$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/5w4_5NL7m28V7bQop3I_XYRrqyk.roa File: 5w4_5NL7m28V7bQop3I_XYRrqyk.roa (raw, json) Hash identifier: lCCoxyslSAa/kWc3JgxKcAz3PFVcfvyDMZAjbMC0u2E= Subject key identifier: E7:0E:3F:E4:D2:FB:9B:6F:15:ED:B4:28:A7:72:3F:5D:84:6B:AB:29 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 219E Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/5w4_5NL7m28V7bQop3I_XYRrqyk.roa Signing time: Mon 26 Aug 2024 05:33:10 +0000 ROA not before: Mon 26 Aug 2024 05:33:10 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 49.159.152.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8606 (0x219e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:10 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E70E3FE4D2FB9B6F15EDB428A7723F5D846BAB29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:56:0e:ba:f6:8b:be:ad:c4:91:27:4b:c5:d5: 60:65:35:b3:0f:79:b3:26:ac:0e:6b:15:64:35:38: 9c:ba:3a:91:d3:a9:68:bc:4e:57:00:2c:db:37:ae: 54:f1:a9:3e:70:ad:c1:6e:74:79:28:e9:a3:d1:3d: 95:f6:b7:15:82:07:17:54:b2:0f:5e:f1:e8:44:25: 23:2f:bb:b7:6e:cf:4d:70:29:75:06:dc:38:3e:62: d5:58:a3:6d:ba:06:28:08:13:92:0a:51:a4:fd:cd: 64:dd:9e:54:10:29:74:c8:9d:41:2a:60:cd:c1:ae: e0:62:e7:66:20:c5:6f:a6:61:f1:1b:ee:35:c1:31: 59:53:48:8d:2b:b0:42:46:b4:4c:fa:65:9a:cf:38: 4d:25:4c:5a:bb:d3:4c:6d:76:43:db:78:1f:25:d8: 31:fb:f3:f9:9b:a6:86:62:8d:3f:fc:a0:46:7a:ba: 3d:ab:c2:40:e9:06:4e:00:0e:a7:57:a2:4d:d3:05: f1:f0:02:8c:5a:e3:47:81:fb:aa:9c:01:c2:a0:a3: a9:fc:8f:fc:6b:4f:be:dd:b8:f9:89:d3:60:2d:a5: 75:d5:bd:94:67:70:2c:79:57:a7:7e:ff:bd:8f:b1: ac:b1:b0:7a:b8:9c:0b:ca:f1:b3:1e:22:8d:a1:69: df:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:0E:3F:E4:D2:FB:9B:6F:15:ED:B4:28:A7:72:3F:5D:84:6B:AB:29 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/5w4_5NL7m28V7bQop3I_XYRrqyk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.152.0/21 Signature Algorithm: sha256WithRSAEncryption 22:ce:bf:2d:18:5d:72:86:6a:ac:de:9a:80:bc:e5:91:56:8d: 77:25:53:6d:19:44:d1:dd:62:86:6c:32:ca:a0:94:0d:25:8a: f7:6b:65:e0:48:12:cd:99:fc:72:5e:e2:1a:f8:1c:f1:9d:58: 45:49:ee:84:96:38:bd:89:54:0c:d5:fd:4a:5c:61:1b:96:df: 5c:fa:7c:bb:ca:99:22:b3:a5:52:97:a2:ac:8e:20:3b:8e:bc: 5d:56:a1:8b:67:17:0e:1c:6e:b4:89:85:4f:7d:a0:6e:cb:fa: 29:fc:59:0d:23:4f:84:bb:8b:cc:38:52:c1:c1:6f:6e:2c:d0: 0d:c8:64:ce:39:47:6b:28:21:d7:6c:01:6e:16:d6:d2:6c:2a: ea:1e:f7:49:fa:5d:e9:d8:e2:f0:4e:dd:a7:28:ea:9a:00:b9: a9:ab:ca:e4:21:52:e2:5f:0f:35:13:09:49:d9:e6:20:ca:f9: 43:0b:50:9f:d9:10:f5:67:ab:f0:24:60:3b:b0:f2:38:61:d1: 14:20:5a:8f:e9:6c:6c:c5:27:aa:ec:16:9e:00:f0:ce:29:b3: 87:5a:10:81:99:35:c7:39:e2:e6:45:80:88:a3:cd:c0:d0:9e: b5:c1:b5:27:7b:f3:c2:65:4e:d9:2c:50:c8:38:ca:ea:fe:23: c4:25:8f:47 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIZ4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzMTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEU3MEUzRkU0RDJGQjlC NkYxNUVEQjQyOEE3NzIzRjVEODQ2QkFCMjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDQVg669ou+rcSRJ0vF1WBlNbMPebMmrA5rFWQ1OJy6OpHTqWi8 TlcALNs3rlTxqT5wrcFudHko6aPRPZX2txWCBxdUsg9e8ehEJSMvu7duz01wKXUG 3Dg+YtVYo226BigIE5IKUaT9zWTdnlQQKXTInUEqYM3BruBi52YgxW+mYfEb7jXB MVlTSI0rsEJGtEz6ZZrPOE0lTFq700xtdkPbeB8l2DH78/mbpoZijT/8oEZ6uj2r wkDpBk4ADqdXok3TBfHwAoxa40eB+6qcAcKgo6n8j/xrT77duPmJ02AtpXXVvZRn cCx5V6d+/72PsayxsHq4nAvK8bMeIo2had9lAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU5w4/5NL7m28V7bQop3I/XYRrqykwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzV3NF81Tkw3bTI4VjdiUW9w M0lfWFlScnF5ay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx n5gwDQYJKoZIhvcNAQELBQADggEBACLOvy0YXXKGaqzemoC85ZFWjXclU20ZRNHd YoZsMsqglA0livdrZeBIEs2Z/HJe4hr4HPGdWEVJ7oSWOL2JVAzV/UpcYRuW31z6 fLvKmSKzpVKXoqyOIDuOvF1WoYtnFw4cbrSJhU99oG7L+in8WQ0jT4S7i8w4UsHB b24s0A3IZM45R2soIddsAW4W1tJsKuoe90n6XenY4vBO3aco6poAuamryuQhUuJf DzUTCUnZ5iDK+UMLUJ/ZEPVnq/AkYDuw8jhh0RQgWo/pbGzFJ6rsFp4A8M4ps4da EIGZNcc54uZFgIijzcDQnrXBtSd788JlTtksUMg4yur+I8Qlj0c= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:24 2024 by rpki-client on console-ams.rpki-client.org