$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/f0QM3OQ9DgPBHJ6iHA3tosm0K44.roa File: f0QM3OQ9DgPBHJ6iHA3tosm0K44.roa (raw, json) Hash identifier: Dc1dIfhELNGJSOsIggZ45XKULw/EeJOJwyWcqEhv3PM= Subject key identifier: 7F:44:0C:DC:E4:3D:0E:03:C1:1C:9E:A2:1C:0D:ED:A2:C9:B4:2B:8E Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 22BF Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/f0QM3OQ9DgPBHJ6iHA3tosm0K44.roa Signing time: Mon 26 Aug 2024 05:34:19 +0000 ROA not before: Mon 26 Aug 2024 05:34:19 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4662 IP address blocks: 211.76.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8895 (0x22bf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:34:19 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=7F440CDCE43D0E03C11C9EA21C0DEDA2C9B42B8E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:5f:b6:e0:ab:cd:96:0d:03:72:cc:46:4d:9b: e7:a2:9f:7a:ca:72:db:49:4e:cc:87:27:71:66:af: f9:9d:a6:0f:f8:6c:2d:85:8b:11:fd:d3:84:f0:ff: fe:d8:96:64:41:ce:85:42:45:15:99:b2:65:1c:7d: 64:d3:fe:b8:ea:4c:40:80:b4:06:50:0a:9a:4c:d4: 40:19:a5:2a:7e:cf:4d:07:fe:d0:ae:ef:a4:f7:22: fc:21:b5:04:82:b4:d5:e6:ca:5f:c7:33:b1:61:db: e8:29:12:5a:c5:d2:15:d0:0e:d8:e8:85:a4:d6:22: bb:33:64:4a:f4:78:66:e0:94:67:29:b7:97:7e:d3: e6:1f:1d:ad:29:00:5a:2a:36:57:8a:36:ce:0e:84: 77:cb:a4:d3:51:6c:60:aa:fd:c8:1d:c6:80:61:36: 37:e9:94:cb:4f:0e:2e:c4:18:08:2c:90:f9:69:ef: 60:c6:f5:ec:df:b6:f7:5c:01:fc:1f:b5:05:c4:c8: e0:60:5b:87:3b:8b:ed:50:0a:d9:e3:1e:f5:da:24: c6:69:9e:e6:5e:cc:15:8f:12:0f:49:84:08:03:49: 90:36:92:0b:e1:26:cd:b6:e4:2b:93:3d:b7:cd:0b: 68:4b:d6:00:fc:74:46:b7:85:1a:bb:58:12:1b:59: 18:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:44:0C:DC:E4:3D:0E:03:C1:1C:9E:A2:1C:0D:ED:A2:C9:B4:2B:8E X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/f0QM3OQ9DgPBHJ6iHA3tosm0K44.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.32.0/19 Signature Algorithm: sha256WithRSAEncryption 56:29:f0:e8:7e:e8:32:84:00:6b:d3:ed:22:3f:21:29:fe:41: 2b:55:ee:f3:07:86:f2:d3:4a:20:cb:43:01:2c:54:21:74:96: df:dd:5b:59:ee:ee:6e:28:8b:75:31:77:89:53:a3:24:81:b7: 63:f2:4f:72:d3:4b:57:70:9e:c2:ed:fa:48:fb:14:12:20:80: a3:02:19:c4:34:50:a6:98:67:c9:81:dc:25:92:c3:f6:ed:4d: d2:e5:0a:1d:0e:bc:74:ef:5e:06:94:0e:97:f4:6d:fd:ed:bb: 23:15:30:c9:bd:ca:54:b8:f8:3b:99:9a:7f:ca:86:c9:1b:50: 9c:8b:3f:1e:71:46:b1:ad:27:41:27:5e:f7:40:f7:e3:67:d1: f7:f0:5c:45:76:c7:65:99:17:57:de:81:09:40:b1:9d:10:76: 10:b0:69:66:bf:d2:2e:98:4e:9e:27:98:18:59:c3:73:5f:e2: 65:0b:d2:15:e8:57:52:78:45:51:e6:38:32:81:cb:11:9d:ab: 35:24:6e:44:27:66:ad:36:d8:2f:6b:13:dc:3b:cf:cd:06:a4: 3b:39:1c:c0:bf:ce:9e:f1:64:49:de:2b:14:22:b8:0f:67:03: 62:9a:93:63:03:e5:71:c3:29:74:17:4e:90:52:35:06:f2:65: d8:ea:3b:f4 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIr8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTM0MTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDdGNDQwQ0RDRTQzRDBF MDNDMTFDOUVBMjFDMERFREEyQzlCNDJCOEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDdX7bgq82WDQNyzEZNm+ein3rKcttJTsyHJ3Fmr/mdpg/4bC2F ixH904Tw//7YlmRBzoVCRRWZsmUcfWTT/rjqTECAtAZQCppM1EAZpSp+z00H/tCu 76T3IvwhtQSCtNXmyl/HM7Fh2+gpElrF0hXQDtjohaTWIrszZEr0eGbglGcpt5d+ 0+YfHa0pAFoqNleKNs4OhHfLpNNRbGCq/cgdxoBhNjfplMtPDi7EGAgskPlp72DG 9ezftvdcAfwftQXEyOBgW4c7i+1QCtnjHvXaJMZpnuZezBWPEg9JhAgDSZA2kgvh Js225CuTPbfNC2hL1gD8dEa3hRq7WBIbWRghAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUf0QM3OQ9DgPBHJ6iHA3tosm0K44wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2YwUU0zT1E5RGdQQkhKNmlI QTN0b3NtMEs0NC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAXT TCAwDQYJKoZIhvcNAQELBQADggEBAFYp8Oh+6DKEAGvT7SI/ISn+QStV7vMHhvLT SiDLQwEsVCF0lt/dW1nu7m4oi3Uxd4lToySBt2PyT3LTS1dwnsLt+kj7FBIggKMC GcQ0UKaYZ8mB3CWSw/btTdLlCh0OvHTvXgaUDpf0bf3tuyMVMMm9ylS4+DuZmn/K hskbUJyLPx5xRrGtJ0EnXvdA9+Nn0ffwXEV2x2WZF1fegQlAsZ0QdhCwaWa/0i6Y Tp4nmBhZw3Nf4mUL0hXoV1J4RVHmODKByxGdqzUkbkQnZq022C9rE9w7z80GpDs5 HMC/zp7xZEneKxQiuA9nA2Kak2MD5XHDKXQXTpBSNQbyZdjqO/Q= -----END CERTIFICATE-----Generated at Fri Nov 22 10:07:00 2024 by rpki-client on console-fra.rpki-client.org