$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/unYgXVbat_6MVc3kpxniJa-dRgE.roa File: unYgXVbat_6MVc3kpxniJa-dRgE.roa (raw, json) Hash identifier: k24DGSQVcTp9jz9ScCaGKTxJvDIbVePrPMYPBd4sZlk= Subject key identifier: BA:76:20:5D:56:DA:B7:FE:8C:55:CD:E4:A7:19:E2:25:AF:9D:46:01 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 21CE Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/unYgXVbat_6MVc3kpxniJa-dRgE.roa Signing time: Mon 26 Aug 2024 05:33:22 +0000 ROA not before: Mon 26 Aug 2024 05:33:22 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 61.64.0.0/19 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8654 (0x21ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:22 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=BA76205D56DAB7FE8C55CDE4A719E225AF9D4601 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:fd:b1:bb:a8:9e:7c:ea:63:b5:88:ac:7a:c8: 66:20:ec:9b:d3:09:74:dd:94:74:67:1c:ab:1b:a3: b6:0f:b2:31:7e:b4:f3:79:6d:12:3c:c7:d0:4b:52: 08:bb:aa:aa:73:6d:90:23:ee:07:b9:b1:fe:57:70: 0f:1a:9a:ff:f2:5e:51:10:c1:be:d6:0f:6b:8e:0a: c8:59:58:cb:73:e8:7c:f8:01:a4:15:00:a7:c9:1a: 4d:dc:9e:ed:e7:9b:84:12:5f:90:49:86:35:ca:bf: 07:76:d4:35:0b:53:f9:1b:9c:50:65:1f:33:25:5d: fc:9e:1c:f8:40:f3:97:d4:82:9e:c7:72:22:cc:91: 6d:c0:5d:20:27:d0:3d:22:08:31:66:43:43:c9:8a: c8:66:e3:1a:45:6c:4b:99:b8:58:ef:2a:19:76:79: e1:74:62:0b:06:ca:c1:72:42:9b:89:c4:cb:54:1b: 12:28:03:02:18:c1:58:c1:9b:d6:f8:b4:5e:83:fb: a4:a9:bc:e8:10:3f:7b:fe:3e:1c:a4:f1:c0:10:18: 81:3c:b0:90:bb:1d:17:ab:9f:09:ab:91:03:eb:61: b4:00:cc:b4:64:23:fe:0b:dc:fe:4f:75:c6:ba:a0: 16:0b:c6:a2:e1:0a:ba:84:28:b2:2a:7b:07:13:79: 69:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:76:20:5D:56:DA:B7:FE:8C:55:CD:E4:A7:19:E2:25:AF:9D:46:01 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/unYgXVbat_6MVc3kpxniJa-dRgE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.64.0.0/19 Signature Algorithm: sha256WithRSAEncryption 0e:f7:b3:0b:6e:48:5a:14:7c:fc:9b:08:7e:b1:96:98:c7:03: b4:62:f1:c2:ce:23:18:e8:82:e8:6a:16:31:6c:0a:70:79:a5: 86:a1:13:62:ae:be:01:fc:aa:2f:04:0d:7f:9b:30:b0:04:f5: 77:85:84:e5:bf:40:e9:3e:ef:db:da:08:c9:23:cf:02:99:07: c2:cc:44:5a:50:87:85:32:65:39:16:99:5f:a5:06:77:75:0a: a5:f8:0e:55:1a:ec:f6:15:3e:ad:88:09:d2:25:e9:a4:d5:2c: a2:fb:3b:0e:f0:b5:2a:88:90:c0:19:ee:7b:a8:19:7a:46:65: 77:73:db:3c:22:49:e8:28:38:27:bd:2b:e6:af:5c:ed:ff:be: 98:bd:1b:b9:88:44:5b:fd:24:b3:47:64:39:51:4b:08:3c:77: ee:67:7d:b8:0c:7e:95:05:7e:ef:3e:01:89:f2:fc:bb:59:c0: f5:08:f0:2d:97:d2:8d:1f:7e:4f:c4:7c:fa:f9:77:34:a2:54: 11:60:f7:9f:33:2c:ba:86:5b:9a:ee:cb:37:65:e7:f8:e6:68: 90:5d:fd:26:ef:b0:ce:55:c9:58:80:d0:62:3c:a7:7b:cf:a2: f4:6b:0d:98:e1:c0:52:ef:48:28:4e:4d:36:ba:13:b7:41:e7: 99:f7:c7:ce -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIc4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzMjJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEJBNzYyMDVENTZEQUI3 RkU4QzU1Q0RFNEE3MTlFMjI1QUY5RDQ2MDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0/bG7qJ586mO1iKx6yGYg7JvTCXTdlHRnHKsbo7YPsjF+tPN5 bRI8x9BLUgi7qqpzbZAj7ge5sf5XcA8amv/yXlEQwb7WD2uOCshZWMtz6Hz4AaQV AKfJGk3cnu3nm4QSX5BJhjXKvwd21DULU/kbnFBlHzMlXfyeHPhA85fUgp7HciLM kW3AXSAn0D0iCDFmQ0PJishm4xpFbEuZuFjvKhl2eeF0YgsGysFyQpuJxMtUGxIo AwIYwVjBm9b4tF6D+6SpvOgQP3v+Phyk8cAQGIE8sJC7HRernwmrkQPrYbQAzLRk I/4L3P5Pdca6oBYLxqLhCrqEKLIqewcTeWkXAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUunYgXVbat/6MVc3kpxniJa+dRgEwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3VuWWdYVmJhdF82TVZjM2tw eG5pSmEtZFJnRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAU9 QAAwDQYJKoZIhvcNAQELBQADggEBAA73swtuSFoUfPybCH6xlpjHA7Ri8cLOIxjo guhqFjFsCnB5pYahE2KuvgH8qi8EDX+bMLAE9XeFhOW/QOk+79vaCMkjzwKZB8LM RFpQh4UyZTkWmV+lBnd1CqX4DlUa7PYVPq2ICdIl6aTVLKL7Ow7wtSqIkMAZ7nuo GXpGZXdz2zwiSegoOCe9K+avXO3/vpi9G7mIRFv9JLNHZDlRSwg8d+5nfbgMfpUF fu8+AYny/LtZwPUI8C2X0o0ffk/EfPr5dzSiVBFg958zLLqGW5ruyzdl5/jmaJBd /SbvsM5VyViA0GI8p3vPovRrDZjhwFLvSChOTTa6E7dB55n3x84= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:56 2024 by rpki-client on console-fra.rpki-client.org