$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/hXq-bzqca-97S8M243DTQOhwi_U.roa File: hXq-bzqca-97S8M243DTQOhwi_U.roa (raw, json) Hash identifier: pH9IRsBE1NrXzuCSfemWfkoLHkj3TJgCz4UymIsjeB8= Subject key identifier: 85:7A:BE:6F:3A:9C:6B:EF:7B:4B:C3:36:E3:70:D3:40:E8:70:8B:F5 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 21EE Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/hXq-bzqca-97S8M243DTQOhwi_U.roa Signing time: Mon 26 Aug 2024 05:33:29 +0000 ROA not before: Mon 26 Aug 2024 05:33:29 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 180.218.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8686 (0x21ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:29 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=857ABE6F3A9C6BEF7B4BC336E370D340E8708BF5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:4e:8b:5b:74:ba:eb:aa:7a:59:49:d1:0b:66: 0d:53:6f:f5:67:78:92:39:30:9a:34:d4:7e:85:06: ea:8d:63:58:47:60:6a:10:dc:c7:3d:25:fd:ac:79: dc:ee:3c:b8:a8:d0:e4:9a:36:2a:d2:f2:43:d5:73: a4:de:77:9b:94:52:54:7b:c6:8d:ba:1e:8d:c8:5e: 78:cc:72:da:5c:de:2f:3a:1a:49:08:ab:d7:eb:42: 5e:77:d3:a5:84:42:2b:7e:b7:4d:47:9d:ba:a4:a2: a5:74:89:d7:db:50:9a:be:49:c7:8d:1f:7a:c9:a9: 32:97:35:be:bb:ef:8e:c5:39:45:a3:7a:08:04:a4: 08:ae:7e:b2:d3:f3:00:5d:0c:bc:24:51:e4:40:cd: cd:11:e8:cb:70:a2:b2:2d:0c:17:ce:04:c3:0d:a6: 3a:54:e6:54:4b:86:97:42:8d:0a:aa:c8:3b:d8:aa: 81:2d:e2:25:b1:61:8f:e0:e4:05:57:4e:bb:9d:da: 56:0c:0f:ca:19:3a:7a:9b:9e:2f:19:e7:f2:73:62: a9:71:fe:2a:7c:e1:73:8a:08:6f:c1:13:91:83:aa: e3:fb:1d:a6:5c:8c:5f:f6:f5:af:96:3c:50:9b:f8: 72:83:d0:cb:51:c2:0c:6d:b7:74:c3:72:dd:27:2b: 5a:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:7A:BE:6F:3A:9C:6B:EF:7B:4B:C3:36:E3:70:D3:40:E8:70:8B:F5 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/hXq-bzqca-97S8M243DTQOhwi_U.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.56.0/24 Signature Algorithm: sha256WithRSAEncryption 5a:19:79:70:d8:3a:19:bd:4a:3c:a6:7a:b4:45:2b:c0:36:ab: 1c:5b:6e:cc:3f:ef:c7:13:62:4e:63:8d:35:d8:94:f7:31:3d: bc:5b:16:31:d9:18:c4:89:43:b6:34:ba:42:f4:8b:68:00:48: 03:b5:46:c9:d6:c0:ed:2a:06:2c:cc:9e:db:cb:d1:77:04:f0: 8a:e6:e9:05:a5:c0:bc:d1:7c:d4:94:44:10:3b:62:b4:74:27: 68:f8:f9:a3:48:ed:26:79:70:07:7a:e0:d4:5c:7e:a7:73:a0: 31:21:02:fc:11:e7:ab:29:43:c9:ea:86:f9:0c:8e:54:21:a7: d7:b0:d7:aa:3b:9a:34:26:94:a4:7b:57:f5:75:fb:4b:6f:e5: 18:33:91:33:bd:36:e3:a8:cc:e7:e4:93:d7:a9:ea:71:83:1c: b1:34:22:a7:06:6f:5d:38:d1:85:ac:61:20:87:00:d5:28:fa: cf:1f:a2:f5:30:3c:51:4e:2d:47:eb:d2:62:32:4c:c8:67:8c: b6:3b:9a:bc:e1:4f:e1:f1:02:a3:cd:db:cc:65:ba:88:1c:3f: 7a:38:9c:4f:3b:3b:5a:07:a8:f1:8a:be:6f:68:c9:14:6d:4e: 6a:69:1f:db:ad:44:13:a5:9c:88:f3:b5:f2:3f:fc:8e:a2:0a: 49:4e:7f:9c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIe4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzMjlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg1N0FCRTZGM0E5QzZC RUY3QjRCQzMzNkUzNzBEMzQwRTg3MDhCRjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDlTotbdLrrqnpZSdELZg1Tb/VneJI5MJo01H6FBuqNY1hHYGoQ 3Mc9Jf2sedzuPLio0OSaNirS8kPVc6Ted5uUUlR7xo26Ho3IXnjMctpc3i86GkkI q9frQl5306WEQit+t01HnbqkoqV0idfbUJq+SceNH3rJqTKXNb67747FOUWjeggE pAiufrLT8wBdDLwkUeRAzc0R6MtworItDBfOBMMNpjpU5lRLhpdCjQqqyDvYqoEt 4iWxYY/g5AVXTrud2lYMD8oZOnqbni8Z5/JzYqlx/ip84XOKCG/BE5GDquP7HaZc jF/29a+WPFCb+HKD0MtRwgxtt3TDct0nK1oBAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUhXq+bzqca+97S8M243DTQOhwi/UwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2hYcS1ienFjYS05N1M4TTI0 M0RUUU9od2lfVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAC0 2jgwDQYJKoZIhvcNAQELBQADggEBAFoZeXDYOhm9SjymerRFK8A2qxxbbsw/78cT Yk5jjTXYlPcxPbxbFjHZGMSJQ7Y0ukL0i2gASAO1RsnWwO0qBizMntvL0XcE8Irm 6QWlwLzRfNSURBA7YrR0J2j4+aNI7SZ5cAd64NRcfqdzoDEhAvwR56spQ8nqhvkM jlQhp9ew16o7mjQmlKR7V/V1+0tv5RgzkTO9NuOozOfkk9ep6nGDHLE0IqcGb104 0YWsYSCHANUo+s8fovUwPFFOLUfr0mIyTMhnjLY7mrzhT+HxAqPN28xluogcP3o4 nE87O1oHqPGKvm9oyRRtTmppH9utRBOlnIjztfI//I6iCklOf5w= -----END CERTIFICATE-----Generated at Fri Nov 22 10:07:00 2024 by rpki-client on console-fra.rpki-client.org