$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CaMNv2zVm8Kq395JIsSNodTw2Gc.roa File: CaMNv2zVm8Kq395JIsSNodTw2Gc.roa (raw, json) Hash identifier: uVwhfjpVkHRd51vAZENvpApGTPEK6P+hu420twsW0iQ= Subject key identifier: 09:A3:0D:BF:6C:D5:9B:C2:AA:DF:DE:49:22:C4:8D:A1:D4:F0:D8:67 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 21E2 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CaMNv2zVm8Kq395JIsSNodTw2Gc.roa Signing time: Mon 26 Aug 2024 05:33:26 +0000 ROA not before: Mon 26 Aug 2024 05:33:26 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 180.218.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8674 (0x21e2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:26 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=09A30DBF6CD59BC2AADFDE4922C48DA1D4F0D867 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:37:d6:5a:d7:a4:53:55:c5:9a:fa:85:2c:f0: b0:f5:6c:a7:f4:75:37:6d:e3:38:a2:03:22:6b:f7: 8c:a6:6d:38:24:d9:5a:a7:ea:67:ac:e2:38:02:c1: 84:84:db:f4:ec:59:88:aa:14:0a:00:e2:b7:2c:40: 6b:fa:ff:98:5e:a9:5f:30:bd:dc:fc:9c:01:99:bb: e1:34:74:2e:66:3b:89:aa:cc:f4:4c:c8:85:b1:cd: 3e:19:cd:6f:a9:4e:66:ff:73:df:46:8a:ae:cc:9f: fc:47:10:8b:88:34:39:11:6e:54:9b:fe:49:fe:84: 0d:d4:3d:3a:60:1f:1e:85:89:d0:ad:5a:ec:14:24: 47:9a:17:bc:66:8f:d5:18:80:4b:7f:46:8c:31:f1: ca:ce:52:c0:93:36:b9:d0:13:12:8a:56:82:4f:ec: a9:2f:8c:25:fc:0d:89:44:bd:ad:81:47:1a:10:29: 86:a4:2a:ee:e9:83:3f:37:99:d0:e9:0d:43:4c:ff: d9:4c:4f:4b:9e:d6:df:e5:7d:bb:53:50:d5:af:8c: 73:f5:59:1b:9d:01:1d:48:df:7a:5c:a1:a2:7d:f6: c7:93:23:4e:fd:2f:7c:bf:16:32:8a:c8:a1:25:e1: 5f:ed:c0:4c:f2:23:fb:9e:98:f6:6e:8a:df:f4:06: 52:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:A3:0D:BF:6C:D5:9B:C2:AA:DF:DE:49:22:C4:8D:A1:D4:F0:D8:67 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CaMNv2zVm8Kq395JIsSNodTw2Gc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.192.0/18 Signature Algorithm: sha256WithRSAEncryption 79:9f:fe:cc:e9:5e:09:61:94:a1:8c:f3:b3:67:7b:c2:bf:02: 38:37:51:0e:a1:0e:59:1a:53:f7:46:c1:ed:97:37:d9:87:63: 07:7a:26:ca:55:e4:54:fd:16:00:42:74:52:4f:c5:87:c8:a2: 2c:14:c8:56:d2:e4:08:58:a0:1d:78:21:4f:3e:44:c0:c5:bf: c6:15:28:a0:04:ce:4e:c9:f7:79:dd:23:bc:2c:4f:01:b0:9f: 22:13:aa:9b:7b:c7:cb:9a:39:c0:28:3e:80:88:18:d3:15:68: 10:ca:9e:cd:70:0d:e1:ab:4e:65:06:69:a8:5c:27:c3:6f:d1: 38:e4:52:e8:cc:9e:5b:de:0e:80:a0:20:2d:da:94:9e:96:bd: 95:d6:c6:cd:af:c9:a5:44:8e:6b:07:b7:db:c1:4d:6d:2a:f7: 49:b7:64:f0:c0:b0:34:59:2e:94:b0:cb:f6:10:69:86:5b:26: 25:2b:25:29:39:98:7e:25:d0:89:78:d0:4c:9e:29:a5:32:06: 58:9b:d7:f3:ba:a0:54:59:c7:fe:c6:a6:29:a9:9f:a4:74:42: 67:60:15:48:e5:c4:38:0f:26:a7:80:13:3f:c9:2f:0d:d1:41: 0c:22:2d:a1:31:0c:91:1b:e9:5e:44:65:ff:5f:49:8a:95:1c: 38:c7:61:dc -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIeIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzMjZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDA5QTMwREJGNkNENTlC QzJBQURGREU0OTIyQzQ4REExRDRGMEQ4NjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzN9Za16RTVcWa+oUs8LD1bKf0dTdt4ziiAyJr94ymbTgk2Vqn 6mes4jgCwYSE2/TsWYiqFAoA4rcsQGv6/5heqV8wvdz8nAGZu+E0dC5mO4mqzPRM yIWxzT4ZzW+pTmb/c99Giq7Mn/xHEIuINDkRblSb/kn+hA3UPTpgHx6FidCtWuwU JEeaF7xmj9UYgEt/Rowx8crOUsCTNrnQExKKVoJP7KkvjCX8DYlEva2BRxoQKYak Ku7pgz83mdDpDUNM/9lMT0ue1t/lfbtTUNWvjHP1WRudAR1I33pcoaJ99seTI079 L3y/FjKKyKEl4V/twEzyI/uemPZuit/0BlJpAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUCaMNv2zVm8Kq395JIsSNodTw2GcwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0NhTU52MnpWbThLcTM5NUpJ c1NOb2RUdzJHYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAa0 2sAwDQYJKoZIhvcNAQELBQADggEBAHmf/szpXglhlKGM87Nne8K/Ajg3UQ6hDlka U/dGwe2XN9mHYwd6JspV5FT9FgBCdFJPxYfIoiwUyFbS5AhYoB14IU8+RMDFv8YV KKAEzk7J93ndI7wsTwGwnyITqpt7x8uaOcAoPoCIGNMVaBDKns1wDeGrTmUGaahc J8Nv0TjkUujMnlveDoCgIC3alJ6WvZXWxs2vyaVEjmsHt9vBTW0q90m3ZPDAsDRZ LpSwy/YQaYZbJiUrJSk5mH4l0Il40EyeKaUyBlib1/O6oFRZx/7Gpimpn6R0Qmdg FUjlxDgPJqeAEz/JLw3RQQwiLaExDJEb6V5EZf9fSYqVHDjHYdw= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:59 2024 by rpki-client on console-fra.rpki-client.org