$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/yUiVxolZZfVHRwlYg2X5iKjXd8I.roa File: yUiVxolZZfVHRwlYg2X5iKjXd8I.roa (raw, json) Hash identifier: IM49e881DUmzgxflQakYTiJ50C6vo++Zor/GB+dUV2g= Subject key identifier: C9:48:95:C6:89:59:65:F5:47:47:09:58:83:65:F9:88:A8:D7:77:C2 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 217C Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/yUiVxolZZfVHRwlYg2X5iKjXd8I.roa Signing time: Mon 26 Aug 2024 05:33:03 +0000 ROA not before: Mon 26 Aug 2024 05:33:03 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24165 IP address blocks: 122.254.8.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8572 (0x217c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:03 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C94895C6895965F5474709588365F988A8D777C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:2f:82:20:d8:e6:89:e9:41:86:77:b6:24:81: 34:5f:07:09:d5:95:e5:c8:2e:ba:a6:16:d2:18:71: dc:52:46:eb:af:dc:04:65:ce:36:58:5c:90:22:b8: f5:5e:1d:96:fd:00:e1:51:48:9a:16:f8:91:ed:67: 2f:07:6c:1a:4a:e6:b6:b9:a9:55:20:dd:b2:2e:f8: 8e:c4:d6:3a:e1:e3:a9:87:3f:a1:63:30:a7:0e:df: a6:04:e3:1c:08:9f:3f:ad:11:a3:6f:8e:52:5c:8d: 61:ce:15:82:8a:a4:e7:38:7b:3f:a5:4b:a6:f6:c6: f8:e7:a8:e9:d6:27:0b:73:af:e6:a4:4c:0d:87:5c: 4b:15:ad:3c:02:99:53:2a:12:e7:35:5b:2b:db:ed: 4c:73:8b:ee:7d:3f:e0:8f:0e:4c:16:dc:60:b8:ae: cf:07:f3:ec:8b:6a:53:f6:36:f1:40:46:00:69:0a: 4f:05:01:76:8e:e7:7b:a1:26:e7:bd:0a:e8:14:10: 1a:ae:3a:c0:dc:03:e1:25:93:91:7f:0d:20:f6:39: a2:03:bb:f1:c1:86:91:1a:38:4f:1c:26:6a:39:4a: be:f5:d1:7f:a3:14:1e:c3:28:1b:d0:46:11:85:f6: 17:54:7a:35:ba:1a:2c:0f:6c:81:0c:c4:79:02:d8: d5:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:48:95:C6:89:59:65:F5:47:47:09:58:83:65:F9:88:A8:D7:77:C2 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/yUiVxolZZfVHRwlYg2X5iKjXd8I.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.254.8.0/21 Signature Algorithm: sha256WithRSAEncryption 97:05:70:9a:02:32:18:f6:09:70:3c:22:34:43:2b:e1:79:37: 9d:46:9c:7b:8b:de:0d:8a:70:5d:e3:8e:bb:2e:df:c0:bd:f7: f9:eb:cb:a5:1f:8e:54:50:4a:cd:23:6f:cd:02:a3:6e:9c:e7: 2b:3b:19:2d:fb:ef:24:86:f5:30:ac:ad:dd:c7:f4:36:5b:e1: 64:29:96:aa:3c:08:31:de:a1:e8:c8:6f:91:fd:c5:97:07:dd: c5:1f:ec:65:3e:36:8f:73:30:45:42:da:f0:2b:f4:2d:fc:e1: f0:4e:c2:96:70:38:c3:94:e7:fe:b2:92:45:fe:9d:f8:11:f4: 49:88:06:5a:4b:b2:82:8f:2e:a6:76:f7:67:ff:ce:0b:6f:66: fb:e2:e8:e8:03:d0:b2:44:c6:30:a2:fd:48:77:7e:2d:a5:f0: 92:b6:9e:9a:45:1e:64:44:e4:7d:59:65:15:bd:93:b6:b0:a4: be:65:66:4e:f1:52:77:3b:3e:a4:f6:c5:89:7c:d1:16:41:0b: 76:dc:37:e9:c4:97:54:ab:ba:42:54:a4:84:1a:0d:57:26:89: 0b:e0:0b:8a:14:ae:89:d6:bf:16:6b:f5:a7:82:56:30:5c:a3: 87:96:7f:bb:e5:f5:3a:bb:75:0b:6c:7f:a1:74:92:05:2f:2c: bd:64:11:e4 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIXwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzMDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM5NDg5NUM2ODk1OTY1 RjU0NzQ3MDk1ODgzNjVGOTg4QThENzc3QzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCL4Ig2OaJ6UGGd7YkgTRfBwnVleXILrqmFtIYcdxSRuuv3ARl zjZYXJAiuPVeHZb9AOFRSJoW+JHtZy8HbBpK5ra5qVUg3bIu+I7E1jrh46mHP6Fj MKcO36YE4xwInz+tEaNvjlJcjWHOFYKKpOc4ez+lS6b2xvjnqOnWJwtzr+akTA2H XEsVrTwCmVMqEuc1Wyvb7Uxzi+59P+CPDkwW3GC4rs8H8+yLalP2NvFARgBpCk8F AXaO53uhJue9CugUEBquOsDcA+Elk5F/DSD2OaIDu/HBhpEaOE8cJmo5Sr710X+j FB7DKBvQRhGF9hdUejW6GiwPbIEMxHkC2NX/AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUyUiVxolZZfVHRwlYg2X5iKjXd8IwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3lVaVZ4b2xaWmZWSFJ3bFln Mlg1aUtqWGQ4SS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN6 /ggwDQYJKoZIhvcNAQELBQADggEBAJcFcJoCMhj2CXA8IjRDK+F5N51GnHuL3g2K cF3jjrsu38C99/nry6UfjlRQSs0jb80Co26c5ys7GS377ySG9TCsrd3H9DZb4WQp lqo8CDHeoejIb5H9xZcH3cUf7GU+No9zMEVC2vAr9C384fBOwpZwOMOU5/6ykkX+ nfgR9EmIBlpLsoKPLqZ292f/zgtvZvvi6OgD0LJExjCi/Uh3fi2l8JK2nppFHmRE 5H1ZZRW9k7awpL5lZk7xUnc7PqT2xYl80RZBC3bcN+nEl1SrukJUpIQaDVcmiQvg C4oUronWvxZr9aeCVjBco4eWf7vl9Tq7dQtsf6F0kgUvLL1kEeQ= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:42 2024 by rpki-client on console-ams.rpki-client.org