$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FET/UbKH3Wj5dMM8QEH4sXXGNERcewU.roa File: UbKH3Wj5dMM8QEH4sXXGNERcewU.roa (raw, json) Hash identifier: 2+UL3N0/B/ymQd16jYSvBUimj3wePn3asUFgQ0l7aJU= Subject key identifier: 51:B2:87:DD:68:F9:74:C3:3C:40:41:F8:B1:75:C6:34:44:5C:7B:05 Certificate issuer: /CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Certificate serial: 0FFB Authority key identifier: 3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/UbKH3Wj5dMM8QEH4sXXGNERcewU.roa Signing time: Mon 26 Aug 2024 05:15:57 +0000 ROA not before: Mon 26 Aug 2024 05:15:57 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 131142 IP address blocks: 222.251.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4091 (0xffb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E63A587D5E71FBBD8C81EC34FE5366AC691AB51 Validity Not Before: Aug 26 05:15:57 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=51B287DD68F974C33C4041F8B175C634445C7B05 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:39:2a:06:0a:c0:6f:45:31:3f:0f:22:0b:03: 7b:2c:2a:11:26:3b:6d:1e:2b:cc:0d:c3:03:7a:ea: 80:39:81:7b:fb:25:12:70:24:c7:50:1d:5b:34:a4: 2f:d8:49:12:f6:9b:43:d1:e9:88:48:42:a8:96:4a: 4b:21:a3:a2:24:b2:d4:65:9b:d3:eb:41:11:fb:0f: 12:f5:bb:ea:39:70:80:15:c2:e9:7d:e1:d7:dc:b5: 4c:2c:41:c3:06:c9:ad:5b:92:fc:96:fe:b6:c9:2a: 3d:35:45:b8:0d:04:98:ad:c7:8c:40:97:a8:b3:4e: b4:01:98:9b:8b:3d:d7:78:e0:9a:87:3e:30:87:42: 8c:96:2a:d6:19:94:cd:43:6a:0a:62:25:0c:e6:ed: 5c:2f:07:e2:c3:37:d7:02:ae:5c:15:55:c2:8c:5e: b1:be:eb:b0:1d:44:3b:ee:3d:14:69:19:f5:5a:0e: 98:4e:93:69:1e:4f:4f:0e:2e:17:7c:db:96:60:06: e3:4c:44:34:c4:89:b0:cb:3c:97:39:98:a8:5e:4d: 9b:26:7a:e7:91:cd:d0:98:39:9a:6b:8c:42:82:20: 9f:9f:f5:d0:71:82:66:b0:e2:c5:79:26:72:9b:01: 43:4e:cd:c2:c9:f3:97:8c:ff:2d:4b:97:6e:b3:bd: 97:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 51:B2:87:DD:68:F9:74:C3:3C:40:41:F8:B1:75:C6:34:44:5C:7B:05 X509v3 Authority Key Identifier: keyid:3E:63:A5:87:D5:E7:1F:BB:D8:C8:1E:C3:4F:E5:36:6A:C6:91:AB:51 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/PmOlh9XnH7vYyB7DT-U2asaRq1E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PmOlh9XnH7vYyB7DT-U2asaRq1E.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FET/UbKH3Wj5dMM8QEH4sXXGNERcewU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 222.251.0.0/18 Signature Algorithm: sha256WithRSAEncryption 45:ee:e7:7f:05:b7:26:94:98:8d:4c:22:8f:c2:a3:57:d0:dc: 90:27:e0:1d:cf:b5:aa:3f:81:1a:1c:92:01:b6:b9:e2:bf:e5: ec:cd:de:43:32:c8:8c:94:66:3f:54:3a:c3:bf:55:37:d4:02: d5:d4:12:15:a7:98:a9:46:79:7e:0c:2f:32:22:2c:f4:fe:b5: a4:cd:ac:25:51:60:29:01:9c:3a:2c:03:12:78:95:15:2f:5d: 45:79:f3:e9:63:d7:92:4c:d6:5f:1f:25:bf:3f:f6:33:66:cc: 49:5d:1f:27:95:33:4b:ee:88:a3:bd:54:a9:9f:42:10:e0:33: 21:67:3d:1f:c2:6e:67:1e:b7:5a:6c:cd:84:35:33:e6:82:9b: 51:95:31:e9:a4:83:84:98:49:96:44:a1:7b:d5:3f:ba:d0:6f: e7:d5:ed:fe:18:71:d3:fb:ca:7f:bb:86:06:66:1a:be:69:11: 18:54:41:23:e9:6e:e2:bd:6c:2a:b2:d7:00:8c:aa:e2:ca:1b: c2:c6:a0:ce:85:8a:a5:13:b6:6d:71:48:8d:f8:29:aa:e2:4f: e0:39:1a:8c:90:60:a2:14:aa:47:1d:9e:f8:28:66:e8:db:d8: 00:20:97:78:93:11:ee:7b:c6:90:3f:5f:72:81:9e:cf:34:49: c6:5d:20:73 -----BEGIN CERTIFICATE----- MIIEzDCCA7SgAwIBAgICD/swDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0U2 M0E1ODdENUU3MUZCQkQ4QzgxRUMzNEZFNTM2NkFDNjkxQUI1MTAeFw0yNDA4MjYw NTE1NTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDUxQjI4N0RENjhGOTc0 QzMzQzQwNDFGOEIxNzVDNjM0NDQ1QzdCMDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEOSoGCsBvRTE/DyILA3ssKhEmO20eK8wNwwN66oA5gXv7JRJw JMdQHVs0pC/YSRL2m0PR6YhIQqiWSksho6IkstRlm9PrQRH7DxL1u+o5cIAVwul9 4dfctUwsQcMGya1bkvyW/rbJKj01RbgNBJitx4xAl6izTrQBmJuLPdd44JqHPjCH QoyWKtYZlM1DagpiJQzm7VwvB+LDN9cCrlwVVcKMXrG+67AdRDvuPRRpGfVaDphO k2keT08OLhd825ZgBuNMRDTEibDLPJc5mKheTZsmeueRzdCYOZprjEKCIJ+f9dBx gmaw4sV5JnKbAUNOzcLJ85eM/y1Ll26zvZfjAgMBAAGjggHoMIIB5DAdBgNVHQ4E FgQUUbKH3Wj5dMM8QEH4sXXGNERcewUwHwYDVR0jBBgwFoAUPmOlh9XnH7vYyB7D T+U2asaRq1EwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1Bt T2xoOVhuSDd2WXlCN0RULVUyYXNhUnExRS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UG1PbGg5WG5IN3ZZeUI3RFQtVTJhc2FScTFFLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRkVUL1ViS0gzV2o1ZE1NOFFFSDRzWFhHTkVS Y2V3VS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAbe+wAwDQYJ KoZIhvcNAQELBQADggEBAEXu538FtyaUmI1MIo/Co1fQ3JAn4B3Ptao/gRockgG2 ueK/5ezN3kMyyIyUZj9UOsO/VTfUAtXUEhWnmKlGeX4MLzIiLPT+taTNrCVRYCkB nDosAxJ4lRUvXUV58+lj15JM1l8fJb8/9jNmzEldHyeVM0vuiKO9VKmfQhDgMyFn PR/Cbmcet1pszYQ1M+aCm1GVMemkg4SYSZZEoXvVP7rQb+fV7f4YcdP7yn+7hgZm Gr5pERhUQSPpbuK9bCqy1wCMquLKG8LGoM6FiqUTtm1xSI34KariT+A5GoyQYKIU qkcdnvgoZujb2AAgl3iTEe57xpA/X3KBns80ScZdIHM= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:50 2024 by rpki-client on console-fra.rpki-client.org