$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/wHNXsqLW_jxIRqvmNtvgvVO1rbM.roa File: wHNXsqLW_jxIRqvmNtvgvVO1rbM.roa (raw, json) Hash identifier: +9/SWjkKKxQdEANYKc1LVzTnO1g4BnrEIITU+ZdLb48= Subject key identifier: C0:73:57:B2:A2:D6:FE:3C:48:46:AB:E6:36:DB:E0:BD:53:B5:AD:B3 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 21C8 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/wHNXsqLW_jxIRqvmNtvgvVO1rbM.roa Signing time: Mon 26 Aug 2024 05:33:20 +0000 ROA not before: Mon 26 Aug 2024 05:33:20 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24163 IP address blocks: 114.198.160.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Sep 2024 03:51:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8648 (0x21c8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:20 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C07357B2A2D6FE3C4846ABE636DBE0BD53B5ADB3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:07:fd:35:19:d3:93:b4:64:c1:96:d3:ae:d5: d2:71:37:25:35:e3:83:92:a8:f9:54:bf:03:ba:01: eb:e3:56:04:a0:01:72:cc:88:2f:d1:a0:02:78:8d: e4:97:fa:7d:ee:1a:d3:09:b5:54:ab:df:84:0f:74: f1:bf:c3:02:26:4c:be:89:54:f8:77:91:db:22:8c: 75:df:16:90:f3:29:a2:7c:10:31:15:31:72:0d:80: 74:33:c3:c2:94:09:b8:3e:8b:47:e9:c8:84:33:e8: dc:56:83:ce:29:79:b0:41:ff:a2:1c:1b:00:36:c0: c5:d8:8e:c8:35:8e:4e:01:fd:66:43:1a:9b:d3:ec: 15:2c:61:17:11:db:7a:45:32:90:0b:1e:f1:05:12: fb:19:88:3b:ad:e8:b0:78:26:c4:fa:fa:8a:99:51: e8:f3:9d:b1:3d:6b:76:d7:e1:d0:60:6a:86:49:85: aa:a1:d0:10:04:2b:69:c6:2c:93:04:06:ce:bc:e7: 49:7e:63:86:32:d2:30:a9:6c:e3:93:1d:d6:b2:09: bc:f5:90:9c:42:e1:62:e3:e6:78:f6:ed:82:1f:0d: 17:3d:65:88:59:1e:34:90:30:6e:22:cf:71:db:aa: fa:db:f4:d4:ea:73:eb:8f:d7:b3:0e:3b:cf:f2:72: 2c:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:73:57:B2:A2:D6:FE:3C:48:46:AB:E6:36:DB:E0:BD:53:B5:AD:B3 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/wHNXsqLW_jxIRqvmNtvgvVO1rbM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 114.198.160.0/20 Signature Algorithm: sha256WithRSAEncryption 9e:09:f5:a1:d7:fc:fc:0e:92:b5:fe:c0:77:95:d7:06:7a:cd: 6a:9a:35:71:f7:f4:88:75:7c:ee:42:e8:10:70:99:35:32:a5: 81:6a:57:db:35:f4:0e:25:b8:58:28:a1:35:b1:85:97:f3:5a: 6d:89:91:00:37:54:8d:04:fd:9f:fe:c7:16:a0:43:88:5b:a9: 9a:76:8d:8c:b9:f6:0e:c6:28:ce:52:e8:f5:84:94:70:c0:21: fc:49:83:c0:c6:af:68:29:c3:88:e8:15:1d:af:49:16:34:37: 70:09:2c:7c:ca:fd:d4:f3:51:e9:84:b9:df:48:97:c7:c5:38: 51:b5:46:f9:db:d8:1c:21:c4:b5:98:d3:8a:88:03:1d:e3:95: 53:51:b6:98:b5:e4:18:25:a6:84:cb:38:22:59:3a:47:2e:ba: 74:60:f0:45:6d:aa:88:06:41:69:7f:96:50:ac:38:35:22:fb: 15:54:9d:a5:11:0c:36:8f:6b:19:5d:b4:55:b5:1c:b5:57:09: e7:d4:cd:29:5f:cd:99:12:9d:d4:72:eb:88:ab:e4:ce:da:96: f7:8d:ab:8e:49:c8:ef:46:1c:2e:1a:73:9c:be:b5:5d:2a:50: 89:39:ce:b2:8e:b0:bc:ee:c7:12:df:f8:44:52:f5:84:8a:ca: e2:a7:52:79 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIcgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzMjBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEMwNzM1N0IyQTJENkZF M0M0ODQ2QUJFNjM2REJFMEJENTNCNUFEQjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDdB/01GdOTtGTBltOu1dJxNyU144OSqPlUvwO6AevjVgSgAXLM iC/RoAJ4jeSX+n3uGtMJtVSr34QPdPG/wwImTL6JVPh3kdsijHXfFpDzKaJ8EDEV MXINgHQzw8KUCbg+i0fpyIQz6NxWg84pebBB/6IcGwA2wMXYjsg1jk4B/WZDGpvT 7BUsYRcR23pFMpALHvEFEvsZiDut6LB4JsT6+oqZUejznbE9a3bX4dBgaoZJhaqh 0BAEK2nGLJMEBs6850l+Y4Yy0jCpbOOTHdayCbz1kJxC4WLj5nj27YIfDRc9ZYhZ HjSQMG4iz3Hbqvrb9NTqc+uP17MOO8/ycizlAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUwHNXsqLW/jxIRqvmNtvgvVO1rbMwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3dITlhzcUxXX2p4SVJxdm1O dHZndlZPMXJiTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBARy xqAwDQYJKoZIhvcNAQELBQADggEBAJ4J9aHX/PwOkrX+wHeV1wZ6zWqaNXH39Ih1 fO5C6BBwmTUypYFqV9s19A4luFgooTWxhZfzWm2JkQA3VI0E/Z/+xxagQ4hbqZp2 jYy59g7GKM5S6PWElHDAIfxJg8DGr2gpw4joFR2vSRY0N3AJLHzK/dTzUemEud9I l8fFOFG1Rvnb2BwhxLWY04qIAx3jlVNRtpi15BglpoTLOCJZOkcuunRg8EVtqogG QWl/llCsODUi+xVUnaURDDaPaxldtFW1HLVXCefUzSlfzZkSndRy64ir5M7alveN q45JyO9GHC4ac5y+tV0qUIk5zrKOsLzuxxLf+ERS9YSKyuKnUnk= -----END CERTIFICATE-----Generated at Fri Sep 27 23:52:58 2024 by rpki-client on console-ams.rpki-client.org