$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/7L2qi8RNhbNf12y09rF7T97KHJA.roa File: 7L2qi8RNhbNf12y09rF7T97KHJA.roa (raw, json) Hash identifier: b8JTa5o+rlOwbsRJen5HIXKlM8giPY86mbZj98+1pc0= Subject key identifier: EC:BD:AA:8B:C4:4D:85:B3:5F:D7:6C:B4:F6:B1:7B:4F:DE:CA:1C:90 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 22A8 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/7L2qi8RNhbNf12y09rF7T97KHJA.roa Signing time: Mon 26 Aug 2024 05:34:14 +0000 ROA not before: Mon 26 Aug 2024 05:34:14 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 123.0.43.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8872 (0x22a8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:34:14 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=ECBDAA8BC44D85B35FD76CB4F6B17B4FDECA1C90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:dd:42:b5:0a:db:3c:0c:f5:48:c4:01:d9:f8: 93:91:61:58:7c:10:c8:2e:8f:ee:32:66:4a:8b:bc: 6c:ca:cc:95:e5:86:8a:31:52:69:03:6a:ee:39:34: bb:88:a3:2e:7a:ea:8b:51:a2:8e:07:86:f9:9e:7d: 32:c9:1a:73:b4:26:4e:62:3e:dd:2b:39:e9:14:df: 20:19:79:e7:5a:1f:c7:11:3e:c6:cd:e7:3a:e1:66: b3:ad:9c:97:c8:ae:d6:df:b4:aa:1b:88:8f:93:ee: 8f:ab:b4:c3:7d:7b:91:39:a5:33:9b:0b:9a:cc:0d: 21:d5:5b:3b:b9:1d:fb:f2:55:01:60:f1:92:ac:fb: b1:c3:35:60:b1:78:25:10:96:83:93:ac:cf:40:ac: 06:4b:01:c9:17:3a:72:2d:ff:b7:70:0d:93:42:c7: 5d:59:4c:35:f1:1c:4a:74:73:03:14:a7:e3:31:d4: 86:0d:a4:6a:58:3f:ce:a1:fc:1e:45:06:16:d1:90: d6:09:cb:9d:7b:b1:1f:30:3c:54:0f:af:a2:b2:47: cc:1a:ee:49:5e:72:84:07:b2:ce:b4:8b:d6:9e:1a: 14:f8:b6:d6:d6:eb:5c:f4:16:19:fe:38:3d:aa:a1: 42:b4:8f:be:cc:75:8c:32:b2:05:49:3d:7b:70:2d: 40:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:BD:AA:8B:C4:4D:85:B3:5F:D7:6C:B4:F6:B1:7B:4F:DE:CA:1C:90 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/7L2qi8RNhbNf12y09rF7T97KHJA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 123.0.43.0/24 Signature Algorithm: sha256WithRSAEncryption 14:43:99:e5:11:b5:02:f4:5b:0a:58:2f:b8:7e:1d:e3:ee:db: 57:c4:4f:4f:15:75:00:b3:cf:1a:ed:e8:12:ba:c7:63:db:9a: c5:fb:49:ed:ef:ce:7d:94:dd:e3:9b:03:96:04:81:2c:97:33: 22:81:93:7c:49:4a:dc:41:9b:04:68:8f:9c:9b:f6:aa:7b:d1: 4d:67:22:ad:92:39:e7:b8:59:9d:9d:94:ee:41:d2:80:73:35: be:38:00:66:0a:62:ef:94:64:0d:e4:08:db:1d:80:20:2c:c0: 1e:66:d8:0d:f4:71:67:89:53:e1:ba:98:e0:52:26:c8:7d:5e: cf:e4:9f:16:19:42:b1:b1:0c:8e:76:74:d7:b6:e2:ad:85:1f: 83:76:ac:83:80:23:e1:52:ce:1c:be:d5:0a:a9:60:2f:d3:58: c6:28:7c:c7:cc:93:43:f3:08:a6:04:54:6c:2a:8f:8f:fe:a1: 42:29:ec:d4:e5:bf:6a:0d:01:53:9a:30:a3:fa:0d:9c:28:76: 27:0b:56:c2:84:4c:17:cc:b6:13:d0:e2:bf:4e:8c:04:50:02: 70:6f:24:99:a6:1b:14:ae:ea:f1:28:b3:6c:c8:62:f1:6c:e5: 49:27:b8:96:5c:d0:44:8e:10:4d:44:f7:7f:fd:4c:ff:3c:6a: 5d:3d:c2:70 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIqgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTM0MTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEVDQkRBQThCQzQ0RDg1 QjM1RkQ3NkNCNEY2QjE3QjRGREVDQTFDOTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC83UK1Cts8DPVIxAHZ+JORYVh8EMguj+4yZkqLvGzKzJXlhoox UmkDau45NLuIoy566otRoo4HhvmefTLJGnO0Jk5iPt0rOekU3yAZeedaH8cRPsbN 5zrhZrOtnJfIrtbftKobiI+T7o+rtMN9e5E5pTObC5rMDSHVWzu5HfvyVQFg8ZKs +7HDNWCxeCUQloOTrM9ArAZLAckXOnIt/7dwDZNCx11ZTDXxHEp0cwMUp+Mx1IYN pGpYP86h/B5FBhbRkNYJy517sR8wPFQPr6KyR8wa7klecoQHss60i9aeGhT4ttbW 61z0Fhn+OD2qoUK0j77MdYwysgVJPXtwLUDFAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU7L2qi8RNhbNf12y09rF7T97KHJAwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzdMMnFpOFJOaGJOZjEyeTA5 ckY3VDk3S0hKQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAB7 ACswDQYJKoZIhvcNAQELBQADggEBABRDmeURtQL0WwpYL7h+HePu21fET08VdQCz zxrt6BK6x2PbmsX7Se3vzn2U3eObA5YEgSyXMyKBk3xJStxBmwRoj5yb9qp70U1n Iq2SOee4WZ2dlO5B0oBzNb44AGYKYu+UZA3kCNsdgCAswB5m2A30cWeJU+G6mOBS Jsh9Xs/knxYZQrGxDI52dNe24q2FH4N2rIOAI+FSzhy+1QqpYC/TWMYofMfMk0Pz CKYEVGwqj4/+oUIp7NTlv2oNAVOaMKP6DZwodicLVsKETBfMthPQ4r9OjARQAnBv JJmmGxSu6vEos2zIYvFs5UknuJZc0ESOEE1E93/9TP88al09wnA= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:59 2024 by rpki-client on console-fra.rpki-client.org