$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASNET/bUbOklQb9tiSTIRa6L4MkxdIoUI.roa File: bUbOklQb9tiSTIRa6L4MkxdIoUI.roa (raw, json) Hash identifier: jzVqkuG1clGGjh901OLB6Br2NdiMM7F1NGr32TOtTQA= Subject key identifier: 6D:46:CE:92:54:1B:F6:D8:92:4C:84:5A:E8:BE:0C:93:17:48:A1:42 Certificate issuer: /CN=70984F008CA28F6475DB426353BFD1C433D8BC1A Certificate serial: 0C4A Authority key identifier: 70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/bUbOklQb9tiSTIRa6L4MkxdIoUI.roa Signing time: Mon 26 Aug 2024 05:09:43 +0000 ROA not before: Mon 26 Aug 2024 05:09:43 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9264 IP address blocks: 202.140.160.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 21 Sep 2024 09:49:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3146 (0xc4a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70984F008CA28F6475DB426353BFD1C433D8BC1A Validity Not Before: Aug 26 05:09:43 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6D46CE92541BF6D8924C845AE8BE0C931748A142 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:36:5e:5d:e9:95:f2:32:ce:02:98:3c:14:99: d9:b1:45:c7:3a:1c:8b:30:f8:f9:82:8e:2b:a8:36: 3c:b7:30:20:89:58:5e:4b:a7:da:c0:43:38:f2:53: 17:69:2d:72:43:ad:f8:08:1e:80:e6:dd:65:bb:c3: 8b:87:d1:f6:12:9c:d0:55:f6:5c:53:34:40:61:4b: 2a:d6:e6:f6:20:d1:7f:92:10:fc:a0:1e:af:c7:8c: c0:0e:5d:58:86:50:65:a1:52:1f:e4:7c:25:07:71: 59:9f:27:38:09:75:0e:3f:b1:c2:99:ab:65:4f:39: bf:4a:4e:ff:06:63:a8:5e:fd:77:09:15:f8:f1:09: 0e:ef:a7:5f:a3:be:c1:0c:6a:73:27:29:c9:94:0f: f7:b2:f2:31:5f:62:e6:a2:93:42:a7:9a:f7:8a:ab: 89:08:dd:44:fe:c5:7d:f6:65:a5:67:dc:a0:93:25: e6:3c:e6:89:78:d0:53:c4:26:07:90:47:1a:55:7d: f9:d5:10:df:9e:a8:ea:8e:23:0b:44:4c:32:f4:0c: 3e:5e:bc:64:18:ec:9d:2a:01:ab:f7:5c:5f:68:6a: c6:1f:84:4b:54:7f:62:d4:f9:4e:5d:40:ae:c2:f7: 3f:eb:5f:37:66:39:da:92:b4:61:ef:26:d7:9d:58: f9:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:46:CE:92:54:1B:F6:D8:92:4C:84:5A:E8:BE:0C:93:17:48:A1:42 X509v3 Authority Key Identifier: keyid:70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/bUbOklQb9tiSTIRa6L4MkxdIoUI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 202.140.160.0/19 Signature Algorithm: sha256WithRSAEncryption aa:59:5e:6c:39:3c:58:33:fd:97:d9:a9:77:a8:a9:21:3b:0b: fa:b1:57:cd:e2:94:95:80:13:18:20:07:34:1c:45:3b:c8:e0: 66:e3:6a:72:6e:30:6f:93:b2:50:33:67:82:a8:38:ad:f6:87: 07:68:0b:bc:cd:51:da:73:3e:90:d9:b8:5e:52:47:50:c4:c1: f2:1a:08:10:95:ef:72:fa:48:6f:c9:4d:58:47:0f:51:aa:a4: 6b:e8:40:75:ad:d8:37:58:32:c3:94:28:06:bd:26:14:7d:dd: bd:8a:ae:03:95:92:87:bf:4b:ea:98:a0:0d:d4:12:73:98:91: e0:1c:7a:67:c9:67:cb:42:6b:4d:bd:1c:2e:e1:83:b3:38:c6: ce:99:78:fa:8e:4b:dc:92:03:64:34:aa:33:9a:60:6a:c6:f1: 6d:c1:df:34:d8:fe:7d:db:4d:d1:b1:93:71:a7:82:e3:ab:db: 52:07:d5:05:cd:08:d5:fe:d9:13:f0:a8:09:5f:8a:3f:a2:00: 28:73:52:e9:35:72:5c:aa:f3:a9:a2:6b:a9:e1:f9:f3:20:3c: 38:57:84:a3:2d:22:a1:3e:cc:d1:8d:9f:76:fd:92:9e:3f:db: 3a:10:52:3c:f5:2f:be:4c:71:03:ed:97:65:a3:6e:d8:2b:8c: db:05:5d:37 -----BEGIN CERTIFICATE----- MIIE0DCCA7igAwIBAgICDEowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzA5 ODRGMDA4Q0EyOEY2NDc1REI0MjYzNTNCRkQxQzQzM0Q4QkMxQTAeFw0yNDA4MjYw NTA5NDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDZENDZDRTkyNTQxQkY2 RDg5MjRDODQ1QUU4QkUwQzkzMTc0OEExNDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8Nl5d6ZXyMs4CmDwUmdmxRcc6HIsw+PmCjiuoNjy3MCCJWF5L p9rAQzjyUxdpLXJDrfgIHoDm3WW7w4uH0fYSnNBV9lxTNEBhSyrW5vYg0X+SEPyg Hq/HjMAOXViGUGWhUh/kfCUHcVmfJzgJdQ4/scKZq2VPOb9KTv8GY6he/XcJFfjx CQ7vp1+jvsEManMnKcmUD/ey8jFfYuaik0KnmveKq4kI3UT+xX32ZaVn3KCTJeY8 5ol40FPEJgeQRxpVffnVEN+eqOqOIwtETDL0DD5evGQY7J0qAav3XF9oasYfhEtU f2LU+U5dQK7C9z/rXzdmOdqStGHvJtedWPlNAgMBAAGjggHsMIIB6DAdBgNVHQ4E FgQUbUbOklQb9tiSTIRa6L4MkxdIoUIwHwYDVR0jBBgwFoAUcJhPAIyij2R120Jj U7/RxDPYvBowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNORVQv Y0poUEFJeWlqMlIxMjBKalU3X1J4RFBZdkJvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9jSmhQQUl5aWoyUjEyMEpqVTdfUnhEUFl2Qm8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9BU05FVC9iVWJPa2xRYjl0aVNUSVJhNkw0 TWt4ZElvVUkucm9hMDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQFyoyg MA0GCSqGSIb3DQEBCwUAA4IBAQCqWV5sOTxYM/2X2al3qKkhOwv6sVfN4pSVgBMY IAc0HEU7yOBm42pybjBvk7JQM2eCqDit9ocHaAu8zVHacz6Q2bheUkdQxMHyGggQ le9y+khvyU1YRw9RqqRr6EB1rdg3WDLDlCgGvSYUfd29iq4DlZKHv0vqmKAN1BJz mJHgHHpnyWfLQmtNvRwu4YOzOMbOmXj6jkvckgNkNKozmmBqxvFtwd802P59203R sZNxp4Ljq9tSB9UFzQjV/tkT8KgJX4o/ogAoc1LpNXJcqvOpomup4fnzIDw4V4Sj LSKhPszRjZ92/ZKeP9s6EFI89S++THED7Zdlo27YK4zbBV03 -----END CERTIFICATE-----Generated at Sat Sep 21 07:42:32 2024 by rpki-client on console-fra.rpki-client.org