$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CkFHMx6IGr6RUW8AVdwvplR73dg.roa File: CkFHMx6IGr6RUW8AVdwvplR73dg.roa (raw, json) Hash identifier: JDH0nKlhtCUhFp61xyfTh91gkI0ehJZk5mm1+/AYBrs= Subject key identifier: 0A:41:47:33:1E:88:1A:BE:91:51:6F:00:55:DC:2F:A6:54:7B:DD:D8 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 225D Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CkFHMx6IGr6RUW8AVdwvplR73dg.roa Signing time: Mon 26 Aug 2024 05:33:55 +0000 ROA not before: Mon 26 Aug 2024 05:33:55 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24165 IP address blocks: 119.77.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8797 (0x225d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:55 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=0A4147331E881ABE91516F0055DC2FA6547BDDD8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:c0:aa:36:18:90:23:f4:a3:5e:01:c5:49:c3: 1e:f8:bb:5e:6a:80:34:99:0c:ad:a5:70:86:95:59: ec:97:46:a9:08:cb:08:15:04:dd:ce:d8:e3:a8:c2: 7d:a6:0f:cd:25:31:cf:ec:dd:86:1d:53:1c:27:ef: 75:29:ca:df:d2:cb:cb:cd:d3:40:76:94:6b:90:6f: a5:4a:c1:58:ae:b8:ec:58:1b:11:57:ef:1f:aa:47: 7b:2b:ad:44:e1:30:99:c8:5f:61:69:8d:be:a8:4e: 70:7e:ad:9e:30:59:7a:17:a5:07:90:5c:53:d7:a9: 02:75:67:a1:8a:a2:9b:80:bf:f7:47:0c:df:7d:74: 41:3d:10:29:8f:2e:d5:8f:ef:90:2e:15:03:81:97: e1:d7:f0:f5:f7:8c:33:9b:6b:c1:39:60:c6:01:d9: 37:2e:e9:87:4e:0e:f7:b4:7a:ee:f3:69:d0:17:f7: 0c:a4:f7:1f:c5:05:a9:41:e2:37:40:58:7b:a3:50: 1b:d3:86:54:3b:e4:75:73:c5:0d:4e:78:f9:f6:eb: d9:4c:17:ff:5a:fb:18:17:9c:cf:36:53:2d:9d:2e: bb:43:21:21:73:a4:8a:a0:21:05:87:bd:9e:e7:79: b4:ba:62:37:6e:a3:b4:54:56:c7:fa:4d:f6:b0:8f: 5d:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:41:47:33:1E:88:1A:BE:91:51:6F:00:55:DC:2F:A6:54:7B:DD:D8 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CkFHMx6IGr6RUW8AVdwvplR73dg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 119.77.128.0/17 Signature Algorithm: sha256WithRSAEncryption 64:18:d8:6b:0f:e3:d6:70:a0:0d:cb:69:84:9d:66:65:a0:14: 88:75:fe:40:9a:e9:24:20:66:3a:60:aa:19:87:53:48:ff:00: c9:ea:45:21:71:cb:bd:6e:5d:2e:bf:a8:e5:4b:61:29:16:37: 55:ac:15:75:d2:ce:a3:ec:97:35:46:0e:ad:59:bd:9e:cd:25: da:af:44:87:f9:9a:ae:00:c0:ce:91:76:1e:16:2c:36:b5:bf: b7:7f:5f:64:01:b3:2c:eb:13:71:2b:a9:a8:4c:ee:e3:c6:b8: 7c:2f:71:2c:97:ac:a8:a5:36:75:7e:05:98:7e:8a:f8:67:d5: e6:2f:ea:b9:5f:2d:29:e1:cc:29:80:4f:f7:13:0d:99:f5:c6: 45:6e:68:a4:b8:b7:e2:91:95:bd:eb:25:c6:87:a4:1e:a8:43: 92:35:7f:53:5c:f6:ee:bd:5c:cd:86:31:aa:14:85:93:1d:f6: 40:13:39:79:2c:6d:4a:ba:18:05:0d:ea:f1:43:fc:c8:6c:42: a5:5a:b7:fd:0f:0d:f5:b3:27:3e:be:25:a3:50:aa:d0:2d:29: b7:81:b8:fb:d8:b8:4b:e1:ac:96:aa:75:f3:48:00:f5:ce:f4: 7a:dd:5d:9f:01:f6:da:2f:8e:99:53:e0:fd:fc:9c:60:e5:a4: 0e:26:1b:22 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIl0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzNTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDBBNDE0NzMzMUU4ODFB QkU5MTUxNkYwMDU1REMyRkE2NTQ3QkRERDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIwKo2GJAj9KNeAcVJwx74u15qgDSZDK2lcIaVWeyXRqkIywgV BN3O2OOown2mD80lMc/s3YYdUxwn73Upyt/Sy8vN00B2lGuQb6VKwViuuOxYGxFX 7x+qR3srrUThMJnIX2Fpjb6oTnB+rZ4wWXoXpQeQXFPXqQJ1Z6GKopuAv/dHDN99 dEE9ECmPLtWP75AuFQOBl+HX8PX3jDOba8E5YMYB2Tcu6YdODve0eu7zadAX9wyk 9x/FBalB4jdAWHujUBvThlQ75HVzxQ1OePn269lMF/9a+xgXnM82Uy2dLrtDISFz pIqgIQWHvZ7nebS6Yjduo7RUVsf6Tfawj10FAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUCkFHMx6IGr6RUW8AVdwvplR73dgwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0NrRkhNeDZJR3I2UlVXOEFW ZHd2cGxSNzNkZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAd3 TYAwDQYJKoZIhvcNAQELBQADggEBAGQY2GsP49ZwoA3LaYSdZmWgFIh1/kCa6SQg ZjpgqhmHU0j/AMnqRSFxy71uXS6/qOVLYSkWN1WsFXXSzqPslzVGDq1ZvZ7NJdqv RIf5mq4AwM6Rdh4WLDa1v7d/X2QBsyzrE3ErqahM7uPGuHwvcSyXrKilNnV+BZh+ ivhn1eYv6rlfLSnhzCmAT/cTDZn1xkVuaKS4t+KRlb3rJcaHpB6oQ5I1f1Nc9u69 XM2GMaoUhZMd9kATOXksbUq6GAUN6vFD/MhsQqVat/0PDfWzJz6+JaNQqtAtKbeB uPvYuEvhrJaqdfNIAPXO9HrdXZ8B9tovjplT4P38nGDlpA4mGyI= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:59 2024 by rpki-client on console-fra.rpki-client.org