$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/hSz_oj93OC9VkOHM4wFqfmPR7NQ.roa File: hSz_oj93OC9VkOHM4wFqfmPR7NQ.roa (raw, json) Hash identifier: yW1KN6wsJ6LKzZ5iKZ2d/Ae6EoxxI66SUIhLVB7PlSw= Subject key identifier: 85:2C:FF:A2:3F:77:38:2F:55:90:E1:CC:E3:01:6A:7E:63:D1:EC:D4 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 22A1 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/hSz_oj93OC9VkOHM4wFqfmPR7NQ.roa Signing time: Mon 26 Aug 2024 05:34:12 +0000 ROA not before: Mon 26 Aug 2024 05:34:12 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24165 IP address blocks: 45.64.34.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8865 (0x22a1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:34:12 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=852CFFA23F77382F5590E1CCE3016A7E63D1ECD4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:04:97:a1:e4:db:6e:94:e2:f9:04:d1:5b:c9: 83:63:30:f4:31:c2:d3:56:dd:6e:2f:1d:fc:b6:4d: e4:86:4e:33:b1:63:3a:01:8c:d8:f9:51:5a:64:37: f3:10:20:e9:95:ec:37:42:50:3e:d4:30:21:80:26: 2c:a0:c3:71:d3:fc:fe:30:a9:e2:e2:28:74:01:21: f9:48:96:10:8e:80:af:49:53:ba:23:a5:b0:cc:79: 73:ce:17:58:5c:81:3f:56:76:e9:17:2b:36:2c:c9: 07:3e:d8:c7:18:92:bb:19:41:5a:05:28:53:5a:55: ff:8b:2f:54:82:9b:c4:07:a4:9b:6f:03:00:d1:34: 70:94:76:2e:04:7e:38:5d:5a:09:33:b8:eb:1a:26: 5f:50:92:52:b0:f3:35:0b:47:ad:07:f4:9d:a9:f9: 42:dc:8b:3a:5f:9a:aa:73:81:7e:09:74:f6:b4:32: 02:38:ec:2c:97:9e:fb:a2:f5:79:72:72:ea:7e:52: f6:ff:6e:d2:64:b6:fa:8a:da:f9:ff:e2:19:da:13: 54:06:06:11:f2:4f:df:7f:76:ca:17:70:20:76:51: 53:1b:29:df:e7:ae:e6:69:58:33:88:9e:12:8b:3f: 62:12:30:09:78:32:70:e2:a0:f4:df:50:a1:3b:bc: c3:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:2C:FF:A2:3F:77:38:2F:55:90:E1:CC:E3:01:6A:7E:63:D1:EC:D4 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/hSz_oj93OC9VkOHM4wFqfmPR7NQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 45.64.34.0/24 Signature Algorithm: sha256WithRSAEncryption 55:2b:87:31:20:35:16:6e:43:ee:1b:35:5e:31:57:d0:79:14: 6c:71:22:3f:7e:ae:38:41:f2:58:cc:43:6a:14:71:1f:86:1c: 74:ad:e3:8f:ca:1a:69:a7:a1:cf:b2:fd:db:64:64:a4:d2:06: ac:b6:35:9c:92:61:49:b1:d1:11:70:21:80:82:99:0e:ca:57: bd:f6:34:9e:99:37:19:c8:49:8d:90:c7:7c:48:6c:c4:c7:cc: e0:2d:c1:da:4b:88:5f:4b:b1:57:3c:fe:ff:2e:38:41:8b:16: 2a:9f:3b:9b:94:81:09:de:91:ce:fd:9c:4e:6d:fe:2d:25:1c: d4:99:0d:2c:11:6c:fb:f7:97:bf:41:0b:57:3e:c7:6e:1c:a3: 0a:81:49:dd:32:f7:fb:74:2a:fe:fa:a7:e2:dd:65:f2:b3:d8: ce:15:d8:35:a2:e0:4f:e4:ac:09:7e:b1:af:d2:9a:0f:e3:2f: 03:4a:0b:0c:eb:8d:72:87:83:46:8a:20:6f:a9:a3:82:e9:d0: 72:87:07:05:31:d5:ac:ff:6c:04:75:f7:d9:c5:05:0a:4b:51: 06:cb:84:7a:b2:0a:d4:ea:ca:f0:e5:22:08:a1:1c:2f:46:98: 92:53:ed:11:c2:9e:a0:10:d4:60:4b:ed:af:8c:9e:30:e4:14: e8:11:05:27 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIqEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTM0MTJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg1MkNGRkEyM0Y3NzM4 MkY1NTkwRTFDQ0UzMDE2QTdFNjNEMUVDRDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDrBJeh5NtulOL5BNFbyYNjMPQxwtNW3W4vHfy2TeSGTjOxYzoB jNj5UVpkN/MQIOmV7DdCUD7UMCGAJiygw3HT/P4wqeLiKHQBIflIlhCOgK9JU7oj pbDMeXPOF1hcgT9WdukXKzYsyQc+2McYkrsZQVoFKFNaVf+LL1SCm8QHpJtvAwDR NHCUdi4EfjhdWgkzuOsaJl9QklKw8zULR60H9J2p+ULcizpfmqpzgX4JdPa0MgI4 7CyXnvui9Xlycup+Uvb/btJktvqK2vn/4hnaE1QGBhHyT99/dsoXcCB2UVMbKd/n ruZpWDOInhKLP2ISMAl4MnDioPTfUKE7vMNHAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUhSz/oj93OC9VkOHM4wFqfmPR7NQwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2hTel9vajkzT0M5VmtPSE00 d0ZxZm1QUjdOUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAt QCIwDQYJKoZIhvcNAQELBQADggEBAFUrhzEgNRZuQ+4bNV4xV9B5FGxxIj9+rjhB 8ljMQ2oUcR+GHHSt44/KGmmnoc+y/dtkZKTSBqy2NZySYUmx0RFwIYCCmQ7KV732 NJ6ZNxnISY2Qx3xIbMTHzOAtwdpLiF9LsVc8/v8uOEGLFiqfO5uUgQnekc79nE5t /i0lHNSZDSwRbPv3l79BC1c+x24cowqBSd0y9/t0Kv76p+LdZfKz2M4V2DWi4E/k rAl+sa/Smg/jLwNKCwzrjXKHg0aKIG+po4Lp0HKHBwUx1az/bAR199nFBQpLUQbL hHqyCtTqyvDlIgihHC9GmJJT7RHCnqAQ1GBL7a+MnjDkFOgRBSc= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:55 2024 by rpki-client on console-fra.rpki-client.org