$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/YnPaNCb_p_paN1ij1m2pnl4rZLc.roa File: YnPaNCb_p_paN1ij1m2pnl4rZLc.roa (raw, json) Hash identifier: 1PtuU5PlnGv8cByjnddTaPj+QNmvQ1UaARFnFFlY5mQ= Subject key identifier: 62:73:DA:34:26:FF:A7:FA:5A:37:58:A3:D6:6D:A9:9E:5E:2B:64:B7 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 226C Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/YnPaNCb_p_paN1ij1m2pnl4rZLc.roa Signing time: Mon 26 Aug 2024 05:33:59 +0000 ROA not before: Mon 26 Aug 2024 05:33:59 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 180.218.142.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8812 (0x226c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:59 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6273DA3426FFA7FA5A3758A3D66DA99E5E2B64B7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:82:50:38:fb:97:19:e3:4e:b8:82:27:ea:c6: 46:35:72:5e:ca:af:ec:e2:7e:95:8e:23:f3:e5:5b: fc:8f:62:8e:14:a3:6a:f9:d8:02:15:65:91:d5:ab: 58:23:38:6c:5b:35:8b:61:43:50:d4:7f:3f:9a:a1: 60:f5:8c:a4:91:37:46:49:b7:fc:f4:d5:ce:68:d5: ce:7e:ec:ca:33:d7:3a:bf:38:3c:7f:e7:66:eb:2f: 48:f8:c3:77:4f:43:ac:74:7c:62:a1:2c:bb:7b:52: 16:b6:a6:42:b5:3b:ee:3e:6d:b8:e6:7c:30:7e:ad: 3e:61:3b:02:fb:f7:d6:2a:09:08:32:60:89:3c:f3: 1b:00:8a:2e:ef:97:6d:89:32:4c:04:56:a0:d3:d2: 0e:87:02:88:e0:5f:82:3f:91:e5:b1:9e:e2:99:73: 42:5d:1a:3e:ab:7c:3d:13:6f:84:3d:14:3f:6d:b3: f4:6e:47:b8:dd:b2:30:1c:4e:45:3e:3e:48:ef:44: 82:0d:b8:7b:26:3b:f3:09:c4:b3:a5:a1:4a:1a:48: 0a:46:9e:03:93:fd:a4:46:72:a6:f9:42:34:78:65: e7:22:bc:f6:92:69:f7:48:dc:0a:f4:25:25:ae:70: 1c:22:e2:e8:86:db:26:98:65:6c:51:c0:8d:aa:63: 11:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:73:DA:34:26:FF:A7:FA:5A:37:58:A3:D6:6D:A9:9E:5E:2B:64:B7 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/YnPaNCb_p_paN1ij1m2pnl4rZLc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.142.0/23 Signature Algorithm: sha256WithRSAEncryption a1:da:0e:04:f5:33:b1:48:97:0e:d3:44:50:de:8b:2b:31:76: 14:ac:9b:ca:83:15:89:9d:f6:fd:33:55:79:5d:8b:11:82:ea: 1f:1e:4e:6d:4f:c2:d7:06:0d:33:32:e5:70:26:20:ce:e5:7e: e7:9f:5d:14:41:5d:5f:b3:93:1d:75:bc:1a:55:0c:4a:6a:11: f8:d3:3e:b6:b7:c2:ed:95:4f:f9:e0:a1:87:7d:7c:e9:cf:2d: d1:72:20:74:2f:c2:13:ff:b1:bf:f9:31:68:3f:b9:1c:94:32: d7:ae:91:88:ae:25:28:25:eb:59:6a:59:92:ee:cf:df:5c:72: 24:ed:f3:2e:4d:07:4e:43:1e:65:b8:ba:81:5d:65:56:a1:45: 8d:a3:41:29:19:5e:03:d2:6b:27:09:88:13:6a:65:08:4d:7d: 31:dc:71:25:84:da:5a:f9:b9:00:38:02:84:70:0c:df:40:68: 86:44:1c:dc:7d:b2:54:af:4c:d3:ab:9b:27:b8:8c:f0:f9:03: 1f:34:0a:31:d7:3f:e2:bf:fe:37:0c:6e:8d:60:4d:fd:9e:2b: 3a:01:58:90:0a:68:5f:47:34:dc:48:c1:e7:9d:81:a1:de:35: 26:a7:e8:02:21:b9:f0:25:5f:07:ba:eb:ac:28:e2:1c:db:93: 95:07:9c:f0 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICImwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzNTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDYyNzNEQTM0MjZGRkE3 RkE1QTM3NThBM0Q2NkRBOTlFNUUyQjY0QjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDWglA4+5cZ4064gifqxkY1cl7Kr+zifpWOI/PlW/yPYo4Uo2r5 2AIVZZHVq1gjOGxbNYthQ1DUfz+aoWD1jKSRN0ZJt/z01c5o1c5+7Moz1zq/ODx/ 52brL0j4w3dPQ6x0fGKhLLt7Uha2pkK1O+4+bbjmfDB+rT5hOwL799YqCQgyYIk8 8xsAii7vl22JMkwEVqDT0g6HAojgX4I/keWxnuKZc0JdGj6rfD0Tb4Q9FD9ts/Ru R7jdsjAcTkU+PkjvRIINuHsmO/MJxLOloUoaSApGngOT/aRGcqb5QjR4ZecivPaS afdI3Ar0JSWucBwi4uiG2yaYZWxRwI2qYxF/AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUYnPaNCb/p/paN1ij1m2pnl4rZLcwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1luUGFOQ2JfcF9wYU4xaWox bTJwbmw0clpMYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAG0 2o4wDQYJKoZIhvcNAQELBQADggEBAKHaDgT1M7FIlw7TRFDeiysxdhSsm8qDFYmd 9v0zVXldixGC6h8eTm1PwtcGDTMy5XAmIM7lfuefXRRBXV+zkx11vBpVDEpqEfjT Pra3wu2VT/ngoYd9fOnPLdFyIHQvwhP/sb/5MWg/uRyUMteukYiuJSgl61lqWZLu z99cciTt8y5NB05DHmW4uoFdZVahRY2jQSkZXgPSaycJiBNqZQhNfTHccSWE2lr5 uQA4AoRwDN9AaIZEHNx9slSvTNOrmye4jPD5Ax80CjHXP+K//jcMbo1gTf2eKzoB WJAKaF9HNNxIweedgaHeNSan6AIhufAlXwe666wo4hzbk5UHnPA= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:59 2024 by rpki-client on console-fra.rpki-client.org