$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3eTxI7ouPTHlTYIKfv3YfzrfLgo.roa File: 3eTxI7ouPTHlTYIKfv3YfzrfLgo.roa (raw, json) Hash identifier: 6gXo6o6FVD6vetX1Wb3onGZn59twOwtEuERjY5XGwKw= Subject key identifier: DD:E4:F1:23:BA:2E:3D:31:E5:4D:82:0A:7E:FD:D8:7F:3A:DF:2E:0A Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 229D Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3eTxI7ouPTHlTYIKfv3YfzrfLgo.roa Signing time: Mon 26 Aug 2024 05:34:11 +0000 ROA not before: Mon 26 Aug 2024 05:34:11 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 119.77.128.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:55:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8861 (0x229d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:34:11 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=DDE4F123BA2E3D31E54D820A7EFDD87F3ADF2E0A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:10:78:36:f2:5c:1d:d2:4a:e8:4b:d8:d7:9e: 39:19:ba:35:dd:e6:3a:29:1e:f3:5f:a4:2c:5b:b0: 3f:93:af:94:7f:cc:24:49:d0:54:58:da:42:36:e3: 9a:77:2e:83:ab:50:35:af:40:99:79:bd:7b:c1:ad: b2:b4:f2:be:ea:ac:36:54:c9:d9:77:ca:27:5f:3c: 78:f1:d7:2a:60:bd:e5:8b:47:0b:d3:a9:a1:a2:f2: 82:a6:f5:55:60:2b:01:9a:9c:04:c3:8b:bc:8e:4d: b3:14:35:71:d8:88:b8:18:d7:fd:b3:6e:6d:46:21: 17:56:5c:9f:23:50:e9:85:0f:41:6f:49:67:71:6c: ea:ec:32:fa:f2:50:e7:30:cc:ee:58:41:65:8d:27: 1b:8a:58:12:b9:7b:34:51:44:ce:e5:41:71:88:54: ae:4a:ec:3f:40:2d:cf:5e:57:8b:32:c2:f9:0b:b6: f9:3e:d8:0d:a4:ce:29:4d:84:87:41:9a:de:c0:fc: d2:f5:a3:58:e8:5a:5e:23:d0:5c:56:58:94:52:52: 3f:a5:4f:49:0c:82:d7:7c:83:22:fd:11:2e:9d:c9: 93:90:72:fc:95:7c:79:3b:d8:80:9a:06:45:ce:45: 50:63:3c:30:86:7f:72:8e:10:9a:c6:e1:29:db:1c: b7:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:E4:F1:23:BA:2E:3D:31:E5:4D:82:0A:7E:FD:D8:7F:3A:DF:2E:0A X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3eTxI7ouPTHlTYIKfv3YfzrfLgo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 119.77.128.0/22 Signature Algorithm: sha256WithRSAEncryption 4d:e7:47:ce:36:a5:e5:3b:23:91:9c:08:7f:17:9f:ea:b5:22: 5a:a9:c4:2c:d3:e5:9e:cd:b1:c0:14:c7:7d:b3:d6:41:90:e0: e5:13:b4:9c:5d:fc:59:c9:eb:0b:dc:5b:7c:35:70:f2:6e:96: 45:db:17:03:74:3b:f7:78:9d:5d:07:bf:c2:65:a4:8e:b2:ec: 6b:80:e0:ef:6d:38:f5:32:15:ce:39:b3:d0:47:a7:1a:a5:77: 84:fd:7a:f7:c7:fe:f8:0e:d1:b1:e9:df:c4:ed:a0:a7:58:64: 65:48:54:a0:21:77:c1:bd:3a:de:79:5b:b8:73:21:53:6e:ff: 6e:dd:e7:ff:64:19:5a:ff:1b:fe:9f:76:26:c7:a1:81:3e:c7: bc:9f:24:f9:01:92:e4:ec:3b:91:8c:a9:90:e5:d2:aa:45:ed: 02:62:ae:96:99:7a:6c:3c:c8:09:03:4b:3c:c6:03:25:ef:b4: 88:23:4e:97:77:a0:52:d4:b3:35:33:d1:fb:f9:12:89:32:84: 80:b7:bf:ed:68:e0:c9:c2:d8:53:83:43:51:31:f5:e4:a8:76: 30:dd:1e:10:f3:c0:55:fd:89:e2:11:70:a1:22:2d:54:9a:ed: 6e:a5:01:03:5c:bf:b7:ad:57:7a:f2:03:7f:d3:8d:db:ce:a9: e7:47:08:cc -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIp0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTM0MTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKERERTRGMTIzQkEyRTNE MzFFNTREODIwQTdFRkREODdGM0FERjJFMEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDrEHg28lwd0kroS9jXnjkZujXd5jopHvNfpCxbsD+Tr5R/zCRJ 0FRY2kI245p3LoOrUDWvQJl5vXvBrbK08r7qrDZUydl3yidfPHjx1ypgveWLRwvT qaGi8oKm9VVgKwGanATDi7yOTbMUNXHYiLgY1/2zbm1GIRdWXJ8jUOmFD0FvSWdx bOrsMvryUOcwzO5YQWWNJxuKWBK5ezRRRM7lQXGIVK5K7D9ALc9eV4sywvkLtvk+ 2A2kzilNhIdBmt7A/NL1o1joWl4j0FxWWJRSUj+lT0kMgtd8gyL9ES6dyZOQcvyV fHk72ICaBkXORVBjPDCGf3KOEJrG4SnbHLdpAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU3eTxI7ouPTHlTYIKfv3YfzrfLgowHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzNlVHhJN291UFRIbFRZSUtm djNZZnpyZkxnby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ3 TYAwDQYJKoZIhvcNAQELBQADggEBAE3nR842peU7I5GcCH8Xn+q1IlqpxCzT5Z7N scAUx32z1kGQ4OUTtJxd/FnJ6wvcW3w1cPJulkXbFwN0O/d4nV0Hv8JlpI6y7GuA 4O9tOPUyFc45s9BHpxqld4T9evfH/vgO0bHp38TtoKdYZGVIVKAhd8G9Ot55W7hz IVNu/27d5/9kGVr/G/6fdibHoYE+x7yfJPkBkuTsO5GMqZDl0qpF7QJirpaZemw8 yAkDSzzGAyXvtIgjTpd3oFLUszUz0fv5EokyhIC3v+1o4MnC2FODQ1Ex9eSodjDd HhDzwFX9ieIRcKEiLVSa7W6lAQNcv7etV3ryA3/TjdvOqedHCMw= -----END CERTIFICATE-----Generated at Mon Nov 25 20:56:44 2024 by rpki-client on console-fra.rpki-client.org