$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ObbWKK11R68Np46sp-SInRkHI4k.roa File: ObbWKK11R68Np46sp-SInRkHI4k.roa (raw, json) Hash identifier: 6gybSazroiAt4Tng68u09IQNF8wu+TpBQpatqDNInrU= Subject key identifier: 39:B6:D6:28:AD:75:47:AF:0D:A7:8E:AC:A7:E4:88:9D:19:07:23:89 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 225A Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ObbWKK11R68Np46sp-SInRkHI4k.roa Signing time: Mon 26 Aug 2024 05:33:54 +0000 ROA not before: Mon 26 Aug 2024 05:33:54 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 180.218.220.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8794 (0x225a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:54 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=39B6D628AD7547AF0DA78EACA7E4889D19072389 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a1:b2:ba:3f:4f:9e:d1:d6:00:11:6c:64:db: 00:c8:1e:22:e3:aa:af:2a:1a:f8:f3:26:c2:49:8a: db:ef:47:1b:00:21:c7:01:91:ee:02:73:8d:3c:4c: 33:a4:2d:ff:c5:d0:25:27:b8:c0:79:3d:4a:d8:31: 87:74:c6:da:85:2e:59:83:3e:5a:a0:7a:dc:f4:ef: ab:0d:ac:0d:81:6a:ab:13:0b:75:51:ec:23:43:5f: 93:29:9f:6f:24:23:04:b6:4f:80:56:24:82:ea:3a: 62:2b:02:d5:2f:0c:e4:2b:53:71:9b:99:27:2c:e5: 95:61:63:af:93:02:0e:e1:67:5a:52:d3:c2:af:a6: a3:a2:9b:0e:5e:6c:0a:93:4a:12:5b:63:8e:48:0b: 0c:a9:8a:c8:50:59:0c:1f:89:5a:1c:85:62:f3:4d: 1e:6d:64:e7:ee:c6:76:c4:a8:86:c7:3a:23:6e:a0: 91:cc:46:1f:ba:2d:c1:a1:e6:1b:41:8f:94:e6:23: df:87:98:d4:a5:72:bd:1b:2c:be:9f:b0:ea:b0:ac: 05:b8:d7:3c:ed:e8:9e:bb:ff:87:ae:a8:49:cc:89: 8f:41:a1:17:dc:18:e8:46:6b:b6:35:ef:0e:e6:08: b2:c8:ba:72:e8:ce:15:a2:fc:88:e3:cd:fc:94:95: 2b:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:B6:D6:28:AD:75:47:AF:0D:A7:8E:AC:A7:E4:88:9D:19:07:23:89 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ObbWKK11R68Np46sp-SInRkHI4k.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.220.0/23 Signature Algorithm: sha256WithRSAEncryption 6f:44:78:c1:df:3e:4c:b7:46:9a:81:9e:ca:14:d8:b1:97:d0: 95:e4:c1:b7:89:b1:4f:46:29:f1:be:c0:96:b0:ce:e7:ec:91: 49:02:18:55:4b:dd:53:2c:be:53:89:28:dd:ef:bd:df:51:e3: 06:64:fa:73:52:40:43:0d:96:89:10:19:26:6f:67:5c:61:52: cb:fa:2e:08:d6:46:e2:33:16:63:d4:71:9a:7f:bf:f3:fe:1e: 42:ff:84:42:cb:b3:af:b7:fd:3a:d7:53:1b:3d:56:ba:13:b3: d6:eb:4e:ba:37:c4:3e:95:a3:03:8b:71:fe:74:26:ea:be:99: 11:ea:ad:7d:69:50:55:1f:a4:b6:e1:30:30:81:9f:77:b6:a5: 23:94:22:7c:ff:ef:43:a5:93:7f:a9:20:81:6e:3d:68:82:4d: 5c:60:45:ae:75:3a:9c:a1:d6:f8:01:64:a9:45:2d:e7:90:43: 98:dc:50:05:89:89:fc:de:4b:d5:9e:59:54:2a:ce:ee:1f:1d: e3:7f:95:7b:a4:de:a5:c8:71:6d:a0:6a:b3:0f:95:2b:f4:bb: 3d:13:76:73:41:a8:06:89:21:eb:b2:50:60:b2:4f:c6:92:a8: f6:04:6c:cb:6c:7e:a0:80:c7:ac:64:34:8e:28:97:da:6d:fc: 57:9c:9b:b7 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIlowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzNTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDM5QjZENjI4QUQ3NTQ3 QUYwREE3OEVBQ0E3RTQ4ODlEMTkwNzIzODkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/obK6P0+e0dYAEWxk2wDIHiLjqq8qGvjzJsJJitvvRxsAIccB ke4Cc408TDOkLf/F0CUnuMB5PUrYMYd0xtqFLlmDPlqgetz076sNrA2BaqsTC3VR 7CNDX5Mpn28kIwS2T4BWJILqOmIrAtUvDOQrU3GbmScs5ZVhY6+TAg7hZ1pS08Kv pqOimw5ebAqTShJbY45ICwypishQWQwfiVochWLzTR5tZOfuxnbEqIbHOiNuoJHM Rh+6LcGh5htBj5TmI9+HmNSlcr0bLL6fsOqwrAW41zzt6J67/4euqEnMiY9BoRfc GOhGa7Y17w7mCLLIunLozhWi/IjjzfyUlSs3AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUObbWKK11R68Np46sp+SInRkHI4kwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL09iYldLSzExUjY4TnA0NnNw LVNJblJrSEk0ay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAG0 2twwDQYJKoZIhvcNAQELBQADggEBAG9EeMHfPky3RpqBnsoU2LGX0JXkwbeJsU9G KfG+wJawzufskUkCGFVL3VMsvlOJKN3vvd9R4wZk+nNSQEMNlokQGSZvZ1xhUsv6 LgjWRuIzFmPUcZp/v/P+HkL/hELLs6+3/TrXUxs9VroTs9brTro3xD6VowOLcf50 Juq+mRHqrX1pUFUfpLbhMDCBn3e2pSOUInz/70Olk3+pIIFuPWiCTVxgRa51Opyh 1vgBZKlFLeeQQ5jcUAWJifzeS9WeWVQqzu4fHeN/lXuk3qXIcW2garMPlSv0uz0T dnNBqAaJIeuyUGCyT8aSqPYEbMtsfqCAx6xkNI4ol9pt/Fecm7c= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:55 2024 by rpki-client on console-fra.rpki-client.org