$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/8343rEp9ddPapkne8nZWdRubXlw.roa File: 8343rEp9ddPapkne8nZWdRubXlw.roa (raw, json) Hash identifier: ZmkaOadKr/D+JbR6YaBglWsKOWa2z4nge2vR0nwRY2c= Subject key identifier: F3:7E:37:AC:4A:7D:75:D3:DA:A6:49:DE:F2:76:56:75:1B:9B:5E:5C Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 225F Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/8343rEp9ddPapkne8nZWdRubXlw.roa Signing time: Mon 26 Aug 2024 05:33:56 +0000 ROA not before: Mon 26 Aug 2024 05:33:56 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 49.158.0.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:55:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8799 (0x225f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:56 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F37E37AC4A7D75D3DAA649DEF27656751B9B5E5C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:fe:42:9b:20:6a:dd:f5:af:0c:45:53:c1:fd: 3f:a0:89:68:a3:69:0a:8f:d6:18:cd:0a:d8:71:b7: bf:ab:48:0c:97:fb:d7:9b:ff:cf:55:b5:d6:19:f4: 90:4c:0f:6d:d9:95:d6:5c:48:fd:84:83:ec:d2:4e: 44:8a:bb:3b:da:1b:23:70:7a:25:33:6c:30:40:a8: 84:f3:53:15:62:9d:1e:6b:33:ff:21:75:94:cb:c0: 90:99:d5:32:4c:25:ab:2f:71:1b:50:0a:a8:90:b8: 90:5b:b4:0d:cf:6e:80:72:8b:5d:fb:9b:3b:30:14: 00:99:6e:d3:bb:9d:1d:e7:c4:c8:1f:91:24:9c:6f: 76:3e:78:4f:d4:51:11:aa:66:c7:56:52:7f:6d:5c: 61:c3:f4:17:96:e4:ac:61:a2:5f:cd:e3:53:c5:17: 35:4b:f2:04:4b:41:87:fb:19:6a:49:b6:ee:4c:aa: 9d:9c:bb:a8:01:d9:1e:93:0c:3d:4f:73:5c:a5:fe: be:23:e5:bb:0c:5d:d2:ef:b6:4c:c7:d7:5a:8a:4b: 10:dd:6f:a4:8d:08:f1:d4:44:7c:7a:98:36:e8:74: d8:e2:6a:05:b8:94:14:98:22:a0:e1:a8:1a:44:ce: 08:45:be:ae:9f:61:ba:a7:6b:a5:44:94:c3:b2:a4: 5b:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:7E:37:AC:4A:7D:75:D3:DA:A6:49:DE:F2:76:56:75:1B:9B:5E:5C X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/8343rEp9ddPapkne8nZWdRubXlw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.0.0/21 Signature Algorithm: sha256WithRSAEncryption 3c:7d:7d:bc:00:1b:2c:e6:cd:f0:bc:49:a7:2e:5f:78:7b:b2: 00:e7:1f:a6:0b:28:10:3d:6c:71:46:9b:bf:14:ab:81:3a:0f: 38:eb:af:bc:79:dc:d8:5b:48:2a:d8:88:3f:26:c6:ad:5f:1a: d4:01:60:5f:f0:fe:99:93:02:da:52:22:82:6b:96:5c:fd:84: 29:71:75:34:37:c8:64:8a:b5:04:de:e9:0d:ba:38:c9:40:8f: 80:c7:dc:c4:66:1d:d6:da:4f:e4:e2:8f:fe:19:b4:6d:3d:17: 81:0a:d6:38:03:4b:b5:33:cf:ab:f8:72:ff:18:f1:74:cd:91: 3e:6e:16:7b:f9:cc:7a:3b:f8:20:84:fc:c1:10:3f:0b:85:fc: 8f:70:a5:73:db:d3:92:47:ee:b3:49:b5:22:5f:38:59:c2:1a: a9:20:9e:37:60:da:cb:27:ff:77:c0:08:b6:4e:17:d5:55:a6: 56:81:14:08:e0:d7:5c:94:f4:2f:9c:2a:9e:91:6c:47:a8:12: be:d0:c0:8b:32:dc:43:28:8a:f0:35:60:dd:04:31:b6:ce:72: 47:7d:92:f6:26:cc:f9:9c:87:22:73:44:1d:f3:29:5e:0c:55: a6:31:0c:73:86:77:a2:dc:f0:2e:ac:ff:d7:09:6e:3b:1c:46: 58:30:ec:bb -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIl8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzNTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEYzN0UzN0FDNEE3RDc1 RDNEQUE2NDlERUYyNzY1Njc1MUI5QjVFNUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCR/kKbIGrd9a8MRVPB/T+giWijaQqP1hjNCthxt7+rSAyX+9eb /89VtdYZ9JBMD23ZldZcSP2Eg+zSTkSKuzvaGyNweiUzbDBAqITzUxVinR5rM/8h dZTLwJCZ1TJMJasvcRtQCqiQuJBbtA3PboByi137mzswFACZbtO7nR3nxMgfkSSc b3Y+eE/UURGqZsdWUn9tXGHD9BeW5Kxhol/N41PFFzVL8gRLQYf7GWpJtu5Mqp2c u6gB2R6TDD1Pc1yl/r4j5bsMXdLvtkzH11qKSxDdb6SNCPHURHx6mDbodNjiagW4 lBSYIqDhqBpEzghFvq6fYbqna6VElMOypFunAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU8343rEp9ddPapkne8nZWdRubXlwwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzgzNDNyRXA5ZGRQYXBrbmU4 blpXZFJ1Ylhsdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx ngAwDQYJKoZIhvcNAQELBQADggEBADx9fbwAGyzmzfC8SacuX3h7sgDnH6YLKBA9 bHFGm78Uq4E6Dzjrr7x53NhbSCrYiD8mxq1fGtQBYF/w/pmTAtpSIoJrllz9hClx dTQ3yGSKtQTe6Q26OMlAj4DH3MRmHdbaT+Tij/4ZtG09F4EK1jgDS7Uzz6v4cv8Y 8XTNkT5uFnv5zHo7+CCE/MEQPwuF/I9wpXPb05JH7rNJtSJfOFnCGqkgnjdg2ssn /3fACLZOF9VVplaBFAjg11yU9C+cKp6RbEeoEr7QwIsy3EMoivA1YN0EMbbOckd9 kvYmzPmchyJzRB3zKV4MVaYxDHOGd6Lc8C6s/9cJbjscRlgw7Ls= -----END CERTIFICATE-----Generated at Mon Nov 25 20:56:44 2024 by rpki-client on console-fra.rpki-client.org