$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/rEHw-GL2u0RJt0m0m_B6OdziUrU.roa File: rEHw-GL2u0RJt0m0m_B6OdziUrU.roa (raw, json) Hash identifier: MYgjAUaUTDUQuwRpxQvQVifKp78RilNrMGPS1GA1rXw= Subject key identifier: AC:41:F0:F8:62:F6:BB:44:49:B7:49:B4:9B:F0:7A:39:DC:E2:52:B5 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2179 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/rEHw-GL2u0RJt0m0m_B6OdziUrU.roa Signing time: Mon 26 Aug 2024 05:33:02 +0000 ROA not before: Mon 26 Aug 2024 05:33:02 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24163 IP address blocks: 49.158.196.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Sep 2024 03:51:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8569 (0x2179) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:02 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=AC41F0F862F6BB4449B749B49BF07A39DCE252B5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:ca:c6:52:df:4d:9f:c9:10:f4:1c:24:a1:b8: e8:fd:14:5d:0e:59:ba:a0:2f:b3:2c:63:bc:d7:f2: 40:f1:44:28:07:7d:b3:b2:20:c0:42:ee:eb:ab:08: 8e:17:f8:2a:f7:5e:08:38:34:17:75:00:1a:ff:9e: f4:3f:8e:78:54:53:1f:f0:51:49:5e:58:e6:f8:61: e8:ac:27:26:8f:e9:e4:9c:27:9e:67:9c:e3:bc:23: 1e:c6:48:3e:17:15:47:8c:61:2d:ef:c3:9c:bd:d4: 41:20:1f:a1:7d:d6:81:2d:92:e8:9c:3a:ce:90:20: 14:75:eb:44:3f:e6:c2:56:98:36:2c:fe:71:49:83: c5:fa:23:a5:68:61:a4:c5:7d:f4:99:92:29:c9:01: c2:80:86:29:a1:d1:79:0a:ba:d9:13:ed:dc:a4:93: 05:40:ae:23:9c:e5:33:ab:0d:2d:46:59:5b:de:9d: f5:11:c2:01:73:79:f0:74:42:20:7d:49:ba:9f:28: 8a:18:81:7d:5a:2f:7c:dd:ce:c1:cd:80:08:ca:79: ac:4d:21:d8:e9:29:74:11:37:27:0d:46:8c:25:29: 54:b0:7f:c9:65:76:32:19:1a:8a:07:4f:e1:9e:c8: c9:c5:59:57:9e:72:6b:10:32:17:b3:b4:3c:e8:1a: 77:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:41:F0:F8:62:F6:BB:44:49:B7:49:B4:9B:F0:7A:39:DC:E2:52:B5 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/rEHw-GL2u0RJt0m0m_B6OdziUrU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.196.0/22 Signature Algorithm: sha256WithRSAEncryption 7b:c3:93:70:66:07:7a:7e:04:83:9f:e3:81:e3:fb:c7:90:6a: 86:0a:48:56:8a:bd:92:fa:b5:27:8b:1e:8e:3b:5a:f0:86:f0: eb:96:a5:6b:b8:bd:71:0d:6d:9e:30:a5:cc:95:36:23:93:bd: 64:ee:b4:e3:f3:1d:8b:9d:ab:81:1b:27:56:67:ad:a9:96:cf: 97:d8:ee:cd:6b:d5:73:7c:e8:b3:04:fe:78:6e:35:59:fc:2e: fd:62:04:75:2e:34:66:42:d3:1c:2a:2e:0a:5a:72:e1:f1:45: 11:53:91:87:14:12:2e:c1:f0:d7:09:89:89:de:8a:e1:9e:a7: 16:71:27:39:42:fd:c9:25:ec:e4:94:83:f5:94:3c:30:97:e1: bf:f7:1c:48:88:e4:7c:df:8a:38:de:90:52:ae:c2:f0:db:4c: f6:5d:cc:1b:bf:f6:33:90:a2:0d:15:62:51:85:43:fc:2f:a8: b2:bc:47:c6:9b:e2:5d:a9:96:96:e1:25:86:8b:4f:db:60:6c: a7:a1:9a:46:bb:5b:5a:a3:e6:d3:d7:ac:9d:b7:e6:91:db:a2: 38:ca:89:20:c4:43:7b:79:d1:38:97:b0:a1:ad:45:6b:f8:56: 86:20:da:b0:9c:c2:56:ed:60:36:f1:48:5e:31:24:dd:5e:9b: 6b:48:82:8a -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIXkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzMDJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEFDNDFGMEY4NjJGNkJC NDQ0OUI3NDlCNDlCRjA3QTM5RENFMjUyQjUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD1ysZS302fyRD0HCShuOj9FF0OWbqgL7MsY7zX8kDxRCgHfbOy IMBC7uurCI4X+Cr3Xgg4NBd1ABr/nvQ/jnhUUx/wUUleWOb4YeisJyaP6eScJ55n nOO8Ix7GSD4XFUeMYS3vw5y91EEgH6F91oEtkuicOs6QIBR160Q/5sJWmDYs/nFJ g8X6I6VoYaTFffSZkinJAcKAhimh0XkKutkT7dykkwVAriOc5TOrDS1GWVvenfUR wgFzefB0QiB9SbqfKIoYgX1aL3zdzsHNgAjKeaxNIdjpKXQRNycNRowlKVSwf8ll djIZGooHT+GeyMnFWVeecmsQMheztDzoGndHAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUrEHw+GL2u0RJt0m0m/B6OdziUrUwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3JFSHctR0wydTBSSnQwbTBt X0I2T2R6aVVyVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIx nsQwDQYJKoZIhvcNAQELBQADggEBAHvDk3BmB3p+BIOf44Hj+8eQaoYKSFaKvZL6 tSeLHo47WvCG8OuWpWu4vXENbZ4wpcyVNiOTvWTutOPzHYudq4EbJ1ZnramWz5fY 7s1r1XN86LME/nhuNVn8Lv1iBHUuNGZC0xwqLgpacuHxRRFTkYcUEi7B8NcJiYne iuGepxZxJzlC/ckl7OSUg/WUPDCX4b/3HEiI5HzfijjekFKuwvDbTPZdzBu/9jOQ og0VYlGFQ/wvqLK8R8ab4l2plpbhJYaLT9tgbKehmka7W1qj5tPXrJ235pHbojjK iSDEQ3t50TiXsKGtRWv4VoYg2rCcwlbtYDbxSF4xJN1em2tIgoo= -----END CERTIFICATE-----Generated at Fri Sep 27 23:37:01 2024 by rpki-client on console-fra.rpki-client.org