$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/OzbEi-Jgrt6tVJPrrnqZ5usXcpE.roa File: OzbEi-Jgrt6tVJPrrnqZ5usXcpE.roa (raw, json) Hash identifier: 8L8e2dRXwCCfikU820ZDCq1xS0EoGtlgTXP97cS6luY= Subject key identifier: 3B:36:C4:8B:E2:60:AE:DE:AD:54:93:EB:AE:7A:99:E6:EB:17:72:91 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2215 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/OzbEi-Jgrt6tVJPrrnqZ5usXcpE.roa Signing time: Mon 26 Aug 2024 05:33:39 +0000 ROA not before: Mon 26 Aug 2024 05:33:39 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24165 IP address blocks: 180.218.104.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8725 (0x2215) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:39 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3B36C48BE260AEDEAD5493EBAE7A99E6EB177291 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:5b:eb:68:92:5d:7b:ec:a5:77:64:fb:92:6a: 7b:31:ae:6b:22:96:b1:a1:e5:01:a6:fa:3f:4d:68: c7:a9:0e:c2:3f:e5:10:d5:5d:76:b6:f9:4a:c8:d7: b7:55:a9:9c:72:e5:75:9b:f4:97:56:da:b9:0d:96: f7:3b:3a:da:65:82:9f:c2:06:e6:f5:9d:4d:29:97: 42:06:2b:fc:e8:c5:3e:16:a3:80:9b:a6:06:18:73: 5a:72:76:8f:af:40:b4:92:89:bb:70:dd:6b:20:7f: a1:45:af:2a:25:9c:7f:ef:f3:ba:9f:61:3e:b5:84: 1a:c1:e1:e9:17:0d:3c:b3:39:de:84:28:c4:ab:69: 58:13:0f:1b:10:82:df:06:c3:4b:56:f8:c6:6b:52: 85:b2:7c:64:c4:ff:61:73:8e:c1:11:b3:ec:6e:f3: 13:9a:af:59:5b:80:4c:1b:a7:ba:e3:0b:87:a9:bf: 27:86:88:ca:59:ca:d7:c3:06:70:91:92:e7:45:90: 92:31:25:59:34:ae:03:76:1b:25:d2:9b:fe:f9:2d: e1:40:4e:ce:a2:7f:92:e0:a5:d9:88:fb:38:ef:b2: 9d:82:ad:1c:33:20:70:1b:7e:88:28:cf:f5:d8:a1: 6d:af:ac:df:70:8f:7c:5c:33:0f:d8:9d:f5:f9:0e: 61:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:36:C4:8B:E2:60:AE:DE:AD:54:93:EB:AE:7A:99:E6:EB:17:72:91 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/OzbEi-Jgrt6tVJPrrnqZ5usXcpE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.104.0/21 Signature Algorithm: sha256WithRSAEncryption 2a:3d:38:1b:c8:54:31:80:7e:c8:5e:72:d9:cf:2c:d5:43:9b: cf:ff:62:44:42:cd:89:12:90:da:b7:34:c2:5f:67:b8:af:0d: bc:7a:91:32:4e:fe:3d:6c:68:f4:36:d7:2a:61:0d:9e:de:2b: e2:1b:11:78:15:e1:e5:2b:a4:15:a2:d8:37:b5:19:a5:dc:24: 93:fe:ce:b1:76:6f:f1:ef:79:e2:78:ea:e4:37:5a:7a:f7:90: e2:50:eb:c5:c2:42:b4:72:69:86:be:c4:63:f1:de:03:6a:64: dd:96:72:bc:65:32:a2:8b:c7:d6:68:53:a0:50:70:70:2c:9a: 6b:f0:42:ae:54:c8:e3:71:3b:ce:35:e2:fc:3c:78:2a:63:ed: 6a:c0:71:b6:04:a5:9e:c8:ca:e1:64:53:b6:c0:00:49:8b:29: 7c:51:32:d2:9e:1f:37:89:43:dc:ad:14:ee:73:72:2a:cd:36: b7:17:26:29:51:59:32:10:9f:9f:35:f4:77:d8:e4:c4:57:2a: f5:df:0c:78:95:04:f6:72:46:17:1d:92:fa:af:a4:ff:f1:77: 4c:71:d3:43:fc:9b:75:19:5b:2f:1e:ab:0b:be:78:eb:2b:b8: c9:d7:23:2c:9e:e9:9f:b1:64:cb:37:5d:af:4b:e4:80:35:80: 0e:27:c2:19 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIhUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzMzlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNCMzZDNDhCRTI2MEFF REVBRDU0OTNFQkFFN0E5OUU2RUIxNzcyOTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOW+tokl177KV3ZPuSansxrmsilrGh5QGm+j9NaMepDsI/5RDV XXa2+UrI17dVqZxy5XWb9JdW2rkNlvc7Otplgp/CBub1nU0pl0IGK/zoxT4Wo4Cb pgYYc1pydo+vQLSSibtw3Wsgf6FFryolnH/v87qfYT61hBrB4ekXDTyzOd6EKMSr aVgTDxsQgt8Gw0tW+MZrUoWyfGTE/2FzjsERs+xu8xOar1lbgEwbp7rjC4epvyeG iMpZytfDBnCRkudFkJIxJVk0rgN2GyXSm/75LeFATs6if5LgpdmI+zjvsp2CrRwz IHAbfogoz/XYoW2vrN9wj3xcMw/YnfX5DmHzAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUOzbEi+Jgrt6tVJPrrnqZ5usXcpEwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL096YkVpLUpncnQ2dFZKUHJy bnFaNXVzWGNwRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0 2mgwDQYJKoZIhvcNAQELBQADggEBACo9OBvIVDGAfshectnPLNVDm8//YkRCzYkS kNq3NMJfZ7ivDbx6kTJO/j1saPQ21yphDZ7eK+IbEXgV4eUrpBWi2De1GaXcJJP+ zrF2b/HveeJ46uQ3Wnr3kOJQ68XCQrRyaYa+xGPx3gNqZN2WcrxlMqKLx9ZoU6BQ cHAsmmvwQq5UyONxO8414vw8eCpj7WrAcbYEpZ7IyuFkU7bAAEmLKXxRMtKeHzeJ Q9ytFO5zcirNNrcXJilRWTIQn5819HfY5MRXKvXfDHiVBPZyRhcdkvqvpP/xd0xx 00P8m3UZWy8eqwu+eOsruMnXIyye6Z+xZMs3Xa9L5IA1gA4nwhk= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:59 2024 by rpki-client on console-fra.rpki-client.org