$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/PZL9WEW_NcMCaCIN9ZpECctfY38.roa File: PZL9WEW_NcMCaCIN9ZpECctfY38.roa (raw, json) Hash identifier: eeXTR/80dhKceCNDt3CCS1zDZoJUmQREboW3+riJxac= Subject key identifier: 3D:92:FD:58:45:BF:35:C3:02:68:22:0D:F5:9A:44:09:CB:5F:63:7F Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2272 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/PZL9WEW_NcMCaCIN9ZpECctfY38.roa Signing time: Mon 26 Aug 2024 05:34:01 +0000 ROA not before: Mon 26 Aug 2024 05:34:01 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24163 IP address blocks: 180.218.240.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Sep 2024 03:51:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8818 (0x2272) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:34:01 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3D92FD5845BF35C30268220DF59A4409CB5F637F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:0b:29:76:29:b0:2b:61:dd:82:e8:7f:93:33: d4:9c:2e:3c:67:4b:11:21:15:2a:5d:6d:a6:48:81: 0f:c7:8b:67:64:be:f9:89:bd:e5:c7:6f:19:d1:37: e7:35:51:00:b0:a8:30:f6:c1:96:b8:48:ea:cb:4d: 09:aa:35:d8:e9:ea:dd:b4:e9:fe:c4:c0:99:6a:c1: cb:18:38:e0:6d:2f:80:64:d5:6f:ea:d4:01:0b:e4: ef:83:e1:a2:f0:8f:18:9c:af:8f:74:47:67:8e:bd: 71:9e:4a:4d:f6:03:2f:1d:b6:ee:bc:d9:37:7a:99: 91:87:7d:d0:3a:64:af:8f:e3:0d:3c:11:a1:fc:29: 3d:2d:9d:1b:e2:75:6d:0e:1c:fc:a8:f3:0f:fe:60: a0:b4:51:ee:5f:af:da:79:83:94:23:cf:d4:59:3c: 0d:61:95:63:3c:c6:2c:e6:f1:e6:99:17:5b:19:71: a6:1b:d9:75:28:31:37:cb:c6:ba:75:cc:24:40:2b: 2a:65:73:f3:4d:9a:9f:b7:03:71:10:31:47:b6:4d: 8c:ad:de:d1:51:22:2d:f5:6d:6f:2c:40:57:26:10: b9:bc:71:e6:a1:55:0c:56:a8:a9:04:16:4c:45:52: f8:33:49:e7:11:3d:0a:30:db:85:f6:19:26:5a:e8: 87:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:92:FD:58:45:BF:35:C3:02:68:22:0D:F5:9A:44:09:CB:5F:63:7F X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/PZL9WEW_NcMCaCIN9ZpECctfY38.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.240.0/20 Signature Algorithm: sha256WithRSAEncryption 70:22:1d:18:90:c6:dc:88:35:2f:97:31:45:42:df:8c:1f:27: 1f:8e:08:a0:88:44:84:4c:80:26:0c:13:38:97:61:5c:ba:d9: 22:b4:fb:38:b7:b4:b5:8f:e3:31:c6:de:1c:46:0c:59:2d:61: 77:ac:ed:e8:96:a2:14:0c:84:15:4f:a6:08:42:ec:1c:ca:20: 78:5b:27:65:b4:6f:0c:a9:92:8a:e1:a5:c6:89:da:6a:c3:18: d7:1f:17:8d:81:b7:b9:94:7d:d4:b8:4e:5e:15:d7:96:28:ce: af:66:51:15:b2:61:af:68:7e:78:78:00:c4:d1:37:6d:d9:17: d4:eb:a7:d8:90:4e:0f:9f:29:60:fe:aa:db:d0:d7:45:0f:40: 54:d8:6e:aa:90:5a:25:f5:61:8b:50:0c:57:44:03:c7:55:6e: be:5f:87:1f:2d:09:5b:64:f6:cd:02:d0:8f:40:75:31:94:03: f7:f0:73:f0:99:55:ed:e1:43:61:a6:d5:19:cb:b5:cb:fc:69: 2f:1b:72:69:44:6b:3e:92:ac:9a:a6:54:85:e0:0b:74:6b:72: ab:26:05:fb:60:e1:84:f8:53:8e:e3:a6:95:35:2f:ac:02:c2: f5:48:dd:67:0a:f4:d3:62:c3:70:38:fd:28:5f:5c:26:04:8c: 83:75:b8:b0 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICInIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTM0MDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNEOTJGRDU4NDVCRjM1 QzMwMjY4MjIwREY1OUE0NDA5Q0I1RjYzN0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4Cyl2KbArYd2C6H+TM9ScLjxnSxEhFSpdbaZIgQ/Hi2dkvvmJ veXHbxnRN+c1UQCwqDD2wZa4SOrLTQmqNdjp6t206f7EwJlqwcsYOOBtL4Bk1W/q 1AEL5O+D4aLwjxicr490R2eOvXGeSk32Ay8dtu682Td6mZGHfdA6ZK+P4w08EaH8 KT0tnRvidW0OHPyo8w/+YKC0Ue5fr9p5g5Qjz9RZPA1hlWM8xizm8eaZF1sZcaYb 2XUoMTfLxrp1zCRAKyplc/NNmp+3A3EQMUe2TYyt3tFRIi31bW8sQFcmELm8ceah VQxWqKkEFkxFUvgzSecRPQow24X2GSZa6IdZAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUPZL9WEW/NcMCaCIN9ZpECctfY38wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1BaTDlXRVdfTmNNQ2FDSU45 WnBFQ2N0ZlkzOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAS0 2vAwDQYJKoZIhvcNAQELBQADggEBAHAiHRiQxtyINS+XMUVC34wfJx+OCKCIRIRM gCYMEziXYVy62SK0+zi3tLWP4zHG3hxGDFktYXes7eiWohQMhBVPpghC7BzKIHhb J2W0bwypkorhpcaJ2mrDGNcfF42Bt7mUfdS4Tl4V15Yozq9mURWyYa9ofnh4AMTR N23ZF9Trp9iQTg+fKWD+qtvQ10UPQFTYbqqQWiX1YYtQDFdEA8dVbr5fhx8tCVtk 9s0C0I9AdTGUA/fwc/CZVe3hQ2Gm1RnLtcv8aS8bcmlEaz6SrJqmVIXgC3Rrcqsm Bftg4YT4U47jppU1L6wCwvVI3WcK9NNiw3A4/ShfXCYEjIN1uLA= -----END CERTIFICATE-----Generated at Fri Sep 27 23:52:58 2024 by rpki-client on console-ams.rpki-client.org