$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/9RIGdDDX896_nkWcXe4SmbVs-KA.roa File: 9RIGdDDX896_nkWcXe4SmbVs-KA.roa (raw, json) Hash identifier: WC3QD5ek7FfVtqeyRsq0yEWZFLUXa8I6gCffJl7RKuU= Subject key identifier: F5:12:06:74:30:D7:F3:DE:BF:9E:45:9C:5D:EE:12:99:B5:6C:F8:A0 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2221 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/9RIGdDDX896_nkWcXe4SmbVs-KA.roa Signing time: Mon 26 Aug 2024 05:33:42 +0000 ROA not before: Mon 26 Aug 2024 05:33:42 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 49.158.56.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8737 (0x2221) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:42 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F512067430D7F3DEBF9E459C5DEE1299B56CF8A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:3f:0e:b6:4c:8e:4c:a6:66:34:f5:d0:43:04: d5:a2:0d:53:0d:ec:0c:cd:4c:6f:57:84:c6:de:a2: 25:a1:63:54:7b:30:78:6c:3f:b6:e2:5b:42:30:08: 2d:33:8e:4b:4e:e7:d9:17:83:2c:3d:4e:c9:08:d9: 78:66:e1:e5:ee:24:77:3b:f4:9a:0d:c3:99:a8:63: 54:05:3b:b5:fb:d7:ee:1f:7a:28:b3:e2:69:7c:28: 40:71:21:5e:14:42:22:f4:22:6d:5b:f5:c9:60:f7: dd:7d:ae:d7:ee:28:7d:c8:d9:dd:1d:89:98:96:ca: bf:9f:92:e9:7a:48:0e:ad:8c:56:84:40:bb:dd:16: 8f:b9:6e:4f:5c:d6:8a:8a:20:a6:c6:b1:db:0c:f4: e5:33:12:a0:a2:d6:43:de:fa:f7:26:45:3e:50:f4: cf:db:78:02:3d:aa:26:0d:fc:11:ed:04:09:39:cc: 24:83:8c:34:02:c2:f6:bc:a4:bd:46:ff:49:1f:6a: 9f:70:04:7d:25:5a:3a:fd:4e:48:cf:b9:67:98:13: 75:03:fa:3c:0a:00:ec:3b:8e:7f:01:77:55:80:fa: b8:6b:91:d5:89:91:97:ba:35:cd:2d:33:68:04:2c: f9:91:a6:0f:80:c3:06:fd:70:39:c8:ac:7d:fc:08: 54:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:12:06:74:30:D7:F3:DE:BF:9E:45:9C:5D:EE:12:99:B5:6C:F8:A0 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/9RIGdDDX896_nkWcXe4SmbVs-KA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.56.0/21 Signature Algorithm: sha256WithRSAEncryption 85:62:9d:a8:ed:b3:76:99:15:7b:df:cd:fe:cf:60:a9:69:80: aa:8f:97:7b:86:e1:84:97:ab:66:69:1f:75:13:c5:d9:1e:fb: e0:d3:99:af:40:82:6b:94:51:d1:79:a7:1c:bd:2f:fd:ab:37: 32:b0:df:ec:55:02:af:4a:62:0a:db:69:eb:a2:e1:ea:6d:8d: e0:df:d1:f0:8e:06:ce:cc:0d:69:b2:70:a2:15:ba:58:02:cb: 23:ec:af:37:3c:d1:94:50:46:c3:9e:16:1b:bd:0b:83:cc:f7: c1:dd:4c:d1:c0:8d:3b:4f:86:e7:51:5a:53:6b:4d:f7:e4:61: 4f:f3:2f:58:00:27:1a:5d:73:d5:4d:41:f9:65:2f:6e:ef:7d: de:bb:72:94:b0:90:51:8d:aa:68:ca:25:7b:0f:40:fc:9f:6b: 70:90:be:81:d6:16:fe:10:1d:37:b6:8f:87:15:26:ef:a8:ac: 60:b0:d9:6e:98:7b:54:56:29:8c:3f:a2:62:b2:9f:c4:a6:b1: 50:7f:46:00:87:9b:7e:9f:22:ff:b0:cd:3a:94:e9:5f:18:a8: f1:a4:25:35:04:1c:8d:30:61:bb:6b:13:e7:b6:64:8b:9f:88: 67:2d:8b:4f:ef:58:b8:f3:85:4c:00:4f:bb:85:d0:1a:ee:10: 98:7b:cc:f5 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIiEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzNDJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEY1MTIwNjc0MzBEN0Yz REVCRjlFNDU5QzVERUUxMjk5QjU2Q0Y4QTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXPw62TI5MpmY09dBDBNWiDVMN7AzNTG9XhMbeoiWhY1R7MHhs P7biW0IwCC0zjktO59kXgyw9TskI2Xhm4eXuJHc79JoNw5moY1QFO7X71+4feiiz 4ml8KEBxIV4UQiL0Im1b9clg9919rtfuKH3I2d0diZiWyr+fkul6SA6tjFaEQLvd Fo+5bk9c1oqKIKbGsdsM9OUzEqCi1kPe+vcmRT5Q9M/beAI9qiYN/BHtBAk5zCSD jDQCwva8pL1G/0kfap9wBH0lWjr9TkjPuWeYE3UD+jwKAOw7jn8Bd1WA+rhrkdWJ kZe6Nc0tM2gELPmRpg+Awwb9cDnIrH38CFSJAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU9RIGdDDX896/nkWcXe4SmbVs+KAwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzlSSUdkRERYODk2X25rV2NY ZTRTbWJWcy1LQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx njgwDQYJKoZIhvcNAQELBQADggEBAIVinajts3aZFXvfzf7PYKlpgKqPl3uG4YSX q2ZpH3UTxdke++DTma9AgmuUUdF5pxy9L/2rNzKw3+xVAq9KYgrbaeui4eptjeDf 0fCOBs7MDWmycKIVulgCyyPsrzc80ZRQRsOeFhu9C4PM98HdTNHAjTtPhudRWlNr TffkYU/zL1gAJxpdc9VNQfllL27vfd67cpSwkFGNqmjKJXsPQPyfa3CQvoHWFv4Q HTe2j4cVJu+orGCw2W6Ye1RWKYw/omKyn8SmsVB/RgCHm36fIv+wzTqU6V8YqPGk JTUEHI0wYbtrE+e2ZIufiGcti0/vWLjzhUwAT7uF0BruEJh7zPU= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:40 2024 by rpki-client on console-ams.rpki-client.org