$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/eahwQuGGXOKjZSApehRN_3qAEEg.roa File: eahwQuGGXOKjZSApehRN_3qAEEg.roa (raw, json) Hash identifier: rxK2/2qwV/zIl3Lwq1HQNyGh1tcqPTsnUmhxdhbv+E0= Subject key identifier: 79:A8:70:42:E1:86:5C:E2:A3:65:20:29:7A:14:4D:FF:7A:80:10:48 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 228F Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/eahwQuGGXOKjZSApehRN_3qAEEg.roa Signing time: Mon 26 Aug 2024 05:34:08 +0000 ROA not before: Mon 26 Aug 2024 05:34:08 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 114.198.160.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8847 (0x228f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:34:08 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=79A87042E1865CE2A36520297A144DFF7A801048 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:b1:03:c8:05:a7:9a:f9:8c:ee:40:42:2f:7b: 90:37:96:3a:40:15:41:4e:40:0c:73:ac:39:8d:6a: 91:81:65:ad:2f:b7:63:cc:29:9b:bb:cd:89:04:65: bb:38:f5:a0:96:93:9c:2c:31:37:85:ab:0f:08:56: ad:2a:7e:31:b3:b2:f5:2b:a0:62:3b:3e:c7:58:49: ec:b4:ef:79:90:cf:e7:cd:aa:1e:9d:1b:af:c7:8b: ad:cd:53:2b:ff:83:90:31:1c:04:2f:a0:ec:16:20: 2f:77:49:37:94:ed:7e:24:ed:c8:1d:44:45:46:93: 98:56:e2:32:0d:d3:a1:c1:84:66:60:b7:1c:99:bf: 36:31:63:5f:31:9e:79:a4:96:c8:74:80:d9:39:2a: 59:03:86:76:2c:36:5d:0c:a9:4a:76:e7:a5:24:cb: 74:5c:a7:90:8e:5d:cd:cd:16:38:2e:95:96:95:d5: 15:f7:38:cf:d2:4e:e9:00:3c:d3:c3:7f:68:18:fc: 38:9a:ca:4f:bf:cc:af:d9:40:b8:36:f8:50:0c:38: 40:5d:d4:63:4b:cb:a6:71:14:bb:db:1b:c7:4d:56: 01:c1:67:97:8f:63:05:d5:68:f7:82:93:fb:62:12: 38:77:76:ea:58:d2:d8:0b:24:38:e4:16:52:19:32: 88:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:A8:70:42:E1:86:5C:E2:A3:65:20:29:7A:14:4D:FF:7A:80:10:48 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/eahwQuGGXOKjZSApehRN_3qAEEg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 114.198.160.0/22 Signature Algorithm: sha256WithRSAEncryption 19:fc:10:05:7c:c2:b2:bc:24:9d:8b:55:cf:bb:27:ec:b0:15: 46:f3:22:02:3a:e6:58:ed:b9:7b:4d:74:e5:79:09:a8:53:73: bd:90:3d:9a:78:3f:b8:94:81:5c:52:79:42:9f:65:fc:e1:03: 33:61:15:3d:79:40:b6:7e:01:3e:db:ce:6f:82:11:e9:f1:79: fd:cb:13:54:5e:f6:f5:96:67:40:6e:b5:be:51:7b:22:2c:6b: 22:fe:e1:6d:ec:8b:88:15:c6:58:6b:b4:07:c4:43:40:34:ee: 2c:9c:c2:d5:df:7d:ac:0c:e6:a1:bb:76:87:48:8f:71:6e:a2: f9:83:a9:49:08:80:df:24:4a:30:b3:da:5f:18:c1:de:55:7b: 2a:fd:f0:6c:8a:fb:7e:55:b0:eb:fa:41:a0:6f:00:34:ba:24: 3a:b9:87:e3:ff:b7:50:bb:84:bd:4d:99:07:08:7a:16:6e:6a: cf:6a:c1:a3:4e:d7:75:03:04:a4:76:92:0c:10:7a:5c:5d:ed: 8b:3f:c3:aa:ec:25:af:27:22:a6:bd:07:7c:82:b0:a2:cb:80: a5:3d:c5:dd:88:8f:e7:d9:ae:b0:7e:de:89:e9:97:48:50:83: b7:dd:c6:62:58:95:43:7f:23:e3:38:5a:af:c4:cf:bb:a6:57: e8:fd:df:01 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIo8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTM0MDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDc5QTg3MDQyRTE4NjVD RTJBMzY1MjAyOTdBMTQ0REZGN0E4MDEwNDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDisQPIBaea+YzuQEIve5A3ljpAFUFOQAxzrDmNapGBZa0vt2PM KZu7zYkEZbs49aCWk5wsMTeFqw8IVq0qfjGzsvUroGI7PsdYSey073mQz+fNqh6d G6/Hi63NUyv/g5AxHAQvoOwWIC93STeU7X4k7cgdREVGk5hW4jIN06HBhGZgtxyZ vzYxY18xnnmklsh0gNk5KlkDhnYsNl0MqUp256Uky3Rcp5COXc3NFjgulZaV1RX3 OM/STukAPNPDf2gY/Diayk+/zK/ZQLg2+FAMOEBd1GNLy6ZxFLvbG8dNVgHBZ5eP YwXVaPeCk/tiEjh3dupY0tgLJDjkFlIZMojHAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUeahwQuGGXOKjZSApehRN/3qAEEgwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2VhaHdRdUdHWE9LalpTQXBl aFJOXzNxQUVFZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJy xqAwDQYJKoZIhvcNAQELBQADggEBABn8EAV8wrK8JJ2LVc+7J+ywFUbzIgI65ljt uXtNdOV5CahTc72QPZp4P7iUgVxSeUKfZfzhAzNhFT15QLZ+AT7bzm+CEenxef3L E1Re9vWWZ0Butb5ReyIsayL+4W3si4gVxlhrtAfEQ0A07iycwtXffawM5qG7dodI j3FuovmDqUkIgN8kSjCz2l8Ywd5Veyr98GyK+35VsOv6QaBvADS6JDq5h+P/t1C7 hL1NmQcIehZuas9qwaNO13UDBKR2kgwQelxd7Ys/w6rsJa8nIqa9B3yCsKLLgKU9 xd2Ij+fZrrB+3onpl0hQg7fdxmJYlUN/I+M4Wq/Ez7umV+j93wE= -----END CERTIFICATE-----Generated at Fri Nov 22 14:13:19 2024 by rpki-client on console-fra.rpki-client.org