$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/JLoLv2AlJqcDnZSSLFQr14ZZZyU.roa File: JLoLv2AlJqcDnZSSLFQr14ZZZyU.roa (raw, json) Hash identifier: lajkwWLrgRKsMTTQRJP8xA69qSsIAun29/VJ4EqcZWM= Subject key identifier: 24:BA:0B:BF:60:25:26:A7:03:9D:94:92:2C:54:2B:D7:86:59:67:25 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 21BE Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/JLoLv2AlJqcDnZSSLFQr14ZZZyU.roa Signing time: Mon 26 Aug 2024 05:33:18 +0000 ROA not before: Mon 26 Aug 2024 05:33:18 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 122.100.68.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8638 (0x21be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:18 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=24BA0BBF602526A7039D94922C542BD786596725 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:d2:39:95:c8:09:d2:3e:e0:51:09:09:54:09: 2c:f0:15:cc:07:b9:47:22:76:ac:29:b8:3d:a1:11: 86:cd:3c:1d:6d:83:9c:3b:bf:6f:06:69:d2:5d:9e: 2d:80:be:85:6e:61:ec:95:89:9f:13:dd:19:18:49: 64:b5:7d:d1:bf:4f:14:03:a3:59:26:a0:8f:09:28: cf:ae:54:ea:80:db:e7:34:d7:cc:c1:28:78:51:ad: 0e:2e:79:8d:37:e3:7d:bb:75:5b:10:dc:00:db:1b: 11:86:2b:1a:76:a6:bc:16:24:9a:4c:5f:47:50:92: ca:42:78:b9:b0:32:42:98:4e:a4:79:d7:0d:3e:84: 8f:20:01:82:17:db:b3:80:bd:0b:27:d2:10:9c:df: 56:b7:11:51:47:2c:e7:b1:af:9f:be:a6:7a:20:7b: b7:21:b7:71:2c:e9:20:90:9f:60:95:28:70:ec:6d: 69:7f:e4:bf:85:e3:54:ce:e5:04:11:5f:a8:b7:a4: 54:4c:18:d7:9a:af:89:e9:bb:8f:6d:48:b1:f6:7b: f9:ca:20:07:e1:f5:45:01:ca:df:d0:4f:37:37:5e: 79:3c:60:c1:24:43:6a:80:64:00:3a:8f:bc:fb:6f: ca:ed:4a:bd:d6:bb:c5:ca:48:6e:31:ff:14:c2:db: e1:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:BA:0B:BF:60:25:26:A7:03:9D:94:92:2C:54:2B:D7:86:59:67:25 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/JLoLv2AlJqcDnZSSLFQr14ZZZyU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.100.68.0/22 Signature Algorithm: sha256WithRSAEncryption 6f:6e:6d:ef:c1:51:ba:29:02:23:c0:f6:55:57:86:80:16:ef: b1:80:91:04:c1:34:94:ac:e9:ee:30:06:d0:b6:9f:f6:4d:6c: 9d:9b:98:11:dd:5e:53:11:8f:6c:17:5c:23:e0:cc:d7:01:69: 9e:2a:33:ea:a5:2e:90:8c:f8:a4:0d:06:86:df:44:9b:73:a9: 17:01:f2:fb:00:9d:0c:40:f3:58:8b:2e:69:91:de:10:d3:5f: c4:73:ef:9e:c6:f7:fe:1b:b2:a9:9e:f1:77:b9:db:ee:74:08: 6d:1b:f8:64:eb:af:7c:50:61:9f:d5:ea:ed:8f:fd:09:ff:58: 48:cd:89:68:3d:ee:41:60:24:b0:6e:e2:13:86:ff:23:1a:05: ef:b3:bc:46:26:3f:da:fe:04:89:1f:37:c6:0b:f9:8a:78:41: 78:d0:fd:7e:03:ad:d9:06:88:5c:49:32:ad:02:06:11:fa:50: d1:27:90:bc:d8:59:b5:f0:6e:c1:66:ee:30:dc:d8:e5:8f:72: b7:85:e0:3e:76:35:31:57:2b:d1:ad:9e:a8:0f:61:eb:06:82: 22:b7:64:28:e8:9f:4f:cb:dc:7e:17:44:93:b0:61:71:ed:83: b7:ad:d1:e8:71:57:3e:6a:e2:21:d7:89:60:71:53:e8:c6:cd: dc:0b:4a:a0 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIb4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzMThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI0QkEwQkJGNjAyNTI2 QTcwMzlEOTQ5MjJDNTQyQkQ3ODY1OTY3MjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDZ0jmVyAnSPuBRCQlUCSzwFcwHuUcidqwpuD2hEYbNPB1tg5w7 v28GadJdni2AvoVuYeyViZ8T3RkYSWS1fdG/TxQDo1kmoI8JKM+uVOqA2+c018zB KHhRrQ4ueY034327dVsQ3ADbGxGGKxp2prwWJJpMX0dQkspCeLmwMkKYTqR51w0+ hI8gAYIX27OAvQsn0hCc31a3EVFHLOexr5++pnoge7cht3Es6SCQn2CVKHDsbWl/ 5L+F41TO5QQRX6i3pFRMGNear4npu49tSLH2e/nKIAfh9UUByt/QTzc3Xnk8YMEk Q2qAZAA6j7z7b8rtSr3Wu8XKSG4x/xTC2+FhAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUJLoLv2AlJqcDnZSSLFQr14ZZZyUwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0pMb0x2MkFsSnFjRG5aU1NM RlFyMTRaWlp5VS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ6 ZEQwDQYJKoZIhvcNAQELBQADggEBAG9ube/BUbopAiPA9lVXhoAW77GAkQTBNJSs 6e4wBtC2n/ZNbJ2bmBHdXlMRj2wXXCPgzNcBaZ4qM+qlLpCM+KQNBobfRJtzqRcB 8vsAnQxA81iLLmmR3hDTX8Rz757G9/4bsqme8Xe52+50CG0b+GTrr3xQYZ/V6u2P /Qn/WEjNiWg97kFgJLBu4hOG/yMaBe+zvEYmP9r+BIkfN8YL+Yp4QXjQ/X4DrdkG iFxJMq0CBhH6UNEnkLzYWbXwbsFm7jDc2OWPcreF4D52NTFXK9GtnqgPYesGgiK3 ZCjon0/L3H4XRJOwYXHtg7et0ehxVz5q4iHXiWBxU+jGzdwLSqA= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:54 2024 by rpki-client on console-fra.rpki-client.org