$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/xAY_-6Gu-6YAWK05TRdn49-fHD4.roa File: xAY_-6Gu-6YAWK05TRdn49-fHD4.roa (raw, json) Hash identifier: bWfcDtwe/KvP+1xOAdG9V7kdtER251CAy4bwJXonWfU= Subject key identifier: C4:06:3F:FB:A1:AE:FB:A6:00:58:AD:39:4D:17:67:E3:DF:9F:1C:3E Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2209 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/xAY_-6Gu-6YAWK05TRdn49-fHD4.roa Signing time: Mon 26 Aug 2024 05:33:36 +0000 ROA not before: Mon 26 Aug 2024 05:33:36 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24165 IP address blocks: 61.58.112.0/21 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8713 (0x2209) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:36 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C4063FFBA1AEFBA60058AD394D1767E3DF9F1C3E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:fd:65:02:36:fa:f8:1b:6a:e4:c4:77:b3:53: e6:c5:f3:60:82:c8:48:ec:68:57:99:dd:a9:91:3b: 35:41:70:ef:6c:ab:af:40:f6:cc:d1:0c:66:e6:fb: a7:e4:9e:09:48:f6:f5:24:66:60:46:56:24:1a:13: 72:eb:2f:0a:fa:85:b6:a2:78:7f:3e:94:66:eb:71: 68:b4:c0:2e:97:62:c7:47:da:a0:eb:a9:6c:41:c9: 8b:5f:25:52:08:0a:be:4a:a7:fe:e6:cb:42:86:82: 17:3c:1f:26:0a:f4:b5:6c:36:1d:31:5e:c7:0d:07: 11:6b:d4:14:70:67:3d:59:77:c6:cc:41:56:9e:55: d2:4d:9f:8c:ce:19:35:4f:49:3c:c2:2e:fa:82:0a: b2:0d:82:f7:67:43:70:1c:e3:51:7a:7a:84:06:b8: 1c:fd:f2:0d:78:9c:77:84:77:81:8f:9c:a6:d0:81: f3:a7:bc:6f:05:2f:48:2b:f8:d1:32:dd:1a:ce:58: de:3e:38:45:38:a8:da:52:8c:85:65:f5:87:48:57: cb:04:be:ce:30:07:b0:c2:74:7e:1e:71:7b:c3:db: 94:37:d6:a0:62:ef:a2:dc:42:12:99:8b:d5:71:e5: b1:8a:3d:66:35:1f:62:5b:82:9d:7e:ae:c3:d6:fc: b3:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:06:3F:FB:A1:AE:FB:A6:00:58:AD:39:4D:17:67:E3:DF:9F:1C:3E X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/xAY_-6Gu-6YAWK05TRdn49-fHD4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.58.112.0/21 Signature Algorithm: sha256WithRSAEncryption 33:f8:71:1f:7a:fc:06:0f:2b:66:fb:f5:7d:c9:78:f7:e3:48: 75:77:52:42:d8:0c:7a:8f:11:1a:aa:f6:75:b7:a9:69:91:b2: 4c:56:3b:62:fa:36:42:b7:03:b7:92:1c:2c:ce:95:89:4e:19: 11:34:ad:37:f3:67:59:31:99:18:89:52:d8:8e:c6:a7:2d:b8: 96:30:e6:6c:7f:45:d6:62:74:42:91:e6:b5:62:67:33:8b:1f: 3d:6a:40:2d:7c:a0:f1:07:58:79:2d:2c:ee:72:d6:8f:cc:61: 4b:e0:6a:c4:2b:e2:bb:03:62:de:6b:a5:bc:fc:6a:c8:e8:1c: 6a:69:11:bd:0c:49:0f:c4:94:78:d9:2a:48:bb:c9:50:63:88: 3e:81:35:28:b4:77:f8:b8:a1:a4:7d:6a:5a:ab:b3:41:90:8c: 4e:3a:64:3f:cd:50:40:fe:a9:86:90:85:a2:bd:39:13:f9:33: 30:b6:10:c2:01:4b:4c:ae:38:55:42:ca:75:be:45:d2:2b:41: 00:70:db:bf:fd:83:e3:6d:4b:e4:e2:1b:48:59:61:75:94:53: f3:a4:bc:d7:6a:82:74:6f:0d:36:4b:13:5d:aa:db:7b:44:02: 86:14:9a:3e:72:c7:4e:fd:c1:3b:f7:84:d5:45:15:cf:04:dd: 30:fd:2f:5c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIgkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzMzZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM0MDYzRkZCQTFBRUZC QTYwMDU4QUQzOTREMTc2N0UzREY5RjFDM0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCt/WUCNvr4G2rkxHezU+bF82CCyEjsaFeZ3amROzVBcO9sq69A 9szRDGbm+6fknglI9vUkZmBGViQaE3LrLwr6hbaieH8+lGbrcWi0wC6XYsdH2qDr qWxByYtfJVIICr5Kp/7my0KGghc8HyYK9LVsNh0xXscNBxFr1BRwZz1Zd8bMQVae VdJNn4zOGTVPSTzCLvqCCrINgvdnQ3Ac41F6eoQGuBz98g14nHeEd4GPnKbQgfOn vG8FL0gr+NEy3RrOWN4+OEU4qNpSjIVl9YdIV8sEvs4wB7DCdH4ecXvD25Q31qBi 76LcQhKZi9Vx5bGKPWY1H2Jbgp1+rsPW/LM7AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUxAY/+6Gu+6YAWK05TRdn49+fHD4wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3hBWV8tNkd1LTZZQVdLMDVU UmRuNDktZkhENC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAM9 OnAwDQYJKoZIhvcNAQELBQADggEBADP4cR96/AYPK2b79X3JePfjSHV3UkLYDHqP ERqq9nW3qWmRskxWO2L6NkK3A7eSHCzOlYlOGRE0rTfzZ1kxmRiJUtiOxqctuJYw 5mx/RdZidEKR5rViZzOLHz1qQC18oPEHWHktLO5y1o/MYUvgasQr4rsDYt5rpbz8 asjoHGppEb0MSQ/ElHjZKki7yVBjiD6BNSi0d/i4oaR9alqrs0GQjE46ZD/NUED+ qYaQhaK9ORP5MzC2EMIBS0yuOFVCynW+RdIrQQBw27/9g+NtS+TiG0hZYXWUU/Ok vNdqgnRvDTZLE12q23tEAoYUmj5yx079wTv3hNVFFc8E3TD9L1w= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:56 2024 by rpki-client on console-fra.rpki-client.org