$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/lXe48dp2TPw_FdWY1u1T-fPstJ8.roa File: lXe48dp2TPw_FdWY1u1T-fPstJ8.roa (raw, json) Hash identifier: noBmpr9Oq+ecnpuyo3ksnD89L1Kk8JRK4xksh6qjNwI= Subject key identifier: 95:77:B8:F1:DA:76:4C:FC:3F:15:D5:98:D6:ED:53:F9:F3:EC:B4:9F Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 215E Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/lXe48dp2TPw_FdWY1u1T-fPstJ8.roa Signing time: Mon 26 Aug 2024 05:32:56 +0000 ROA not before: Mon 26 Aug 2024 05:32:56 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 180.218.32.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8542 (0x215e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:32:56 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=9577B8F1DA764CFC3F15D598D6ED53F9F3ECB49F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:a0:0c:de:19:78:09:da:4b:e6:a9:90:2e:8a: e9:6e:6f:a7:8a:83:71:07:a2:75:1b:38:b7:c7:ef: fe:c5:ec:13:92:62:d9:6b:36:bd:3b:42:ab:b9:ce: 6f:71:04:31:bf:31:90:af:81:3b:78:c2:2c:ff:f3: 29:7a:ab:03:47:dd:4f:5e:05:e1:b2:c3:3d:e4:1c: 9c:bd:50:7e:fc:46:e3:b0:4c:d3:b2:61:0e:de:28: 79:f4:2c:93:8a:6f:5e:93:7b:9f:cc:af:83:02:4b: eb:6b:ae:9b:a6:09:88:43:65:ec:b9:7e:19:8e:9c: 0e:b5:2c:e9:06:98:33:bf:16:4a:57:ca:14:2f:31: 84:90:01:70:83:79:2e:42:68:75:54:f0:23:52:0c: be:f0:cc:fe:cc:60:bf:77:8f:96:7f:ce:07:c3:f6: 76:35:f5:f4:0d:a4:4f:23:bc:1e:5b:47:dc:96:be: e5:20:fc:a2:ab:1e:56:0b:1b:13:9e:f2:47:5a:0e: b3:df:78:5e:e2:a5:fd:bb:5e:c2:2a:f4:b6:a4:c3: 3b:75:36:be:48:f2:6e:46:c0:c6:bf:c1:91:6c:88: 5f:ec:4b:29:d2:1d:d6:1a:05:99:2c:c6:c1:33:9f: 8e:69:9f:d5:27:5e:ca:25:08:0d:5a:95:dc:6e:df: 57:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:77:B8:F1:DA:76:4C:FC:3F:15:D5:98:D6:ED:53:F9:F3:EC:B4:9F X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/lXe48dp2TPw_FdWY1u1T-fPstJ8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.32.0/21 Signature Algorithm: sha256WithRSAEncryption 95:fb:1f:bc:09:66:43:5e:e2:01:cb:c1:2c:46:54:58:ab:bd: 96:55:7f:c6:64:07:f2:3e:54:b6:f6:13:f7:ff:29:d8:19:93: f0:2a:04:e8:d9:2b:5b:57:65:03:de:8b:c6:c3:49:9d:a6:47: 1e:b2:86:74:68:09:28:74:72:ce:5d:59:1c:21:d3:8e:b6:37: ce:3d:64:c1:96:f8:fc:bb:03:d2:b3:79:7a:75:b2:2f:2c:f2: ce:ac:0f:37:e9:f7:20:71:b0:52:83:96:f5:98:60:b3:57:8d: 91:0d:46:78:9d:86:bf:ba:cf:95:64:a1:20:07:3f:6c:30:67: ef:e7:e4:bc:c5:98:9f:e1:e7:f0:bd:1a:d4:fa:52:b0:f6:00: be:3d:82:f8:c2:ab:03:e2:de:a9:11:7a:c3:d2:ac:47:1d:6a: 3e:f6:c5:87:c9:e3:75:3f:4e:58:8b:ff:5b:21:05:13:2d:01: c0:ff:bd:7a:70:22:6c:a2:2e:21:c4:9c:d2:32:02:e2:fe:67: 6c:2c:b5:2a:79:4f:af:71:49:31:27:9e:b3:85:c6:8c:65:2a: 4a:65:ab:8f:5d:ee:48:2a:08:05:22:e4:22:4d:35:34:ff:87: 70:81:a8:5f:ce:6d:18:18:1e:2b:cf:cd:81:f6:40:0d:ea:b2: 31:08:3c:2c -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIV4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMyNTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDk1NzdCOEYxREE3NjRD RkMzRjE1RDU5OEQ2RUQ1M0Y5RjNFQ0I0OUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDdoAzeGXgJ2kvmqZAuiulub6eKg3EHonUbOLfH7/7F7BOSYtlr Nr07Qqu5zm9xBDG/MZCvgTt4wiz/8yl6qwNH3U9eBeGywz3kHJy9UH78RuOwTNOy YQ7eKHn0LJOKb16Te5/Mr4MCS+trrpumCYhDZey5fhmOnA61LOkGmDO/FkpXyhQv MYSQAXCDeS5CaHVU8CNSDL7wzP7MYL93j5Z/zgfD9nY19fQNpE8jvB5bR9yWvuUg /KKrHlYLGxOe8kdaDrPfeF7ipf27XsIq9Lakwzt1Nr5I8m5GwMa/wZFsiF/sSynS HdYaBZksxsEzn45pn9UnXsolCA1aldxu31eVAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUlXe48dp2TPw/FdWY1u1T+fPstJ8wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2xYZTQ4ZHAyVFB3X0ZkV1kx dTFULWZQc3RKOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0 2iAwDQYJKoZIhvcNAQELBQADggEBAJX7H7wJZkNe4gHLwSxGVFirvZZVf8ZkB/I+ VLb2E/f/KdgZk/AqBOjZK1tXZQPei8bDSZ2mRx6yhnRoCSh0cs5dWRwh0462N849 ZMGW+Py7A9KzeXp1si8s8s6sDzfp9yBxsFKDlvWYYLNXjZENRnidhr+6z5VkoSAH P2wwZ+/n5LzFmJ/h5/C9GtT6UrD2AL49gvjCqwPi3qkResPSrEcdaj72xYfJ43U/ TliL/1shBRMtAcD/vXpwImyiLiHEnNIyAuL+Z2wstSp5T69xSTEnnrOFxoxlKkpl q49d7kgqCAUi5CJNNTT/h3CBqF/ObRgYHivPzYH2QA3qsjEIPCw= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:41 2024 by rpki-client on console-ams.rpki-client.org