$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/vFbKmb0f_ZlHexNwU1f7rmNUuHw.roa File: vFbKmb0f_ZlHexNwU1f7rmNUuHw.roa (raw, json) Hash identifier: XH2Cd5PegSvP1z/SYY5cM9nnUFIExKnPzxiAHyCaB5U= Subject key identifier: BC:56:CA:99:BD:1F:FD:99:47:7B:13:70:53:57:FB:AE:63:54:B8:7C Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 216C Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/vFbKmb0f_ZlHexNwU1f7rmNUuHw.roa Signing time: Mon 26 Aug 2024 05:32:59 +0000 ROA not before: Mon 26 Aug 2024 05:32:59 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 180.218.164.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:55:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8556 (0x216c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:32:59 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=BC56CA99BD1FFD99477B13705357FBAE6354B87C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:2b:31:0d:06:dc:77:ee:f8:0c:f6:05:24:58: 45:f0:88:8d:eb:16:5e:6f:6d:d7:fa:1e:4d:01:b3: f1:ea:67:0e:96:db:bb:09:b7:24:d6:6d:13:6d:aa: 76:3e:01:e9:8f:6c:fd:3d:c5:5e:05:82:f5:19:be: 6d:4f:15:bf:33:fb:aa:cb:b0:98:0f:f2:b6:a8:72: 25:6a:2e:4c:a7:aa:f7:d6:f8:85:64:b3:fe:05:84: 39:3e:6f:26:97:94:b6:7d:61:72:7f:51:b9:2d:8a: 09:8a:e6:f6:c8:aa:da:a6:1d:f4:cb:d1:50:cc:6d: 93:25:c4:62:77:28:21:1a:3c:c1:8a:0a:b5:6a:d0: a5:fb:0b:a4:57:71:72:ad:a4:f8:b1:69:16:32:9c: 39:3f:57:9c:b4:bc:7e:ab:e2:38:4e:15:25:9d:20: 9a:64:0b:6f:36:28:04:ff:d9:f1:fe:d6:60:95:e1: 88:cf:18:bc:6f:dd:71:c8:6c:a8:a1:b6:5f:1a:0a: 63:c0:bb:fa:62:9a:2c:23:a2:fa:62:df:75:36:1c: 40:7c:bc:e3:cf:30:89:f7:31:15:33:ca:ef:7b:23: 45:0b:69:07:97:da:b7:74:c6:ac:e4:26:bb:4a:88: 25:ab:95:0c:27:9d:a0:ad:e3:78:59:a9:ad:87:36: e0:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:56:CA:99:BD:1F:FD:99:47:7B:13:70:53:57:FB:AE:63:54:B8:7C X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/vFbKmb0f_ZlHexNwU1f7rmNUuHw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.164.0/22 Signature Algorithm: sha256WithRSAEncryption 7a:b8:a4:ae:8c:82:ba:3d:7c:f9:8f:1e:45:ec:21:30:8e:7b: ae:dd:9a:b0:b6:a2:bf:9a:8f:f6:dd:fb:61:ef:41:a9:7e:98: 44:52:a5:9e:20:fb:ef:74:62:8c:c6:bd:aa:e5:33:c3:51:01: f4:ce:87:64:d1:9f:4d:d3:b3:6e:bc:63:e8:08:18:fe:bc:85: 80:15:e6:a2:6f:e6:d2:cc:da:7f:86:b0:ba:cf:7c:d3:0b:fd: f9:46:02:31:0c:6b:e8:0f:25:a8:e0:28:2f:45:76:51:d4:48: 67:47:c6:fc:1a:af:ec:0b:ad:02:e3:37:05:c5:23:f2:88:3c: 47:e4:54:fa:e2:1a:d6:36:c0:26:87:ce:28:ef:f6:e1:43:89: c1:e8:26:34:9f:c5:da:bd:18:db:0f:93:32:7d:5a:bd:f5:3b: 88:af:c8:69:56:a9:ff:2e:97:5b:c8:54:20:88:08:60:37:4f: b2:fb:0b:b7:51:7d:56:5d:86:30:61:6c:c8:a7:6a:19:aa:2c: 4b:39:49:f6:11:e7:ea:d6:e2:dc:83:58:0d:78:82:f2:8f:c5: 53:84:3d:07:94:13:9c:38:92:01:50:d7:02:eb:8b:cf:7b:cc: d8:04:a5:8c:18:8a:ae:b9:f0:ae:14:98:18:40:4c:47:71:e8: b1:02:2c:f9 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIWwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMyNTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEJDNTZDQTk5QkQxRkZE OTk0NzdCMTM3MDUzNTdGQkFFNjM1NEI4N0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5KzENBtx37vgM9gUkWEXwiI3rFl5vbdf6Hk0Bs/HqZw6W27sJ tyTWbRNtqnY+AemPbP09xV4FgvUZvm1PFb8z+6rLsJgP8raociVqLkynqvfW+IVk s/4FhDk+byaXlLZ9YXJ/UbktigmK5vbIqtqmHfTL0VDMbZMlxGJ3KCEaPMGKCrVq 0KX7C6RXcXKtpPixaRYynDk/V5y0vH6r4jhOFSWdIJpkC282KAT/2fH+1mCV4YjP GLxv3XHIbKihtl8aCmPAu/pimiwjovpi33U2HEB8vOPPMIn3MRUzyu97I0ULaQeX 2rd0xqzkJrtKiCWrlQwnnaCt43hZqa2HNuC/AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUvFbKmb0f/ZlHexNwU1f7rmNUuHwwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3ZGYkttYjBmX1psSGV4TndV MWY3cm1OVXVIdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK0 2qQwDQYJKoZIhvcNAQELBQADggEBAHq4pK6Mgro9fPmPHkXsITCOe67dmrC2or+a j/bd+2HvQal+mERSpZ4g++90YozGvarlM8NRAfTOh2TRn03Ts268Y+gIGP68hYAV 5qJv5tLM2n+GsLrPfNML/flGAjEMa+gPJajgKC9FdlHUSGdHxvwar+wLrQLjNwXF I/KIPEfkVPriGtY2wCaHzijv9uFDicHoJjSfxdq9GNsPkzJ9Wr31O4ivyGlWqf8u l1vIVCCICGA3T7L7C7dRfVZdhjBhbMinahmqLEs5SfYR5+rW4tyDWA14gvKPxVOE PQeUE5w4kgFQ1wLri897zNgEpYwYiq658K4UmBhATEdx6LECLPk= -----END CERTIFICATE-----Generated at Mon Nov 25 20:56:46 2024 by rpki-client on console-fra.rpki-client.org