$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/0i9l-6L-h5pswq9L5GSLbVD7_AI.roa File: 0i9l-6L-h5pswq9L5GSLbVD7_AI.roa (raw, json) Hash identifier: kPtnPvZEAfAi3BFvTASSAOYbWCn/YIkxhk4OeyZLJ6I= Subject key identifier: D2:2F:65:FB:A2:FE:87:9A:6C:C2:AF:4B:E4:64:8B:6D:50:FB:FC:02 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 223A Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/0i9l-6L-h5pswq9L5GSLbVD7_AI.roa Signing time: Mon 26 Aug 2024 05:33:48 +0000 ROA not before: Mon 26 Aug 2024 05:33:48 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 49.158.140.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8762 (0x223a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:48 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D22F65FBA2FE879A6CC2AF4BE4648B6D50FBFC02 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:fc:fc:49:be:7b:9e:2c:40:e6:83:8a:dd:c6: 5f:18:6c:3b:66:58:9f:b8:51:ca:06:02:27:82:df: fc:48:f7:05:7a:13:4e:b2:eb:d2:9f:71:50:d9:ed: 58:64:b4:2f:96:80:38:aa:a0:87:a5:1c:8e:99:89: 8e:d7:df:ec:c9:25:d1:e8:20:bd:8a:71:a7:96:65: 7c:ea:bb:6f:88:87:30:22:36:3e:fd:4f:a7:3a:cb: 00:cb:d5:2e:5e:a9:30:4c:02:53:d7:28:45:12:51: 38:bc:2d:31:15:e8:84:fa:1f:b5:73:86:20:32:08: 07:a1:58:cc:6c:d0:06:54:c1:13:8e:a7:5a:48:c0: 1d:f7:70:84:c6:30:62:ec:e7:cc:c1:12:77:0e:10: 9d:e5:a1:2d:2f:f7:92:e1:5c:a8:f7:e6:ef:f6:f4: 70:cc:0d:7d:e0:87:4b:e0:4d:dc:b2:7a:84:f0:23: 1e:1d:a3:1f:dd:7c:fc:25:67:c7:5b:52:ae:51:26: 49:be:0b:9e:a7:2a:4b:92:a9:3e:57:fd:62:6d:76: bc:90:de:c8:73:05:78:ae:96:8e:77:4d:54:14:f7: 8d:38:75:b1:b7:b9:e1:e5:3d:72:95:bb:73:74:c0: 53:5a:3a:77:7c:f5:42:a0:f0:62:57:d2:d1:d8:67: 31:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:2F:65:FB:A2:FE:87:9A:6C:C2:AF:4B:E4:64:8B:6D:50:FB:FC:02 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/0i9l-6L-h5pswq9L5GSLbVD7_AI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.140.0/22 Signature Algorithm: sha256WithRSAEncryption 88:05:a1:0b:77:5a:b9:44:f8:eb:cb:c6:af:43:30:2e:0a:fc: 96:1f:b9:5e:30:06:1d:c9:5f:9d:10:35:d0:35:9e:31:4c:ef: 90:e7:2d:fa:70:46:c2:4f:e1:64:d2:bd:04:c1:22:91:be:86: 84:da:2e:7e:2c:22:76:54:a3:52:ef:7a:27:1f:7b:83:a6:bb: 6c:e4:4b:d3:bc:6d:6f:0d:bc:25:94:03:7d:4f:02:31:75:89: f5:5f:76:dd:f4:f6:3f:55:c1:17:64:f2:21:e8:87:6d:4c:78: ca:ca:d5:86:48:89:d5:65:39:f9:83:ef:bb:8c:64:e6:ba:17: ff:3e:ee:97:0d:04:14:0b:d0:12:14:62:39:e8:f4:b3:68:10: 11:e7:52:61:6f:50:98:e1:3c:74:78:09:39:6a:05:f2:18:e1: 8c:c2:c1:08:63:5f:22:ea:85:69:3f:70:03:90:96:c3:b3:e5: e1:2a:0f:cd:90:bf:82:76:76:d4:88:aa:37:65:2d:88:87:e3: f0:75:e5:09:6f:d2:18:4e:16:af:62:ab:10:66:1b:e1:9f:01: fd:ab:bd:ff:fe:c5:ec:4e:c8:69:00:fc:de:cd:77:0b:11:c9: e4:0f:c5:cc:ca:88:fc:65:74:83:91:d7:4e:6b:92:c4:cb:ad: 3b:11:ba:81 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIjowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzNDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQyMkY2NUZCQTJGRTg3 OUE2Q0MyQUY0QkU0NjQ4QjZENTBGQkZDMDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDm/PxJvnueLEDmg4rdxl8YbDtmWJ+4UcoGAieC3/xI9wV6E06y 69KfcVDZ7VhktC+WgDiqoIelHI6ZiY7X3+zJJdHoIL2KcaeWZXzqu2+IhzAiNj79 T6c6ywDL1S5eqTBMAlPXKEUSUTi8LTEV6IT6H7VzhiAyCAehWMxs0AZUwROOp1pI wB33cITGMGLs58zBEncOEJ3loS0v95LhXKj35u/29HDMDX3gh0vgTdyyeoTwIx4d ox/dfPwlZ8dbUq5RJkm+C56nKkuSqT5X/WJtdryQ3shzBXiulo53TVQU9404dbG3 ueHlPXKVu3N0wFNaOnd89UKg8GJX0tHYZzGTAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU0i9l+6L+h5pswq9L5GSLbVD7/AIwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzBpOWwtNkwtaDVwc3dxOUw1 R1NMYlZEN19BSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIx nowwDQYJKoZIhvcNAQELBQADggEBAIgFoQt3WrlE+OvLxq9DMC4K/JYfuV4wBh3J X50QNdA1njFM75DnLfpwRsJP4WTSvQTBIpG+hoTaLn4sInZUo1Lveicfe4Omu2zk S9O8bW8NvCWUA31PAjF1ifVfdt309j9VwRdk8iHoh21MeMrK1YZIidVlOfmD77uM ZOa6F/8+7pcNBBQL0BIUYjno9LNoEBHnUmFvUJjhPHR4CTlqBfIY4YzCwQhjXyLq hWk/cAOQlsOz5eEqD82Qv4J2dtSIqjdlLYiH4/B15Qlv0hhOFq9iqxBmG+GfAf2r vf/+xexOyGkA/N7NdwsRyeQPxczKiPxldIOR105rksTLrTsRuoE= -----END CERTIFICATE-----Generated at Fri Nov 22 14:13:18 2024 by rpki-client on console-fra.rpki-client.org