$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/LvsSlSomndivsHIMPUSHTaNccCw.roa File: LvsSlSomndivsHIMPUSHTaNccCw.roa (raw, json) Hash identifier: s++pU4iZRAAc/oVFVmsW+T5GNrLao3Shcvt31wvqG1E= Subject key identifier: 2E:FB:12:95:2A:26:9D:D8:AF:B0:72:0C:3D:44:87:4D:A3:5C:70:2C Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 22B4 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/LvsSlSomndivsHIMPUSHTaNccCw.roa Signing time: Mon 26 Aug 2024 05:34:17 +0000 ROA not before: Mon 26 Aug 2024 05:34:17 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24165 IP address blocks: 114.198.160.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:55:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8884 (0x22b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:34:17 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2EFB12952A269DD8AFB0720C3D44874DA35C702C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:55:0b:3b:91:c9:81:79:06:e6:5a:79:33:3d: 4e:6f:4d:f9:f3:1a:57:4d:72:22:d3:15:26:7d:49: ed:79:5a:58:ef:05:02:32:35:04:6e:84:ca:87:76: 57:67:df:78:62:ce:40:39:8b:22:03:4c:93:07:e4: aa:2d:d9:43:b0:83:2b:d9:a0:da:81:c9:41:b6:a7: f2:54:59:c5:e4:ec:96:fb:42:0a:41:89:d3:a5:7b: b1:96:e4:00:27:97:89:e1:88:35:9f:eb:eb:34:8b: f6:93:e1:ac:0f:cd:b0:4c:3a:61:c0:b2:bc:13:0b: 55:ff:62:bc:27:35:ac:08:d1:d6:7b:60:49:c1:44: e4:6a:c5:6e:a8:28:5f:86:5c:71:c7:6e:01:2e:06: a7:56:50:d0:07:31:ab:61:aa:b9:d2:5f:c3:f2:d1: 27:44:bf:f1:47:08:14:fd:b3:ed:38:2a:d8:a9:02: 99:28:1a:64:25:5b:45:5c:01:40:38:3c:bd:40:0c: b1:1f:1b:3e:86:9a:5c:96:ef:b6:60:bd:87:9d:2f: 5e:67:5f:c0:2b:34:62:c2:7c:9a:eb:9c:6a:70:2b: 65:91:88:09:63:11:04:66:a8:17:32:25:ce:0d:6e: c6:70:c8:80:4d:6b:61:81:fc:cb:ff:9d:68:dc:1e: 21:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:FB:12:95:2A:26:9D:D8:AF:B0:72:0C:3D:44:87:4D:A3:5C:70:2C X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/LvsSlSomndivsHIMPUSHTaNccCw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 114.198.160.0/20 Signature Algorithm: sha256WithRSAEncryption 02:8b:99:20:76:31:3b:76:11:5f:d6:72:2a:59:8f:87:46:72: 7f:4f:a5:2e:b4:ea:c2:90:87:a8:7a:bc:bf:1a:1e:0c:cb:df: ee:37:59:cb:ab:c1:01:92:b4:88:4c:bc:82:a5:fa:77:37:12: 8c:c5:57:65:c9:8b:45:d0:eb:6d:b5:96:de:9a:3a:46:88:ff: 4b:4b:e5:37:1c:5a:0e:41:6a:2f:d5:85:73:3a:c4:e9:c1:7f: c1:8e:e3:e2:06:ac:00:9e:b2:50:82:1f:1d:ad:44:c1:bf:87: c2:5f:ea:31:86:84:61:01:6d:01:a2:e8:70:43:01:d2:2f:77: a1:92:43:67:33:89:f4:20:b9:ed:c0:99:55:98:43:06:ff:c3: 12:b6:45:fb:67:1a:1d:54:ce:49:1b:11:59:d3:2d:e4:b2:45: 13:15:cc:7d:15:c6:cd:09:2e:da:ba:3d:71:66:07:a7:39:38: 3c:86:9f:a0:55:49:cf:57:6d:e1:57:93:66:8c:6b:c8:d4:4d: d4:8e:7d:a5:14:33:dd:7d:20:0a:6b:97:fc:19:3a:a9:00:d5: cb:52:a6:92:1c:37:4a:b2:50:08:e3:cf:88:c5:85:a2:dd:47: f2:01:29:12:a4:d0:0f:74:f7:11:29:eb:98:4b:6a:e1:27:77: 71:55:ac:ba -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIrQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTM0MTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDJFRkIxMjk1MkEyNjlE RDhBRkIwNzIwQzNENDQ4NzREQTM1QzcwMkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDUVQs7kcmBeQbmWnkzPU5vTfnzGldNciLTFSZ9Se15WljvBQIy NQRuhMqHdldn33hizkA5iyIDTJMH5Kot2UOwgyvZoNqByUG2p/JUWcXk7Jb7QgpB idOle7GW5AAnl4nhiDWf6+s0i/aT4awPzbBMOmHAsrwTC1X/YrwnNawI0dZ7YEnB RORqxW6oKF+GXHHHbgEuBqdWUNAHMathqrnSX8Py0SdEv/FHCBT9s+04KtipApko GmQlW0VcAUA4PL1ADLEfGz6GmlyW77ZgvYedL15nX8ArNGLCfJrrnGpwK2WRiAlj EQRmqBcyJc4NbsZwyIBNa2GB/Mv/nWjcHiGvAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQULvsSlSomndivsHIMPUSHTaNccCwwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0x2c1NsU29tbmRpdnNISU1Q VVNIVGFOY2NDdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBARy xqAwDQYJKoZIhvcNAQELBQADggEBAAKLmSB2MTt2EV/WcipZj4dGcn9PpS606sKQ h6h6vL8aHgzL3+43WcurwQGStIhMvIKl+nc3EozFV2XJi0XQ6221lt6aOkaI/0tL 5TccWg5Bai/VhXM6xOnBf8GO4+IGrACeslCCHx2tRMG/h8Jf6jGGhGEBbQGi6HBD AdIvd6GSQ2czifQgue3AmVWYQwb/wxK2RftnGh1UzkkbEVnTLeSyRRMVzH0Vxs0J Ltq6PXFmB6c5ODyGn6BVSc9XbeFXk2aMa8jUTdSOfaUUM919IAprl/wZOqkA1ctS ppIcN0qyUAjjz4jFhaLdR/IBKRKk0A909xEp65hLauEnd3FVrLo= -----END CERTIFICATE-----Generated at Mon Nov 25 20:56:44 2024 by rpki-client on console-fra.rpki-client.org