$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/1gSOssHGc2RE1pk96zF0Mxjhxks.roa File: 1gSOssHGc2RE1pk96zF0Mxjhxks.roa (raw, json) Hash identifier: i1cf15oHjuLSYlRruLP+3p0NjNMCnbJKgcxPjMSmg7g= Subject key identifier: D6:04:8E:B2:C1:C6:73:64:44:D6:99:3D:EB:31:74:33:18:E1:C6:4B Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 22D1 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/1gSOssHGc2RE1pk96zF0Mxjhxks.roa Signing time: Mon 26 Aug 2024 05:34:24 +0000 ROA not before: Mon 26 Aug 2024 05:34:24 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 49.159.96.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8913 (0x22d1) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:34:24 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D6048EB2C1C6736444D6993DEB31743318E1C64B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:da:d4:04:6f:1a:7f:6e:5e:87:69:39:e5:33: 0d:04:cc:05:0f:44:38:4a:c6:39:80:a2:d6:f3:c8: ea:ea:4f:89:b3:ad:de:bb:53:55:52:17:e7:32:4b: 08:59:49:35:39:d2:1d:0a:7c:2d:f8:11:ed:1d:39: d5:dc:2a:56:12:fe:ca:a0:a1:39:01:09:49:77:1e: 28:21:6e:ef:87:d1:b3:86:a9:b2:80:c3:1e:e9:92: b7:17:12:51:0a:d5:28:5e:8b:71:dd:d5:22:ae:5c: 65:33:13:ad:cb:35:1a:b4:5c:d4:28:37:d2:6b:a4: d1:74:dc:b6:9a:23:ea:bc:a2:df:83:3e:4b:39:f2: 37:70:d3:39:2e:5b:3a:14:ce:ff:ed:fc:07:d3:e0: be:0b:c8:19:31:b8:a9:a9:b0:59:66:0c:25:2f:9f: 8e:00:c3:b2:ad:ba:22:e6:df:06:85:f0:34:2e:0a: 7d:58:8f:2e:05:6a:7b:21:97:c7:e6:df:f3:2c:49: 31:65:f7:35:cd:90:4c:e2:ef:4b:50:e1:d6:08:22: bd:d3:21:4f:2b:57:78:6c:af:bc:74:66:62:79:14: d0:1a:7a:bb:0b:09:20:64:51:f4:3e:d9:77:11:97: d7:0b:25:21:26:84:96:ac:b3:5d:b7:9e:30:95:75: fb:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:04:8E:B2:C1:C6:73:64:44:D6:99:3D:EB:31:74:33:18:E1:C6:4B X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/1gSOssHGc2RE1pk96zF0Mxjhxks.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.96.0/21 Signature Algorithm: sha256WithRSAEncryption 30:4b:4e:d1:74:35:6f:60:61:4b:89:62:c2:34:81:f8:80:0d: 0a:52:c6:8d:31:d5:bd:5e:cd:8e:b4:1a:1f:6c:2c:7b:49:cf: aa:c8:ae:86:ef:4d:92:3e:24:e6:b1:dc:7e:21:ee:4f:44:15: 61:cd:85:55:65:54:54:68:d9:d0:ca:5d:80:c9:57:75:90:2d: 89:42:1c:65:0d:91:a2:65:02:58:92:13:0f:aa:88:a1:d1:3f: 89:d8:93:62:7e:2c:51:74:bd:b6:1b:fd:17:10:96:9a:9c:95: 09:58:eb:39:2a:34:25:48:4e:a6:28:53:66:dd:82:ee:5f:68: b2:51:45:5c:97:16:6a:f8:97:43:7e:cb:11:79:d2:77:ac:53: 94:1c:ca:15:38:79:6a:fa:cc:b8:75:2e:aa:98:f8:7c:fb:45: fb:aa:e3:1f:6e:8e:23:18:8e:a2:a9:4d:67:17:76:d4:06:6c: 9e:b9:b8:6d:5b:14:20:89:e7:fc:92:a2:18:a9:93:c3:fc:c2: 0f:ef:aa:50:ae:4e:27:ff:3e:ee:49:e6:aa:9e:ba:b6:c2:8a: cc:29:c4:85:d4:48:8a:e0:13:3c:e0:80:7c:04:6b:73:a7:e1: 50:2e:78:5e:cf:e6:74:c7:68:e5:12:44:12:1a:55:e1:4e:d8: 9c:91:de:69 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICItEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTM0MjRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQ2MDQ4RUIyQzFDNjcz NjQ0NEQ2OTkzREVCMzE3NDMzMThFMUM2NEIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD12tQEbxp/bl6HaTnlMw0EzAUPRDhKxjmAotbzyOrqT4mzrd67 U1VSF+cySwhZSTU50h0KfC34Ee0dOdXcKlYS/sqgoTkBCUl3Highbu+H0bOGqbKA wx7pkrcXElEK1Shei3Hd1SKuXGUzE63LNRq0XNQoN9JrpNF03LaaI+q8ot+DPks5 8jdw0zkuWzoUzv/t/AfT4L4LyBkxuKmpsFlmDCUvn44Aw7KtuiLm3waF8DQuCn1Y jy4Fanshl8fm3/MsSTFl9zXNkEzi70tQ4dYIIr3TIU8rV3hsr7x0ZmJ5FNAaersL CSBkUfQ+2XcRl9cLJSEmhJass123njCVdfslAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU1gSOssHGc2RE1pk96zF0MxjhxkswHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzFnU09zc0hHYzJSRTFwazk2 ekYwTXhqaHhrcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx n2AwDQYJKoZIhvcNAQELBQADggEBADBLTtF0NW9gYUuJYsI0gfiADQpSxo0x1b1e zY60Gh9sLHtJz6rIrobvTZI+JOax3H4h7k9EFWHNhVVlVFRo2dDKXYDJV3WQLYlC HGUNkaJlAliSEw+qiKHRP4nYk2J+LFF0vbYb/RcQlpqclQlY6zkqNCVITqYoU2bd gu5faLJRRVyXFmr4l0N+yxF50nesU5QcyhU4eWr6zLh1LqqY+Hz7Rfuq4x9ujiMY jqKpTWcXdtQGbJ65uG1bFCCJ5/ySohipk8P8wg/vqlCuTif/Pu5J5qqeurbCiswp xIXUSIrgEzzggHwEa3On4VAueF7P5nTHaOUSRBIaVeFO2JyR3mk= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:59 2024 by rpki-client on console-fra.rpki-client.org