$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/7j5n3pOQk_jRgUQ9OYTQ3hfhRMI.roa File: 7j5n3pOQk_jRgUQ9OYTQ3hfhRMI.roa (raw, json) Hash identifier: vhDbv49+9HJ9/zl1OgtKtCxJD2L4y019/Fkn87AlWMw= Subject key identifier: EE:3E:67:DE:93:90:93:F8:D1:81:44:3D:39:84:D0:DE:17:E1:44:C2 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 22B9 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/7j5n3pOQk_jRgUQ9OYTQ3hfhRMI.roa Signing time: Mon 26 Aug 2024 05:34:18 +0000 ROA not before: Mon 26 Aug 2024 05:34:18 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 180.218.148.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8889 (0x22b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:34:18 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=EE3E67DE939093F8D181443D3984D0DE17E144C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:54:a2:7a:7c:2b:19:11:7a:9b:6e:30:77:02: 13:59:fd:b8:4e:89:f0:f9:7f:64:10:47:10:c7:b8: 79:50:24:56:85:39:b0:20:74:3e:56:2a:41:4e:f9: 45:1a:3a:f9:41:23:cc:e9:ba:f3:87:6e:d4:1c:f9: 76:9f:0d:fc:8e:35:d3:66:78:b0:11:e7:00:fe:06: 4b:f8:a0:30:cd:4b:3f:fd:85:25:14:a5:35:4f:4f: 0a:0d:b4:09:c9:57:07:97:40:47:98:4b:e7:35:1e: e7:8d:19:b5:2b:39:04:ac:14:3b:87:93:71:dc:50: 1e:3c:96:5b:1b:5c:5c:f3:8b:e8:e9:7a:18:9b:64: bd:1f:6a:08:f1:b7:51:d8:a1:58:3a:2c:ee:50:34: 80:66:fe:1e:96:4a:b5:87:09:f9:6f:9f:44:24:f1: 51:c1:9a:e4:a5:1e:c6:25:70:da:6e:c9:c6:ef:17: 4e:6d:93:50:15:e2:3b:9e:63:5b:83:cc:0f:cf:36: bd:b4:d7:74:5d:cd:7e:ea:49:67:99:ad:40:97:20: cf:9a:ba:f8:7a:3c:19:46:bc:4c:ac:83:fe:1b:88: d0:31:35:1d:dc:aa:22:98:36:8e:c6:ca:6a:a4:a2: 10:3f:ce:bd:08:a1:fe:32:4d:42:95:20:be:ef:ad: 57:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:3E:67:DE:93:90:93:F8:D1:81:44:3D:39:84:D0:DE:17:E1:44:C2 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/7j5n3pOQk_jRgUQ9OYTQ3hfhRMI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.148.0/22 Signature Algorithm: sha256WithRSAEncryption 04:f8:84:31:23:4d:61:1e:1f:4e:e7:89:11:ca:45:39:bc:90: cc:97:d4:22:ab:54:58:dc:b4:3e:fa:e3:09:18:a5:8f:db:68: 68:e0:a3:3c:2d:8f:2c:af:3b:b8:09:93:0a:e4:74:82:47:e8: 87:87:6a:cd:ea:7e:34:a8:6c:6e:7d:2b:b6:3d:b0:38:9f:67: 16:4b:e4:21:07:52:1b:85:0d:d7:ed:91:7b:eb:ce:c5:57:e9: d3:71:46:c9:4f:06:7f:bd:c0:fd:08:7d:a3:2a:61:fc:00:1b: 49:73:36:8c:d2:5b:51:db:d9:0b:ef:52:23:e7:77:c8:13:a0: c6:e6:bf:cd:ae:77:da:9c:3c:79:ad:0c:74:84:76:8d:ef:3a: 89:95:bc:dc:ee:38:da:e6:d9:16:62:6a:a5:1c:84:03:1a:27: ae:e2:a2:58:b4:74:f5:89:79:a7:a7:1e:ce:b2:5c:5a:9f:3b: 40:94:a9:e0:c7:98:10:72:77:ce:8f:54:c7:1b:8a:17:f7:36: fa:5b:bf:8b:12:e8:5b:23:c6:a8:fa:45:93:a8:a6:cf:78:1e: 06:57:ce:09:a9:e7:1a:1a:4b:77:3f:30:65:9e:1a:66:1e:bf: db:fb:e2:ee:06:5f:65:a4:9d:c1:2f:47:fe:53:c7:71:f8:2f: c9:11:60:a5 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIrkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTM0MThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEVFM0U2N0RFOTM5MDkz RjhEMTgxNDQzRDM5ODREMERFMTdFMTQ0QzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDpVKJ6fCsZEXqbbjB3AhNZ/bhOifD5f2QQRxDHuHlQJFaFObAg dD5WKkFO+UUaOvlBI8zpuvOHbtQc+XafDfyONdNmeLAR5wD+Bkv4oDDNSz/9hSUU pTVPTwoNtAnJVweXQEeYS+c1HueNGbUrOQSsFDuHk3HcUB48llsbXFzzi+jpehib ZL0fagjxt1HYoVg6LO5QNIBm/h6WSrWHCflvn0Qk8VHBmuSlHsYlcNpuycbvF05t k1AV4jueY1uDzA/PNr2013RdzX7qSWeZrUCXIM+auvh6PBlGvEysg/4biNAxNR3c qiKYNo7GymqkohA/zr0Iof4yTUKVIL7vrVcNAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU7j5n3pOQk/jRgUQ9OYTQ3hfhRMIwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzdqNW4zcE9Ra19qUmdVUTlP WVRRM2hmaFJNSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK0 2pQwDQYJKoZIhvcNAQELBQADggEBAAT4hDEjTWEeH07niRHKRTm8kMyX1CKrVFjc tD764wkYpY/baGjgozwtjyyvO7gJkwrkdIJH6IeHas3qfjSobG59K7Y9sDifZxZL 5CEHUhuFDdftkXvrzsVX6dNxRslPBn+9wP0IfaMqYfwAG0lzNozSW1Hb2QvvUiPn d8gToMbmv82ud9qcPHmtDHSEdo3vOomVvNzuONrm2RZiaqUchAMaJ67ioli0dPWJ eaenHs6yXFqfO0CUqeDHmBByd86PVMcbihf3Nvpbv4sS6Fsjxqj6RZOops94HgZX zgmp5xoaS3c/MGWeGmYev9v74u4GX2WkncEvR/5Tx3H4L8kRYKU= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:24 2024 by rpki-client on console-ams.rpki-client.org