$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/0HnQi4XYLy2IYkTFjiZxfhwONf4.roa File: 0HnQi4XYLy2IYkTFjiZxfhwONf4.roa (raw, json) Hash identifier: l6lKh1mZYseFMa+OrJ3C3YhbSTAJ+ew2j1EWjXG3iyI= Subject key identifier: D0:79:D0:8B:85:D8:2F:2D:88:62:44:C5:8E:26:71:7E:1C:0E:35:FE Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2229 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/0HnQi4XYLy2IYkTFjiZxfhwONf4.roa Signing time: Mon 26 Aug 2024 05:33:44 +0000 ROA not before: Mon 26 Aug 2024 05:33:44 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 180.218.128.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8745 (0x2229) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:44 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D079D08B85D82F2D886244C58E26717E1C0E35FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:4a:60:2e:4a:f5:f4:63:41:0a:32:ef:b6:04: 67:1e:83:5e:c6:e9:d9:1c:fa:7e:47:a1:03:7a:8a: 59:c7:b7:e9:a5:d6:e8:04:1f:f4:94:e9:20:50:be: 78:fa:b9:bf:2f:8f:a2:ee:49:c9:55:94:fb:87:f4: 15:9e:a7:92:6a:3d:42:60:1c:73:2e:07:ec:36:53: 75:ec:0d:83:47:88:7d:c7:93:55:60:dd:21:88:dd: a9:53:f8:16:e0:ba:12:4a:62:e9:57:3b:5c:5b:58: 05:19:6e:27:d1:78:90:dd:bb:b6:7e:7a:ae:e3:20: f5:aa:4e:eb:a8:86:32:d2:c5:53:c6:c7:c3:d2:1e: f3:b1:4f:ff:5a:48:f8:e9:55:34:b8:47:5c:f6:0d: 71:b0:4d:e7:c0:52:94:c5:a9:e2:10:8d:73:ff:ab: 20:89:7f:29:24:8c:0c:00:7b:c5:27:83:3b:b4:30: 95:4b:42:9f:33:43:58:aa:00:be:b7:42:f4:7e:dc: 60:ab:c9:e8:45:d6:da:aa:78:bb:65:c8:be:e9:c0: f7:58:a1:b9:ac:f5:66:7a:9e:3c:62:22:22:aa:fa: 6e:aa:25:34:de:90:fc:5f:b8:3e:7d:d5:e9:c7:67: d9:4c:87:e0:1e:dc:a0:25:e2:b1:51:15:6e:33:7c: da:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:79:D0:8B:85:D8:2F:2D:88:62:44:C5:8E:26:71:7E:1C:0E:35:FE X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/0HnQi4XYLy2IYkTFjiZxfhwONf4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.128.0/20 Signature Algorithm: sha256WithRSAEncryption 1c:39:e3:0f:e9:70:cb:48:c1:96:f1:f0:e6:ef:47:4d:11:a9: 23:39:73:e0:f3:5e:ad:4a:35:db:fa:a7:ff:81:dc:72:48:1d: ff:05:19:24:43:e7:81:31:48:30:ce:f2:bc:f8:17:be:2c:06: ca:5c:39:22:ec:c2:93:ab:18:11:fa:5a:2b:cc:38:6f:de:90: 14:31:78:cd:cf:83:a0:db:35:d5:53:aa:88:59:4a:8a:c0:2c: 0a:10:fe:b1:98:c7:19:fb:ed:2b:fe:66:45:38:e5:7b:b2:b8: 4e:85:38:9a:ec:d9:19:cb:13:65:c9:4c:9f:8d:19:01:87:b7: fd:01:1a:21:5b:0e:e7:46:4c:e8:e6:39:ab:94:ed:37:60:3a: 18:3a:e7:b0:33:36:41:df:bf:1f:f0:3c:b6:fc:31:2d:a8:91: d8:28:36:07:88:8f:f0:47:ea:68:07:94:1f:94:71:29:47:86: 6c:d8:45:27:82:b2:8a:bb:8f:0a:0b:d3:f3:1c:a3:d7:3f:eb: 14:17:3d:7c:11:2b:84:2a:d7:1f:a7:17:7f:46:ea:78:0c:21: fb:81:06:86:4e:60:b0:8f:91:e7:8d:e3:63:68:53:17:41:05: ad:b2:de:ae:37:7e:24:05:76:fe:6e:22:4e:30:19:92:75:03: 68:e0:2f:6f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIikwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzNDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQwNzlEMDhCODVEODJG MkQ4ODYyNDRDNThFMjY3MTdFMUMwRTM1RkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCySmAuSvX0Y0EKMu+2BGceg17G6dkc+n5HoQN6ilnHt+ml1ugE H/SU6SBQvnj6ub8vj6LuSclVlPuH9BWep5JqPUJgHHMuB+w2U3XsDYNHiH3Hk1Vg 3SGI3alT+BbguhJKYulXO1xbWAUZbifReJDdu7Z+eq7jIPWqTuuohjLSxVPGx8PS HvOxT/9aSPjpVTS4R1z2DXGwTefAUpTFqeIQjXP/qyCJfykkjAwAe8Ungzu0MJVL Qp8zQ1iqAL63QvR+3GCryehF1tqqeLtlyL7pwPdYobms9WZ6njxiIiKq+m6qJTTe kPxfuD591enHZ9lMh+Ae3KAl4rFRFW4zfNohAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU0HnQi4XYLy2IYkTFjiZxfhwONf4wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzBIblFpNFhZTHkySVlrVEZq aVp4Zmh3T05mNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAS0 2oAwDQYJKoZIhvcNAQELBQADggEBABw54w/pcMtIwZbx8ObvR00RqSM5c+DzXq1K Ndv6p/+B3HJIHf8FGSRD54ExSDDO8rz4F74sBspcOSLswpOrGBH6WivMOG/ekBQx eM3Pg6DbNdVTqohZSorALAoQ/rGYxxn77Sv+ZkU45XuyuE6FOJrs2RnLE2XJTJ+N GQGHt/0BGiFbDudGTOjmOauU7TdgOhg657AzNkHfvx/wPLb8MS2okdgoNgeIj/BH 6mgHlB+UcSlHhmzYRSeCsoq7jwoL0/Mco9c/6xQXPXwRK4Qq1x+nF39G6ngMIfuB BoZOYLCPkeeN42NoUxdBBa2y3q43fiQFdv5uIk4wGZJ1A2jgL28= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:24 2024 by rpki-client on console-ams.rpki-client.org