$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/FIWD_grY3m0XpUBEk_0_yM0uAPY.roa File: FIWD_grY3m0XpUBEk_0_yM0uAPY.roa (raw, json) Hash identifier: GwZeo31DrEcb1UDac+h4GDiYzdreGz1sKOu/wh+zdUQ= Subject key identifier: 14:85:83:FE:0A:D8:DE:6D:17:A5:40:44:93:FD:3F:C8:CD:2E:00:F6 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2187 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/FIWD_grY3m0XpUBEk_0_yM0uAPY.roa Signing time: Mon 26 Aug 2024 05:33:04 +0000 ROA not before: Mon 26 Aug 2024 05:33:04 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 49.158.146.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8583 (0x2187) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:04 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=148583FE0AD8DE6D17A5404493FD3FC8CD2E00F6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:40:64:09:06:2b:14:bf:45:87:b4:67:1e:4a: a9:f2:91:e0:aa:0b:8f:ba:df:29:00:c6:18:6b:20: e4:49:26:fb:8d:33:82:cb:7a:4c:52:2b:70:7a:d6: bf:ef:e1:4a:53:e7:2b:e2:a7:c3:43:78:96:c9:40: c5:ac:a0:30:bb:33:94:a4:da:65:c2:4c:5e:2b:b4: 0e:d5:5d:4e:5f:a4:45:0e:d6:61:46:de:04:be:5c: a7:70:4f:81:ef:ba:7c:5f:4b:c0:b0:56:78:8c:aa: 53:f5:3e:61:15:4c:12:5b:72:ee:b7:93:9f:a8:34: ff:5a:c3:5b:5a:ea:47:56:39:76:bd:1d:43:89:e1: 3b:36:64:a8:e2:69:c6:4c:bd:c9:6e:55:f0:f8:e3: 2e:90:81:fa:97:f0:44:81:18:f4:6d:ed:bb:3c:56: d6:3e:b9:78:cd:76:c1:cd:f8:61:1c:3d:df:76:ad: 22:09:35:0e:87:b8:2c:0f:2b:9b:7c:e0:14:97:09: dc:c1:8a:b7:8c:e4:2a:f7:88:be:ab:e6:4f:e0:29: 77:38:75:6b:6b:9b:51:77:2c:fb:7d:c6:e3:a6:13: 37:c0:9b:41:cc:1d:5a:7b:7b:45:b7:01:0c:ce:d0: b2:41:dc:3f:de:d1:19:19:c8:84:7f:14:c1:3a:5d: b9:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:85:83:FE:0A:D8:DE:6D:17:A5:40:44:93:FD:3F:C8:CD:2E:00:F6 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/FIWD_grY3m0XpUBEk_0_yM0uAPY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.146.0/24 Signature Algorithm: sha256WithRSAEncryption 33:f0:26:88:1f:b2:58:48:12:0d:3b:3e:94:03:11:11:6b:56: 8c:ce:f1:fc:6c:66:f1:25:4f:63:d5:31:33:a5:37:66:a1:35: cd:ea:db:cc:bc:de:4d:bc:3d:67:0c:e0:9f:5b:50:db:70:a6: 14:10:4b:41:06:7f:ee:3a:12:30:45:56:1e:4c:62:50:3f:3e: e3:21:41:4c:4c:58:7a:06:8a:98:11:34:98:e4:10:d8:5e:cf: 83:f1:09:3d:be:a6:83:a2:8b:e9:a5:04:f2:89:11:88:d5:35: d9:65:e5:28:ea:31:f1:0e:14:d3:4f:0b:66:3e:3a:31:60:75: e1:c7:f1:ae:38:2f:e0:5e:40:07:75:71:0c:18:3f:bf:64:f1: f2:97:58:ec:29:cd:1e:f7:1c:12:e3:44:02:59:d6:aa:17:ac: 1e:33:23:f4:0e:41:3e:42:a3:3d:a1:63:f6:d4:7f:ee:28:67: e1:d4:34:58:ce:cd:b8:22:e5:9b:18:38:c2:19:69:77:e3:0a: 14:94:b2:47:49:56:33:9b:40:0e:30:bc:a9:f8:2a:4d:10:10: ab:4a:c4:6a:fe:de:e1:29:45:81:b5:98:f7:1f:82:9c:7a:41: 00:28:9c:24:a1:43:a1:f2:3e:e4:88:ab:f0:e3:22:85:36:11: e1:39:74:af -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIYcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzMDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE0ODU4M0ZFMEFEOERF NkQxN0E1NDA0NDkzRkQzRkM4Q0QyRTAwRjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDwQGQJBisUv0WHtGceSqnykeCqC4+63ykAxhhrIORJJvuNM4LL ekxSK3B61r/v4UpT5yvip8NDeJbJQMWsoDC7M5Sk2mXCTF4rtA7VXU5fpEUO1mFG 3gS+XKdwT4HvunxfS8CwVniMqlP1PmEVTBJbcu63k5+oNP9aw1ta6kdWOXa9HUOJ 4Ts2ZKjiacZMvcluVfD44y6QgfqX8ESBGPRt7bs8VtY+uXjNdsHN+GEcPd92rSIJ NQ6HuCwPK5t84BSXCdzBireM5Cr3iL6r5k/gKXc4dWtrm1F3LPt9xuOmEzfAm0HM HVp7e0W3AQzO0LJB3D/e0RkZyIR/FME6XblJAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUFIWD/grY3m0XpUBEk/0/yM0uAPYwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0ZJV0RfZ3JZM20wWHBVQkVr XzBfeU0wdUFQWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAx npIwDQYJKoZIhvcNAQELBQADggEBADPwJogfslhIEg07PpQDERFrVozO8fxsZvEl T2PVMTOlN2ahNc3q28y83k28PWcM4J9bUNtwphQQS0EGf+46EjBFVh5MYlA/PuMh QUxMWHoGipgRNJjkENhez4PxCT2+poOii+mlBPKJEYjVNdll5SjqMfEOFNNPC2Y+ OjFgdeHH8a44L+BeQAd1cQwYP79k8fKXWOwpzR73HBLjRAJZ1qoXrB4zI/QOQT5C oz2hY/bUf+4oZ+HUNFjOzbgi5ZsYOMIZaXfjChSUskdJVjObQA4wvKn4Kk0QEKtK xGr+3uEpRYG1mPcfgpx6QQAonCShQ6HyPuSIq/DjIoU2EeE5dK8= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:59 2024 by rpki-client on console-fra.rpki-client.org