$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/0g2AGJ67md6MwA67GuxG61ZEq9w.roa File: 0g2AGJ67md6MwA67GuxG61ZEq9w.roa (raw, json) Hash identifier: Evy+aec89+ZaCxwszLWT4ijskiRi57dDfJXHoyjX89o= Subject key identifier: D2:0D:80:18:9E:BB:99:DE:8C:C0:0E:BB:1A:EC:46:EB:56:44:AB:DC Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 21D2 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/0g2AGJ67md6MwA67GuxG61ZEq9w.roa Signing time: Mon 26 Aug 2024 05:33:23 +0000 ROA not before: Mon 26 Aug 2024 05:33:23 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24614 IP address blocks: 114.198.166.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8658 (0x21d2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:23 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D20D80189EBB99DE8CC00EBB1AEC46EB5644ABDC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:7c:13:03:94:ed:d1:9a:eb:7f:8e:d9:1e:f9: 75:c2:07:45:4d:5b:db:46:b1:2d:f7:a3:94:3b:ca: d4:b7:20:d7:58:d1:46:66:08:09:07:df:f3:a1:e4: cc:f1:e8:6a:7c:dd:df:64:3d:a3:75:c2:ff:21:9a: 60:de:4a:23:9e:f2:be:24:50:24:c5:37:84:b9:49: 93:d5:3f:ca:3c:71:83:10:43:e8:36:19:fc:99:ec: dd:12:9a:65:03:ae:55:a4:9c:b9:6b:99:98:08:d4: 57:dd:10:04:3e:ef:b4:ac:e2:dc:c2:96:e6:1f:86: 63:24:24:6c:43:11:64:2e:41:96:51:28:b0:e4:39: 88:83:0b:36:ac:bc:b0:d2:6a:e3:b6:53:75:31:1f: 55:ff:7e:09:67:ee:ec:7e:3e:8f:2c:24:61:ba:22: ca:98:d5:21:17:73:b1:cc:de:df:e4:e9:5e:0a:21: 07:92:19:02:5f:95:82:8e:80:12:63:ff:15:dd:18: 9d:b4:1e:b3:1e:fc:93:be:e9:5f:ed:3f:fa:01:df: 70:ce:7c:66:89:62:f8:47:1e:c1:89:a4:5c:9b:8e: 01:af:19:7c:5a:49:62:5a:9f:d3:06:11:63:31:ac: 99:fb:72:b3:85:41:df:a5:93:46:5a:ed:f6:da:21: c0:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:0D:80:18:9E:BB:99:DE:8C:C0:0E:BB:1A:EC:46:EB:56:44:AB:DC X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/0g2AGJ67md6MwA67GuxG61ZEq9w.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 114.198.166.0/23 Signature Algorithm: sha256WithRSAEncryption 9b:5d:12:54:c8:3e:9e:4c:77:43:6b:c8:4f:67:75:58:a7:90: 28:98:fa:3c:f3:06:4f:60:35:aa:f0:cf:11:8f:03:b1:3f:c6: 7b:64:e4:d7:67:d3:84:46:bc:d6:d8:93:e1:b9:90:ca:f4:fd: 2e:61:fd:83:a6:68:6e:eb:db:76:7c:9c:2d:2f:06:b7:b3:1f: ed:53:80:48:38:f8:30:8f:02:12:93:08:a8:91:14:71:53:24: c1:19:e0:61:db:5c:0b:51:10:6c:99:f4:0b:70:0e:ba:e1:97: 93:79:0b:60:2e:f8:74:0c:bd:06:7b:eb:e5:cb:3a:31:ba:e4: fb:b9:e6:11:4b:f5:47:8a:6c:14:2f:1f:da:66:c4:8a:b6:9e: 67:29:2a:36:1b:31:ff:97:44:c0:e2:ab:94:d1:0a:27:ea:d8: 37:70:d7:0b:61:0e:20:5a:07:9b:54:5b:63:83:61:2a:bc:68: 5f:bf:10:37:f5:77:f4:a2:d5:92:0d:24:a5:17:79:85:0c:57: 8a:79:ac:c2:2b:32:45:29:d4:ea:b3:a6:07:12:0c:67:ca:e2: 4b:00:2e:4a:c8:95:61:ff:8f:a8:eb:5e:9d:2c:59:d3:d9:70: 4e:27:9b:71:dc:a8:2b:55:8b:c9:d4:29:a5:df:ba:dc:1f:10: 5e:14:4c:3c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIdIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzMjNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQyMEQ4MDE4OUVCQjk5 REU4Q0MwMEVCQjFBRUM0NkVCNTY0NEFCREMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDjfBMDlO3Rmut/jtke+XXCB0VNW9tGsS33o5Q7ytS3INdY0UZm CAkH3/Oh5Mzx6Gp83d9kPaN1wv8hmmDeSiOe8r4kUCTFN4S5SZPVP8o8cYMQQ+g2 GfyZ7N0SmmUDrlWknLlrmZgI1FfdEAQ+77Ss4tzCluYfhmMkJGxDEWQuQZZRKLDk OYiDCzasvLDSauO2U3UxH1X/fgln7ux+Po8sJGG6IsqY1SEXc7HM3t/k6V4KIQeS GQJflYKOgBJj/xXdGJ20HrMe/JO+6V/tP/oB33DOfGaJYvhHHsGJpFybjgGvGXxa SWJan9MGEWMxrJn7crOFQd+lk0Za7fbaIcBJAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU0g2AGJ67md6MwA67GuxG61ZEq9wwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzBnMkFHSjY3bWQ2TXdBNjdH dXhHNjFaRXE5dy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAFy xqYwDQYJKoZIhvcNAQELBQADggEBAJtdElTIPp5Md0NryE9ndVinkCiY+jzzBk9g NarwzxGPA7E/xntk5Ndn04RGvNbYk+G5kMr0/S5h/YOmaG7r23Z8nC0vBrezH+1T gEg4+DCPAhKTCKiRFHFTJMEZ4GHbXAtREGyZ9AtwDrrhl5N5C2Au+HQMvQZ76+XL OjG65Pu55hFL9UeKbBQvH9pmxIq2nmcpKjYbMf+XRMDiq5TRCifq2Ddw1wthDiBa B5tUW2ODYSq8aF+/EDf1d/Si1ZINJKUXeYUMV4p5rMIrMkUp1OqzpgcSDGfK4ksA LkrIlWH/j6jrXp0sWdPZcE4nm3HcqCtVi8nUKaXfutwfEF4UTDw= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:40 2024 by rpki-client on console-ams.rpki-client.org