$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/qEZWF5Jd6wELQC0Yu803_nTXh5Y.roa File: qEZWF5Jd6wELQC0Yu803_nTXh5Y.roa (raw, json) Hash identifier: KGLQ51f9st55YrWu7hmtRytNOru+cOuRxhKG6eXDOyc= Subject key identifier: A8:46:56:17:92:5D:EB:01:0B:40:2D:18:BB:CD:37:FE:74:D7:87:96 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2242 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/qEZWF5Jd6wELQC0Yu803_nTXh5Y.roa Signing time: Mon 26 Aug 2024 05:33:49 +0000 ROA not before: Mon 26 Aug 2024 05:33:49 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24165 IP address blocks: 124.6.8.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8770 (0x2242) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:49 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A8465617925DEB010B402D18BBCD37FE74D78796 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ce:a3:8b:b8:40:e9:53:c3:61:89:b8:ee:e6: d5:38:b4:f8:8b:f3:b1:17:80:de:e6:d2:2b:45:52: c5:75:2b:c6:e9:7a:6e:82:45:a5:50:6c:4d:c4:4d: ec:c6:15:90:15:da:14:af:50:1f:d3:fb:ad:e8:19: fb:e8:b0:27:d2:b7:39:28:74:51:3c:cd:d2:84:9c: 06:ec:0a:7b:7e:59:87:e9:c8:da:46:27:5e:90:7f: 09:9c:34:dd:86:8a:70:ad:23:ad:68:1e:76:fa:9f: 81:52:04:af:14:dd:39:5d:c1:a0:76:f6:d7:1c:8a: 69:43:ba:b1:d4:a6:0f:a8:40:9e:1b:77:6f:f7:db: a2:9c:77:9a:cc:6d:95:bc:1d:2b:26:fb:54:52:c8: 83:86:9b:81:49:77:66:69:9b:c6:9c:f0:08:98:ae: 09:bb:c2:d5:67:8e:d2:4a:66:c0:48:7f:1b:54:f7: e9:99:0f:3d:cd:a1:71:8e:6b:9a:17:e0:3b:58:55: d1:fa:4a:98:71:f8:06:f0:2f:c0:49:c7:26:6f:b9: 6d:34:11:6d:0f:4c:e3:21:e5:33:01:b4:a1:7d:e1: 77:6f:e1:e5:ce:46:30:f9:d8:90:9a:79:59:08:b6: ec:c4:36:32:45:85:d2:e5:b0:85:1d:2d:10:dc:04: 99:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:46:56:17:92:5D:EB:01:0B:40:2D:18:BB:CD:37:FE:74:D7:87:96 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/qEZWF5Jd6wELQC0Yu803_nTXh5Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.6.8.0/21 Signature Algorithm: sha256WithRSAEncryption 96:7d:20:57:af:f2:2c:bd:af:b1:e6:5c:b9:48:6a:11:2a:75: b7:d8:b5:e6:5c:1f:59:b5:9d:70:5f:42:3f:c2:d3:14:27:3f: 78:33:8f:95:d9:d0:44:1b:5e:fc:d1:d2:88:f4:dc:8e:88:96: cf:96:a7:fb:4b:58:8d:01:58:27:4c:d1:9e:f6:17:05:6e:c2: c7:d8:f1:6c:0b:3b:74:91:ab:07:43:9c:00:89:9b:81:7d:48: 47:27:c1:48:b3:cb:3c:52:18:04:77:cb:5d:95:0c:7d:5b:69: f9:e9:62:3a:a3:18:c4:b2:02:81:62:87:56:ee:0e:b7:2b:8b: 80:9b:e4:ed:32:4c:04:c3:be:76:6c:9c:83:80:9e:1d:55:3e: a6:43:37:2d:0d:5f:c8:ac:38:a7:4e:46:77:87:58:11:8f:71: 16:d4:6a:fb:e7:90:d6:7f:e4:3b:a2:40:d3:c6:fd:03:ec:55: 49:52:56:9b:66:17:19:b9:f8:cf:19:c5:8e:45:05:25:0f:63: 74:1b:5e:79:36:7d:86:2d:35:80:66:5d:22:93:0d:d2:9e:c2: 35:c6:8b:cd:ab:0d:db:63:c3:25:3b:32:9e:b0:5f:72:01:19: 58:c6:a5:bb:c7:a5:bd:b2:6e:ef:a0:bd:f1:2d:1a:11:7b:f5: db:58:d6:82 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIkIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzNDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE4NDY1NjE3OTI1REVC MDEwQjQwMkQxOEJCQ0QzN0ZFNzRENzg3OTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3zqOLuEDpU8Nhibju5tU4tPiL87EXgN7m0itFUsV1K8bpem6C RaVQbE3ETezGFZAV2hSvUB/T+63oGfvosCfStzkodFE8zdKEnAbsCnt+WYfpyNpG J16QfwmcNN2GinCtI61oHnb6n4FSBK8U3TldwaB29tccimlDurHUpg+oQJ4bd2/3 26Kcd5rMbZW8HSsm+1RSyIOGm4FJd2Zpm8ac8AiYrgm7wtVnjtJKZsBIfxtU9+mZ Dz3NoXGOa5oX4DtYVdH6Sphx+AbwL8BJxyZvuW00EW0PTOMh5TMBtKF94Xdv4eXO RjD52JCaeVkItuzENjJFhdLlsIUdLRDcBJl7AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUqEZWF5Jd6wELQC0Yu803/nTXh5YwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3FFWldGNUpkNndFTFFDMFl1 ODAzX25UWGg1WS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN8 BggwDQYJKoZIhvcNAQELBQADggEBAJZ9IFev8iy9r7HmXLlIahEqdbfYteZcH1m1 nXBfQj/C0xQnP3gzj5XZ0EQbXvzR0oj03I6Ils+Wp/tLWI0BWCdM0Z72FwVuwsfY 8WwLO3SRqwdDnACJm4F9SEcnwUizyzxSGAR3y12VDH1bafnpYjqjGMSyAoFih1bu Drcri4Cb5O0yTATDvnZsnIOAnh1VPqZDNy0NX8isOKdORneHWBGPcRbUavvnkNZ/ 5DuiQNPG/QPsVUlSVptmFxm5+M8ZxY5FBSUPY3QbXnk2fYYtNYBmXSKTDdKewjXG i82rDdtjwyU7Mp6wX3IBGVjGpbvHpb2ybu+gvfEtGhF79dtY1oI= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:26 2024 by rpki-client on console-ams.rpki-client.org