$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/XFw-iF7Pr-b7Ue8MOFV1udTCY5Y.roa File: XFw-iF7Pr-b7Ue8MOFV1udTCY5Y.roa (raw, json) Hash identifier: RMe99PNPJQjFHUbzAqWdMVNsgTJSU8weUHO6Hx3VLyI= Subject key identifier: 5C:5C:3E:88:5E:CF:AF:E6:FB:51:EF:0C:38:55:75:B9:D4:C2:63:96 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2194 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/XFw-iF7Pr-b7Ue8MOFV1udTCY5Y.roa Signing time: Mon 26 Aug 2024 05:33:07 +0000 ROA not before: Mon 26 Aug 2024 05:33:07 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 119.77.188.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8596 (0x2194) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:07 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5C5C3E885ECFAFE6FB51EF0C385575B9D4C26396 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:f1:18:d0:84:b4:62:75:12:ac:4f:e6:4e:86: f4:95:b4:ea:63:67:55:bf:13:fd:ba:97:62:20:7e: bf:ce:fb:09:f1:9f:03:73:ee:f0:3c:ba:ea:4b:e4: 12:48:43:78:b5:2c:bc:68:97:3b:69:2b:37:0a:cd: 95:01:46:cb:ee:a2:12:d6:b6:7f:71:92:06:a7:e9: 91:f9:fe:6a:04:a1:b1:2d:56:c9:34:6e:8e:39:a4: 8d:b0:65:b7:ec:24:31:c8:40:27:f1:2d:51:a3:80: 12:da:b6:b1:a8:0d:4a:72:67:ae:53:ea:0e:0e:08: 32:ca:15:c1:54:39:d5:b6:24:60:3e:b9:e5:26:8a: 3a:dd:9d:84:7e:6b:c2:93:ff:3a:e6:20:90:4d:79: e9:dc:7b:43:74:cc:eb:8f:e2:94:03:d4:39:90:0d: 45:1e:54:03:82:1a:84:fa:06:8c:74:16:d6:bc:a4: 43:5a:2d:94:dd:12:63:b0:e3:1c:77:2e:1b:9a:51: d7:9c:c6:04:e8:4b:0f:bb:c6:be:de:68:f8:91:17: 2d:83:49:c3:cc:a7:b8:cb:4d:90:ff:b4:7f:17:51: 79:c3:f4:e2:79:20:e0:8c:a9:b9:9d:5a:24:d3:2f: ab:05:4a:18:7d:5f:62:90:ec:10:64:d4:03:09:b8: f9:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:5C:3E:88:5E:CF:AF:E6:FB:51:EF:0C:38:55:75:B9:D4:C2:63:96 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/XFw-iF7Pr-b7Ue8MOFV1udTCY5Y.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 119.77.188.0/22 Signature Algorithm: sha256WithRSAEncryption 3e:28:9f:d5:ad:7b:7c:63:47:74:5e:3f:b8:75:12:06:76:85: 79:df:ed:fe:9e:ae:c9:09:7a:df:79:48:ff:68:6b:71:14:f3: c2:8c:19:b0:c0:a0:93:55:31:fa:ba:c7:fa:81:c7:62:8d:d1: 97:bd:d7:6b:4e:d7:31:27:3b:26:b1:03:47:dc:81:c8:a8:6c: 1e:79:41:02:28:ae:56:8f:85:91:3d:d3:9b:70:cb:a1:47:0a: e8:b8:a7:31:e4:84:aa:a7:5c:61:52:87:0a:f7:67:35:c4:7a: 50:65:f4:5e:2b:67:a7:26:26:75:dc:1e:f1:cd:91:cf:c8:62: af:ee:43:d4:70:af:18:be:e5:1b:2f:31:da:ba:21:ef:a6:d9: db:a6:9e:cc:d3:78:7d:e3:dd:98:e1:cc:58:cb:77:b1:83:0e: 7f:67:85:7b:ac:fc:58:e1:70:0f:8c:68:40:94:e9:7c:b3:04: 04:cf:79:d6:df:69:b3:67:1b:ee:71:68:c5:76:06:2d:64:97: 2e:23:ea:d4:6b:a8:8e:58:0b:05:ff:92:ba:35:2e:a9:03:cf: c3:f8:3f:64:7b:d6:77:b1:7e:e0:0f:c0:95:b5:fb:10:b4:c8: 25:02:2c:e9:de:de:79:56:b3:54:c9:be:f0:37:bd:b2:8f:72: f7:1d:58:e9 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIZQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzMDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDVDNUMzRTg4NUVDRkFG RTZGQjUxRUYwQzM4NTU3NUI5RDRDMjYzOTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDN8RjQhLRidRKsT+ZOhvSVtOpjZ1W/E/26l2Igfr/O+wnxnwNz 7vA8uupL5BJIQ3i1LLxolztpKzcKzZUBRsvuohLWtn9xkgan6ZH5/moEobEtVsk0 bo45pI2wZbfsJDHIQCfxLVGjgBLatrGoDUpyZ65T6g4OCDLKFcFUOdW2JGA+ueUm ijrdnYR+a8KT/zrmIJBNeence0N0zOuP4pQD1DmQDUUeVAOCGoT6Box0Fta8pENa LZTdEmOw4xx3LhuaUdecxgToSw+7xr7eaPiRFy2DScPMp7jLTZD/tH8XUXnD9OJ5 IOCMqbmdWiTTL6sFShh9X2KQ7BBk1AMJuPn9AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUXFw+iF7Pr+b7Ue8MOFV1udTCY5YwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1hGdy1pRjdQci1iN1VlOE1P RlYxdWRUQ1k1WS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ3 TbwwDQYJKoZIhvcNAQELBQADggEBAD4on9Wte3xjR3ReP7h1EgZ2hXnf7f6erskJ et95SP9oa3EU88KMGbDAoJNVMfq6x/qBx2KN0Ze912tO1zEnOyaxA0fcgciobB55 QQIorlaPhZE905twy6FHCui4pzHkhKqnXGFShwr3ZzXEelBl9F4rZ6cmJnXcHvHN kc/IYq/uQ9Rwrxi+5RsvMdq6Ie+m2dumnszTeH3j3ZjhzFjLd7GDDn9nhXus/Fjh cA+MaECU6XyzBATPedbfabNnG+5xaMV2Bi1kly4j6tRrqI5YCwX/kro1LqkDz8P4 P2R71nexfuAPwJW1+xC0yCUCLOne3nlWs1TJvvA3vbKPcvcdWOk= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:55 2024 by rpki-client on console-fra.rpki-client.org