$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/FP5MOVQ6u_uvDMFLkiVPs3E1X4c.roa File: FP5MOVQ6u_uvDMFLkiVPs3E1X4c.roa (raw, json) Hash identifier: lFoiGyd6XNZ/n1dr/ZAjm6k7WEZO5x0lX+5ckFw1WYs= Subject key identifier: 14:FE:4C:39:54:3A:BB:FB:AF:0C:C1:4B:92:25:4F:B3:71:35:5F:87 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1E18 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/FP5MOVQ6u_uvDMFLkiVPs3E1X4c.roa Signing time: Fri 01 Sep 2023 10:15:40 +0000 ROA not before: Fri 01 Sep 2023 10:15:40 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24164 IP address blocks: 180.218.128.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 23:59:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7704 (0x1e18) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:15:40 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=14FE4C39543ABBFBAF0CC14B92254FB371355F87 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:0c:d7:6e:05:7b:ad:f0:5c:77:61:bf:02:e5: b4:a6:12:a5:55:1e:ed:49:40:45:55:f4:f3:00:48: 3f:d0:af:d5:96:09:80:88:f6:ea:bd:a6:ea:96:d3: 6e:6b:44:27:49:56:f0:d3:45:f5:d3:2d:32:52:bd: 41:7d:89:d8:dc:2e:7f:cb:40:d1:7c:c3:f1:ab:d5: ac:c7:6e:4d:18:66:1d:77:18:f9:94:d0:8c:09:ec: a7:5d:7d:3c:02:01:d5:12:4c:b9:eb:2a:03:e9:87: 05:c1:28:6a:bc:49:b7:9b:9d:e3:06:c1:58:36:de: e7:03:25:7e:de:e7:a3:b2:a8:a3:6d:6b:86:14:50: 8f:d6:83:55:57:2d:cf:d7:fa:3e:bd:09:6c:e7:79: 69:7e:78:f4:73:d3:c8:12:3e:0a:d8:91:58:33:95: 9d:2d:9e:71:de:bf:c4:45:b7:6d:30:8d:73:4f:28: 5f:ec:7f:b7:a2:22:91:8e:e0:6d:75:59:11:3e:82: e3:13:22:fd:a1:21:db:2f:52:da:bd:7d:61:62:37: c8:fa:c8:ec:4a:76:68:ce:71:c4:00:12:9f:ad:c2: 36:f3:41:0a:24:a3:b2:65:6e:13:5a:fb:4f:7b:7d: d2:dd:e5:31:1e:49:6c:3d:ff:06:f2:56:b2:d4:5e: eb:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:FE:4C:39:54:3A:BB:FB:AF:0C:C1:4B:92:25:4F:B3:71:35:5F:87 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/FP5MOVQ6u_uvDMFLkiVPs3E1X4c.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.128.0/20 Signature Algorithm: sha256WithRSAEncryption 2f:58:e5:0c:96:fe:ec:7a:5b:1f:44:66:0e:e0:dc:73:72:3d: f2:fb:29:83:45:63:c7:83:60:41:c4:ca:fb:b7:ae:63:73:9e: df:01:ed:63:26:ad:41:74:7b:b2:78:17:27:5f:5f:ec:19:41: 55:4c:ed:ed:64:80:b5:1a:65:75:68:b1:71:59:1d:3c:ac:ac: 26:d5:a6:2d:c1:71:76:8f:ad:e1:52:0c:b7:9a:7f:67:ae:84: ac:ed:dc:1d:eb:cf:2f:3f:18:9d:04:91:9b:69:8c:05:b2:65: f7:0b:5c:04:4e:da:34:8c:36:d9:8f:86:37:05:78:ce:72:19: 6d:30:07:a2:7f:11:89:59:4b:1d:d0:70:46:5c:de:77:08:36: ce:75:e0:57:17:a5:0f:22:1f:d8:d2:75:9a:e7:fd:ef:3d:53: 52:d4:bd:9f:1b:8f:36:1c:36:b1:c9:88:70:1b:23:66:d4:b0: 7f:5a:7a:44:61:18:10:e3:f7:dc:4c:85:5f:53:a2:6f:d5:27: 33:e6:22:8b:e0:54:e0:bb:9f:b2:34:4e:8b:87:27:5f:1b:c6: 9b:d2:41:d5:9a:91:d9:0f:01:87:f9:6e:7a:bd:1c:a1:bd:4c: fe:87:a8:27:d3:1e:f1:12:e8:d4:87:e6:fa:25:5c:82:e6:54: 9b:67:16:4a -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHhgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE1NDBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDE0RkU0QzM5NTQzQUJC RkJBRjBDQzE0QjkyMjU0RkIzNzEzNTVGODcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDADNduBXut8Fx3Yb8C5bSmEqVVHu1JQEVV9PMASD/Qr9WWCYCI 9uq9puqW025rRCdJVvDTRfXTLTJSvUF9idjcLn/LQNF8w/Gr1azHbk0YZh13GPmU 0IwJ7KddfTwCAdUSTLnrKgPphwXBKGq8SbebneMGwVg23ucDJX7e56OyqKNta4YU UI/Wg1VXLc/X+j69CWzneWl+ePRz08gSPgrYkVgzlZ0tnnHev8RFt20wjXNPKF/s f7eiIpGO4G11WRE+guMTIv2hIdsvUtq9fWFiN8j6yOxKdmjOccQAEp+twjbzQQok o7JlbhNa+097fdLd5TEeSWw9/wbyVrLUXuu7AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUFP5MOVQ6u/uvDMFLkiVPs3E1X4cwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0ZQNU1PVlE2dV91dkRNRkxr aVZQczNFMVg0Yy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAS0 2oAwDQYJKoZIhvcNAQELBQADggEBAC9Y5QyW/ux6Wx9EZg7g3HNyPfL7KYNFY8eD YEHEyvu3rmNznt8B7WMmrUF0e7J4FydfX+wZQVVM7e1kgLUaZXVosXFZHTysrCbV pi3BcXaPreFSDLeaf2euhKzt3B3rzy8/GJ0EkZtpjAWyZfcLXARO2jSMNtmPhjcF eM5yGW0wB6J/EYlZSx3QcEZc3ncINs514FcXpQ8iH9jSdZrn/e89U1LUvZ8bjzYc NrHJiHAbI2bUsH9aekRhGBDj99xMhV9Tom/VJzPmIovgVOC7n7I0TouHJ18bxpvS QdWakdkPAYf5bnq9HKG9TP6HqCfTHvES6NSH5volXILmVJtnFko= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:07 2024 by rpki-client on console-fra.rpki-client.org