$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/PJLewfHf1luLlU0hSed1o2ET9Zw.roa File: PJLewfHf1luLlU0hSed1o2ET9Zw.roa (raw, json) Hash identifier: iK9RS4KvsnxtdmGUiHeKmGUv/hkXQ1DCtWrPqfP7JpE= Subject key identifier: 3C:92:DE:C1:F1:DF:D6:5B:8B:95:4D:21:49:E7:75:A3:61:13:F5:9C Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 21C7 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/PJLewfHf1luLlU0hSed1o2ET9Zw.roa Signing time: Mon 26 Aug 2024 05:33:20 +0000 ROA not before: Mon 26 Aug 2024 05:33:20 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24165 IP address blocks: 180.218.96.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8647 (0x21c7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:20 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3C92DEC1F1DFD65B8B954D2149E775A36113F59C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:45:a5:d1:09:57:5a:a3:ec:30:f2:a7:93:80: 2e:b2:6c:78:95:88:6e:4f:ca:2f:57:08:b6:c2:94: df:5e:96:83:47:c8:ef:97:06:8d:ab:74:eb:4b:c0: 6c:5a:9b:e4:85:c7:f2:16:1d:17:86:aa:f3:23:d8: 4a:05:4f:d0:7d:5a:1b:cf:ba:4c:b5:ae:66:4e:0e: 5a:27:80:2f:9b:bc:5d:82:96:ab:81:0e:55:f3:ee: 75:bc:f3:45:6c:0c:45:32:38:ea:1e:40:b3:cf:b6: ae:e0:b6:c5:16:1d:15:51:7f:9a:41:7f:d5:c4:d7: de:82:a9:82:28:3d:14:d1:ac:c9:fc:ff:63:e9:b6: 49:32:97:e2:50:37:e2:28:1a:9e:50:95:5f:74:96: 3c:df:b0:34:b4:dd:25:a7:3c:fa:4d:1b:28:5d:3a: 04:a3:15:8e:e3:10:c4:6d:0b:7b:fd:82:b4:71:29: 38:5f:7e:e9:cd:b7:95:60:d8:76:69:74:d6:4b:bc: d8:1a:84:78:8d:0f:7e:1c:7d:ad:68:25:ed:5e:84: f8:e7:5e:4b:a0:32:ce:b3:be:1f:c9:4f:19:03:eb: 9e:63:d1:4c:57:7d:3b:43:92:7e:b3:22:89:fd:35: 9d:df:ee:30:6c:b9:cd:f7:92:7d:45:13:e3:96:a0: a4:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:92:DE:C1:F1:DF:D6:5B:8B:95:4D:21:49:E7:75:A3:61:13:F5:9C X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/PJLewfHf1luLlU0hSed1o2ET9Zw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.96.0/22 Signature Algorithm: sha256WithRSAEncryption 87:aa:41:29:0c:ac:66:88:fd:22:b1:fe:d6:4b:be:26:56:66: aa:aa:48:db:b6:ec:8f:c1:5d:0a:a6:dd:7a:b6:57:b8:6e:42: 52:44:a7:d0:42:8d:a0:58:d9:07:49:01:99:b8:cb:9b:7f:1c: cd:7b:05:0b:48:e9:a9:46:ee:86:72:41:eb:10:6a:c2:6b:71: a1:6d:58:46:f7:5a:ba:d1:c5:3a:bd:0e:be:53:f8:f8:a3:e0: 88:b7:00:e7:02:a1:6d:65:cb:fe:42:81:c5:24:47:ac:ad:8a: 2f:48:05:39:e2:43:e4:ef:43:b0:d7:89:b6:3d:21:f1:28:a5: 2e:dd:b3:76:e3:58:eb:87:32:e8:f4:e8:bd:f8:7c:bd:87:4a: f4:0f:f4:a3:32:69:44:8a:45:3e:b2:f8:b0:14:6f:9e:58:49: 51:f9:33:74:b1:f3:7a:c0:4e:72:dd:6e:e2:16:2f:74:3f:16: a2:b8:d6:3e:89:5d:98:e3:ca:c9:38:42:e6:a1:43:80:84:b8: 6f:39:c4:49:50:b1:99:25:06:3c:d8:cf:a7:80:34:f2:be:ae: 02:e2:bf:0f:34:18:dc:3d:48:06:54:12:39:b1:b8:78:99:10: 57:bf:d5:af:6e:77:d2:f4:f8:40:4e:27:04:28:20:f7:c0:73: 77:89:9f:b0 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIccwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzMjBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNDOTJERUMxRjFERkQ2 NUI4Qjk1NEQyMTQ5RTc3NUEzNjExM0Y1OUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDeRaXRCVdao+ww8qeTgC6ybHiViG5Pyi9XCLbClN9eloNHyO+X Bo2rdOtLwGxam+SFx/IWHReGqvMj2EoFT9B9WhvPuky1rmZODlongC+bvF2ClquB DlXz7nW880VsDEUyOOoeQLPPtq7gtsUWHRVRf5pBf9XE196CqYIoPRTRrMn8/2Pp tkkyl+JQN+IoGp5QlV90ljzfsDS03SWnPPpNGyhdOgSjFY7jEMRtC3v9grRxKThf funNt5Vg2HZpdNZLvNgahHiND34cfa1oJe1ehPjnXkugMs6zvh/JTxkD655j0UxX fTtDkn6zIon9NZ3f7jBsuc33kn1FE+OWoKQXAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUPJLewfHf1luLlU0hSed1o2ET9ZwwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1BKTGV3ZkhmMWx1TGxVMGhT ZWQxbzJFVDlady5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK0 2mAwDQYJKoZIhvcNAQELBQADggEBAIeqQSkMrGaI/SKx/tZLviZWZqqqSNu27I/B XQqm3Xq2V7huQlJEp9BCjaBY2QdJAZm4y5t/HM17BQtI6alG7oZyQesQasJrcaFt WEb3WrrRxTq9Dr5T+Pij4Ii3AOcCoW1ly/5CgcUkR6ytii9IBTniQ+TvQ7DXibY9 IfEopS7ds3bjWOuHMuj06L34fL2HSvQP9KMyaUSKRT6y+LAUb55YSVH5M3Sx83rA TnLdbuIWL3Q/FqK41j6JXZjjysk4QuahQ4CEuG85xElQsZklBjzYz6eANPK+rgLi vw80GNw9SAZUEjmxuHiZEFe/1a9ud9L0+EBOJwQoIPfAc3eJn7A= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:59 2024 by rpki-client on console-fra.rpki-client.org