$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/wjocivNGPr-3EN5-JGVrdtnVDVI.roa File: wjocivNGPr-3EN5-JGVrdtnVDVI.roa (raw, json) Hash identifier: FgigB3nyuDYsEYcUhdYi9UgQVJGMLuk86uXBmjCR9Cc= Subject key identifier: C2:3A:1C:8A:F3:46:3E:BF:B7:10:DE:7E:24:65:6B:76:D9:D5:0D:52 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2292 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/wjocivNGPr-3EN5-JGVrdtnVDVI.roa Signing time: Mon 26 Aug 2024 05:34:08 +0000 ROA not before: Mon 26 Aug 2024 05:34:08 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 119.77.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8850 (0x2292) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:34:08 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C23A1C8AF3463EBFB710DE7E24656B76D9D50D52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:b8:dc:78:20:3c:40:26:aa:b3:4e:fd:9e:6a: d9:61:1e:47:a7:70:0a:1c:46:5f:0d:2e:c2:6f:f2: 59:05:ef:ae:b3:b3:97:26:ea:9d:dd:ac:83:87:32: c2:54:da:06:b1:4e:d0:fd:3d:78:01:3e:64:08:d0: 0b:5f:ba:17:29:00:10:43:7c:80:d6:f3:a4:b3:ab: 62:98:36:33:ee:2a:fe:7d:e6:46:8f:83:b0:1c:e1: 2f:42:fc:2c:98:b5:3e:32:a0:08:fd:e5:ca:40:46: 41:ad:01:e1:a2:3c:a3:f7:51:e8:ce:68:c6:3b:bd: 6b:e7:b2:71:f9:57:50:ca:9e:f5:cf:eb:f9:70:98: ca:f9:a7:ea:87:99:3f:40:ba:32:b3:40:af:fa:91: b1:4d:d3:a4:9a:b0:ab:82:b6:6a:ab:39:ae:f9:20: da:3e:68:ee:2c:7b:14:44:d1:5f:f0:9d:53:86:f1: 5f:dc:c3:02:60:bc:d7:bc:bc:85:5a:66:0c:22:89: 29:70:50:1b:aa:4a:db:3b:a4:0d:44:5f:ec:2c:13: 51:1d:e0:a6:26:ce:4e:a6:5a:d5:82:a7:77:0f:50: 6c:66:b3:d9:54:9c:d4:44:ef:58:a2:4e:13:00:b6: 3f:72:35:68:2f:e8:65:91:d7:af:3f:2a:96:30:b8: db:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:3A:1C:8A:F3:46:3E:BF:B7:10:DE:7E:24:65:6B:76:D9:D5:0D:52 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/wjocivNGPr-3EN5-JGVrdtnVDVI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 119.77.192.0/19 Signature Algorithm: sha256WithRSAEncryption 8f:21:83:f6:46:1d:d0:91:6a:ee:7c:87:b0:73:85:ec:0f:89: b5:c7:6e:5e:61:ad:78:e8:de:13:ad:f9:d3:7e:16:44:60:c7: 03:b2:c4:ec:32:3d:97:25:de:88:fc:1e:d0:05:47:e0:aa:c2: b4:95:f1:84:7a:ef:12:d6:ba:4b:53:98:0a:5c:be:f2:25:34: 17:a3:b4:9d:a5:df:b3:7b:f3:17:f3:10:93:96:40:3a:88:fd: 82:95:4f:30:34:2c:98:9c:0a:65:3b:2d:f5:bc:19:50:91:6a: 6c:d1:f6:62:b8:b7:f9:12:99:dc:7b:3d:b7:69:71:68:84:06: ef:86:aa:9b:74:27:6e:99:24:06:fd:19:04:73:6b:3a:41:8a: 61:09:bf:8b:72:bd:1f:90:b1:05:06:27:0c:26:09:b2:4b:f5: e2:dc:c9:60:80:86:c1:89:23:eb:e4:f1:c3:57:38:13:27:a3: 9d:9e:3b:ab:64:f9:3d:f3:a0:e9:1d:d6:81:ff:49:ca:e6:19: e4:16:08:27:58:a3:4f:9f:3d:cc:8d:54:6a:dd:3d:02:44:e8: ff:6e:3c:ca:18:f8:68:de:a4:71:ab:e7:01:88:e0:a6:da:46: 32:4f:1b:a0:40:a5:b8:1b:24:39:01:ff:37:89:30:6d:59:4b: 36:45:5b:d9 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIpIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTM0MDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEMyM0ExQzhBRjM0NjNF QkZCNzEwREU3RTI0NjU2Qjc2RDlENTBENTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFuNx4IDxAJqqzTv2eatlhHkencAocRl8NLsJv8lkF766zs5cm 6p3drIOHMsJU2gaxTtD9PXgBPmQI0AtfuhcpABBDfIDW86Szq2KYNjPuKv595kaP g7Ac4S9C/CyYtT4yoAj95cpARkGtAeGiPKP3UejOaMY7vWvnsnH5V1DKnvXP6/lw mMr5p+qHmT9AujKzQK/6kbFN06SasKuCtmqrOa75INo+aO4sexRE0V/wnVOG8V/c wwJgvNe8vIVaZgwiiSlwUBuqSts7pA1EX+wsE1Ed4KYmzk6mWtWCp3cPUGxms9lU nNRE71iiThMAtj9yNWgv6GWR168/KpYwuNtdAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUwjocivNGPr+3EN5+JGVrdtnVDVIwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3dqb2Npdk5HUHItM0VONS1K R1ZyZHRuVkRWSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAV3 TcAwDQYJKoZIhvcNAQELBQADggEBAI8hg/ZGHdCRau58h7BzhewPibXHbl5hrXjo 3hOt+dN+FkRgxwOyxOwyPZcl3oj8HtAFR+CqwrSV8YR67xLWuktTmApcvvIlNBej tJ2l37N78xfzEJOWQDqI/YKVTzA0LJicCmU7LfW8GVCRamzR9mK4t/kSmdx7Pbdp cWiEBu+Gqpt0J26ZJAb9GQRzazpBimEJv4tyvR+QsQUGJwwmCbJL9eLcyWCAhsGJ I+vk8cNXOBMno52eO6tk+T3zoOkd1oH/ScrmGeQWCCdYo0+fPcyNVGrdPQJE6P9u PMoY+GjepHGr5wGI4KbaRjJPG6BApbgbJDkB/zeJMG1ZSzZFW9k= -----END CERTIFICATE-----Generated at Fri Nov 22 14:13:19 2024 by rpki-client on console-fra.rpki-client.org