$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/OVzc6a3RC7bGUe3seviiJTMABaw.roa File: OVzc6a3RC7bGUe3seviiJTMABaw.roa (raw, json) Hash identifier: fFiiJzGqko3m1W84edtG+dUdqjUYe4loMmm5TkkgGIo= Subject key identifier: 39:5C:DC:E9:AD:D1:0B:B6:C6:51:ED:EC:7A:F8:A2:25:33:00:05:AC Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 22A9 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/OVzc6a3RC7bGUe3seviiJTMABaw.roa Signing time: Mon 26 Aug 2024 05:34:14 +0000 ROA not before: Mon 26 Aug 2024 05:34:14 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 103.225.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8873 (0x22a9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:34:14 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=395CDCE9ADD10BB6C651EDEC7AF8A225330005AC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:32:ab:04:22:d5:e0:77:18:98:53:ff:40:42: e6:f4:68:d2:a0:dd:54:fd:c5:2c:a7:b4:70:60:f2: 0f:a3:a4:55:2d:e9:1f:17:b2:e9:2d:bb:38:90:c1: d9:34:df:e1:30:5f:a1:a2:1b:bc:61:50:84:b2:59: ac:6a:53:3a:89:c8:6a:a0:b7:66:34:b9:ef:cd:d3: b2:41:5e:1c:37:cd:2e:d8:96:87:23:ad:1c:8b:da: d9:5b:ec:5c:67:54:4a:a3:b3:c3:1c:0b:f5:a9:96: 31:56:d2:1b:90:5c:7c:6d:32:10:05:0f:1c:5a:09: 45:d9:ba:e3:61:99:4f:2b:10:2e:58:2d:0f:31:63: c3:28:7f:f6:1e:16:9c:92:fa:1f:de:f4:cf:24:4e: 69:07:84:3e:02:6e:d7:83:6f:65:fa:62:40:db:21: c7:7a:26:ab:83:2b:92:fc:3b:ad:08:e5:3a:5e:1e: 75:f1:7b:f0:79:0b:8a:e0:f7:b7:18:f8:3f:54:6a: fb:48:93:66:e2:22:c4:a0:47:a3:c9:4e:f3:fa:f2: 0a:2c:9b:40:cd:95:07:5d:c1:35:77:7d:2f:42:d3: 84:16:16:c0:4a:95:c0:85:b2:e1:40:b5:e8:e6:98: f7:56:58:48:6b:db:0b:fb:ed:07:37:1a:a9:de:6f: 26:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:5C:DC:E9:AD:D1:0B:B6:C6:51:ED:EC:7A:F8:A2:25:33:00:05:AC X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/OVzc6a3RC7bGUe3seviiJTMABaw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.225.0.0/24 Signature Algorithm: sha256WithRSAEncryption 16:5b:f2:d7:86:ff:45:6d:c7:58:4b:6e:fd:8f:f9:ae:00:29: d9:4f:87:c5:7b:e3:1f:c6:43:c4:f5:24:97:2d:07:48:8e:73: 3a:6f:05:9f:04:81:35:9e:c9:ab:29:1a:f0:a2:9c:21:29:69: ed:db:74:7c:72:74:01:ce:77:11:b9:11:94:1b:19:f7:81:c6: f0:69:ac:14:04:97:ed:49:39:c9:74:92:52:3d:24:eb:a3:48: bc:7d:22:c5:af:48:a6:ba:1b:da:8b:09:01:b4:60:1c:87:c5: 92:10:90:b4:5a:01:37:fe:a4:28:fb:99:ef:3d:d8:7c:eb:dc: 0c:a0:bb:85:cf:fd:77:33:bb:cd:1a:de:04:0f:c8:d5:0c:97: 6a:94:3b:f4:4c:f5:56:a0:5d:0c:0e:e8:da:a2:c9:df:f7:a6: 12:9d:a5:a5:a3:96:fd:d2:60:c1:3a:ee:b4:df:d3:2c:d6:5b: 77:58:1f:eb:b6:04:65:66:75:67:ed:91:6e:32:bf:be:4b:29: 22:d1:0f:ac:3e:af:54:43:c6:cb:49:3e:c7:42:72:ce:63:09: ac:b6:93:5f:6d:62:05:2f:fe:6d:55:f6:90:40:3e:d3:4d:f9: e1:c6:84:9d:e5:e7:05:f5:80:c8:4b:77:62:38:9f:2b:02:97: ed:f9:c4:d3 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIqkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTM0MTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDM5NUNEQ0U5QUREMTBC QjZDNjUxRURFQzdBRjhBMjI1MzMwMDA1QUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMMqsEItXgdxiYU/9AQub0aNKg3VT9xSyntHBg8g+jpFUt6R8X suktuziQwdk03+EwX6GiG7xhUISyWaxqUzqJyGqgt2Y0ue/N07JBXhw3zS7Ylocj rRyL2tlb7FxnVEqjs8McC/WpljFW0huQXHxtMhAFDxxaCUXZuuNhmU8rEC5YLQ8x Y8Mof/YeFpyS+h/e9M8kTmkHhD4CbteDb2X6YkDbIcd6JquDK5L8O60I5TpeHnXx e/B5C4rg97cY+D9UavtIk2biIsSgR6PJTvP68gosm0DNlQddwTV3fS9C04QWFsBK lcCFsuFAtejmmPdWWEhr2wv77Qc3GqnebyapAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUOVzc6a3RC7bGUe3seviiJTMABawwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL09WemM2YTNSQzdiR1VlM3Nl dmlpSlRNQUJhdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn 4QAwDQYJKoZIhvcNAQELBQADggEBABZb8teG/0Vtx1hLbv2P+a4AKdlPh8V74x/G Q8T1JJctB0iOczpvBZ8EgTWeyaspGvCinCEpae3bdHxydAHOdxG5EZQbGfeBxvBp rBQEl+1JOcl0klI9JOujSLx9IsWvSKa6G9qLCQG0YByHxZIQkLRaATf+pCj7me89 2Hzr3Aygu4XP/Xczu80a3gQPyNUMl2qUO/RM9VagXQwO6Nqiyd/3phKdpaWjlv3S YME67rTf0yzWW3dYH+u2BGVmdWftkW4yv75LKSLRD6w+r1RDxstJPsdCcs5jCay2 k19tYgUv/m1V9pBAPtNN+eHGhJ3l5wX1gMhLd2I4nysCl+35xNM= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:55 2024 by rpki-client on console-fra.rpki-client.org