$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/BJ2pdLQRkVShLwtknyd1n7cUiyk.roa File: BJ2pdLQRkVShLwtknyd1n7cUiyk.roa (raw, json) Hash identifier: Zef367sKL/pXnuNAu0iI/XpxcHkzXCtf+5XXly8THSs= Subject key identifier: 04:9D:A9:74:B4:11:91:54:A1:2F:0B:64:9F:27:75:9F:B7:14:8B:29 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2166 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/BJ2pdLQRkVShLwtknyd1n7cUiyk.roa Signing time: Mon 26 Aug 2024 05:32:57 +0000 ROA not before: Mon 26 Aug 2024 05:32:57 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 180.218.56.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8550 (0x2166) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:32:57 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=049DA974B4119154A12F0B649F27759FB7148B29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fa:1f:58:d0:e6:72:57:0c:eb:22:d5:4c:c7:2b: 09:d5:14:c3:76:c5:a3:ad:63:29:42:56:d0:0d:ec: c9:c6:a0:04:ef:74:db:f8:9d:0d:09:d3:8c:b1:28: 2d:85:df:02:72:28:39:a9:54:2f:00:b2:8c:6b:8f: 27:c9:a8:14:c2:9a:08:73:a0:34:f2:60:b2:c4:89: e2:b3:0b:a8:c9:ba:ff:8f:45:31:e0:dc:fe:0a:af: 99:81:61:97:11:29:df:5c:0b:ce:03:e9:e4:a0:df: 74:8c:87:c6:a3:80:8e:9b:b5:49:a2:94:f0:ac:02: 51:8a:0e:af:8d:96:73:93:a3:b0:a8:e0:b7:f8:3b: 32:38:bb:aa:67:57:6e:65:75:e6:be:3c:33:b2:98: 23:6d:37:4b:a8:99:2f:26:01:b2:40:21:9d:36:91: c5:10:66:f7:3c:3f:71:07:7c:c4:af:b3:46:18:91: 13:9e:fd:e9:cc:ad:9e:64:2b:a5:49:cd:b2:ca:55: a8:34:a8:57:53:19:71:75:80:c3:bb:49:81:7f:e9: 70:f4:cc:34:52:0f:86:09:05:0f:11:e0:67:04:b6: c8:7b:84:20:ba:f1:b0:4c:ec:4b:f3:0f:21:55:65: 7c:c2:b7:64:46:33:6f:91:f0:62:46:c5:a2:9b:47: e1:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:9D:A9:74:B4:11:91:54:A1:2F:0B:64:9F:27:75:9F:B7:14:8B:29 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/BJ2pdLQRkVShLwtknyd1n7cUiyk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.56.0/21 Signature Algorithm: sha256WithRSAEncryption 42:fa:37:c2:d3:d9:05:97:68:84:f6:1f:88:ac:65:e9:ab:3d: 8d:ed:e6:b4:cd:ec:81:27:be:84:90:33:d5:c7:a8:ff:22:58: e7:c8:b5:a2:9f:46:fa:f1:5c:4a:da:4b:73:47:f3:24:c6:9d: 3f:18:1c:03:08:16:a0:7f:ae:91:26:b4:84:58:6a:12:40:ba: 28:38:e6:2b:27:a8:96:02:8b:b2:f5:04:7f:06:09:ac:92:82: f4:48:28:a0:f2:b0:df:1d:6e:88:f2:d3:d8:eb:c2:fc:0b:b6: d1:a1:e3:da:38:90:3e:79:91:eb:3d:32:03:e2:e8:b2:09:3e: 87:d4:9d:20:10:1c:1e:35:cf:35:5a:f6:5a:fb:bb:78:05:6b: d4:9c:c0:6e:ed:c5:ae:4b:90:85:e5:3e:94:b2:5e:e3:09:02: f5:d9:7b:60:7a:8b:33:5f:68:ef:5b:4a:ec:49:2a:71:07:74: ed:67:27:a7:e1:a6:bc:de:6e:72:28:50:01:3e:41:54:2b:71: 2f:0d:7e:80:49:c5:54:ff:37:16:8f:ab:2e:94:c3:40:9d:30: 27:d2:5f:51:bc:9f:24:31:23:13:65:44:af:6b:75:41:ad:5d: fc:81:e0:c1:8d:0c:cc:35:fc:97:f0:a7:09:59:d5:aa:26:d3: 78:df:d7:d8 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIWYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMyNTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDA0OURBOTc0QjQxMTkx NTRBMTJGMEI2NDlGMjc3NTlGQjcxNDhCMjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD6H1jQ5nJXDOsi1UzHKwnVFMN2xaOtYylCVtAN7MnGoATvdNv4 nQ0J04yxKC2F3wJyKDmpVC8AsoxrjyfJqBTCmghzoDTyYLLEieKzC6jJuv+PRTHg 3P4Kr5mBYZcRKd9cC84D6eSg33SMh8ajgI6btUmilPCsAlGKDq+NlnOTo7Co4Lf4 OzI4u6pnV25ldea+PDOymCNtN0uomS8mAbJAIZ02kcUQZvc8P3EHfMSvs0YYkROe /enMrZ5kK6VJzbLKVag0qFdTGXF1gMO7SYF/6XD0zDRSD4YJBQ8R4GcEtsh7hCC6 8bBM7EvzDyFVZXzCt2RGM2+R8GJGxaKbR+GjAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUBJ2pdLQRkVShLwtknyd1n7cUiykwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0JKMnBkTFFSa1ZTaEx3dGtu eWQxbjdjVWl5ay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0 2jgwDQYJKoZIhvcNAQELBQADggEBAEL6N8LT2QWXaIT2H4isZemrPY3t5rTN7IEn voSQM9XHqP8iWOfItaKfRvrxXEraS3NH8yTGnT8YHAMIFqB/rpEmtIRYahJAuig4 5isnqJYCi7L1BH8GCaySgvRIKKDysN8dbojy09jrwvwLttGh49o4kD55kes9MgPi 6LIJPofUnSAQHB41zzVa9lr7u3gFa9ScwG7txa5LkIXlPpSyXuMJAvXZe2B6izNf aO9bSuxJKnEHdO1nJ6fhprzebnIoUAE+QVQrcS8NfoBJxVT/NxaPqy6Uw0CdMCfS X1G8nyQxIxNlRK9rdUGtXfyB4MGNDMw1/JfwpwlZ1aom03jf19g= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:41 2024 by rpki-client on console-ams.rpki-client.org