$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/BY5Pi3JKyt2ET2BQVZDCRprw_-I.roa File: BY5Pi3JKyt2ET2BQVZDCRprw_-I.roa (raw, json) Hash identifier: bLzR/b3bujr5FKnX2Qq9B2gVLVfTmWktZS4qC5YhRqI= Subject key identifier: 05:8E:4F:8B:72:4A:CA:DD:84:4F:60:50:55:90:C2:46:9A:F0:FF:E2 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 22B7 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/BY5Pi3JKyt2ET2BQVZDCRprw_-I.roa Signing time: Mon 26 Aug 2024 05:34:18 +0000 ROA not before: Mon 26 Aug 2024 05:34:18 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24165 IP address blocks: 180.218.100.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8887 (0x22b7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:34:18 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=058E4F8B724ACADD844F60505590C2469AF0FFE2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:df:fa:08:20:70:55:48:e3:dc:55:1f:8c:02: 77:42:e0:2b:2e:be:60:c9:4f:b9:53:26:a1:d9:90: a1:88:65:a7:8a:cf:e4:10:87:94:44:b9:ac:52:39: 7f:97:82:f8:28:ad:12:1b:0b:bb:66:17:88:fd:1a: df:18:88:af:a9:79:dc:c2:95:eb:8d:63:ec:7f:65: 10:4d:d6:6c:b1:ef:86:2b:53:ff:6d:68:70:47:f6: d1:f3:91:31:2e:f3:a9:b6:2e:a3:74:7f:72:5d:e1: 49:b1:82:d3:29:e8:e2:43:19:ec:e8:2d:b1:dd:04: 4a:39:f1:cc:92:2b:d3:02:4e:d2:a4:83:df:8f:ca: 34:79:f1:b6:54:c2:b6:73:9c:0c:22:63:5a:bc:00: cc:92:29:f3:32:ad:43:77:df:57:99:7c:07:66:b6: cf:f8:f3:db:59:96:cd:64:bf:d7:96:82:9a:7a:2f: be:6f:98:01:77:cc:57:62:fd:bc:56:e9:aa:bd:34: e8:80:48:7e:54:5e:f7:e2:ef:54:72:a5:9f:b9:4c: 4a:46:3f:21:2a:31:a5:c3:6c:d0:3c:77:4f:22:b2: 07:b3:bd:40:1f:28:37:16:28:00:50:95:a1:18:9d: 26:81:65:8f:f9:ae:7b:49:1a:f6:16:c7:85:8b:81: d0:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:8E:4F:8B:72:4A:CA:DD:84:4F:60:50:55:90:C2:46:9A:F0:FF:E2 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/BY5Pi3JKyt2ET2BQVZDCRprw_-I.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.100.0/22 Signature Algorithm: sha256WithRSAEncryption 82:6c:a6:66:4a:57:fb:07:cb:97:7b:8b:0b:85:2b:7e:a9:c6: 71:7e:3f:d2:56:0a:58:f6:7a:76:28:5a:eb:cc:1c:df:1c:cd: 0c:ab:11:36:f4:81:89:df:e7:d9:db:d7:e7:d4:55:e2:5a:bc: 89:c0:cb:dc:36:d3:59:c6:b2:ca:57:1c:f5:21:74:8d:5e:fc: 3a:e1:45:d0:ec:76:9d:71:dd:74:05:3c:95:98:b4:07:4c:8b: 03:cb:db:80:d6:2e:d3:c1:01:19:d4:99:d5:ad:6c:cf:fa:18: d6:3f:69:80:c9:68:e5:64:fb:90:8c:4f:8c:d2:08:61:fb:aa: 33:b6:12:fa:5c:35:34:6e:7a:79:26:f8:e9:d0:75:54:18:38: 94:3e:98:ec:5d:af:c8:5d:ba:8e:2f:ed:2e:c7:6a:22:33:e3: 4b:34:90:78:05:0b:d4:2c:e3:0e:3d:6c:75:e8:b5:29:e1:92: bd:c3:b1:28:00:50:ac:f2:2c:5a:08:62:08:6d:a8:31:80:d7: 8f:13:74:59:2a:54:1e:90:f1:ca:1b:f6:db:be:3e:8f:c6:da: 24:c2:ad:88:b4:c2:bf:07:a5:ae:1f:10:1b:53:5c:5e:d2:c3: 32:4a:f9:51:4f:58:14:47:8c:97:f2:df:95:2e:86:19:f5:a7: ec:d5:c1:6d -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIrcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTM0MThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDA1OEU0RjhCNzI0QUNB REQ4NDRGNjA1MDU1OTBDMjQ2OUFGMEZGRTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC83/oIIHBVSOPcVR+MAndC4CsuvmDJT7lTJqHZkKGIZaeKz+QQ h5REuaxSOX+XgvgorRIbC7tmF4j9Gt8YiK+pedzCleuNY+x/ZRBN1myx74YrU/9t aHBH9tHzkTEu86m2LqN0f3Jd4UmxgtMp6OJDGezoLbHdBEo58cySK9MCTtKkg9+P yjR58bZUwrZznAwiY1q8AMySKfMyrUN331eZfAdmts/489tZls1kv9eWgpp6L75v mAF3zFdi/bxW6aq9NOiASH5UXvfi71RypZ+5TEpGPyEqMaXDbNA8d08isgezvUAf KDcWKABQlaEYnSaBZY/5rntJGvYWx4WLgdAjAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUBY5Pi3JKyt2ET2BQVZDCRprw/+IwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0JZNVBpM0pLeXQyRVQyQlFW WkRDUnByd18tSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK0 2mQwDQYJKoZIhvcNAQELBQADggEBAIJspmZKV/sHy5d7iwuFK36pxnF+P9JWClj2 enYoWuvMHN8czQyrETb0gYnf59nb1+fUVeJavInAy9w201nGsspXHPUhdI1e/Drh RdDsdp1x3XQFPJWYtAdMiwPL24DWLtPBARnUmdWtbM/6GNY/aYDJaOVk+5CMT4zS CGH7qjO2EvpcNTRuenkm+OnQdVQYOJQ+mOxdr8hduo4v7S7HaiIz40s0kHgFC9Qs 4w49bHXotSnhkr3DsSgAUKzyLFoIYghtqDGA148TdFkqVB6Q8cob9tu+Po/G2iTC rYi0wr8Hpa4fEBtTXF7SwzJK+VFPWBRHjJfy35Uuhhn1p+zVwW0= -----END CERTIFICATE-----Generated at Fri Nov 22 14:13:18 2024 by rpki-client on console-fra.rpki-client.org