$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Zl2EuYJDliwJXlDXzX1qIdb3csw.roa File: Zl2EuYJDliwJXlDXzX1qIdb3csw.roa (raw, json) Hash identifier: HSwAx12W8MRDFuLfl6l6cOX9NWYKnp2F3yvTkfMFo90= Subject key identifier: 66:5D:84:B9:82:43:96:2C:09:5E:50:D7:CD:7D:6A:21:D6:F7:72:CC Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2203 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Zl2EuYJDliwJXlDXzX1qIdb3csw.roa Signing time: Mon 26 Aug 2024 05:33:34 +0000 ROA not before: Mon 26 Aug 2024 05:33:34 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 61.64.28.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:55:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8707 (0x2203) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:34 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=665D84B98243962C095E50D7CD7D6A21D6F772CC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:b5:9d:6c:18:75:a7:2c:e8:37:8c:99:38:4b: 68:94:02:54:2b:8d:f5:a9:c2:67:8c:5a:e2:86:fa: b7:d3:0b:e9:0a:ef:2c:2a:27:a3:50:95:aa:30:d3: e9:76:a6:95:8a:be:d0:ec:6f:f4:9c:a9:57:bf:d2: e1:ec:7f:a6:71:24:c5:23:b9:ca:e9:6c:7d:2f:a3: b3:89:9b:13:f7:f6:e5:e4:21:01:c4:f9:b4:83:58: e1:6e:bd:01:08:e9:65:1d:94:2b:e1:1b:46:ac:b2: d2:af:00:42:11:6d:bd:99:6f:8c:93:27:cf:80:5b: 9a:c4:97:b0:3d:44:eb:43:b9:08:1f:9c:74:0c:c1: d4:f2:1f:b8:48:0b:af:a7:83:ea:c4:23:4b:ad:3b: d9:76:71:ff:76:ad:5e:81:7c:fb:74:ff:aa:fd:e8: c5:70:48:08:13:38:23:12:14:c2:17:55:51:b3:08: fc:57:72:ab:cf:34:59:93:39:f9:d0:ad:cc:9a:a0: e1:56:2f:99:61:49:ca:f6:2c:12:fb:a1:ad:9c:78: 50:79:55:46:21:02:c0:5d:11:fb:34:7a:4a:4f:2b: 0e:9c:c1:30:83:d7:da:48:5d:36:be:3a:28:20:de: c1:0d:f0:f6:96:53:32:28:0c:6e:7e:30:fb:00:95: d1:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:5D:84:B9:82:43:96:2C:09:5E:50:D7:CD:7D:6A:21:D6:F7:72:CC X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Zl2EuYJDliwJXlDXzX1qIdb3csw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.64.28.0/22 Signature Algorithm: sha256WithRSAEncryption 4e:a6:c1:3c:29:1f:14:1c:81:4b:fd:da:98:2c:a1:90:08:32: fd:f9:fd:1a:54:5b:95:c9:c2:ec:e8:38:c3:b0:8d:ce:ac:77: 8e:19:01:08:fc:58:dd:53:4f:70:5d:51:d1:17:2d:69:76:33: 2e:a0:b9:b7:e7:d5:7b:a7:e2:ae:0e:5d:9f:6f:fe:26:24:af: ee:ad:83:bd:4e:c7:d5:b7:28:28:0f:8c:2e:37:f0:44:7d:8d: a6:67:4c:ac:ca:b1:dc:c2:98:53:44:45:30:f0:60:60:ad:03: 9c:60:0a:01:67:7c:b3:c8:0b:80:db:d5:d4:45:4b:4d:61:0a: 36:a4:ec:09:86:b5:84:28:b4:ba:38:bc:8a:71:89:94:98:c9: 1b:7a:14:39:c7:98:3a:c7:32:64:b4:aa:de:23:71:57:04:0b: 36:e1:db:9e:a3:0b:14:6d:67:93:0d:c0:d8:29:16:f4:f2:55: 85:22:25:59:5f:28:ac:6e:c7:7c:26:46:d1:ab:90:a0:f3:41: 49:23:1f:7b:52:31:d5:b5:de:a2:21:10:1f:0b:9c:4c:06:c3: aa:9b:79:5d:53:86:29:f1:23:9f:bd:26:1d:6a:6a:50:79:c2: 1e:bb:d8:6a:25:0e:6d:c1:9f:39:cf:26:e5:ca:47:93:6d:9b: ad:82:11:3a -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIgMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzMzRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY2NUQ4NEI5ODI0Mzk2 MkMwOTVFNTBEN0NEN0Q2QTIxRDZGNzcyQ0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/tZ1sGHWnLOg3jJk4S2iUAlQrjfWpwmeMWuKG+rfTC+kK7ywq J6NQlaow0+l2ppWKvtDsb/ScqVe/0uHsf6ZxJMUjucrpbH0vo7OJmxP39uXkIQHE +bSDWOFuvQEI6WUdlCvhG0asstKvAEIRbb2Zb4yTJ8+AW5rEl7A9ROtDuQgfnHQM wdTyH7hIC6+ng+rEI0utO9l2cf92rV6BfPt0/6r96MVwSAgTOCMSFMIXVVGzCPxX cqvPNFmTOfnQrcyaoOFWL5lhScr2LBL7oa2ceFB5VUYhAsBdEfs0ekpPKw6cwTCD 19pIXTa+Oigg3sEN8PaWUzIoDG5+MPsAldF9AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUZl2EuYJDliwJXlDXzX1qIdb3cswwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1psMkV1WUpEbGl3SlhsRFh6 WDFxSWRiM2Nzdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAI9 QBwwDQYJKoZIhvcNAQELBQADggEBAE6mwTwpHxQcgUv92pgsoZAIMv35/RpUW5XJ wuzoOMOwjc6sd44ZAQj8WN1TT3BdUdEXLWl2My6gubfn1Xun4q4OXZ9v/iYkr+6t g71Ox9W3KCgPjC438ER9jaZnTKzKsdzCmFNERTDwYGCtA5xgCgFnfLPIC4Db1dRF S01hCjak7AmGtYQotLo4vIpxiZSYyRt6FDnHmDrHMmS0qt4jcVcECzbh256jCxRt Z5MNwNgpFvTyVYUiJVlfKKxux3wmRtGrkKDzQUkjH3tSMdW13qIhEB8LnEwGw6qb eV1ThinxI5+9Jh1qalB5wh672GolDm3BnznPJuXKR5Ntm62CETo= -----END CERTIFICATE-----Generated at Mon Nov 25 20:56:45 2024 by rpki-client on console-fra.rpki-client.org