$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/jOpAVL1CYQsN93XnhbUMZiJn6Zo.roa File: jOpAVL1CYQsN93XnhbUMZiJn6Zo.roa (raw, json) Hash identifier: iwsw6tAae6fjocgjf23ZJO1YJEvH3Kcfy3zyKcsTInc= Subject key identifier: 8C:EA:40:54:BD:42:61:0B:0D:F7:75:E7:85:B5:0C:66:22:67:E9:9A Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 223D Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/jOpAVL1CYQsN93XnhbUMZiJn6Zo.roa Signing time: Mon 26 Aug 2024 05:33:49 +0000 ROA not before: Mon 26 Aug 2024 05:33:49 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 180.218.156.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8765 (0x223d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:49 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8CEA4054BD42610B0DF775E785B50C662267E99A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:a5:1d:64:6b:7f:9a:ce:b6:4d:08:d2:20:1f: b3:7c:89:bb:af:54:17:f5:c9:39:9d:a8:cc:46:11: 28:8d:de:aa:20:a0:67:eb:97:45:9d:46:64:b3:ff: 14:9f:7c:c9:a2:eb:c2:4b:a7:b1:4b:99:41:b6:e2: 03:84:2b:49:a0:96:a7:3b:22:9b:a7:b5:26:08:b0: 84:40:9d:e4:40:d6:f5:a3:aa:37:7d:ae:12:76:87: 92:4b:f7:86:34:00:5f:28:05:98:cc:e6:5e:64:55: 99:7f:74:41:65:f0:1f:a4:eb:d7:ab:54:43:75:e1: ed:31:bc:48:e3:4d:11:a3:92:1e:40:41:1e:1b:ff: af:e1:c9:1c:8b:fa:02:38:bb:fa:8a:ce:6c:ce:94: 91:04:fa:ee:95:82:fe:08:65:47:0d:c2:9b:b9:b6: 6e:0a:69:7e:35:5c:db:a1:51:a9:75:98:81:9c:1b: 23:26:eb:09:ee:81:49:96:3e:8c:e2:37:13:4b:5f: 53:f8:53:c0:b6:39:2a:31:33:d3:82:45:da:0c:57: 18:db:99:5f:8c:f0:89:67:7a:ff:06:fb:85:05:ae: 75:09:bd:38:c1:8b:b7:f4:c3:df:11:b4:21:1b:26: ce:bc:46:6f:48:ec:fb:cc:03:44:d1:8f:86:3b:b6: 72:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:EA:40:54:BD:42:61:0B:0D:F7:75:E7:85:B5:0C:66:22:67:E9:9A X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/jOpAVL1CYQsN93XnhbUMZiJn6Zo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.156.0/22 Signature Algorithm: sha256WithRSAEncryption 1b:40:71:c7:29:dc:29:e4:9e:df:e3:a8:4f:e6:17:7f:aa:04: a5:cd:59:92:58:8a:ee:1a:ad:51:9a:de:c2:56:f6:fe:2c:8e: 5d:c4:4b:9f:2d:68:10:32:53:85:85:7c:1a:f8:45:55:23:89: 2a:ea:db:4c:f6:f0:77:95:86:30:f7:49:22:82:f6:ff:13:2a: eb:82:41:d8:55:f0:ab:c9:57:18:f0:18:d6:30:d8:c5:4a:9f: db:ed:32:56:cf:12:0b:87:e8:02:80:10:dc:1a:36:1c:43:d9: 69:fa:03:0b:2e:67:c2:57:51:46:98:e8:4a:54:4f:1d:8d:64: 53:3f:3f:92:95:bc:94:c5:f0:97:61:cf:ef:70:44:c0:68:a8: 27:56:51:6e:9c:dc:3b:87:10:9c:c9:e4:21:06:7d:62:d8:74: 07:ed:93:07:ca:2d:50:33:86:c9:7d:0d:7d:d4:55:7c:d4:f0: 71:27:e8:68:b3:76:be:ac:60:fc:13:c5:33:cb:30:99:f4:10: 91:63:88:3e:06:22:ad:8a:04:1e:75:63:31:e5:07:ea:4f:63: 8d:0a:77:34:98:30:12:b2:a2:45:7f:d3:de:e3:b6:b0:63:c6: 50:eb:ce:d4:d8:33:d5:97:fd:ee:d9:52:f1:d4:ae:45:85:fb: 44:38:17:01 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIj0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzNDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhDRUE0MDU0QkQ0MjYx MEIwREY3NzVFNzg1QjUwQzY2MjI2N0U5OUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDbpR1ka3+azrZNCNIgH7N8ibuvVBf1yTmdqMxGESiN3qogoGfr l0WdRmSz/xSffMmi68JLp7FLmUG24gOEK0mglqc7IpuntSYIsIRAneRA1vWjqjd9 rhJ2h5JL94Y0AF8oBZjM5l5kVZl/dEFl8B+k69erVEN14e0xvEjjTRGjkh5AQR4b /6/hyRyL+gI4u/qKzmzOlJEE+u6Vgv4IZUcNwpu5tm4KaX41XNuhUal1mIGcGyMm 6wnugUmWPoziNxNLX1P4U8C2OSoxM9OCRdoMVxjbmV+M8Ilnev8G+4UFrnUJvTjB i7f0w98RtCEbJs68Rm9I7PvMA0TRj4Y7tnLNAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUjOpAVL1CYQsN93XnhbUMZiJn6ZowHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2pPcEFWTDFDWVFzTjkzWG5o YlVNWmlKbjZaby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK0 2pwwDQYJKoZIhvcNAQELBQADggEBABtAcccp3Cnknt/jqE/mF3+qBKXNWZJYiu4a rVGa3sJW9v4sjl3ES58taBAyU4WFfBr4RVUjiSrq20z28HeVhjD3SSKC9v8TKuuC QdhV8KvJVxjwGNYw2MVKn9vtMlbPEguH6AKAENwaNhxD2Wn6AwsuZ8JXUUaY6EpU Tx2NZFM/P5KVvJTF8Jdhz+9wRMBoqCdWUW6c3DuHEJzJ5CEGfWLYdAftkwfKLVAz hsl9DX3UVXzU8HEn6Gizdr6sYPwTxTPLMJn0EJFjiD4GIq2KBB51YzHlB+pPY40K dzSYMBKyokV/097jtrBjxlDrztTYM9WX/e7ZUvHUrkWF+0Q4FwE= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:41 2024 by rpki-client on console-ams.rpki-client.org