$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/cXiCopSdU7H7JzHYSq3s4TjoWPk.roa File: cXiCopSdU7H7JzHYSq3s4TjoWPk.roa (raw, json) Hash identifier: MbPr4sfzwHeu10NhEuDl+NrqqJ3WOHpYUruixueueGo= Subject key identifier: 71:78:82:A2:94:9D:53:B1:FB:27:31:D8:4A:AD:EC:E1:38:E8:58:F9 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 222F Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/cXiCopSdU7H7JzHYSq3s4TjoWPk.roa Signing time: Mon 26 Aug 2024 05:33:45 +0000 ROA not before: Mon 26 Aug 2024 05:33:45 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 211.76.46.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8751 (0x222f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:45 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=717882A2949D53B1FB2731D84AADECE138E858F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:81:83:bc:b0:6e:42:bc:b7:a4:8e:c8:48:af: b5:52:5e:e2:06:3c:86:c8:e1:b0:5b:b7:c2:04:92: 66:b7:20:24:79:f0:92:6d:e9:36:d1:9a:63:e9:70: 90:b2:ca:db:03:b0:e4:0f:83:3b:80:b6:6a:75:10: 49:62:36:4a:12:90:97:89:da:f6:31:27:eb:e0:9d: ec:da:0f:d3:fe:34:ae:15:5f:c1:c5:b9:c0:2c:ff: 6a:a8:0b:67:f9:7f:f6:bc:91:e4:f8:f3:31:84:d4: 02:68:69:9e:00:01:bb:d3:98:d2:f4:d6:af:f4:1b: f2:3b:6e:51:ce:9c:bb:79:90:79:ea:28:03:9d:70: 76:06:a6:1c:cc:2f:14:f5:2c:09:da:4f:55:2d:ea: d5:8b:4e:70:a9:59:c8:9b:16:79:9d:8b:2e:f5:5a: b5:41:b7:7c:1d:ae:7e:6a:f0:aa:d1:1c:a2:f0:b2: d6:4f:d8:23:cd:91:60:5e:c3:52:a7:2b:7a:c2:dc: 90:e6:97:5e:76:c2:f8:0e:c2:8a:c5:4d:2d:bb:bf: ba:dd:12:2c:2a:02:18:c1:3b:a2:2c:a2:81:22:2c: b1:2a:13:23:d5:96:27:3c:5e:e8:6d:14:a9:3e:db: ee:33:85:a3:b1:a2:b7:ed:d8:11:42:56:7a:57:d2: a9:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:78:82:A2:94:9D:53:B1:FB:27:31:D8:4A:AD:EC:E1:38:E8:58:F9 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/cXiCopSdU7H7JzHYSq3s4TjoWPk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.46.0/23 Signature Algorithm: sha256WithRSAEncryption 4f:9a:1e:9b:e2:3c:5a:3d:30:e5:a4:e3:79:27:68:32:ae:6c: 34:f5:42:1b:18:29:86:5b:23:95:45:e5:d6:52:02:f0:06:5d: 17:7f:f1:4e:87:09:3d:d0:8d:7a:21:49:5a:bb:02:29:02:9a: 42:56:7f:06:e0:71:ee:c9:af:61:8f:7b:5b:58:d9:ae:0f:90: e8:1f:e6:bc:70:08:d8:9b:60:12:cf:f4:f4:3b:33:4c:9f:fc: c6:80:fd:7f:8f:17:b4:ff:d9:ee:5f:d9:bf:65:5f:0d:73:94: 42:0b:17:c9:36:a8:d7:b3:a1:21:38:6a:23:28:eb:9e:0a:90: 77:ba:f6:4a:67:a6:d4:f3:71:00:f9:35:7f:c4:f0:30:59:e2: 55:b5:cf:a3:4f:40:dc:1f:5d:20:22:4b:7f:53:18:1c:94:33: ea:a4:69:c8:3c:a9:6b:68:3e:da:e4:a5:10:73:0e:48:d8:8b: d9:42:38:86:08:92:a6:d5:76:14:d6:55:9f:b2:7f:b3:3f:93: 9f:b5:9a:15:57:d6:25:06:0e:b3:7f:1d:70:69:02:87:54:1b: 8d:b6:e7:89:b3:2b:7c:96:d5:94:50:6d:41:09:93:37:8a:2f: 37:98:5a:25:8e:45:87:92:43:3f:bc:de:06:bf:68:e5:8f:b0: e0:12:9e:aa -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIi8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzNDVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDcxNzg4MkEyOTQ5RDUz QjFGQjI3MzFEODRBQURFQ0UxMzhFODU4RjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCygYO8sG5CvLekjshIr7VSXuIGPIbI4bBbt8IEkma3ICR58JJt 6TbRmmPpcJCyytsDsOQPgzuAtmp1EEliNkoSkJeJ2vYxJ+vgnezaD9P+NK4VX8HF ucAs/2qoC2f5f/a8keT48zGE1AJoaZ4AAbvTmNL01q/0G/I7blHOnLt5kHnqKAOd cHYGphzMLxT1LAnaT1Ut6tWLTnCpWcibFnmdiy71WrVBt3wdrn5q8KrRHKLwstZP 2CPNkWBew1KnK3rC3JDml152wvgOworFTS27v7rdEiwqAhjBO6IsooEiLLEqEyPV lic8XuhtFKk+2+4zhaOxorft2BFCVnpX0qmrAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUcXiCopSdU7H7JzHYSq3s4TjoWPkwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2NYaUNvcFNkVTdIN0p6SFlT cTNzNFRqb1dQay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHT TC4wDQYJKoZIhvcNAQELBQADggEBAE+aHpviPFo9MOWk43knaDKubDT1QhsYKYZb I5VF5dZSAvAGXRd/8U6HCT3QjXohSVq7AikCmkJWfwbgce7Jr2GPe1tY2a4PkOgf 5rxwCNibYBLP9PQ7M0yf/MaA/X+PF7T/2e5f2b9lXw1zlEILF8k2qNezoSE4aiMo 654KkHe69kpnptTzcQD5NX/E8DBZ4lW1z6NPQNwfXSAiS39TGByUM+qkacg8qWto PtrkpRBzDkjYi9lCOIYIkqbVdhTWVZ+yf7M/k5+1mhVX1iUGDrN/HXBpAodUG422 54mzK3yW1ZRQbUEJkzeKLzeYWiWORYeSQz+83ga/aOWPsOASnqo= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:41 2024 by rpki-client on console-ams.rpki-client.org