$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/qoA0IxQMg1ppXPc75EXqi75UtIk.roa File: qoA0IxQMg1ppXPc75EXqi75UtIk.roa (raw, json) Hash identifier: KhPHIfaDPAMBIBm/ya5EozweGJywj3NJlIffJZS/o/s= Subject key identifier: AA:80:34:23:14:0C:83:5A:69:5C:F7:3B:E4:45:EA:8B:BE:54:B4:89 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 21ED Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/qoA0IxQMg1ppXPc75EXqi75UtIk.roa Signing time: Mon 26 Aug 2024 05:33:28 +0000 ROA not before: Mon 26 Aug 2024 05:33:28 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 122.254.56.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8685 (0x21ed) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:28 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=AA803423140C835A695CF73BE445EA8BBE54B489 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:c5:a8:ec:5e:91:ab:2e:5f:a8:c5:60:e0:46: 9a:e8:49:8d:84:f0:2c:ce:5d:bc:8d:9a:d9:2f:5a: e5:65:15:48:58:c6:0a:5b:b2:90:fa:ae:d3:3e:3e: 95:f3:c4:f3:5e:49:3e:22:24:15:f4:e8:c7:c0:ec: 44:9d:2f:bd:36:23:2f:2f:7a:07:0c:36:a6:13:ee: 32:2c:a1:96:02:29:63:7e:d5:cd:83:47:68:eb:ac: c1:b6:a7:1b:26:a2:7e:20:e9:8e:14:58:d1:27:c6: b5:c6:ab:d1:7d:14:b4:d6:66:65:81:43:b1:90:f4: 8b:ef:39:4e:ea:38:8c:99:1e:41:6e:66:73:0d:d5: 30:f2:38:9c:1a:5c:ed:9d:9e:ba:0a:d0:dd:45:4d: 00:22:13:ff:dd:5a:3f:e0:bb:a1:17:cd:ca:23:0e: 9f:f5:34:3a:c8:d5:a8:fb:13:8c:15:32:0e:12:e0: d6:5e:c3:6d:62:4f:dd:18:bb:da:e8:08:47:fc:f8: 74:6b:bb:e9:e6:4b:33:e9:dd:7c:2f:3c:aa:5a:21: fd:00:16:df:dd:3a:6b:e4:0f:7c:06:2a:4d:89:68: 52:1a:30:8e:fb:fe:8c:a6:29:59:c5:1c:d0:aa:23: 4c:f6:b6:71:22:e9:48:57:d5:b2:04:6c:94:93:e6: f1:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:80:34:23:14:0C:83:5A:69:5C:F7:3B:E4:45:EA:8B:BE:54:B4:89 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/qoA0IxQMg1ppXPc75EXqi75UtIk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.254.56.0/21 Signature Algorithm: sha256WithRSAEncryption 8e:fc:40:1a:4c:06:bb:b3:c1:14:53:34:a9:8b:e3:88:80:27: 4d:11:7c:a9:89:7d:f1:11:cc:d1:50:63:6c:7a:47:6d:b5:13: c6:4f:81:94:c5:85:4e:5c:1f:4b:f8:57:dc:b1:2e:28:ab:80: ca:ca:26:23:f7:95:cd:b4:a0:20:a1:e5:53:f3:3f:3f:05:68: a2:fe:77:b1:9a:92:52:48:21:16:4c:5d:76:13:46:38:01:cd: 1b:6a:61:9d:3d:74:9f:88:9d:d7:fb:70:75:cb:09:82:af:42: ec:c8:30:28:62:2e:76:9e:74:3f:d2:99:57:3e:a4:f4:2d:57: 91:14:ee:8e:94:de:fc:30:68:72:99:27:be:f3:1d:cc:d7:d8: 11:94:b1:3e:2c:d2:59:97:d3:2d:4b:89:8b:da:34:34:21:f9: 1e:a7:5b:6f:ae:27:a4:c0:7a:3d:de:82:a0:7e:6c:65:c1:00: 68:99:01:39:e1:94:6e:77:d9:fe:63:09:18:80:8c:4e:ab:8b: d2:21:87:c5:a6:51:67:62:ea:4b:4d:e4:ea:cc:72:a7:a0:6e: c0:e7:60:b7:51:ff:bd:41:20:21:1c:5c:1c:b2:c7:5b:95:8d: 6b:80:b2:b0:d2:91:80:ba:67:12:45:35:88:f9:af:ad:ff:57: db:e6:a4:af -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIe0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzMjhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEFBODAzNDIzMTQwQzgz NUE2OTVDRjczQkU0NDVFQThCQkU1NEI0ODkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCmxajsXpGrLl+oxWDgRproSY2E8CzOXbyNmtkvWuVlFUhYxgpb spD6rtM+PpXzxPNeST4iJBX06MfA7ESdL702Iy8vegcMNqYT7jIsoZYCKWN+1c2D R2jrrMG2pxsmon4g6Y4UWNEnxrXGq9F9FLTWZmWBQ7GQ9IvvOU7qOIyZHkFuZnMN 1TDyOJwaXO2dnroK0N1FTQAiE//dWj/gu6EXzcojDp/1NDrI1aj7E4wVMg4S4NZe w21iT90Yu9roCEf8+HRru+nmSzPp3XwvPKpaIf0AFt/dOmvkD3wGKk2JaFIaMI77 /oymKVnFHNCqI0z2tnEi6UhX1bIEbJST5vF1AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUqoA0IxQMg1ppXPc75EXqi75UtIkwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3FvQTBJeFFNZzFwcFhQYzc1 RVhxaTc1VXRJay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN6 /jgwDQYJKoZIhvcNAQELBQADggEBAI78QBpMBruzwRRTNKmL44iAJ00RfKmJffER zNFQY2x6R221E8ZPgZTFhU5cH0v4V9yxLiirgMrKJiP3lc20oCCh5VPzPz8FaKL+ d7GaklJIIRZMXXYTRjgBzRtqYZ09dJ+Indf7cHXLCYKvQuzIMChiLnaedD/SmVc+ pPQtV5EU7o6U3vwwaHKZJ77zHczX2BGUsT4s0lmX0y1LiYvaNDQh+R6nW2+uJ6TA ej3egqB+bGXBAGiZATnhlG532f5jCRiAjE6ri9Ihh8WmUWdi6ktN5OrMcqegbsDn YLdR/71BICEcXByyx1uVjWuAsrDSkYC6ZxJFNYj5r63/V9vmpK8= -----END CERTIFICATE-----Generated at Fri Nov 22 10:07:00 2024 by rpki-client on console-fra.rpki-client.org