$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/kS75-KuGcqeLaKk4o8Sj_QtahHA.roa File: kS75-KuGcqeLaKk4o8Sj_QtahHA.roa (raw, json) Hash identifier: QjmtO22nCvrkfh9yxbunuJicikqGAB65JqRRPruEdhg= Subject key identifier: 91:2E:F9:F8:AB:86:72:A7:8B:68:A9:38:A3:C4:A3:FD:0B:5A:84:70 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 21A8 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/kS75-KuGcqeLaKk4o8Sj_QtahHA.roa Signing time: Mon 26 Aug 2024 05:33:13 +0000 ROA not before: Mon 26 Aug 2024 05:33:13 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24165 IP address blocks: 122.254.48.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:55:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8616 (0x21a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:13 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=912EF9F8AB8672A78B68A938A3C4A3FD0B5A8470 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:31:0a:e3:31:2d:bc:62:fc:f7:6a:5f:21:70: f4:be:06:4b:86:64:23:fe:ff:fc:20:7c:c1:4e:74: 48:25:be:08:a8:c4:8d:96:9c:75:d7:ed:ee:b3:5d: 0c:b6:eb:c8:8a:7c:e1:37:ce:28:f6:dc:49:90:8a: 76:05:0b:f7:4d:57:d9:eb:d8:4b:4e:ce:a0:92:d1: 12:3a:4d:80:40:d2:48:e7:df:22:40:8f:dc:89:bb: 0f:68:e9:af:f4:b2:12:80:c4:34:02:0f:38:45:8a: a0:37:d0:84:6c:bd:ca:dc:6e:24:d4:9a:33:bc:51: a3:e1:a5:ea:2c:e6:91:a3:3f:41:2e:28:9a:dd:90: 74:62:14:9a:5c:21:35:10:e9:2e:94:92:6f:51:4b: 8a:e3:ee:a7:d6:96:29:05:b5:da:0f:76:1e:4e:d5: 74:c9:18:25:fa:be:f4:ef:23:d2:7b:97:d3:d2:32: fb:86:d6:08:3e:da:a3:08:2d:fd:86:24:24:27:9c: 82:94:2d:9d:cd:fc:db:88:67:36:67:8f:9b:98:83: 9e:d9:48:c2:05:07:59:c3:b9:41:b6:38:ba:f7:03: fc:ad:2d:27:f0:83:a4:03:0a:24:23:f1:91:bc:7d: e3:0b:4a:ff:50:3c:65:dd:e4:6e:0f:6c:ea:b2:88: 4e:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:2E:F9:F8:AB:86:72:A7:8B:68:A9:38:A3:C4:A3:FD:0B:5A:84:70 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/kS75-KuGcqeLaKk4o8Sj_QtahHA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.254.48.0/21 Signature Algorithm: sha256WithRSAEncryption 58:e5:eb:2a:15:68:45:83:f0:f9:e3:cb:a0:d9:e7:77:8e:5a: 4e:4d:69:30:74:0e:62:55:91:34:bf:26:90:e9:3f:56:fd:a8: 0c:eb:a2:11:38:cb:96:5c:14:ab:4f:e6:9a:ae:ed:d8:3d:ef: b6:11:99:ad:41:f5:95:c1:77:06:2c:e9:8b:44:b9:03:b4:85: 91:11:6b:9e:45:65:38:2b:e7:fc:08:15:27:de:df:6b:4e:49: e9:66:17:0d:9d:c8:21:93:c9:54:17:38:e6:51:d0:da:28:e5: ac:d6:9b:c2:b1:fe:d9:dd:96:94:67:a5:1a:05:b0:68:1c:71: f6:52:18:82:18:0d:1b:9d:d8:eb:ed:31:ce:53:d6:3a:e1:5c: a6:2f:4a:cd:60:dd:a8:c8:34:75:cc:94:32:d3:0e:4f:d1:47: 99:1a:e3:13:08:a2:cb:63:f6:8e:be:a5:b5:e8:3f:aa:e0:34: 7f:b4:28:94:ca:ab:09:78:6e:0c:ff:1e:9c:b0:a4:49:e0:a6: b0:3b:81:72:b9:9b:73:ae:6d:87:d2:0c:e8:d1:49:de:a7:3d: 8c:ad:b6:17:71:fc:61:99:47:a0:38:57:db:b4:3b:41:46:4e: 7e:99:ac:3f:d7:de:c6:6a:d6:09:bd:b8:09:d9:6a:16:c7:54: af:e3:c4:de -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIagwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzMTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDkxMkVGOUY4QUI4Njcy QTc4QjY4QTkzOEEzQzRBM0ZEMEI1QTg0NzAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4MQrjMS28Yvz3al8hcPS+BkuGZCP+//wgfMFOdEglvgioxI2W nHXX7e6zXQy268iKfOE3zij23EmQinYFC/dNV9nr2EtOzqCS0RI6TYBA0kjn3yJA j9yJuw9o6a/0shKAxDQCDzhFiqA30IRsvcrcbiTUmjO8UaPhpeos5pGjP0EuKJrd kHRiFJpcITUQ6S6Ukm9RS4rj7qfWlikFtdoPdh5O1XTJGCX6vvTvI9J7l9PSMvuG 1gg+2qMILf2GJCQnnIKULZ3N/NuIZzZnj5uYg57ZSMIFB1nDuUG2OLr3A/ytLSfw g6QDCiQj8ZG8feMLSv9QPGXd5G4PbOqyiE6fAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUkS75+KuGcqeLaKk4o8Sj/QtahHAwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2tTNzUtS3VHY3FlTGFLazRv OFNqX1F0YWhIQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN6 /jAwDQYJKoZIhvcNAQELBQADggEBAFjl6yoVaEWD8Pnjy6DZ53eOWk5NaTB0DmJV kTS/JpDpP1b9qAzrohE4y5ZcFKtP5pqu7dg977YRma1B9ZXBdwYs6YtEuQO0hZER a55FZTgr5/wIFSfe32tOSelmFw2dyCGTyVQXOOZR0Noo5azWm8Kx/tndlpRnpRoF sGgccfZSGIIYDRud2OvtMc5T1jrhXKYvSs1g3ajINHXMlDLTDk/RR5ka4xMIostj 9o6+pbXoP6rgNH+0KJTKqwl4bgz/HpywpEngprA7gXK5m3OubYfSDOjRSd6nPYyt thdx/GGZR6A4V9u0O0FGTn6ZrD/X3sZq1gm9uAnZahbHVK/jxN4= -----END CERTIFICATE-----Generated at Mon Nov 25 20:56:45 2024 by rpki-client on console-fra.rpki-client.org