$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ZGnQoK6rdj9ABrJ8WketyoEnv30.roa File: ZGnQoK6rdj9ABrJ8WketyoEnv30.roa (raw, json) Hash identifier: h/3FKk1A4G24cpFqYSHti6aVCCyNzPxoIek1Mu9Z6MA= Subject key identifier: 64:69:D0:A0:AE:AB:76:3F:40:06:B2:7C:5A:47:AD:CA:81:27:BF:7D Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 22BA Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ZGnQoK6rdj9ABrJ8WketyoEnv30.roa Signing time: Mon 26 Aug 2024 05:34:18 +0000 ROA not before: Mon 26 Aug 2024 05:34:18 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24165 IP address blocks: 61.61.213.0/25 maxlen: 25 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8890 (0x22ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:34:18 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6469D0A0AEAB763F4006B27C5A47ADCA8127BF7D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:b8:79:c6:f1:1d:8e:71:ba:b5:cd:0d:e0:f3: 5e:e7:5c:67:51:b6:30:19:f5:3b:4d:13:45:1d:cf: f5:91:82:02:14:6a:32:3e:47:e0:ff:81:24:a3:47: 7a:a9:c2:b4:b0:2a:70:33:ca:11:09:a1:e3:bd:1b: 86:b9:bd:a0:7d:26:ac:3e:d9:49:2e:6d:2d:09:24: 5a:68:7d:35:3d:98:97:17:47:0a:63:db:6e:d7:08: b4:f0:1f:f6:89:c4:73:f2:4d:00:f0:92:32:2b:11: f5:fb:ea:c5:ef:d7:98:79:c7:ef:1b:fd:5d:04:61: 45:3c:b2:1f:12:49:ae:8d:94:be:00:a5:3e:53:67: 9f:4c:8c:e1:f7:c9:e5:4b:35:f6:16:62:de:db:2b: 1f:a7:73:fe:fb:88:55:ad:87:ea:70:5e:41:3f:2c: 15:e9:36:a6:9e:b0:29:bd:90:cc:fe:b4:27:5e:21: 83:d1:cb:dc:c6:d9:b6:79:93:51:a5:ad:b0:30:60: ef:d5:6b:57:10:e9:41:ba:fc:97:8f:1a:98:66:f9: d4:7d:ef:2e:65:5d:10:91:45:05:7c:f0:6b:ee:7e: 00:fd:8f:2e:4d:9d:56:30:35:d6:09:56:76:12:d7: a4:33:dc:70:f7:1a:2b:54:5c:c5:da:c7:c9:95:61: ac:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:69:D0:A0:AE:AB:76:3F:40:06:B2:7C:5A:47:AD:CA:81:27:BF:7D X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ZGnQoK6rdj9ABrJ8WketyoEnv30.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.61.213.0/25 Signature Algorithm: sha256WithRSAEncryption 90:9a:0e:f4:a0:1c:f0:f5:a3:3f:7d:33:6b:e8:3e:f2:2a:a3: 66:0b:dc:e0:b8:6f:ba:b1:13:c8:03:ba:f3:64:5a:d8:81:52: 4b:ee:45:d9:e9:c9:0d:e4:c2:1d:6f:c9:39:1a:67:7c:10:09: cc:d3:aa:13:d6:c5:1c:13:62:fa:89:85:25:b3:4b:0c:48:21: 55:0b:89:c3:1a:90:54:5a:b5:0c:1f:30:55:52:97:c9:55:2e: 06:9d:2a:a3:69:78:7b:58:e9:74:f4:3c:c7:7b:0a:d7:9d:28: 35:ef:ad:1c:6d:12:26:25:c2:4c:6e:11:d6:1a:80:ed:3e:d5: 18:aa:44:cb:b2:c1:13:af:90:d2:f5:97:a4:b9:1a:d1:3a:1f: d5:0a:6a:2f:61:f8:86:1a:e2:98:40:f5:b3:d9:77:14:5d:81: 88:de:2e:8c:18:95:2d:e1:3c:44:38:7d:53:69:ca:a4:3c:d4: 17:cf:14:85:35:f0:7c:22:db:37:0d:3a:8a:cf:f3:2e:c3:be: 57:fc:da:22:ea:ba:08:39:6d:ee:82:a0:14:0d:1e:90:23:00: 8a:61:0f:51:b7:19:99:e0:ee:08:af:47:9e:df:a0:3c:93:be: 58:dc:92:96:49:4e:57:ea:1b:c8:f6:dc:fb:26:c3:2e:c3:bf: f4:4a:6a:e1 -----BEGIN CERTIFICATE----- MIIE0zCCA7ugAwIBAgICIrowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTM0MThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY0NjlEMEEwQUVBQjc2 M0Y0MDA2QjI3QzVBNDdBRENBODEyN0JGN0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDWuHnG8R2Ocbq1zQ3g817nXGdRtjAZ9TtNE0Udz/WRggIUajI+ R+D/gSSjR3qpwrSwKnAzyhEJoeO9G4a5vaB9Jqw+2UkubS0JJFpofTU9mJcXRwpj 227XCLTwH/aJxHPyTQDwkjIrEfX76sXv15h5x+8b/V0EYUU8sh8SSa6NlL4ApT5T Z59MjOH3yeVLNfYWYt7bKx+nc/77iFWth+pwXkE/LBXpNqaesCm9kMz+tCdeIYPR y9zG2bZ5k1GlrbAwYO/Va1cQ6UG6/JePGphm+dR97y5lXRCRRQV88GvufgD9jy5N nVYwNdYJVnYS16Qz3HD3GitUXMXax8mVYaw1AgMBAAGjggHvMIIB6zAdBgNVHQ4E FgQUZGnQoK6rdj9ABrJ8WketyoEnv30wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1pHblFvSzZyZGo5QUJySjhX a2V0eW9FbnYzMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgABMAcDBQc9 PdUAMA0GCSqGSIb3DQEBCwUAA4IBAQCQmg70oBzw9aM/fTNr6D7yKqNmC9zguG+6 sRPIA7rzZFrYgVJL7kXZ6ckN5MIdb8k5Gmd8EAnM06oT1sUcE2L6iYUls0sMSCFV C4nDGpBUWrUMHzBVUpfJVS4GnSqjaXh7WOl09DzHewrXnSg1760cbRImJcJMbhHW GoDtPtUYqkTLssETr5DS9ZekuRrROh/VCmovYfiGGuKYQPWz2XcUXYGI3i6MGJUt 4TxEOH1TacqkPNQXzxSFNfB8Its3DTqKz/Muw75X/Noi6roIOW3ugqAUDR6QIwCK YQ9RtxmZ4O4Ir0ee36A8k75Y3JKWSU5X6hvI9tz7JsMuw7/0Smrh -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:59 2024 by rpki-client on console-fra.rpki-client.org