$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/hVw69TZ_XeRVZXNpN82I8onblDU.roa File: hVw69TZ_XeRVZXNpN82I8onblDU.roa (raw, json) Hash identifier: eeWB49J7CVjNXVYp/jBOHge8Sfm6f01+HLOL6j9VAII= Subject key identifier: 85:5C:3A:F5:36:7F:5D:E4:55:65:73:69:37:CD:88:F2:89:DB:94:35 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 22DA Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/hVw69TZ_XeRVZXNpN82I8onblDU.roa Signing time: Mon 26 Aug 2024 05:34:26 +0000 ROA not before: Mon 26 Aug 2024 05:34:26 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 114.198.160.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8922 (0x22da) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:34:26 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=855C3AF5367F5DE45565736937CD88F289DB9435 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:c4:bd:a0:b4:e1:1b:9e:43:6b:00:5a:13:5c: 1e:77:fb:bb:02:ac:87:4e:f7:d2:2b:78:95:71:12: 68:b8:73:90:f3:d6:10:67:59:a5:7b:1c:57:9f:de: 52:e1:10:14:8d:9e:9c:ba:e4:1b:91:26:d6:25:ef: 4e:e0:ff:43:c6:02:0b:c4:ad:04:79:33:e5:d1:fb: ad:18:cb:fb:fd:e6:c0:90:ff:fa:47:91:b7:66:73: d5:ea:6b:4c:e4:3e:bc:82:8e:d0:97:cf:f4:37:9d: a5:65:2b:dd:78:7f:e7:67:ef:d3:b0:29:be:96:04: 0b:a4:67:dd:05:e3:80:9b:af:33:b9:d9:23:73:00: 43:ba:90:01:97:6f:b1:42:ec:67:74:74:c9:6a:ab: 6c:8e:55:8f:d4:55:59:0b:14:0e:36:b6:31:62:f8: f9:41:f7:c7:a4:ef:4a:6b:93:f3:ed:d4:7d:a1:08: f5:7b:70:2b:cf:bb:6c:e7:45:b9:4c:f4:fb:f2:55: 86:3e:59:0f:48:a4:8c:8f:b5:19:83:25:a6:64:58: 9d:d7:a8:1b:43:e7:f4:bb:cb:1d:20:df:b7:a2:e5: 75:d2:fb:94:b5:33:d8:5f:d6:a0:b8:6a:a8:d4:31: 90:14:3e:ea:8c:66:22:25:80:72:a4:8b:b2:90:dc: b9:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:5C:3A:F5:36:7F:5D:E4:55:65:73:69:37:CD:88:F2:89:DB:94:35 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/hVw69TZ_XeRVZXNpN82I8onblDU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 114.198.160.0/20 Signature Algorithm: sha256WithRSAEncryption 41:c6:0d:c8:f7:48:65:61:f6:a3:a0:82:ac:6a:0f:8d:04:cd: 01:33:6c:63:86:2d:20:d8:a8:3b:85:3f:c0:a2:ba:c3:99:aa: 3c:ef:f7:b3:04:c2:c2:d8:84:32:08:49:d8:c1:03:26:a5:99: be:3b:b7:7c:e8:05:9e:64:da:91:a8:d2:e9:75:d0:79:4e:dc: 2b:10:67:3c:e1:4e:c5:93:30:01:1c:37:ec:c5:7e:af:b4:c1: 1c:93:ba:01:51:5e:da:e0:57:75:a1:6e:48:ec:ff:e6:d8:9b: 34:6c:0c:dc:ff:d9:c5:7b:53:2e:ba:c2:b6:9a:66:da:8d:1f: a5:5b:d0:4b:e5:a6:d8:0a:ef:e9:84:90:fa:d8:8e:8e:76:af: da:bc:92:70:48:d3:b6:94:f5:c8:0e:e2:f2:7e:d2:d4:5a:0f: 7e:ea:03:34:aa:b5:d7:de:42:02:76:4c:07:8e:3d:8c:3e:41: 5c:9b:02:ab:bd:4e:86:6e:54:d1:bd:e4:64:ee:f8:34:4e:40: c9:c8:2c:19:7f:88:72:78:10:88:c7:de:92:c3:84:14:f1:83: c6:7a:f3:02:f8:4f:a9:f9:a4:19:c0:b0:3f:69:17:26:0e:3e: 97:50:31:93:ab:58:ad:6f:a2:aa:cc:5c:12:f6:5a:dc:0c:b0: 56:86:d3:0c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICItowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTM0MjZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg1NUMzQUY1MzY3RjVE RTQ1NTY1NzM2OTM3Q0Q4OEYyODlEQjk0MzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDaxL2gtOEbnkNrAFoTXB53+7sCrIdO99IreJVxEmi4c5Dz1hBn WaV7HFef3lLhEBSNnpy65BuRJtYl707g/0PGAgvErQR5M+XR+60Yy/v95sCQ//pH kbdmc9Xqa0zkPryCjtCXz/Q3naVlK914f+dn79OwKb6WBAukZ90F44CbrzO52SNz AEO6kAGXb7FC7Gd0dMlqq2yOVY/UVVkLFA42tjFi+PlB98ek70prk/Pt1H2hCPV7 cCvPu2znRblM9PvyVYY+WQ9IpIyPtRmDJaZkWJ3XqBtD5/S7yx0g37ei5XXS+5S1 M9hf1qC4aqjUMZAUPuqMZiIlgHKki7KQ3LnjAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUhVw69TZ/XeRVZXNpN82I8onblDUwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2hWdzY5VFpfWGVSVlpYTnBO ODJJOG9uYmxEVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBARy xqAwDQYJKoZIhvcNAQELBQADggEBAEHGDcj3SGVh9qOggqxqD40EzQEzbGOGLSDY qDuFP8CiusOZqjzv97MEwsLYhDIISdjBAyalmb47t3zoBZ5k2pGo0ul10HlO3CsQ ZzzhTsWTMAEcN+zFfq+0wRyTugFRXtrgV3Whbkjs/+bYmzRsDNz/2cV7Uy66wraa ZtqNH6Vb0EvlptgK7+mEkPrYjo52r9q8knBI07aU9cgO4vJ+0tRaD37qAzSqtdfe QgJ2TAeOPYw+QVybAqu9ToZuVNG95GTu+DROQMnILBl/iHJ4EIjH3pLDhBTxg8Z6 8wL4T6n5pBnAsD9pFyYOPpdQMZOrWK1voqrMXBL2WtwMsFaG0ww= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:26 2024 by rpki-client on console-ams.rpki-client.org