$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/dqtn8GdTzpWmNXmWK_Mg5N-zf2o.roa File: dqtn8GdTzpWmNXmWK_Mg5N-zf2o.roa (raw, json) Hash identifier: cxPQhy7jMDwk5R8K+fo0tntbkPMUBKWbpJ9J1i7bO48= Subject key identifier: 76:AB:67:F0:67:53:CE:95:A6:35:79:96:2B:F3:20:E4:DF:B3:7F:6A Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2228 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/dqtn8GdTzpWmNXmWK_Mg5N-zf2o.roa Signing time: Mon 26 Aug 2024 05:33:44 +0000 ROA not before: Mon 26 Aug 2024 05:33:44 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24163 IP address blocks: 45.64.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8744 (0x2228) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:44 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=76AB67F06753CE95A63579962BF320E4DFB37F6A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:cc:aa:e2:ef:23:cb:17:90:76:d1:2c:83:6c: 60:98:fb:6e:77:1f:58:0a:e0:6b:d2:81:d7:0d:ff: 4e:f9:55:81:e5:6a:fa:67:6c:2d:04:82:eb:5e:92: d5:b9:6d:7b:47:f1:81:52:f3:25:bd:52:24:c6:83: a7:fe:e3:13:98:d0:20:9f:f4:3c:86:c4:29:c3:48: a1:26:12:4c:cd:ec:35:8e:ec:e8:3d:10:c1:f2:fe: ac:33:f1:e2:20:29:8c:62:77:e9:3f:87:42:48:ae: f2:6c:e6:43:6b:ee:16:a6:03:d1:4d:ed:ee:c1:e9: 1a:2e:10:d1:62:76:89:f6:bc:31:c8:32:18:2e:96: d1:00:cb:1b:d0:53:69:ec:bd:a6:1c:e1:df:18:f8: c3:bf:07:7b:13:38:01:b4:e9:d7:ce:56:26:df:1d: bd:3a:57:7a:14:db:a5:4d:94:5a:df:6f:09:12:df: aa:4f:6d:ce:e1:7c:03:4e:88:0e:50:2d:e8:fc:d8: e3:61:41:b6:51:89:67:bf:cb:31:38:e2:04:d9:63: f5:f6:e9:03:71:d7:40:9e:cd:fe:8e:d1:af:92:30: f4:12:df:f5:0c:a4:f0:3e:4f:3d:09:e8:45:c1:d0: bf:8f:c8:16:16:63:80:36:12:db:e7:01:23:93:ed: f6:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:AB:67:F0:67:53:CE:95:A6:35:79:96:2B:F3:20:E4:DF:B3:7F:6A X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/dqtn8GdTzpWmNXmWK_Mg5N-zf2o.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 45.64.35.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:7d:10:bf:48:7e:f0:fb:31:52:9c:46:84:8f:a0:ef:57:cb: 01:0a:e2:80:64:06:c6:e6:ad:fe:f3:fb:79:d5:57:ea:b1:3d: b5:4f:96:16:c5:82:b9:33:5d:81:84:43:fb:74:a7:bb:6f:e7: b9:d8:50:f0:9d:6b:9a:18:75:a4:47:4e:0d:65:6d:13:2f:aa: c2:73:4c:49:5b:f2:53:0b:c1:ba:17:5a:0a:60:e9:9e:61:5d: 24:3a:c3:53:38:06:a6:6d:14:29:86:b1:70:ea:20:a0:28:8d: d8:4e:a2:4a:b7:aa:6c:cc:23:64:28:09:2d:7d:27:1b:b9:80: 7b:57:3f:4c:47:89:55:95:4f:ce:18:3e:6e:97:24:65:2c:a2: dc:dd:aa:3e:38:01:30:5b:10:12:40:7e:00:ce:c8:04:75:5c: 75:ed:d4:c9:5f:53:b5:dd:6d:70:90:5e:90:33:f6:5e:2d:66: 22:d6:1e:1a:e4:27:56:19:a4:6f:8d:f3:ec:b6:eb:34:5c:41: d9:1a:d9:49:78:a6:95:e2:65:98:d3:83:07:57:5e:31:9e:25: 65:72:ab:04:76:2f:4e:57:6a:14:c9:ef:e4:c0:1a:d4:90:0d: 2f:39:60:e5:37:ec:d1:11:ee:28:27:3f:83:f9:04:05:6f:c8: 4a:ea:84:a1 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIigwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzNDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDc2QUI2N0YwNjc1M0NF OTVBNjM1Nzk5NjJCRjMyMEU0REZCMzdGNkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDnzKri7yPLF5B20SyDbGCY+253H1gK4GvSgdcN/075VYHlavpn bC0EgutektW5bXtH8YFS8yW9UiTGg6f+4xOY0CCf9DyGxCnDSKEmEkzN7DWO7Og9 EMHy/qwz8eIgKYxid+k/h0JIrvJs5kNr7hamA9FN7e7B6RouENFidon2vDHIMhgu ltEAyxvQU2nsvaYc4d8Y+MO/B3sTOAG06dfOVibfHb06V3oU26VNlFrfbwkS36pP bc7hfANOiA5QLej82ONhQbZRiWe/yzE44gTZY/X26QNx10Cezf6O0a+SMPQS3/UM pPA+Tz0J6EXB0L+PyBYWY4A2EtvnASOT7fbdAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUdqtn8GdTzpWmNXmWK/Mg5N+zf2owHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2RxdG44R2RUenBXbU5YbVdL X01nNU4temYyby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAt QCMwDQYJKoZIhvcNAQELBQADggEBAD99EL9IfvD7MVKcRoSPoO9XywEK4oBkBsbm rf7z+3nVV+qxPbVPlhbFgrkzXYGEQ/t0p7tv57nYUPCda5oYdaRHTg1lbRMvqsJz TElb8lMLwboXWgpg6Z5hXSQ6w1M4BqZtFCmGsXDqIKAojdhOokq3qmzMI2QoCS19 Jxu5gHtXP0xHiVWVT84YPm6XJGUsotzdqj44ATBbEBJAfgDOyAR1XHXt1MlfU7Xd bXCQXpAz9l4tZiLWHhrkJ1YZpG+N8+y26zRcQdka2Ul4ppXiZZjTgwdXXjGeJWVy qwR2L05XahTJ7+TAGtSQDS85YOU37NER7ignP4P5BAVvyErqhKE= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:26 2024 by rpki-client on console-ams.rpki-client.org