$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/KT4xkw6_qUT2U_m3JZn55kGlukg.roa File: KT4xkw6_qUT2U_m3JZn55kGlukg.roa (raw, json) Hash identifier: QogLDeV15rWx8az016y1NzH3+PZABzrCuq2DNdcTZnc= Subject key identifier: 29:3E:31:93:0E:BF:A9:44:F6:53:F9:B7:25:99:F9:E6:41:A5:BA:48 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 21FD Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/KT4xkw6_qUT2U_m3JZn55kGlukg.roa Signing time: Mon 26 Aug 2024 05:33:33 +0000 ROA not before: Mon 26 Aug 2024 05:33:33 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 180.218.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8701 (0x21fd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:33 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=293E31930EBFA944F653F9B72599F9E641A5BA48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:cc:7b:11:ce:18:a3:61:7f:91:75:e2:e2:89: 6e:a7:71:21:f2:eb:15:05:15:0e:f2:d5:77:e5:95: 60:e7:71:dc:c1:bf:a9:0c:7b:6e:a9:26:46:f1:f0: 47:db:a4:58:ba:1a:66:c5:1b:69:22:5c:8a:a1:08: 40:30:38:96:d4:e9:b5:c8:f6:89:3a:cb:14:93:4a: 2c:90:bf:7b:c5:6d:56:62:1d:b7:8c:f3:8c:e2:6a: 82:de:cb:07:cc:e9:50:58:69:b5:61:2f:df:74:f4: 7f:fb:f7:d6:3b:ee:fb:d7:50:d5:68:67:1e:07:73: 99:84:85:35:0b:67:f1:47:13:01:a9:73:df:31:ec: f9:5b:8b:47:4e:e9:8d:83:0d:bb:aa:d1:50:9a:55: 23:4b:b1:36:5a:58:87:9e:e2:7a:86:2f:f3:2f:8a: e7:1a:b1:81:8e:ac:83:ad:70:47:62:fe:0d:f6:12: cf:3e:1d:b4:09:a0:06:6e:29:5d:5f:f1:b7:c7:88: 31:0a:84:0d:40:67:72:39:bf:1d:cb:45:09:69:5c: b6:47:28:cb:8c:0f:98:b6:0e:b5:86:da:9f:77:65: 0c:ae:9e:15:86:c0:27:9b:0d:52:70:d2:71:31:91: 29:bf:d3:bd:db:96:a8:b6:43:ad:0f:65:47:5f:90: 92:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:3E:31:93:0E:BF:A9:44:F6:53:F9:B7:25:99:F9:E6:41:A5:BA:48 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/KT4xkw6_qUT2U_m3JZn55kGlukg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.0.0/18 Signature Algorithm: sha256WithRSAEncryption 7e:d9:6c:06:87:5b:8b:66:d5:37:63:3e:44:fd:19:18:4c:b9: bf:61:30:5f:82:20:8b:8f:d6:2f:15:70:53:da:da:77:d4:cf: 11:36:0d:c5:8f:4f:04:88:74:48:dd:f2:eb:23:81:1a:68:61: 85:fa:1f:db:da:2a:19:3e:62:5b:76:25:be:67:2c:06:8e:58: 8c:eb:7c:4a:99:6d:ee:5d:73:3a:40:10:98:51:d8:a1:21:a6: 9b:54:31:c3:80:9d:47:25:89:03:dd:51:6a:69:6e:0a:b9:07: 15:b2:fa:a6:e6:cb:23:8b:9a:17:14:8c:b7:10:65:fd:9e:28: 3a:d9:78:de:f3:68:f4:78:cb:1e:09:39:84:e4:b3:21:64:47: b5:2b:6e:9c:d2:ed:79:38:85:a8:70:48:48:8e:77:e4:8d:ab: 72:38:a8:9f:80:a5:61:3d:0c:ff:0e:80:52:66:f8:69:73:d6: 91:f2:2e:b9:b2:06:86:7e:8e:f3:4b:3f:86:f2:e6:61:0d:fd: 00:e8:90:2a:f8:d6:0a:0e:13:d7:df:c8:50:e8:95:19:b6:5d: 8a:28:0a:52:90:08:55:97:69:2b:9b:64:6c:be:6e:86:25:ba: bb:95:cd:36:dc:06:d8:bf:fc:d4:ad:92:d4:88:9e:9d:be:8f: c8:ca:58:76 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIf0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzMzNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI5M0UzMTkzMEVCRkE5 NDRGNjUzRjlCNzI1OTlGOUU2NDFBNUJBNDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCkzHsRzhijYX+RdeLiiW6ncSHy6xUFFQ7y1XfllWDncdzBv6kM e26pJkbx8EfbpFi6GmbFG2kiXIqhCEAwOJbU6bXI9ok6yxSTSiyQv3vFbVZiHbeM 84ziaoLeywfM6VBYabVhL9909H/799Y77vvXUNVoZx4Hc5mEhTULZ/FHEwGpc98x 7Plbi0dO6Y2DDbuq0VCaVSNLsTZaWIee4nqGL/MviucasYGOrIOtcEdi/g32Es8+ HbQJoAZuKV1f8bfHiDEKhA1AZ3I5vx3LRQlpXLZHKMuMD5i2DrWG2p93ZQyunhWG wCebDVJw0nExkSm/073blqi2Q60PZUdfkJLBAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUKT4xkw6/qUT2U/m3JZn55kGlukgwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0tUNHhrdzZfcVVUMlVfbTNK Wm41NWtHbHVrZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAa0 2gAwDQYJKoZIhvcNAQELBQADggEBAH7ZbAaHW4tm1TdjPkT9GRhMub9hMF+CIIuP 1i8VcFPa2nfUzxE2DcWPTwSIdEjd8usjgRpoYYX6H9vaKhk+Ylt2Jb5nLAaOWIzr fEqZbe5dczpAEJhR2KEhpptUMcOAnUcliQPdUWppbgq5BxWy+qbmyyOLmhcUjLcQ Zf2eKDrZeN7zaPR4yx4JOYTksyFkR7UrbpzS7Xk4hahwSEiOd+SNq3I4qJ+ApWE9 DP8OgFJm+Glz1pHyLrmyBoZ+jvNLP4by5mEN/QDokCr41goOE9ffyFDolRm2XYoo ClKQCFWXaSubZGy+boYluruVzTbcBti//NStktSInp2+j8jKWHY= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:41 2024 by rpki-client on console-ams.rpki-client.org