$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3i7lsNBCJL6b2ZXu0dvFyhejq9M.roa File: 3i7lsNBCJL6b2ZXu0dvFyhejq9M.roa (raw, json) Hash identifier: B5Li3UYIRLf6HY7b7wW3tInBCz65nXGnRaDL6Em8zyg= Subject key identifier: DE:2E:E5:B0:D0:42:24:BE:9B:D9:95:EE:D1:DB:C5:CA:17:A3:AB:D3 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 21F9 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3i7lsNBCJL6b2ZXu0dvFyhejq9M.roa Signing time: Mon 26 Aug 2024 05:33:32 +0000 ROA not before: Mon 26 Aug 2024 05:33:32 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 49.158.24.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8697 (0x21f9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:32 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=DE2EE5B0D04224BE9BD995EED1DBC5CA17A3ABD3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:33:64:9f:7f:7a:8c:bf:57:aa:f8:2d:eb:bb: 39:a6:c7:b4:fb:14:f3:58:6c:d1:8f:1b:ad:ff:12: 05:12:a7:21:72:35:86:46:2e:da:82:28:c9:f1:49: 55:12:ec:0c:30:34:de:d0:3d:95:64:cc:a4:33:2d: 73:a2:d2:d4:fa:df:a3:3e:06:29:e9:a0:62:39:c7: 53:ec:a6:83:5d:06:e1:0b:fc:13:5c:3d:06:4f:a6: d9:91:00:93:29:43:cc:95:12:b8:6d:f3:7d:af:14: a5:1a:30:27:17:8f:ca:97:ba:a8:28:68:de:0d:74: 3f:1f:ff:7b:c8:e4:ca:63:eb:1c:9d:12:2b:ac:31: 22:0c:b6:cc:55:22:05:73:62:f6:5b:b3:16:e3:a5: 69:2f:cd:30:22:39:23:1a:ca:14:39:2e:49:73:af: 88:16:1b:ee:5e:a1:7c:7f:60:56:3e:44:51:fe:db: 38:17:e7:0e:6f:87:9e:a6:5a:94:b6:88:72:e2:65: 7a:25:5d:d9:c7:27:fb:b9:1b:c5:cb:8e:89:50:d2: 99:e2:14:40:ab:eb:06:85:09:8f:01:c8:6e:42:6d: a6:2d:eb:c0:5a:08:93:44:78:89:c4:b8:06:b0:8c: ed:94:84:00:5c:7d:56:90:3e:8c:6a:0b:0b:66:7f: 5b:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:2E:E5:B0:D0:42:24:BE:9B:D9:95:EE:D1:DB:C5:CA:17:A3:AB:D3 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3i7lsNBCJL6b2ZXu0dvFyhejq9M.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.24.0/21 Signature Algorithm: sha256WithRSAEncryption 9a:5b:c2:56:cd:d5:5e:e4:2d:3b:d6:4a:47:f0:b8:5d:63:ae: 8b:02:26:04:07:df:29:d5:95:24:ec:0f:9a:f6:ca:89:22:82: fe:f6:3a:a6:88:23:f0:16:66:78:f1:01:ee:73:bc:bc:e6:85: 36:81:1f:e2:97:76:a5:72:35:d2:6b:35:be:a7:d2:87:09:12: ed:a5:de:2f:7c:3c:69:a8:a3:7f:51:94:95:f5:71:99:c1:b5: 3f:f0:27:18:0c:e6:c7:30:81:bb:ad:57:23:bb:96:17:9d:7b: 13:24:66:73:2e:ea:70:21:ae:35:03:ae:d8:af:78:57:c9:a1: 31:d3:14:ea:d9:e2:6e:e2:44:98:71:0f:ad:8f:60:65:02:5b: 7c:2d:5f:b6:18:da:99:00:d6:32:4c:0b:b2:70:6f:e5:86:a9: 3a:2a:00:19:da:f8:08:e2:ec:84:61:a4:a7:d5:93:e0:b5:61: c2:6a:3f:c6:6f:2e:e1:05:13:6b:8a:db:cd:69:10:b6:8e:00: c7:59:2b:ca:8f:d2:d7:68:63:21:fb:d3:f2:af:f3:79:a7:a1: d5:c6:b0:f1:7f:f4:af:d6:67:89:c1:17:51:e0:f4:6b:ed:39: fa:c4:7c:98:b6:15:e5:8f:e1:14:05:3a:9e:8f:27:76:da:a9: 0a:12:a2:67 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIfkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzMzJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKERFMkVFNUIwRDA0MjI0 QkU5QkQ5OTVFRUQxREJDNUNBMTdBM0FCRDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtM2Sff3qMv1eq+C3ruzmmx7T7FPNYbNGPG63/EgUSpyFyNYZG LtqCKMnxSVUS7AwwNN7QPZVkzKQzLXOi0tT636M+BinpoGI5x1PspoNdBuEL/BNc PQZPptmRAJMpQ8yVErht832vFKUaMCcXj8qXuqgoaN4NdD8f/3vI5Mpj6xydEius MSIMtsxVIgVzYvZbsxbjpWkvzTAiOSMayhQ5Lklzr4gWG+5eoXx/YFY+RFH+2zgX 5w5vh56mWpS2iHLiZXolXdnHJ/u5G8XLjolQ0pniFECr6waFCY8ByG5CbaYt68Ba CJNEeInEuAawjO2UhABcfVaQPoxqCwtmf1uLAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU3i7lsNBCJL6b2ZXu0dvFyhejq9MwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzNpN2xzTkJDSkw2YjJaWHUw ZHZGeWhlanE5TS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx nhgwDQYJKoZIhvcNAQELBQADggEBAJpbwlbN1V7kLTvWSkfwuF1jrosCJgQH3ynV lSTsD5r2yokigv72OqaII/AWZnjxAe5zvLzmhTaBH+KXdqVyNdJrNb6n0ocJEu2l 3i98PGmoo39RlJX1cZnBtT/wJxgM5scwgbutVyO7lhedexMkZnMu6nAhrjUDrtiv eFfJoTHTFOrZ4m7iRJhxD62PYGUCW3wtX7YY2pkA1jJMC7Jwb+WGqToqABna+Aji 7IRhpKfVk+C1YcJqP8ZvLuEFE2uK281pELaOAMdZK8qP0tdoYyH70/Kv83mnodXG sPF/9K/WZ4nBF1Hg9GvtOfrEfJi2FeWP4RQFOp6PJ3baqQoSomc= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:40 2024 by rpki-client on console-ams.rpki-client.org