$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/cStf01WUh_ELIEB2qZ4Mha_kBkU.roa File: cStf01WUh_ELIEB2qZ4Mha_kBkU.roa (raw, json) Hash identifier: 60PXgWF3SBOSmnD4WqcsHqnbAVEdM3D/AjQuU+crXeg= Subject key identifier: 71:2B:5F:D3:55:94:87:F1:0B:20:40:76:A9:9E:0C:85:AF:E4:06:45 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 22D9 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/cStf01WUh_ELIEB2qZ4Mha_kBkU.roa Signing time: Mon 26 Aug 2024 05:34:25 +0000 ROA not before: Mon 26 Aug 2024 05:34:25 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24163 IP address blocks: 114.198.176.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Sep 2024 03:51:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8921 (0x22d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:34:25 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=712B5FD3559487F10B204076A99E0C85AFE40645 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:70:9e:84:f9:72:c4:e9:cf:b5:3f:37:01:6f: c0:46:40:16:d3:9d:a5:03:52:aa:44:63:14:6d:5c: d9:4b:1d:d9:79:bc:0c:e1:b3:00:ae:ee:8c:1c:6f: c3:7c:f1:d2:9d:f0:c0:22:d0:0f:3f:fb:8a:92:63: 5b:10:d0:d3:bd:d1:4b:3e:ac:9c:ff:ce:e0:f6:86: 3a:8a:39:57:56:9a:3a:df:e4:ee:03:91:13:bc:37: c4:2a:aa:c4:9c:cf:a2:87:6e:65:4e:30:26:76:64: f9:42:73:a6:fe:b2:e2:66:93:28:5d:e8:aa:ef:56: 14:e2:f7:a3:24:10:b3:46:68:c4:0e:e3:91:6e:45: 96:1f:09:76:42:80:57:29:76:21:ae:5e:4b:b7:fd: 1d:11:54:60:0a:86:2f:08:1f:de:39:3c:71:2a:62: 89:51:66:dd:91:5e:be:ee:65:52:f4:b8:78:4c:31: 1b:6d:18:ba:4a:11:15:ef:af:a4:cf:95:40:7f:9c: 91:b8:2c:75:c1:62:f5:49:8a:e1:13:c3:15:08:ef: ec:e6:bd:58:a9:48:79:80:d0:19:56:12:8f:c1:be: 81:34:04:fe:e0:4c:35:99:06:01:88:41:e1:9a:e6: b1:4e:cc:f0:fd:67:19:98:95:17:0e:5b:08:c8:98: b6:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:2B:5F:D3:55:94:87:F1:0B:20:40:76:A9:9E:0C:85:AF:E4:06:45 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/cStf01WUh_ELIEB2qZ4Mha_kBkU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 114.198.176.0/20 Signature Algorithm: sha256WithRSAEncryption 44:1a:48:00:0c:3e:f3:c8:2c:13:16:b9:e6:04:fe:a5:12:bb: 35:73:0d:6d:7e:d5:96:1d:2f:47:36:ce:52:10:9b:1c:35:db: ce:49:38:dc:43:ef:5d:03:72:d6:13:2c:0e:95:da:6a:8b:b7: 3d:2c:a1:7e:20:0b:e2:cb:39:b4:c6:50:0e:fb:4b:67:9d:e8: 8a:8f:82:62:75:14:d5:a0:c5:9f:d8:c0:dd:52:61:4d:5f:b4: fa:ef:21:cd:ff:d3:d1:dc:7d:cb:f5:ab:e6:c4:a8:ec:42:a6: b8:c5:6f:ce:1d:14:66:99:f0:b0:ae:41:2e:23:55:60:2b:13: 17:06:63:e9:a0:31:f5:20:08:e6:bd:52:7e:bb:51:66:6f:f0: f4:47:4b:74:c0:dc:8b:56:10:3a:29:94:a2:02:0f:90:d5:04: f2:74:2e:1a:1a:29:33:f9:c0:f6:72:50:54:1e:bf:2d:15:6b: db:7f:0a:29:03:04:eb:e0:01:ba:98:68:e1:89:fb:d5:90:64: bf:1a:f0:15:0d:5e:36:f3:45:da:e8:df:f5:da:7c:ea:79:04: da:40:58:c1:84:8f:c9:aa:56:7c:45:f5:f4:7b:62:f4:e1:1f: ac:70:94:71:c0:43:f8:3f:09:c3:bb:ab:e5:d1:6a:21:b1:3f: 93:9f:38:aa -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICItkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTM0MjVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDcxMkI1RkQzNTU5NDg3 RjEwQjIwNDA3NkE5OUUwQzg1QUZFNDA2NDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDhcJ6E+XLE6c+1PzcBb8BGQBbTnaUDUqpEYxRtXNlLHdl5vAzh swCu7owcb8N88dKd8MAi0A8/+4qSY1sQ0NO90Us+rJz/zuD2hjqKOVdWmjrf5O4D kRO8N8QqqsScz6KHbmVOMCZ2ZPlCc6b+suJmkyhd6KrvVhTi96MkELNGaMQO45Fu RZYfCXZCgFcpdiGuXku3/R0RVGAKhi8IH945PHEqYolRZt2RXr7uZVL0uHhMMRtt GLpKERXvr6TPlUB/nJG4LHXBYvVJiuETwxUI7+zmvVipSHmA0BlWEo/BvoE0BP7g TDWZBgGIQeGa5rFOzPD9ZxmYlRcOWwjImLbHAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUcStf01WUh/ELIEB2qZ4Mha/kBkUwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2NTdGYwMVdVaF9FTElFQjJx WjRNaGFfa0JrVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBARy xrAwDQYJKoZIhvcNAQELBQADggEBAEQaSAAMPvPILBMWueYE/qUSuzVzDW1+1ZYd L0c2zlIQmxw1285JONxD710DctYTLA6V2mqLtz0soX4gC+LLObTGUA77S2ed6IqP gmJ1FNWgxZ/YwN1SYU1ftPrvIc3/09Hcfcv1q+bEqOxCprjFb84dFGaZ8LCuQS4j VWArExcGY+mgMfUgCOa9Un67UWZv8PRHS3TA3ItWEDoplKICD5DVBPJ0LhoaKTP5 wPZyUFQevy0Va9t/CikDBOvgAbqYaOGJ+9WQZL8a8BUNXjbzRdro3/XafOp5BNpA WMGEj8mqVnxF9fR7YvThH6xwlHHAQ/g/CcO7q+XRaiGxP5OfOKo= -----END CERTIFICATE-----Generated at Fri Sep 27 23:37:00 2024 by rpki-client on console-fra.rpki-client.org