$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/uJRfAx5rk2xXM3IY-81T4EwtQEA.roa File: uJRfAx5rk2xXM3IY-81T4EwtQEA.roa (raw, json) Hash identifier: MvWHlV4rFn54/4AvbAGR3XilZF2PJI2INrSQni6Hp5Y= Subject key identifier: B8:94:5F:03:1E:6B:93:6C:57:33:72:18:FB:CD:53:E0:4C:2D:40:40 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 21F4 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/uJRfAx5rk2xXM3IY-81T4EwtQEA.roa Signing time: Mon 26 Aug 2024 05:33:30 +0000 ROA not before: Mon 26 Aug 2024 05:33:30 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 180.218.139.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8692 (0x21f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:30 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B8945F031E6B936C57337218FBCD53E04C2D4040 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:cb:9f:c3:78:f9:d1:26:84:be:a9:a6:4c:e6: 99:f7:9d:56:11:19:08:75:04:08:b7:a2:46:b3:c7: bb:66:1a:95:ac:cd:67:07:b2:f9:cb:66:eb:7a:0b: 0b:8b:80:33:0b:3e:c7:1e:5c:6f:6a:78:af:7f:61: 48:67:c0:b5:20:3c:2c:35:16:0b:09:7a:d8:42:7c: cc:1b:73:fc:3a:ce:98:ac:60:8a:0b:41:58:b7:97: bc:cf:2d:6a:6f:42:3c:5c:fe:58:3b:89:7b:f5:9a: 1b:f6:fc:8f:1e:2a:29:b7:9a:71:3a:84:2c:c6:77: 0c:84:d2:9d:1c:58:77:bc:d4:bd:66:45:6b:f0:38: 3c:93:aa:71:d6:6c:f8:13:96:37:f3:ab:28:32:e6: f4:0c:e8:a6:d3:75:1c:de:35:bc:48:04:95:c2:0a: e1:e6:95:2b:49:e6:85:ce:70:05:9f:aa:9d:1a:29: 51:04:5f:b8:1b:78:78:66:bd:40:4e:b3:d6:e9:32: 30:00:98:cc:50:8e:a5:46:52:2d:60:63:24:dd:dc: 16:b6:aa:e0:23:bd:98:9f:c1:0f:59:bb:16:f1:80: 43:d8:af:00:17:65:ab:c7:c0:c3:61:b8:b2:8b:e9: e9:1c:eb:52:66:b5:95:74:0b:ae:4a:29:54:8a:f7: ba:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:94:5F:03:1E:6B:93:6C:57:33:72:18:FB:CD:53:E0:4C:2D:40:40 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/uJRfAx5rk2xXM3IY-81T4EwtQEA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.139.0/24 Signature Algorithm: sha256WithRSAEncryption 6a:4c:59:cc:65:1d:ec:b0:0f:be:9e:80:1e:72:fe:7d:3c:7d: 27:62:ff:ab:0e:f9:0b:b1:23:62:d4:c5:02:61:27:02:d1:f2: b5:04:08:a9:c2:2b:0e:eb:14:45:07:03:f0:71:f7:e5:6d:6f: b5:58:56:4f:d8:ac:bd:b7:cf:c1:79:7f:e7:f3:2c:af:69:cb: 5f:82:e3:83:de:0c:e1:3e:86:78:31:df:a5:89:de:5a:ea:df: 5f:a8:11:83:4f:f1:58:d9:e2:c7:d5:eb:b5:77:63:3b:fe:90: 66:67:e7:4f:8a:75:93:b0:aa:c8:63:a8:e0:6a:57:45:6d:5d: d4:b5:56:bd:38:b0:df:eb:61:f0:bd:b7:f4:83:f7:16:12:0d: 0d:51:39:56:07:81:e9:80:5d:5b:8f:e6:2b:87:33:da:71:c3: 45:fe:77:e8:b6:0c:71:67:16:fc:71:68:d6:36:34:22:f9:17: 08:ec:bc:12:87:44:1b:10:fc:59:24:2c:a4:48:34:db:48:1b: 6d:98:36:59:82:17:87:12:39:47:09:bd:b9:fd:f5:92:5c:d7: 37:fe:a1:c0:2f:0c:11:5e:d6:d6:0a:c3:f6:5e:77:a0:ea:ba: 8b:2a:ca:4f:09:d6:03:33:41:80:28:ad:fb:52:ae:1f:57:31: f7:5c:7a:46 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIfQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzMzBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI4OTQ1RjAzMUU2Qjkz NkM1NzMzNzIxOEZCQ0Q1M0UwNEMyRDQwNDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+y5/DePnRJoS+qaZM5pn3nVYRGQh1BAi3okazx7tmGpWszWcH svnLZut6CwuLgDMLPsceXG9qeK9/YUhnwLUgPCw1FgsJethCfMwbc/w6zpisYIoL QVi3l7zPLWpvQjxc/lg7iXv1mhv2/I8eKim3mnE6hCzGdwyE0p0cWHe81L1mRWvw ODyTqnHWbPgTljfzqygy5vQM6KbTdRzeNbxIBJXCCuHmlStJ5oXOcAWfqp0aKVEE X7gbeHhmvUBOs9bpMjAAmMxQjqVGUi1gYyTd3Ba2quAjvZifwQ9ZuxbxgEPYrwAX ZavHwMNhuLKL6ekc61JmtZV0C65KKVSK97q3AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUuJRfAx5rk2xXM3IY+81T4EwtQEAwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3VKUmZBeDVyazJ4WE0zSVkt ODFUNEV3dFFFQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAC0 2oswDQYJKoZIhvcNAQELBQADggEBAGpMWcxlHeywD76egB5y/n08fSdi/6sO+Qux I2LUxQJhJwLR8rUECKnCKw7rFEUHA/Bx9+Vtb7VYVk/YrL23z8F5f+fzLK9py1+C 44PeDOE+hngx36WJ3lrq31+oEYNP8VjZ4sfV67V3Yzv+kGZn50+KdZOwqshjqOBq V0VtXdS1Vr04sN/rYfC9t/SD9xYSDQ1ROVYHgemAXVuP5iuHM9pxw0X+d+i2DHFn FvxxaNY2NCL5FwjsvBKHRBsQ/FkkLKRINNtIG22YNlmCF4cSOUcJvbn99ZJc1zf+ ocAvDBFe1tYKw/Zed6Dquosqyk8J1gMzQYAorftSrh9XMfdcekY= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:41 2024 by rpki-client on console-ams.rpki-client.org