$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/UsuGCvMKxli3w1b6s-CBmVpiRF4.roa File: UsuGCvMKxli3w1b6s-CBmVpiRF4.roa (raw, json) Hash identifier: YZnK4uUEPgpJOlZBBq556t2d6Djf2bVX+C8IpBHh6kA= Subject key identifier: 52:CB:86:0A:F3:0A:C6:58:B7:C3:56:FA:B3:E0:81:99:5A:62:44:5E Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 216B Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/UsuGCvMKxli3w1b6s-CBmVpiRF4.roa Signing time: Mon 26 Aug 2024 05:32:59 +0000 ROA not before: Mon 26 Aug 2024 05:32:59 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 180.218.152.0/21 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8555 (0x216b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:32:59 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=52CB860AF30AC658B7C356FAB3E081995A62445E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:8f:66:bf:8a:fe:55:cc:2e:cd:ef:ab:2f:0c: 4c:be:36:3a:e5:48:41:ce:fb:c8:7d:20:bc:e5:19: 37:b4:69:ca:d1:13:01:be:a9:65:e0:6b:f1:a2:1a: 18:25:b0:6b:eb:f8:4f:56:f7:f6:de:07:07:0c:2c: cf:44:23:66:65:1d:ff:72:f8:0b:c6:ce:8c:43:b7: c6:ef:87:09:04:ab:8d:6d:a8:e2:43:97:87:97:05: f1:05:9b:5a:75:36:d6:d6:e7:7b:9c:09:0b:d9:cc: b7:18:c3:e9:36:e9:a6:e9:78:5c:cb:2e:f0:85:5e: e1:a4:a5:69:2a:a0:1e:d6:18:5b:cc:44:b5:c8:2b: 7c:26:09:b8:28:f8:f5:ed:b5:a0:75:f3:59:b1:40: 83:d5:48:dd:6f:e8:45:24:88:02:b6:32:5d:5a:58: dc:ec:11:a8:d1:6b:5d:a1:1c:68:52:58:74:73:fe: df:5a:cf:ba:91:ba:d1:b4:84:fe:73:70:c3:2a:b6: 6f:c5:cc:18:68:c3:ff:ff:f3:4e:a2:1d:33:6e:e0: 33:fd:51:8b:8f:5d:18:32:2d:0a:b7:7b:fd:86:d9: 64:65:6e:5d:45:4c:fd:3b:1b:d2:af:35:5c:15:cc: f1:75:96:03:ff:ee:73:bc:1e:60:89:c9:83:cc:5c: 95:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:CB:86:0A:F3:0A:C6:58:B7:C3:56:FA:B3:E0:81:99:5A:62:44:5E X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/UsuGCvMKxli3w1b6s-CBmVpiRF4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.152.0/21 Signature Algorithm: sha256WithRSAEncryption 91:b1:b6:7c:e8:c7:6c:99:89:e6:86:23:aa:23:ff:4f:97:f7: 20:22:ce:99:1d:ca:2f:34:e8:cb:de:70:b6:0f:42:25:3b:d2: f5:e0:1e:ba:e7:14:86:45:f9:11:b0:db:31:c5:01:9b:6b:54: 87:00:ca:a5:42:0e:f5:5c:85:73:4d:05:70:4e:d8:7c:86:0e: d0:3b:9b:82:41:39:24:65:66:7e:e4:9a:f8:23:bf:0a:8a:9b: 9c:49:64:09:36:8b:83:e9:3f:89:dd:6c:0a:bc:1c:08:8d:f1: b8:87:a6:96:64:36:e7:44:13:aa:85:e1:32:04:17:ce:64:a1: 9c:1d:c4:25:91:24:42:c1:82:40:51:96:a5:34:3b:f6:85:a0: 85:a9:b9:4e:c2:10:21:bd:54:b4:3e:7c:eb:9d:63:9b:91:b0: 3d:70:de:9a:40:8c:4c:e7:40:50:bb:19:b6:2a:0f:a4:ea:1d: b5:eb:8c:ff:b6:60:36:75:eb:7a:12:68:be:6d:77:68:7a:4e: bb:9c:70:ab:c5:14:34:82:c1:a5:ef:2d:98:2f:97:7a:74:c6: f9:a4:1c:d1:e6:27:25:9b:81:50:e3:4c:57:3e:fe:cb:a8:be: a8:cf:1a:49:5f:1d:8b:0b:c1:5e:4a:a6:a8:8c:31:df:53:0d: a5:59:91:8b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIWswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMyNTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDUyQ0I4NjBBRjMwQUM2 NThCN0MzNTZGQUIzRTA4MTk5NUE2MjQ0NUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDoj2a/iv5VzC7N76svDEy+NjrlSEHO+8h9ILzlGTe0acrREwG+ qWXga/GiGhglsGvr+E9W9/beBwcMLM9EI2ZlHf9y+AvGzoxDt8bvhwkEq41tqOJD l4eXBfEFm1p1NtbW53ucCQvZzLcYw+k26abpeFzLLvCFXuGkpWkqoB7WGFvMRLXI K3wmCbgo+PXttaB181mxQIPVSN1v6EUkiAK2Ml1aWNzsEajRa12hHGhSWHRz/t9a z7qRutG0hP5zcMMqtm/FzBhow///806iHTNu4DP9UYuPXRgyLQq3e/2G2WRlbl1F TP07G9KvNVwVzPF1lgP/7nO8HmCJyYPMXJVjAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUUsuGCvMKxli3w1b6s+CBmVpiRF4wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1VzdUdDdk1LeGxpM3cxYjZz LUNCbVZwaVJGNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0 2pgwDQYJKoZIhvcNAQELBQADggEBAJGxtnzox2yZieaGI6oj/0+X9yAizpkdyi80 6MvecLYPQiU70vXgHrrnFIZF+RGw2zHFAZtrVIcAyqVCDvVchXNNBXBO2HyGDtA7 m4JBOSRlZn7kmvgjvwqKm5xJZAk2i4PpP4ndbAq8HAiN8biHppZkNudEE6qF4TIE F85koZwdxCWRJELBgkBRlqU0O/aFoIWpuU7CECG9VLQ+fOudY5uRsD1w3ppAjEzn QFC7GbYqD6TqHbXrjP+2YDZ163oSaL5td2h6TruccKvFFDSCwaXvLZgvl3p0xvmk HNHmJyWbgVDjTFc+/suovqjPGklfHYsLwV5KpqiMMd9TDaVZkYs= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:25 2024 by rpki-client on console-ams.rpki-client.org