$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/hBXcFT2fRvmM_k0PSCDqPY66Mrs.roa File: hBXcFT2fRvmM_k0PSCDqPY66Mrs.roa (raw, json) Hash identifier: mKtUOTS3JvAdzfrDwN+4rVNewTTmXH481bZ8DlD7A9Q= Subject key identifier: 84:15:DC:15:3D:9F:46:F9:8C:FE:4D:0F:48:20:EA:3D:8E:BA:32:BB Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 21BA Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/hBXcFT2fRvmM_k0PSCDqPY66Mrs.roa Signing time: Mon 26 Aug 2024 05:33:17 +0000 ROA not before: Mon 26 Aug 2024 05:33:17 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 4662 IP address blocks: 124.6.0.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8634 (0x21ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:17 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8415DC153D9F46F98CFE4D0F4820EA3D8EBA32BB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:61:1e:d1:14:b2:74:e7:0f:1c:59:df:18:bb: d0:89:45:5e:dc:87:5e:c1:69:3e:9c:56:d4:8b:7c: 26:86:cc:82:ba:30:20:91:fe:b1:ed:b1:93:8e:87: 6c:86:85:f5:02:f5:b7:e1:57:13:42:b9:fa:ac:c4: a9:1c:2c:0e:2c:ed:66:4c:41:15:f3:90:0b:29:80: 4e:02:0c:89:df:58:58:26:41:1a:e7:4c:37:b6:87: 05:b7:7c:18:90:7d:55:c0:17:df:e9:54:73:38:fe: 85:a1:a7:02:e3:d8:1c:e4:eb:48:d2:57:03:48:f6: 47:c8:7e:03:13:06:07:ea:2d:91:35:96:fb:7d:2d: 2d:cf:19:81:7c:63:3d:18:a7:4f:2c:c1:8f:93:39: f9:bb:c7:e4:22:26:96:9f:27:c4:44:3a:46:69:02: 58:e5:80:8a:2c:a3:b0:f3:11:69:cf:2f:f1:2b:20: 8f:84:d1:bb:b0:b0:75:68:8c:4d:fc:7c:64:94:f9: 61:d4:48:29:5f:36:d0:85:00:ae:7e:fa:fc:83:23: a0:ca:b7:32:7a:c1:80:92:58:0c:30:bf:d2:95:ec: 76:ad:5d:22:34:22:86:e2:93:99:da:fa:5c:7b:09: 20:91:af:44:d5:25:b7:dc:29:97:e1:71:7d:18:ee: d3:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:15:DC:15:3D:9F:46:F9:8C:FE:4D:0F:48:20:EA:3D:8E:BA:32:BB X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/hBXcFT2fRvmM_k0PSCDqPY66Mrs.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.6.0.0/19 Signature Algorithm: sha256WithRSAEncryption 39:6e:9f:fa:cc:3b:52:af:41:fe:93:11:1f:48:0e:76:d0:6d: 59:b3:d8:26:46:a6:f0:39:62:40:77:96:47:68:74:b2:35:a4: 4f:97:4d:06:cf:51:47:c7:2b:01:5b:2f:ff:71:ab:97:aa:9f: 18:81:bd:b1:dc:9c:22:1c:3f:53:64:8b:12:47:22:a0:d7:f1: eb:2b:93:27:60:29:41:47:5a:c3:79:37:ef:a5:d6:18:46:cf: cf:6c:3f:7e:be:1e:87:22:a5:4b:98:4e:48:f3:2a:0a:fb:d7: 04:81:2e:f9:09:26:44:ed:90:c3:8c:94:6f:88:7f:c3:c3:80: f3:15:70:06:7c:42:fa:6f:27:b5:ba:31:03:18:7a:33:ad:1a: 3d:fb:6e:77:02:30:24:cc:62:2f:89:88:a5:27:26:16:5a:b2: 5b:f5:7b:3a:03:0c:c1:4f:7b:32:c5:09:3c:aa:89:42:85:53: 8d:76:31:5a:27:c1:6a:c9:ac:3f:43:76:d4:92:39:f9:1f:42: 3d:a7:78:30:e1:4c:0d:f4:d9:c6:9a:07:e5:dd:39:78:87:55: b4:b5:d3:74:1f:84:38:e7:87:bc:e0:f5:f3:8b:b5:35:5a:84: e1:b0:d7:b8:c8:55:b4:52:8b:1a:f7:c1:78:1d:3a:37:41:e3: 3d:24:4e:f2 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIbowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzMTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg0MTVEQzE1M0Q5RjQ2 Rjk4Q0ZFNEQwRjQ4MjBFQTNEOEVCQTMyQkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxYR7RFLJ05w8cWd8Yu9CJRV7ch17BaT6cVtSLfCaGzIK6MCCR /rHtsZOOh2yGhfUC9bfhVxNCufqsxKkcLA4s7WZMQRXzkAspgE4CDInfWFgmQRrn TDe2hwW3fBiQfVXAF9/pVHM4/oWhpwLj2Bzk60jSVwNI9kfIfgMTBgfqLZE1lvt9 LS3PGYF8Yz0Yp08swY+TOfm7x+QiJpafJ8REOkZpAljlgIoso7DzEWnPL/ErII+E 0buwsHVojE38fGSU+WHUSClfNtCFAK5++vyDI6DKtzJ6wYCSWAwwv9KV7HatXSI0 Iobik5na+lx7CSCRr0TVJbfcKZfhcX0Y7tP3AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUhBXcFT2fRvmM/k0PSCDqPY66MrswHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2hCWGNGVDJmUnZtTV9rMFBT Q0RxUFk2Nk1ycy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAV8 BgAwDQYJKoZIhvcNAQELBQADggEBADlun/rMO1KvQf6TER9IDnbQbVmz2CZGpvA5 YkB3lkdodLI1pE+XTQbPUUfHKwFbL/9xq5eqnxiBvbHcnCIcP1NkixJHIqDX8esr kydgKUFHWsN5N++l1hhGz89sP36+HocipUuYTkjzKgr71wSBLvkJJkTtkMOMlG+I f8PDgPMVcAZ8QvpvJ7W6MQMYejOtGj37bncCMCTMYi+JiKUnJhZaslv1ezoDDMFP ezLFCTyqiUKFU412MVonwWrJrD9DdtSSOfkfQj2neDDhTA302caaB+XdOXiHVbS1 03QfhDjnh7zg9fOLtTVahOGw17jIVbRSixr3wXgdOjdB4z0kTvI= -----END CERTIFICATE-----Generated at Fri Nov 22 10:07:00 2024 by rpki-client on console-fra.rpki-client.org