$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/RqJnwl2-JJkgge8PcUgBAvcU-EQ.roa File: RqJnwl2-JJkgge8PcUgBAvcU-EQ.roa (raw, json) Hash identifier: F7O2pUYPAHAemjlySjFhXRbx44cpX4aGNTpFJgnpoc8= Subject key identifier: 46:A2:67:C2:5D:BE:24:99:20:81:EF:0F:71:48:01:02:F7:14:F8:44 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 22CE Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/RqJnwl2-JJkgge8PcUgBAvcU-EQ.roa Signing time: Mon 26 Aug 2024 05:34:23 +0000 ROA not before: Mon 26 Aug 2024 05:34:23 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24163 IP address blocks: 180.218.124.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Sep 2024 03:51:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8910 (0x22ce) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:34:23 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=46A267C25DBE24992081EF0F71480102F714F844 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:a3:10:60:c1:88:0f:38:d1:77:fe:ed:59:64: 73:cd:a7:bc:c9:c2:ad:a1:d6:38:90:51:32:20:4e: aa:33:68:84:17:a6:ac:eb:ca:2f:31:84:8f:48:25: 38:e4:2c:aa:68:7d:3e:e7:dd:df:a8:96:59:7f:91: 9b:cc:3a:e0:37:0a:49:56:cb:ad:60:a0:67:48:9b: b4:c2:89:df:69:35:50:5c:f1:09:81:33:53:da:09: da:fb:b3:70:07:48:d2:3a:0c:81:cb:f1:67:75:9d: d1:0c:fe:6e:9d:32:ac:3c:c4:82:b4:7d:62:4e:4d: 4e:d5:f0:18:06:cd:d6:d3:7a:e0:4c:bf:2b:2d:0b: 99:d0:f8:c5:b4:61:f1:e0:52:44:63:c8:96:b9:80: 2c:24:92:68:d9:d9:48:ca:a5:3e:15:25:1a:ea:4f: d4:78:89:49:40:45:02:0b:30:6b:16:32:bc:a9:17: a1:43:fb:91:5a:32:dd:91:7f:2f:97:3f:26:5a:b3: ce:3b:95:73:03:c0:8f:14:77:b3:13:3d:00:1a:9f: cf:8f:97:19:ab:b4:35:ef:7e:08:9a:a1:7d:3c:ca: a1:0f:a1:2f:7e:7f:5c:96:1f:31:aa:ca:43:df:58: 85:6c:47:47:fb:45:07:4c:bf:a7:2d:9c:9a:bd:4c: 97:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:A2:67:C2:5D:BE:24:99:20:81:EF:0F:71:48:01:02:F7:14:F8:44 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/RqJnwl2-JJkgge8PcUgBAvcU-EQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.124.0/22 Signature Algorithm: sha256WithRSAEncryption 80:cc:51:d4:26:6f:d9:d8:09:df:3c:52:80:2a:fe:ea:08:07: ae:3f:22:9e:da:97:70:2c:55:f0:3f:af:62:0e:a2:65:3f:a0: e1:04:2a:12:5a:78:b2:23:db:b0:0e:3b:67:32:53:74:cb:e2: 8e:31:da:3f:3a:70:fe:e4:12:5a:8c:ef:d4:ed:7b:9f:ec:3b: 45:f7:87:8e:4e:98:ae:c1:ad:e0:02:00:f4:fd:45:b1:16:64: eb:71:7e:f3:0b:c6:1c:1e:b8:78:f7:6a:00:0a:71:08:6d:1b: 70:30:8b:56:4c:11:1a:2f:82:fc:44:20:c3:45:ec:18:fc:60: 89:a6:1e:a0:24:1a:e7:94:af:ba:b6:87:46:1b:ea:5e:26:54: 2d:8b:e3:b0:a3:07:4d:31:2b:d1:da:55:b1:cb:1d:23:fe:6d: 92:08:a4:32:c2:d2:52:ba:80:78:70:03:dc:cd:3b:b4:0a:99: 2e:cf:d4:6f:4e:4b:89:ba:b1:29:4a:32:f9:27:19:d6:12:50: 3d:54:5c:3a:2f:bb:db:7d:45:c6:c9:98:00:5c:c2:ed:2c:16: 39:5a:45:60:51:31:24:9c:ba:af:7a:30:f8:82:47:85:56:09: 19:00:cc:9c:78:56:b1:2e:6d:bd:85:44:09:eb:2f:6d:72:7b: a3:1c:b5:d7 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIs4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTM0MjNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ2QTI2N0MyNURCRTI0 OTkyMDgxRUYwRjcxNDgwMTAyRjcxNEY4NDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3oxBgwYgPONF3/u1ZZHPNp7zJwq2h1jiQUTIgTqozaIQXpqzr yi8xhI9IJTjkLKpofT7n3d+olll/kZvMOuA3CklWy61goGdIm7TCid9pNVBc8QmB M1PaCdr7s3AHSNI6DIHL8Wd1ndEM/m6dMqw8xIK0fWJOTU7V8BgGzdbTeuBMvyst C5nQ+MW0YfHgUkRjyJa5gCwkkmjZ2UjKpT4VJRrqT9R4iUlARQILMGsWMrypF6FD +5FaMt2Rfy+XPyZas847lXMDwI8Ud7MTPQAan8+PlxmrtDXvfgiaoX08yqEPoS9+ f1yWHzGqykPfWIVsR0f7RQdMv6ctnJq9TJf3AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQURqJnwl2+JJkgge8PcUgBAvcU+EQwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1JxSm53bDItSkprZ2dlOFBj VWdCQXZjVS1FUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK0 2nwwDQYJKoZIhvcNAQELBQADggEBAIDMUdQmb9nYCd88UoAq/uoIB64/Ip7al3As VfA/r2IOomU/oOEEKhJaeLIj27AOO2cyU3TL4o4x2j86cP7kElqM79Tte5/sO0X3 h45OmK7BreACAPT9RbEWZOtxfvMLxhweuHj3agAKcQhtG3Awi1ZMERovgvxEIMNF 7Bj8YImmHqAkGueUr7q2h0Yb6l4mVC2L47CjB00xK9HaVbHLHSP+bZIIpDLC0lK6 gHhwA9zNO7QKmS7P1G9OS4m6sSlKMvknGdYSUD1UXDovu9t9RcbJmABcwu0sFjla RWBRMSScuq96MPiCR4VWCRkAzJx4VrEubb2FRAnrL21ye6Mctdc= -----END CERTIFICATE-----Generated at Fri Sep 27 23:37:00 2024 by rpki-client on console-fra.rpki-client.org