$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CZ5dYeWOX-GxA2p8C0Tkr29aypw.roa File: CZ5dYeWOX-GxA2p8C0Tkr29aypw.roa (raw, json) Hash identifier: sQnEJft1Xr1b0/TXAkH8bIDqgTTbJxcMPnz/k20zdfw= Subject key identifier: 09:9E:5D:61:E5:8E:5F:E1:B1:03:6A:7C:0B:44:E4:AF:6F:5A:CA:9C Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 229C Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CZ5dYeWOX-GxA2p8C0Tkr29aypw.roa Signing time: Mon 26 Aug 2024 05:34:11 +0000 ROA not before: Mon 26 Aug 2024 05:34:11 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 180.218.128.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:55:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8860 (0x229c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:34:11 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=099E5D61E58E5FE1B1036A7C0B44E4AF6F5ACA9C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:64:9a:16:ba:80:90:69:6f:7d:28:3b:71:8a: 5c:de:1f:5e:c3:0d:15:d1:7f:45:4b:27:29:c7:50: 29:39:7b:1a:f7:b8:b1:c0:07:09:97:7c:82:86:11: b7:d0:7d:d8:ce:e8:7b:f1:35:c1:57:ec:61:6e:35: 8d:6b:66:68:4f:67:2d:f4:f2:03:27:34:b2:71:a2: af:ef:a7:c2:87:26:a6:a1:7c:37:6a:d0:02:ff:4d: 96:f7:bd:55:0f:cd:c4:63:4f:88:1c:22:a1:97:10: 77:9b:d7:7e:33:2b:c8:f8:f9:6d:e5:08:cc:ff:19: 85:c1:3e:78:fe:29:9a:63:88:ab:56:4d:f3:3d:dc: 8a:03:70:5d:78:d1:f3:88:d5:c4:56:07:51:d6:b8: 49:4f:9c:37:f4:98:64:e8:1b:61:87:b2:70:40:bb: 79:16:a6:d5:4f:93:2f:9e:a6:ff:90:97:04:9c:a3: dc:1b:f9:40:1c:65:df:90:d2:84:98:8e:d8:c4:5b: 1c:cc:1e:10:53:4e:35:5f:76:a3:ef:1b:03:17:0c: 25:a8:62:4c:54:c2:73:f9:11:69:a6:66:31:d9:95: 3a:de:a4:66:e7:e3:9d:f7:62:01:37:01:1e:9f:52: ad:db:ec:a4:f9:be:fc:07:56:ea:be:92:df:0c:ae: 50:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:9E:5D:61:E5:8E:5F:E1:B1:03:6A:7C:0B:44:E4:AF:6F:5A:CA:9C X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CZ5dYeWOX-GxA2p8C0Tkr29aypw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.128.0/21 Signature Algorithm: sha256WithRSAEncryption 8f:d8:96:56:b6:fd:52:6c:8b:53:87:d2:59:da:01:5a:a0:f2: 28:98:43:a0:12:1c:75:99:d8:93:55:b3:26:af:3e:48:03:7b: 5c:e3:1f:91:20:8a:46:64:c2:2e:8f:0f:82:6a:52:a2:2d:24: d5:7d:95:fb:38:b6:da:b1:94:11:47:15:89:e0:d7:a9:da:aa: c6:e3:e5:49:9c:f4:a9:29:91:51:f7:8a:fb:3e:0d:4c:57:eb: 41:da:da:48:f5:cc:c9:6c:4f:46:d1:46:f5:7b:e8:f1:82:91: 35:e5:3b:d9:57:e4:47:d4:8e:88:c5:f4:19:38:29:a5:22:5c: 8f:3e:b8:fd:83:08:3c:7a:48:2e:90:76:f8:f5:4f:51:a5:ca: df:b0:0c:b5:72:8d:cf:4a:ca:b4:40:f3:e3:f4:57:7c:48:8a: 67:53:11:38:fa:93:8d:f5:db:5c:63:fe:e1:6d:c2:0a:44:7d: 39:93:1c:0a:be:ff:17:94:db:ad:23:d6:7b:50:78:76:0b:dc: 50:37:51:ed:08:36:78:e5:d9:7d:28:9d:10:00:ef:f6:5b:b3: f4:ff:05:2d:0f:e4:17:fc:3e:19:27:1e:30:9b:fd:1b:dd:e0: c9:bf:76:d9:4c:61:4f:29:e8:10:a3:df:30:fa:a3:58:89:2a: 82:9f:0b:fc -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIpwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTM0MTFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDA5OUU1RDYxRTU4RTVG RTFCMTAzNkE3QzBCNDRFNEFGNkY1QUNBOUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCuZJoWuoCQaW99KDtxilzeH17DDRXRf0VLJynHUCk5exr3uLHA BwmXfIKGEbfQfdjO6HvxNcFX7GFuNY1rZmhPZy308gMnNLJxoq/vp8KHJqahfDdq 0AL/TZb3vVUPzcRjT4gcIqGXEHeb134zK8j4+W3lCMz/GYXBPnj+KZpjiKtWTfM9 3IoDcF140fOI1cRWB1HWuElPnDf0mGToG2GHsnBAu3kWptVPky+epv+QlwSco9wb +UAcZd+Q0oSYjtjEWxzMHhBTTjVfdqPvGwMXDCWoYkxUwnP5EWmmZjHZlTrepGbn 4533YgE3AR6fUq3b7KT5vvwHVuq+kt8MrlBTAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUCZ5dYeWOX+GxA2p8C0Tkr29aypwwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0NaNWRZZVdPWC1HeEEycDhD MFRrcjI5YXlwdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0 2oAwDQYJKoZIhvcNAQELBQADggEBAI/Ylla2/VJsi1OH0lnaAVqg8iiYQ6ASHHWZ 2JNVsyavPkgDe1zjH5EgikZkwi6PD4JqUqItJNV9lfs4ttqxlBFHFYng16naqsbj 5Umc9KkpkVH3ivs+DUxX60Ha2kj1zMlsT0bRRvV76PGCkTXlO9lX5EfUjojF9Bk4 KaUiXI8+uP2DCDx6SC6Qdvj1T1Glyt+wDLVyjc9KyrRA8+P0V3xIimdTETj6k431 21xj/uFtwgpEfTmTHAq+/xeU260j1ntQeHYL3FA3Ue0INnjl2X0onRAA7/Zbs/T/ BS0P5Bf8PhknHjCb/Rvd4Mm/dtlMYU8p6BCj3zD6o1iJKoKfC/w= -----END CERTIFICATE-----Generated at Mon Nov 25 20:56:44 2024 by rpki-client on console-fra.rpki-client.org