$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/00TMQLQ1mG8iSgdSXXakzYsXDyU.roa File: 00TMQLQ1mG8iSgdSXXakzYsXDyU.roa (raw, json) Hash identifier: 87BEqRmfTS4Rce8Kq0c58qJhdaudmHYvfPUM15y4CI0= Subject key identifier: D3:44:CC:40:B4:35:98:6F:22:4A:07:52:5D:76:A4:CD:8B:17:0F:25 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 22A4 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/00TMQLQ1mG8iSgdSXXakzYsXDyU.roa Signing time: Mon 26 Aug 2024 05:34:12 +0000 ROA not before: Mon 26 Aug 2024 05:34:12 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 122.254.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8868 (0x22a4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:34:12 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D344CC40B435986F224A07525D76A4CD8B170F25 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:4a:e8:18:ee:91:ca:19:4e:90:f1:86:e8:60: cb:45:cf:2f:03:9d:70:d8:12:80:94:d2:8e:e8:38: 5b:8b:d6:bb:99:8f:da:32:70:9c:76:03:f3:1f:6f: 29:af:ba:e5:0e:e9:bf:dd:d6:8e:de:98:03:3c:18: 4a:b8:52:25:83:09:6c:fd:fb:59:bd:03:69:1a:e1: 5e:49:8c:d1:1e:36:67:f9:d0:de:2c:6b:68:d1:bf: 42:78:97:50:a2:6f:73:f6:47:04:59:e7:e3:a8:95: 22:d0:d3:47:8a:98:8d:7d:e4:f4:c3:b6:ac:20:f8: f1:4c:6d:18:1a:6a:79:02:06:99:46:ed:a5:a5:3d: af:9c:d0:62:e4:1c:eb:9b:20:9d:5a:58:af:c6:72: 4d:e4:a1:f3:cc:32:87:05:d5:e1:16:78:e3:c0:64: af:80:c7:ba:3e:11:91:74:3c:b5:bf:83:b9:49:8c: 26:31:09:c9:e6:68:84:b8:d9:bc:ac:ac:bf:87:f4: 12:d9:6e:20:b9:33:12:81:f2:e7:e2:41:ae:0e:ac: a4:11:19:02:5b:32:cb:92:15:26:26:86:58:25:f5: 58:bf:85:7d:01:af:e2:2e:b4:0a:ae:89:68:2c:a2: 40:b2:38:eb:2b:6c:02:0f:5e:36:ef:a8:4b:44:89: 3d:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:44:CC:40:B4:35:98:6F:22:4A:07:52:5D:76:A4:CD:8B:17:0F:25 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/00TMQLQ1mG8iSgdSXXakzYsXDyU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.254.0.0/18 Signature Algorithm: sha256WithRSAEncryption 9b:f4:46:c4:5b:15:48:75:78:e7:a6:07:e0:6f:64:b9:ba:f6: 3c:3b:f3:ec:74:6d:88:e8:d5:32:d7:31:9f:2a:8f:72:88:2c: 6e:73:09:30:e5:a1:c0:2b:8c:4e:79:95:b9:48:dc:bd:9d:29: c8:4f:36:7e:84:6c:ae:77:d1:60:3d:13:52:c5:f6:ed:36:2d: 09:1d:34:19:01:af:fd:ee:a5:f5:9a:15:13:87:1a:7f:1a:3f: ce:02:f2:d8:b0:00:6b:0f:65:a6:a7:a1:ff:02:66:49:de:97: 4d:57:73:c2:63:1e:7f:f2:f5:e4:71:c0:06:bf:cc:ec:19:43: 5e:3e:cf:ab:ec:6e:fb:78:c0:cb:c2:61:04:d9:de:f0:d7:25: 43:ce:4b:89:3c:83:d4:5c:1a:9b:1c:9f:46:59:2f:06:0d:5e: 03:20:ac:3d:f2:75:4a:0e:b0:33:4b:72:a3:d8:5e:76:10:b8: da:6a:b6:c3:af:bb:cc:48:45:81:34:59:cb:1e:65:0a:e7:65: a3:5d:b8:ab:38:68:bf:01:b0:2e:68:24:3c:5d:d8:08:35:54: 10:a9:f2:ce:2d:98:99:10:48:18:2c:f5:21:92:c9:46:7b:d0: 3f:60:0e:4c:c9:bc:e7:ae:26:b2:3b:3f:bd:4b:3b:c1:00:6e: bd:be:b9:27 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIqQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTM0MTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQzNDRDQzQwQjQzNTk4 NkYyMjRBMDc1MjVENzZBNENEOEIxNzBGMjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCwSugY7pHKGU6Q8YboYMtFzy8DnXDYEoCU0o7oOFuL1ruZj9oy cJx2A/MfbymvuuUO6b/d1o7emAM8GEq4UiWDCWz9+1m9A2ka4V5JjNEeNmf50N4s a2jRv0J4l1Cib3P2RwRZ5+OolSLQ00eKmI195PTDtqwg+PFMbRgaankCBplG7aWl Pa+c0GLkHOubIJ1aWK/Gck3kofPMMocF1eEWeOPAZK+Ax7o+EZF0PLW/g7lJjCYx CcnmaIS42bysrL+H9BLZbiC5MxKB8ufiQa4OrKQRGQJbMsuSFSYmhlgl9Vi/hX0B r+IutAquiWgsokCyOOsrbAIPXjbvqEtEiT0bAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU00TMQLQ1mG8iSgdSXXakzYsXDyUwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzAwVE1RTFExbUc4aVNnZFNY WGFrellzWER5VS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAZ6 /gAwDQYJKoZIhvcNAQELBQADggEBAJv0RsRbFUh1eOemB+BvZLm69jw78+x0bYjo 1TLXMZ8qj3KILG5zCTDlocArjE55lblI3L2dKchPNn6EbK530WA9E1LF9u02LQkd NBkBr/3upfWaFROHGn8aP84C8tiwAGsPZaanof8CZknel01Xc8JjHn/y9eRxwAa/ zOwZQ14+z6vsbvt4wMvCYQTZ3vDXJUPOS4k8g9RcGpscn0ZZLwYNXgMgrD3ydUoO sDNLcqPYXnYQuNpqtsOvu8xIRYE0WcseZQrnZaNduKs4aL8BsC5oJDxd2Ag1VBCp 8s4tmJkQSBgs9SGSyUZ70D9gDkzJvOeuJrI7P71LO8EAbr2+uSc= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:40 2024 by rpki-client on console-ams.rpki-client.org