$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/fRnJM8BF7a5ViY7EYjtRWTBvy68.roa File: fRnJM8BF7a5ViY7EYjtRWTBvy68.roa (raw, json) Hash identifier: fIpPzFA/u1EFdCnkFVjWg8QILJ7n1OrBVkYTRd5hWbg= Subject key identifier: 7D:19:C9:33:C0:45:ED:AE:55:89:8E:C4:62:3B:51:59:30:6F:CB:AF Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 22D3 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/fRnJM8BF7a5ViY7EYjtRWTBvy68.roa Signing time: Mon 26 Aug 2024 05:34:24 +0000 ROA not before: Mon 26 Aug 2024 05:34:24 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24165 IP address blocks: 61.58.112.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8915 (0x22d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:34:24 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=7D19C933C045EDAE55898EC4623B5159306FCBAF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:5c:49:c8:d8:75:4f:6f:2b:5b:57:33:da:8a: 92:b2:67:6a:61:27:3d:05:56:b9:0d:17:93:7e:d2: 81:17:54:0c:b1:50:98:dc:ac:df:0d:35:8b:e9:31: 6b:23:ea:ed:b5:7e:7e:c1:d7:d8:1a:d1:b1:f3:f1: 7d:cc:95:43:c9:58:5d:cd:86:a3:20:6a:e7:29:79: ff:aa:40:7a:fb:c4:42:b6:9f:76:84:b3:f9:9b:11: 7d:b5:3d:e3:b7:fe:2e:38:ec:f0:b8:1c:d2:aa:93: dd:72:57:20:1b:13:21:45:76:8b:49:68:97:e5:e4: a9:91:19:b2:b8:b3:e1:d3:c0:2f:dc:73:64:13:5d: 2d:d3:6a:60:08:c4:ec:78:48:ce:98:d5:4d:ae:ad: 75:a5:64:51:17:19:d4:6d:f3:de:b4:6a:6d:e9:a1: a1:64:e4:68:15:89:12:a2:57:69:57:47:55:a7:75: 07:54:2b:29:1b:31:34:9d:48:40:c9:45:d8:b9:c2: 06:08:35:b4:67:cf:96:ae:b7:dc:0f:0e:16:11:b0: 7b:2c:24:03:42:e2:6d:11:66:66:3e:84:13:63:1e: fe:62:17:f8:59:a1:b3:31:a1:74:9d:aa:f8:78:4f: 6c:d8:15:ff:79:fb:ff:bb:97:96:8d:4f:ee:dc:e7: 4f:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:19:C9:33:C0:45:ED:AE:55:89:8E:C4:62:3B:51:59:30:6F:CB:AF X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/fRnJM8BF7a5ViY7EYjtRWTBvy68.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.58.112.0/21 Signature Algorithm: sha256WithRSAEncryption 99:8e:dd:ff:cb:fd:05:73:c3:d9:ba:32:bc:0e:4a:30:a3:da: 4b:48:a2:8e:b2:05:1c:3b:8c:03:4b:f4:fe:a4:f8:04:9b:15: 57:70:eb:00:12:59:58:d8:84:83:08:09:a2:62:6d:c0:88:7b: e3:10:31:85:d3:ff:6c:f0:00:4d:87:b9:b6:aa:5d:9d:6f:1e: a3:7e:47:c9:7d:5a:7d:65:52:f7:ee:b4:8e:04:a8:51:8f:91: 85:64:51:09:0d:ef:5d:1c:83:4e:d0:46:e5:a9:ce:b5:d4:75: 7b:52:27:b2:63:c6:70:bb:4f:fe:04:4a:2d:ca:b0:a8:10:18: f6:b9:80:e0:0e:62:d2:d8:27:b4:c5:1c:b5:a8:e7:72:a3:13: f9:82:14:d5:52:2f:ca:94:ac:ff:f1:3f:13:57:18:38:cb:27: a7:ec:a4:21:02:c4:34:82:a1:5a:12:ab:27:92:1d:91:7f:cc: fe:96:b4:19:eb:70:d5:ce:0b:0c:31:38:8c:5f:79:71:7d:e4: fe:b1:c5:4c:0f:89:68:aa:b2:a8:51:b7:e9:fc:ce:4e:8f:fa: f7:5c:ee:bc:b6:a1:b9:0a:79:89:53:e0:ee:57:29:cc:39:03: 16:0a:a4:65:ba:3f:19:2d:58:32:5b:00:65:33:3f:40:a9:78: 50:41:62:20 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICItMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTM0MjRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDdEMTlDOTMzQzA0NUVE QUU1NTg5OEVDNDYyM0I1MTU5MzA2RkNCQUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8XEnI2HVPbytbVzPaipKyZ2phJz0FVrkNF5N+0oEXVAyxUJjc rN8NNYvpMWsj6u21fn7B19ga0bHz8X3MlUPJWF3NhqMgaucpef+qQHr7xEK2n3aE s/mbEX21PeO3/i447PC4HNKqk91yVyAbEyFFdotJaJfl5KmRGbK4s+HTwC/cc2QT XS3TamAIxOx4SM6Y1U2urXWlZFEXGdRt8960am3poaFk5GgViRKiV2lXR1WndQdU KykbMTSdSEDJRdi5wgYINbRnz5aut9wPDhYRsHssJANC4m0RZmY+hBNjHv5iF/hZ obMxoXSdqvh4T2zYFf95+/+7l5aNT+7c50+3AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUfRnJM8BF7a5ViY7EYjtRWTBvy68wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2ZSbkpNOEJGN2E1VmlZN0VZ anRSV1RCdnk2OC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAM9 OnAwDQYJKoZIhvcNAQELBQADggEBAJmO3f/L/QVzw9m6MrwOSjCj2ktIoo6yBRw7 jANL9P6k+ASbFVdw6wASWVjYhIMICaJibcCIe+MQMYXT/2zwAE2HubaqXZ1vHqN+ R8l9Wn1lUvfutI4EqFGPkYVkUQkN710cg07QRuWpzrXUdXtSJ7JjxnC7T/4ESi3K sKgQGPa5gOAOYtLYJ7TFHLWo53KjE/mCFNVSL8qUrP/xPxNXGDjLJ6fspCECxDSC oVoSqyeSHZF/zP6WtBnrcNXOCwwxOIxfeXF95P6xxUwPiWiqsqhRt+n8zk6P+vdc 7ry2obkKeYlT4O5XKcw5AxYKpGW6PxktWDJbAGUzP0CpeFBBYiA= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:41 2024 by rpki-client on console-ams.rpki-client.org