$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/BENHf4Hd0GXN3FbowOeXev7jLmA.roa File: BENHf4Hd0GXN3FbowOeXev7jLmA.roa (raw, json) Hash identifier: OGUJ8MZ/f9JY3QMZnPOhMIoOaWIoNM0DnU1JrOUsywE= Subject key identifier: 04:43:47:7F:81:DD:D0:65:CD:DC:56:E8:C0:E7:97:7A:FE:E3:2E:60 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 21F1 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/BENHf4Hd0GXN3FbowOeXev7jLmA.roa Signing time: Mon 26 Aug 2024 05:33:29 +0000 ROA not before: Mon 26 Aug 2024 05:33:29 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 180.218.222.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8689 (0x21f1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:29 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=0443477F81DDD065CDDC56E8C0E7977AFEE32E60 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a6:4d:2a:75:0c:2c:63:6a:cf:3b:c7:2f:32: 02:40:43:bd:12:7b:8b:fe:6d:db:69:cf:94:73:c1: 6e:19:49:94:79:34:4e:73:7d:4b:06:97:93:01:ba: 15:87:48:26:1f:ba:e6:c4:69:d4:34:8c:ec:38:cd: 71:ac:6e:41:6d:d9:f1:00:06:bd:e5:c0:22:58:6a: b0:85:82:1f:d4:b4:64:2a:e4:f9:10:f8:01:4f:b5: 1f:01:d1:3a:34:22:af:bd:aa:c8:10:a4:0c:82:d6: 78:b0:ef:fe:bd:82:93:04:06:94:ae:e2:b4:1e:e9: 80:64:38:aa:13:94:c1:d3:7b:d5:15:a3:2c:27:87: 7b:a4:c6:b8:e9:a0:43:99:6c:74:4f:80:81:c1:d4: f4:0e:b6:fe:70:5d:5f:2f:6e:69:bf:1d:e1:4e:46: d4:d9:1b:63:a3:49:ae:a7:1e:24:97:c1:6d:58:9e: a1:d2:aa:97:18:64:09:0a:05:38:7a:73:3a:27:f3: 05:99:31:35:1c:07:25:5b:f3:ba:68:ad:6e:09:f1: 02:b7:0c:d8:2a:18:c5:5a:c7:ad:b6:10:e9:c6:d0: 18:25:d0:0a:26:ce:6e:41:3c:e8:e1:b1:e7:b6:a9: 16:e1:3d:d9:f7:e0:24:68:0b:86:a8:57:b5:24:4b: c4:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:43:47:7F:81:DD:D0:65:CD:DC:56:E8:C0:E7:97:7A:FE:E3:2E:60 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/BENHf4Hd0GXN3FbowOeXev7jLmA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.222.0/23 Signature Algorithm: sha256WithRSAEncryption 43:28:ea:5f:32:93:e4:37:25:7b:7f:a2:f4:6d:55:9e:2d:83: a8:6f:21:a2:0d:0c:61:4c:57:e6:49:7a:a6:c4:e8:72:c8:09: 16:42:96:e9:bf:c9:99:8b:74:61:f7:22:cf:cd:83:cb:80:2f: bb:7c:ba:9d:be:cc:7c:1f:90:2f:50:9c:42:ee:d6:18:b8:92: 79:0c:0c:cb:a4:79:87:9a:06:e6:81:86:0b:2b:38:72:2b:e1: 59:c9:db:f1:9d:76:e8:e1:f1:d6:f6:fa:a5:9c:a8:01:f8:47: 77:53:f4:62:ac:c0:8f:b2:f5:be:d8:23:2c:0b:47:16:d1:62: 58:f4:1e:c1:38:22:4d:57:2b:ac:8d:78:69:86:2c:80:cb:d7: a2:6e:0e:30:a1:cb:10:f7:f3:4a:c3:55:9d:15:15:7c:d8:9a: bb:80:44:9b:27:75:a7:5f:78:34:f5:a1:4c:c2:46:fd:f6:fc: b1:78:f2:b0:42:ad:ce:ec:c0:83:10:e8:cb:7d:52:a9:62:58: f2:c9:58:37:ae:63:7f:78:ab:cb:c0:08:b6:ee:d6:83:d5:21: 82:5d:59:98:65:04:62:ef:fd:e0:71:07:97:d8:74:b9:7b:a7: f8:1f:18:47:10:0c:4f:99:44:b7:02:60:71:ed:6e:03:85:43: f5:dd:5d:f2 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIfEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzMjlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDA0NDM0NzdGODFEREQw NjVDRERDNTZFOEMwRTc5NzdBRkVFMzJFNjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzpk0qdQwsY2rPO8cvMgJAQ70Se4v+bdtpz5RzwW4ZSZR5NE5z fUsGl5MBuhWHSCYfuubEadQ0jOw4zXGsbkFt2fEABr3lwCJYarCFgh/UtGQq5PkQ +AFPtR8B0To0Iq+9qsgQpAyC1niw7/69gpMEBpSu4rQe6YBkOKoTlMHTe9UVoywn h3ukxrjpoEOZbHRPgIHB1PQOtv5wXV8vbmm/HeFORtTZG2OjSa6nHiSXwW1YnqHS qpcYZAkKBTh6czon8wWZMTUcByVb87porW4J8QK3DNgqGMVax622EOnG0Bgl0Aom zm5BPOjhsee2qRbhPdn34CRoC4aoV7UkS8R9AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUBENHf4Hd0GXN3FbowOeXev7jLmAwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0JFTkhmNEhkMEdYTjNGYm93 T2VYZXY3akxtQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAG0 2t4wDQYJKoZIhvcNAQELBQADggEBAEMo6l8yk+Q3JXt/ovRtVZ4tg6hvIaINDGFM V+ZJeqbE6HLICRZClum/yZmLdGH3Is/Ng8uAL7t8up2+zHwfkC9QnELu1hi4knkM DMukeYeaBuaBhgsrOHIr4VnJ2/Gddujh8db2+qWcqAH4R3dT9GKswI+y9b7YIywL RxbRYlj0HsE4Ik1XK6yNeGmGLIDL16JuDjChyxD380rDVZ0VFXzYmruARJsndadf eDT1oUzCRv32/LF48rBCrc7swIMQ6Mt9UqliWPLJWDeuY394q8vACLbu1oPVIYJd WZhlBGLv/eBxB5fYdLl7p/gfGEcQDE+ZRLcCYHHtbgOFQ/XdXfI= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:25 2024 by rpki-client on console-ams.rpki-client.org