$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/XZjxeA_EFHBHvIt7PS9pocmCPFU.roa File: XZjxeA_EFHBHvIt7PS9pocmCPFU.roa (raw, json) Hash identifier: 8Cvk0cIzARSXjRnO4TQdC0W5pQJ++h4/qtkqJIvQaeY= Subject key identifier: 5D:98:F1:78:0F:C4:14:70:47:BC:8B:7B:3D:2F:69:A1:C9:82:3C:55 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 21B6 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/XZjxeA_EFHBHvIt7PS9pocmCPFU.roa Signing time: Mon 26 Aug 2024 05:33:16 +0000 ROA not before: Mon 26 Aug 2024 05:33:16 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 122.254.0.0/18 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8630 (0x21b6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:16 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5D98F1780FC4147047BC8B7B3D2F69A1C9823C55 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:3d:84:47:32:0c:0d:7c:38:f9:45:b8:e6:38: b2:28:00:8a:c6:b1:95:ba:98:9b:7e:fd:af:d0:ee: 19:be:66:df:96:e4:61:88:77:7c:7c:fa:c7:b8:49: 03:4e:9f:bc:a6:7b:21:27:11:df:1a:a6:6a:20:c0: a9:21:52:69:e7:f6:c2:8d:1c:c1:ee:37:12:32:1b: 0c:5d:b5:5d:ac:73:19:66:9a:aa:a3:3b:e5:a1:61: db:de:f8:b3:65:2f:e7:3c:43:19:63:b7:7d:35:b8: 09:51:98:21:2d:0d:03:81:ae:9e:81:a2:ee:65:9a: c3:15:a0:52:75:ef:f5:dd:6c:a6:e7:1b:86:0c:29: 89:64:0d:de:dd:e8:7e:08:49:41:b5:66:ab:54:d9: 52:c8:e8:27:99:23:72:1f:61:b6:dc:91:e9:40:b7: 62:bf:ca:6b:b5:30:09:bf:05:b7:65:ba:08:f2:cf: 45:08:04:7c:9b:d3:84:78:c0:e9:4d:af:f2:8b:8a: 2d:91:f7:93:72:4a:08:46:3d:0f:74:93:50:e2:58: a7:af:c2:33:3f:66:46:2b:9b:d3:f0:e9:f1:da:cb: 73:ae:d8:f1:0c:82:94:b3:d7:c2:e5:7b:fa:15:1b: 09:f9:21:8e:ba:3b:86:12:a2:51:32:b9:01:00:76: 09:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:98:F1:78:0F:C4:14:70:47:BC:8B:7B:3D:2F:69:A1:C9:82:3C:55 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/XZjxeA_EFHBHvIt7PS9pocmCPFU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.254.0.0/18 Signature Algorithm: sha256WithRSAEncryption 84:89:cd:fd:45:48:9d:26:26:46:e2:32:1c:70:cc:8c:0c:ab: 62:ac:54:f7:e6:0c:b9:0f:97:38:3a:c2:ed:cb:8e:8d:49:40: 73:1c:4a:39:86:c9:c3:3b:92:fb:2c:e9:b2:d5:da:e9:50:2e: e5:af:c0:e0:f1:a8:83:92:4a:84:1c:f8:41:17:40:f4:c0:a4: 08:2f:a9:6d:7c:8e:1f:95:d8:84:a5:32:b9:3f:85:97:80:eb: 9c:45:12:5c:d5:85:63:77:c6:6d:64:1e:57:96:65:8f:01:ed: 70:79:4e:63:32:e5:63:45:29:4a:1d:7d:97:09:fc:7b:29:56: 4c:81:00:49:dd:14:53:a2:6c:f7:a2:70:56:53:19:30:40:07: 1b:aa:ca:57:cb:06:62:c2:f1:ee:9a:c0:a9:2a:8c:81:0c:e3: cb:6f:6b:84:ac:f0:fa:bb:82:52:18:6d:06:b1:f2:68:c1:c1: 80:65:52:97:b4:31:c4:a7:7a:ce:38:4c:6b:17:36:cf:99:3d: 3e:70:04:f5:6b:1a:76:4c:0f:b7:cc:f8:ec:33:99:b3:c0:75: 8a:7b:9f:6c:68:30:ec:bb:d4:62:7a:c0:bc:fb:a0:aa:1b:44: 28:b2:9b:29:4e:a8:98:27:6f:9e:7b:6a:8e:11:cb:a6:d2:dc: 4a:13:42:06 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIbYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzMTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDVEOThGMTc4MEZDNDE0 NzA0N0JDOEI3QjNEMkY2OUExQzk4MjNDNTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtPYRHMgwNfDj5RbjmOLIoAIrGsZW6mJt+/a/Q7hm+Zt+W5GGI d3x8+se4SQNOn7ymeyEnEd8apmogwKkhUmnn9sKNHMHuNxIyGwxdtV2scxlmmqqj O+WhYdve+LNlL+c8Qxljt301uAlRmCEtDQOBrp6Bou5lmsMVoFJ17/XdbKbnG4YM KYlkDd7d6H4ISUG1ZqtU2VLI6CeZI3IfYbbckelAt2K/ymu1MAm/Bbdlugjyz0UI BHyb04R4wOlNr/KLii2R95NySghGPQ90k1DiWKevwjM/ZkYrm9Pw6fHay3Ou2PEM gpSz18Lle/oVGwn5IY66O4YSolEyuQEAdgnpAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUXZjxeA/EFHBHvIt7PS9pocmCPFUwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1haanhlQV9FRkhCSHZJdDdQ Uzlwb2NtQ1BGVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAZ6 /gAwDQYJKoZIhvcNAQELBQADggEBAISJzf1FSJ0mJkbiMhxwzIwMq2KsVPfmDLkP lzg6wu3Ljo1JQHMcSjmGycM7kvss6bLV2ulQLuWvwODxqIOSSoQc+EEXQPTApAgv qW18jh+V2ISlMrk/hZeA65xFElzVhWN3xm1kHleWZY8B7XB5TmMy5WNFKUodfZcJ /HspVkyBAEndFFOibPeicFZTGTBABxuqylfLBmLC8e6awKkqjIEM48tva4Ss8Pq7 glIYbQax8mjBwYBlUpe0McSnes44TGsXNs+ZPT5wBPVrGnZMD7fM+OwzmbPAdYp7 n2xoMOy71GJ6wLz7oKobRCiymylOqJgnb557ao4Ry6bS3EoTQgY= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:41 2024 by rpki-client on console-ams.rpki-client.org