$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/70AXazOM6yXIPI8xB6Z5jOaT7vQ.roa File: 70AXazOM6yXIPI8xB6Z5jOaT7vQ.roa (raw, json) Hash identifier: pHuiUsVvY9bzEeFrrq26Vm+FlGTwREMJWGTOeZG8134= Subject key identifier: EF:40:17:6B:33:8C:EB:25:C8:3C:8F:31:07:A6:79:8C:E6:93:EE:F4 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2258 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/70AXazOM6yXIPI8xB6Z5jOaT7vQ.roa Signing time: Mon 26 Aug 2024 05:33:54 +0000 ROA not before: Mon 26 Aug 2024 05:33:54 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 180.218.160.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8792 (0x2258) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:54 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=EF40176B338CEB25C83C8F3107A6798CE693EEF4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:4c:b5:7c:91:b2:32:9d:2d:e7:44:9c:d5:ff: 91:69:37:41:c1:37:b0:64:e4:48:28:ab:33:4d:94: a7:79:b7:82:99:90:ff:52:e9:c3:4a:0a:e7:1e:ca: ff:1f:f9:12:ab:d3:37:0e:ff:3c:41:d7:65:6b:3c: 26:3c:75:12:c1:99:cc:a5:f5:58:bb:23:13:65:0b: 49:51:71:0a:ac:49:4b:c4:6a:01:e3:1b:1d:74:51: 83:8a:0a:19:ec:cd:11:d6:75:bf:b2:e9:fe:ce:b1: b8:c5:34:ce:1c:c6:96:32:b3:ba:c7:c1:e2:d7:0c: 5f:95:d9:57:c9:6d:42:4f:95:81:77:32:62:01:f1: 54:98:25:b7:a7:a6:19:b9:8b:18:f4:b9:c1:da:5c: 91:8c:c3:b9:51:bd:92:9d:49:d2:26:16:31:0a:93: 91:ba:eb:89:41:e8:bd:db:96:f3:fc:4b:ac:e0:7c: 94:59:b9:61:a7:cd:39:31:da:f9:f0:77:db:94:15: 42:34:be:af:92:b1:28:92:8c:80:9f:b2:fc:e9:7e: 71:20:9f:20:2c:ab:93:e9:c5:b2:2e:bc:c5:24:c2: 3b:93:53:5e:37:5d:5c:83:63:9c:15:bd:5a:00:b9: 6a:e3:db:e1:39:3c:57:31:2b:46:73:ee:eb:6b:41: c1:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:40:17:6B:33:8C:EB:25:C8:3C:8F:31:07:A6:79:8C:E6:93:EE:F4 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/70AXazOM6yXIPI8xB6Z5jOaT7vQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.160.0/22 Signature Algorithm: sha256WithRSAEncryption 9f:f8:6a:3b:01:05:e2:15:bc:ff:d0:f8:5e:eb:9b:78:e3:28: c1:c6:e7:88:6e:7c:8d:e3:39:58:a1:0a:28:14:bd:9c:d9:66: 35:1d:74:12:67:bf:16:5f:22:08:97:e6:50:d4:8f:28:93:5d: f3:74:bf:9e:56:13:c5:d2:ea:b5:d3:13:3d:91:f0:69:48:fc: 28:ea:74:c8:f1:d7:c9:d4:a0:24:5f:5f:ad:1e:c0:a5:3b:3c: d6:6d:0a:d5:43:9e:8c:ea:4a:4d:6b:ba:f4:80:76:41:c7:ff: bf:60:6b:fb:b2:09:59:85:8f:61:6f:00:4c:b8:cd:62:70:42: b9:13:9b:3f:9b:30:31:79:33:df:3b:e1:d9:26:8e:30:05:dc: 01:d4:1e:7e:37:55:87:09:69:c2:d8:b2:70:c4:dc:1f:52:16: 70:08:4c:63:36:49:71:91:71:f1:f1:e4:4d:56:07:06:dc:db: eb:a7:cb:85:d6:58:e8:c5:b3:90:08:2e:cf:27:3a:ea:57:22: 4a:c4:fb:5f:59:4a:07:23:f1:a8:ad:3d:de:62:16:bf:c8:26: 29:1b:bc:86:bc:c7:47:e5:03:77:eb:f0:7c:40:c9:56:09:48: ed:5e:d4:4f:3f:ab:e5:0b:a1:1f:97:f8:a5:36:dd:08:71:85: 4a:09:d0:02 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIlgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzNTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEVGNDAxNzZCMzM4Q0VC MjVDODNDOEYzMTA3QTY3OThDRTY5M0VFRjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOTLV8kbIynS3nRJzV/5FpN0HBN7Bk5EgoqzNNlKd5t4KZkP9S 6cNKCuceyv8f+RKr0zcO/zxB12VrPCY8dRLBmcyl9Vi7IxNlC0lRcQqsSUvEagHj Gx10UYOKChnszRHWdb+y6f7OsbjFNM4cxpYys7rHweLXDF+V2VfJbUJPlYF3MmIB 8VSYJbenphm5ixj0ucHaXJGMw7lRvZKdSdImFjEKk5G664lB6L3blvP8S6zgfJRZ uWGnzTkx2vnwd9uUFUI0vq+SsSiSjICfsvzpfnEgnyAsq5PpxbIuvMUkwjuTU143 XVyDY5wVvVoAuWrj2+E5PFcxK0Zz7utrQcH3AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU70AXazOM6yXIPI8xB6Z5jOaT7vQwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzcwQVhhek9NNnlYSVBJOHhC Nlo1ak9hVDd2US5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK0 2qAwDQYJKoZIhvcNAQELBQADggEBAJ/4ajsBBeIVvP/Q+F7rm3jjKMHG54hufI3j OVihCigUvZzZZjUddBJnvxZfIgiX5lDUjyiTXfN0v55WE8XS6rXTEz2R8GlI/Cjq dMjx18nUoCRfX60ewKU7PNZtCtVDnozqSk1ruvSAdkHH/79ga/uyCVmFj2FvAEy4 zWJwQrkTmz+bMDF5M9874dkmjjAF3AHUHn43VYcJacLYsnDE3B9SFnAITGM2SXGR cfHx5E1WBwbc2+uny4XWWOjFs5AILs8nOupXIkrE+19ZSgcj8aitPd5iFr/IJikb vIa8x0flA3fr8HxAyVYJSO1e1E8/q+ULoR+X+KU23QhxhUoJ0AI= -----END CERTIFICATE-----Generated at Fri Nov 22 14:13:18 2024 by rpki-client on console-fra.rpki-client.org