$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/0JrWSiDMK3NoIUJNdi4hFibZxJI.roa File: 0JrWSiDMK3NoIUJNdi4hFibZxJI.roa (raw, json) Hash identifier: fCD0ZD6O4USVRzSDP3G4XxIT6bkocvirrPVZM60yWdw= Subject key identifier: D0:9A:D6:4A:20:CC:2B:73:68:21:42:4D:76:2E:21:16:26:D9:C4:92 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1EA3 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/0JrWSiDMK3NoIUJNdi4hFibZxJI.roa Signing time: Fri 01 Sep 2023 10:16:18 +0000 ROA not before: Fri 01 Sep 2023 10:16:18 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24163 IP address blocks: 180.218.224.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 23:59:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7843 (0x1ea3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:16:18 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=D09AD64A20CC2B736821424D762E211626D9C492 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:9a:b7:62:a5:83:e4:59:bc:74:1b:45:e5:2f: 1f:dc:0f:f9:d8:fa:62:dd:ac:0f:c2:a7:12:26:d4: 72:61:e1:ba:cd:00:d7:77:ee:43:be:c1:a8:65:c4: 58:59:42:47:de:d5:ad:24:47:a0:07:f3:81:89:9d: a9:a1:b1:24:d4:68:90:de:df:e3:3b:f0:11:15:8e: 90:e2:31:cf:2e:f5:8d:a3:eb:5d:6b:36:62:ff:ca: a5:54:82:7b:05:98:6e:f4:04:63:51:41:ea:8f:2d: b5:83:17:4a:c4:7f:cc:ad:19:60:ff:2b:cd:62:15: 19:34:8d:80:13:76:4a:02:80:32:16:81:f5:2f:37: 45:43:4e:02:23:16:d4:8a:21:5b:ea:4f:3c:3d:ff: 67:92:b2:5b:35:8c:e8:e6:59:49:ae:fa:e1:2d:78: f2:c9:25:b5:8d:f2:55:9d:c9:4b:c8:ae:a9:d8:b1: 0f:f9:9f:85:19:d7:70:19:f1:e0:16:e9:4c:84:cf: 1d:02:ed:a2:0f:5e:9b:9e:13:d2:36:af:02:45:1e: eb:72:7c:c5:e1:aa:44:79:83:28:1d:dd:c9:e2:f7: b2:63:41:4a:22:a5:af:a8:ac:92:37:f8:04:77:1d: bc:12:7a:7d:44:f7:e6:04:4f:7e:f8:01:75:b5:95: cd:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:9A:D6:4A:20:CC:2B:73:68:21:42:4D:76:2E:21:16:26:D9:C4:92 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/0JrWSiDMK3NoIUJNdi4hFibZxJI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.224.0/21 Signature Algorithm: sha256WithRSAEncryption 74:c0:9d:44:fd:59:66:f0:5f:59:3a:c3:5f:a0:eb:30:ed:f3: 33:78:da:73:13:4f:3b:38:2e:5f:7a:7c:db:e8:4c:0c:61:35: 76:b8:b4:b4:7b:fd:8b:12:a2:ce:b3:45:be:a2:30:c9:6f:df: 11:a6:0a:c7:40:29:9e:8f:12:1c:57:57:98:b2:45:d4:3f:83: 21:57:75:83:9e:c1:eb:f9:23:3c:07:a9:c8:59:a9:b5:7d:7a: 43:18:05:6e:12:77:5f:ca:c7:f9:04:2a:2d:15:fd:e7:e0:a1: e6:ee:44:cb:10:18:4a:3d:cd:ea:37:96:62:6d:d9:ac:f5:0f: eb:a0:ad:28:4b:8d:fa:37:67:07:93:b2:a2:ca:35:c9:69:84: ce:89:f2:a4:cd:a3:06:a3:ed:0d:99:69:7d:4c:ab:0d:b0:b7: ca:a3:98:64:4d:2e:ba:6c:3c:42:71:8e:13:5e:3a:51:1f:46: bf:3c:15:ca:d0:4a:99:89:f3:31:73:9b:df:88:fa:f1:9c:f2: 53:20:20:81:78:6e:3f:d9:8b:fa:f8:c9:eb:70:f2:c4:94:23: 86:c8:f3:b3:82:e6:08:d6:bb:35:98:d6:98:f1:a9:42:3e:8a: ad:08:32:5e:14:75:75:db:0e:7a:a8:69:62:ab:50:b7:c2:e9: 04:2f:90:b4 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHqMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE2MThaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEQwOUFENjRBMjBDQzJC NzM2ODIxNDI0RDc2MkUyMTE2MjZEOUM0OTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6mrdipYPkWbx0G0XlLx/cD/nY+mLdrA/CpxIm1HJh4brNANd3 7kO+wahlxFhZQkfe1a0kR6AH84GJnamhsSTUaJDe3+M78BEVjpDiMc8u9Y2j611r NmL/yqVUgnsFmG70BGNRQeqPLbWDF0rEf8ytGWD/K81iFRk0jYATdkoCgDIWgfUv N0VDTgIjFtSKIVvqTzw9/2eSsls1jOjmWUmu+uEtePLJJbWN8lWdyUvIrqnYsQ/5 n4UZ13AZ8eAW6UyEzx0C7aIPXpueE9I2rwJFHutyfMXhqkR5gygd3cni97JjQUoi pa+orJI3+AR3HbwSen1E9+YET374AXW1lc2fAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU0JrWSiDMK3NoIUJNdi4hFibZxJIwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzBKcldTaURNSzNOb0lVSk5k aTRoRmliWnhKSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0 2uAwDQYJKoZIhvcNAQELBQADggEBAHTAnUT9WWbwX1k6w1+g6zDt8zN42nMTTzs4 Ll96fNvoTAxhNXa4tLR7/YsSos6zRb6iMMlv3xGmCsdAKZ6PEhxXV5iyRdQ/gyFX dYOewev5IzwHqchZqbV9ekMYBW4Sd1/Kx/kEKi0V/efgoebuRMsQGEo9zeo3lmJt 2az1D+ugrShLjfo3ZweTsqLKNclphM6J8qTNowaj7Q2ZaX1Mqw2wt8qjmGRNLrps PEJxjhNeOlEfRr88FcrQSpmJ8zFzm9+I+vGc8lMgIIF4bj/Zi/r4yetw8sSUI4bI 87OC5gjWuzWY1pjxqUI+iq0IMl4UdXXbDnqoaWKrULfC6QQvkLQ= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:07 2024 by rpki-client on console-fra.rpki-client.org