$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/oF00kpHgHKGjt9JUYeNBIURjGzU.roa File: oF00kpHgHKGjt9JUYeNBIURjGzU.roa (raw, json) Hash identifier: k+iTuCg+JyCOP29uBp65ZaWxMn8RX8ZNHXGRP+3EFLM= Subject key identifier: A0:5D:34:92:91:E0:1C:A1:A3:B7:D2:54:61:E3:41:21:44:63:1B:35 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2191 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/oF00kpHgHKGjt9JUYeNBIURjGzU.roa Signing time: Mon 26 Aug 2024 05:33:07 +0000 ROA not before: Mon 26 Aug 2024 05:33:07 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24163 IP address blocks: 180.218.108.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Sep 2024 03:51:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8593 (0x2191) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:07 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A05D349291E01CA1A3B7D25461E3412144631B35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:47:1a:7c:a0:cd:1f:3d:3f:7d:d2:72:b4:88: c8:e3:18:1e:ec:b3:73:a1:6e:2e:34:0a:f0:4c:bd: 40:2e:9a:21:6a:d1:e3:15:91:22:9e:47:34:f4:10: e2:9e:7c:91:ac:cc:48:2b:96:64:39:88:0b:2f:72: e7:f7:45:5a:04:e7:c7:7d:b9:80:85:1b:bd:99:42: ba:89:ea:db:cf:1f:67:b4:aa:9e:84:b9:43:b1:5e: 17:4c:3e:22:06:38:c1:e4:17:de:fa:2b:dd:ed:f6: 06:71:75:9d:90:2b:50:b0:b4:67:a0:2c:e1:47:09: 2e:ea:f3:7f:e9:f5:ed:ca:b2:48:d9:b4:46:28:6c: ed:1e:3f:5b:ec:fc:f7:d4:15:91:85:13:e3:f7:25: 81:74:89:d4:aa:be:c4:2f:60:cc:19:d7:c8:91:11: 4e:cd:9b:d3:5d:77:b1:58:b8:e0:c6:7e:b4:81:1e: 18:f2:67:61:30:ba:22:a6:ae:9e:4e:35:90:88:f4: 87:3a:bd:97:5b:a5:05:b7:83:58:bc:cd:90:6a:ec: 1d:a3:d3:6a:51:9c:0f:98:6c:15:1f:54:6c:29:e9: dc:d9:82:f7:98:1f:c8:42:d5:20:16:73:66:ca:5f: b2:94:ea:ef:89:9c:e8:22:46:d8:c7:6d:27:23:37: 94:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:5D:34:92:91:E0:1C:A1:A3:B7:D2:54:61:E3:41:21:44:63:1B:35 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/oF00kpHgHKGjt9JUYeNBIURjGzU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.108.0/22 Signature Algorithm: sha256WithRSAEncryption 35:ac:93:00:eb:d5:6d:c1:ba:bf:37:16:bf:12:42:06:ee:e6: 52:0b:42:a0:8e:c7:20:e2:2a:da:cf:ea:b7:f3:7a:7b:c3:da: 28:7f:5e:57:ef:c2:2c:3c:b9:d1:fa:a8:98:66:b1:57:c1:6e: 89:15:65:6d:97:ba:65:58:f6:d5:c2:30:43:a9:a2:ac:6d:71: 74:96:d8:a1:57:55:8a:f4:3d:62:0b:2e:bf:35:39:c1:24:1f: 52:40:31:fb:de:18:00:5a:ce:68:c9:57:b3:0c:5e:4f:68:4c: 69:de:d2:c9:d8:8e:dc:b1:a0:95:ef:91:f4:e8:0e:68:bb:77: 6a:f6:99:83:5a:cd:8c:b2:99:f4:02:57:10:df:5f:24:e2:8c: 91:4d:69:a2:a5:a6:d3:d7:22:af:28:41:95:4b:fd:bf:14:d5: 36:11:12:ef:1d:3c:50:e1:38:b9:9f:57:ac:78:8b:29:80:12: 38:86:f3:93:15:ec:04:6a:cb:fc:3c:3b:6f:73:6c:53:28:8a: 08:e0:ea:31:7b:85:38:03:90:f7:17:e2:79:57:fe:7e:63:49: a5:d8:48:db:95:e1:69:47:20:83:83:a5:7e:3b:b1:ab:b4:5f: 9d:30:e4:ce:78:e8:79:c0:1c:5a:08:69:de:4a:07:93:78:4e: ed:c8:a1:c6 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIZEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzMDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEEwNUQzNDkyOTFFMDFD QTFBM0I3RDI1NDYxRTM0MTIxNDQ2MzFCMzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDgRxp8oM0fPT990nK0iMjjGB7ss3Ohbi40CvBMvUAumiFq0eMV kSKeRzT0EOKefJGszEgrlmQ5iAsvcuf3RVoE58d9uYCFG72ZQrqJ6tvPH2e0qp6E uUOxXhdMPiIGOMHkF976K93t9gZxdZ2QK1CwtGegLOFHCS7q83/p9e3KskjZtEYo bO0eP1vs/PfUFZGFE+P3JYF0idSqvsQvYMwZ18iREU7Nm9Ndd7FYuODGfrSBHhjy Z2EwuiKmrp5ONZCI9Ic6vZdbpQW3g1i8zZBq7B2j02pRnA+YbBUfVGwp6dzZgveY H8hC1SAWc2bKX7KU6u+JnOgiRtjHbScjN5TVAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUoF00kpHgHKGjt9JUYeNBIURjGzUwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL29GMDBrcEhnSEtHanQ5SlVZ ZU5CSVVSakd6VS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK0 2mwwDQYJKoZIhvcNAQELBQADggEBADWskwDr1W3Bur83Fr8SQgbu5lILQqCOxyDi KtrP6rfzenvD2ih/Xlfvwiw8udH6qJhmsVfBbokVZW2XumVY9tXCMEOpoqxtcXSW 2KFXVYr0PWILLr81OcEkH1JAMfveGABazmjJV7MMXk9oTGne0snYjtyxoJXvkfTo Dmi7d2r2mYNazYyymfQCVxDfXyTijJFNaaKlptPXIq8oQZVL/b8U1TYREu8dPFDh OLmfV6x4iymAEjiG85MV7ARqy/w8O29zbFMoigjg6jF7hTgDkPcX4nlX/n5jSaXY SNuV4WlHIIODpX47sau0X50w5M546HnAHFoIad5KB5N4Tu3IocY= -----END CERTIFICATE-----Generated at Fri Sep 27 23:52:58 2024 by rpki-client on console-ams.rpki-client.org