb:04:97:2a:62:2b: 64:ba:17:32:2f:4d:0d:e1:71:5c:3a:a1:31:07:90: 42:b8:e2:be:87:b8:17:07:47:21:74:33:ef:39:f5: 0c:36:18:45:7e:44:3d:e2:c5:d0:e7:fb:a9:71:5d: de:07:5d:87:cb:4d:05:90:d4:aa:ef:27:bf:54:31: df:1b:c1:82:3d:42:d8:9c:01:60:68:85:bc:52:12: 08:ed:de:20:2d:fa:fb:d4:0c:01:22:86:fa:45:8a: 9c:68:2e:80:b7:a2:94:61:ae:ff:0a:61:31:d4:20: 10:94:ad:43:94:4b:a4:7e:bb:3f:4d:4a:4b:f1:e6: bd:f3:5f:4c:56:a7:61:b4:69:07:de:5a:a2:89:4a: be:cb:ec:16:c2:0b:97:4b:e4:87:3b:13:12:9c:d6: ec:86:5c:13:29:cc:a3:41:76:ef:73:c7:da:8f:86: c1:95:c4:84:08:1d:fd:52:a7:a2:c6:c0:3b:27:6d: 3d:9b:fd:f5:d9:81:32:4a:91:cf:e6:9e:55:15:b5: af:c2:03:8d:1a:97:d3:2f:7c:a8:40:55:d0:b4:e7: 01:96:d6:32:eb:4b:2f:07:e0:08:d5:99:81:da:29: 74:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:47:DD:11:09:15:B4:C7:D0:F9:1E:8F:ED:C7:38:89:E0:59:1C:21 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/YEfdEQkVtMfQ-R6P7cc4ieBZHCE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 115.165.192.0/18 Signature Algorithm: sha256WithRSAEncryption 71:64:6a:72:0d:45:a6:ab:97:35:20:7c:8b:38:a3:2a:42:d1: 0a:6a:3b:6a:7c:da:8a:3f:69:40:a9:40:3b:73:08:ec:8e:3e: cb:4d:45:a7:42:96:4d:64:e7:b9:94:f6:1c:72:0b:ab:09:f9: f3:0b:e8:e0:ca:fd:4d:2d:75:26:6b:6e:5e:52:0b:70:da:b9: 9b:ab:3e:80:c7:70:4f:bc:d6:ac:f1:6c:94:ff:09:b2:84:e1: f0:e0:6f:72:91:58:b8:a7:1a:4f:32:88:18:a9:eb:eb:a3:7b: 7a:b0:8b:57:20:0c:a6:b6:b3:ab:74:ae:3e:b1:e1:c3:f7:0e: ed:41:3d:e4:01:d9:ef:c9:6a:d0:2f:63:b3:fe:12:99:b2:50: 46:05:80:67:77:ec:e2:8d:b9:f5:c3:e9:60:89:2a:db:a9:dc: 35:d7:02:54:6c:80:0f:78:e7:9b:0e:a3:7b:d6:b5:84:00:8e: dc:f1:94:f2:a7:4d:f7:f6:64:6b:8f:70:18:33:30:5c:bf:97: bb:15:f7:77:25:be:57:08:23:fb:79:47:bd:0a:49:50:a8:2b: 2f:1d:39:dc:de:b0:66:b0:72:ec:0e:d7:1e:ba:24:f1:b8:1e: 61:e8:35:29:3d:d0:2a:ce:5f:ee:6c:65:5c:84:3b:75:56:68: f7:ea:03:40 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICImAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzNTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDYwNDdERDExMDkxNUI0 QzdEMEY5MUU4RkVEQzczODg5RTA1OTFDMjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4NfP0boUTwzjnCLqcbQz7lrgAVb3HiesElypiK2S6FzIvTQ3h cVw6oTEHkEK44r6HuBcHRyF0M+859Qw2GEV+RD3ixdDn+6lxXd4HXYfLTQWQ1Krv J79UMd8bwYI9QticAWBohbxSEgjt3iAt+vvUDAEihvpFipxoLoC3opRhrv8KYTHU IBCUrUOUS6R+uz9NSkvx5r3zX0xWp2G0aQfeWqKJSr7L7BbCC5dL5Ic7ExKc1uyG XBMpzKNBdu9zx9qPhsGVxIQIHf1Sp6LGwDsnbT2b/fXZgTJKkc/mnlUVta/CA40a l9MvfKhAVdC05wGW1jLrSy8H4AjVmYHaKXSFAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUYEfdEQkVtMfQ+R6P7cc4ieBZHCEwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1lFZmRFUWtWdE1mUS1SNlA3 Y2M0aWVCWkhDRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAZz pcAwDQYJKoZIhvcNAQELBQADggEBAHFkanINRaarlzUgfIs4oypC0QpqO2p82oo/ aUCpQDtzCOyOPstNRadClk1k57mU9hxyC6sJ+fML6ODK/U0tdSZrbl5SC3DauZur PoDHcE+81qzxbJT/CbKE4fDgb3KRWLinGk8yiBip6+uje3qwi1cgDKa2s6t0rj6x 4cP3Du1BPeQB2e/JatAvY7P+EpmyUEYFgGd37OKNufXD6WCJKtup3DXXAlRsgA94 55sOo3vWtYQAjtzxlPKnTff2ZGuPcBgzMFy/l7sV93clvlcII/t5R70KSVCoKy8d OdzesGawcuwO1x66JPG4HmHoNSk90CrOX+5sZVyEO3VWaPfqA0A= -----END CERTIFICATE-----Generated at Mon Nov 25 20:56:45 2024 by rpki-client on console-fra.rpki-client.org