$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/-dSri9OFMa5sx8ES1VPomnn3120.roa File: -dSri9OFMa5sx8ES1VPomnn3120.roa (raw, json) Hash identifier: tZ9HSV4WAeG+3SEGpP2DL6lnl3/uLFkl75vgs0onDLs= Subject key identifier: F9:D4:AB:8B:D3:85:31:AE:6C:C7:C1:12:D5:53:E8:9A:79:F7:D7:6D Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 219B Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/-dSri9OFMa5sx8ES1VPomnn3120.roa Signing time: Mon 26 Aug 2024 05:33:09 +0000 ROA not before: Mon 26 Aug 2024 05:33:09 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24165 IP address blocks: 180.218.112.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:55:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8603 (0x219b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:09 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F9D4AB8BD38531AE6CC7C112D553E89A79F7D76D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:51:83:18:cf:82:cf:ee:07:6e:2b:b9:6e:82: 53:e4:cd:9a:6e:7e:9e:2d:79:f7:fa:bd:50:64:8c: 9d:eb:f9:32:ba:cc:ef:ff:58:0c:fd:ab:4c:19:60: 40:ec:43:8a:7a:b6:58:71:68:d8:47:e6:0b:67:45: 3b:d5:51:fc:8e:04:71:3e:99:a6:47:7e:84:9a:62: 06:16:c7:f4:74:66:f7:77:0e:be:8b:a9:23:90:0f: 68:0f:8e:d7:73:4e:59:93:22:58:ba:94:e5:98:b2: ed:c5:78:ec:a1:26:07:51:fd:53:48:f2:0d:4a:87: 7a:f0:1f:27:81:21:e5:13:d4:28:12:69:20:72:4f: e0:e2:3c:c8:05:45:ee:d5:db:88:53:32:98:e8:5f: df:83:13:42:1b:cf:ad:2d:c3:97:c8:79:e4:d5:61: 39:4c:f0:b4:15:46:dd:fd:73:84:e9:bb:04:41:6c: 40:f5:9e:26:a1:d0:fd:11:bf:10:e7:23:53:23:a8: 42:dc:76:c3:e6:22:33:0d:71:39:c0:c7:78:10:f3: 6d:d3:43:86:da:4a:d6:42:ef:7a:01:41:f2:84:44: 07:37:89:78:8e:ce:77:8f:99:80:a9:07:96:59:2d: f6:2d:ec:fe:37:e2:14:d4:70:23:3e:8b:01:01:0c: e6:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:D4:AB:8B:D3:85:31:AE:6C:C7:C1:12:D5:53:E8:9A:79:F7:D7:6D X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/-dSri9OFMa5sx8ES1VPomnn3120.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.112.0/21 Signature Algorithm: sha256WithRSAEncryption 8b:7a:00:e2:01:c5:0d:61:8f:a0:f5:68:67:ba:fb:92:f4:ed: 8d:8c:2e:db:0f:66:07:cc:cc:9e:40:03:82:db:cc:f8:f9:3d: 85:a0:85:c4:38:c5:89:63:3b:ad:bb:8c:f9:ec:23:03:57:17: 52:43:25:14:f4:ab:b0:0b:f9:d6:02:ee:96:8c:41:ce:a4:b2: f3:c5:7e:1d:87:72:a4:af:79:81:d0:e2:3b:fb:bf:1a:d9:ee: c8:c7:30:f3:0d:c4:71:cb:7a:cf:3f:ce:3a:e8:26:69:f7:2a: c6:74:e8:e9:db:f7:b7:17:6d:dc:28:f8:f3:ab:96:c7:13:62: 7c:8b:7e:36:0c:cb:40:39:dd:7b:45:43:f3:38:90:19:ca:34: 3f:74:6f:b6:8f:52:c4:a7:90:15:ce:f9:81:06:bb:61:3a:7d: 42:d5:ba:7c:66:6d:f6:f1:f1:0b:c8:67:92:60:9b:e9:70:f8: a4:a0:d9:b2:52:07:30:90:77:a6:fb:22:ea:b1:7b:57:82:ee: 58:70:c7:6f:5a:2d:69:c6:e7:e3:3e:8d:70:94:49:29:5f:b5: 3f:ea:85:cf:93:7e:d2:5b:32:b6:d8:66:18:b9:f3:76:f3:66: 03:61:bb:04:ba:b8:ec:0a:ed:d5:fa:2d:66:2c:b5:75:6b:85: d1:ed:f0:e7 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIZswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzMDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEY5RDRBQjhCRDM4NTMx QUU2Q0M3QzExMkQ1NTNFODlBNzlGN0Q3NkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIUYMYz4LP7gduK7luglPkzZpufp4teff6vVBkjJ3r+TK6zO// WAz9q0wZYEDsQ4p6tlhxaNhH5gtnRTvVUfyOBHE+maZHfoSaYgYWx/R0Zvd3Dr6L qSOQD2gPjtdzTlmTIli6lOWYsu3FeOyhJgdR/VNI8g1Kh3rwHyeBIeUT1CgSaSBy T+DiPMgFRe7V24hTMpjoX9+DE0Ibz60tw5fIeeTVYTlM8LQVRt39c4TpuwRBbED1 niah0P0RvxDnI1MjqELcdsPmIjMNcTnAx3gQ823TQ4baStZC73oBQfKERAc3iXiO znePmYCpB5ZZLfYt7P434hTUcCM+iwEBDObxAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU+dSri9OFMa5sx8ES1VPomnn3120wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULy1kU3JpOU9GTWE1c3g4RVMx VlBvbW5uMzEyMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0 2nAwDQYJKoZIhvcNAQELBQADggEBAIt6AOIBxQ1hj6D1aGe6+5L07Y2MLtsPZgfM zJ5AA4LbzPj5PYWghcQ4xYljO627jPnsIwNXF1JDJRT0q7AL+dYC7paMQc6ksvPF fh2HcqSveYHQ4jv7vxrZ7sjHMPMNxHHLes8/zjroJmn3KsZ06Onb97cXbdwo+POr lscTYnyLfjYMy0A53XtFQ/M4kBnKND90b7aPUsSnkBXO+YEGu2E6fULVunxmbfbx 8QvIZ5Jgm+lw+KSg2bJSBzCQd6b7Iuqxe1eC7lhwx29aLWnG5+M+jXCUSSlftT/q hc+TftJbMrbYZhi583bzZgNhuwS6uOwK7dX6LWYstXVrhdHt8Oc= -----END CERTIFICATE-----Generated at Mon Nov 25 20:56:43 2024 by rpki-client on console-fra.rpki-client.org