$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/FVu6xGO3jnxvECBW83UhN9JjpjU.roa File: FVu6xGO3jnxvECBW83UhN9JjpjU.roa (raw, json) Hash identifier: +AWKQVtgLU9lqS0sGkPCFt4gh1HGdtVEyQW48x7b7Rw= Subject key identifier: 15:5B:BA:C4:63:B7:8E:7C:6F:10:20:56:F3:75:21:37:D2:63:A6:35 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 22AA Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/FVu6xGO3jnxvECBW83UhN9JjpjU.roa Signing time: Mon 26 Aug 2024 05:34:14 +0000 ROA not before: Mon 26 Aug 2024 05:34:14 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 49.159.144.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:55:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8874 (0x22aa) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:34:14 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=155BBAC463B78E7C6F102056F3752137D263A635 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:96:82:07:91:5b:8d:fd:1f:b0:e1:38:6a:e7: 80:03:8c:00:18:98:1b:93:d9:71:a8:e7:c2:38:5b: 35:97:b1:71:c2:8b:e3:d7:a5:0c:fe:78:09:c1:ed: 9a:b6:37:6a:95:c5:d6:e3:49:1c:12:c6:0f:9e:81: c0:8c:4f:c3:3f:70:d7:2a:b2:b6:b6:54:4e:42:46: 2a:c0:94:d7:bc:e7:55:50:5a:37:b6:66:f7:fa:9a: 08:a9:fb:60:e8:b5:7c:6b:41:4d:69:14:46:08:64: 52:6d:3a:30:56:ca:57:ff:b0:e7:9c:e1:4a:fc:26: 16:e1:70:f3:00:3f:58:cf:d7:8c:86:48:c9:5a:3a: 33:5d:ff:c3:50:ac:9a:c7:66:0a:30:f3:7d:3d:ea: a8:89:09:f5:12:4e:95:a7:5a:cf:fa:74:2a:27:1f: 4e:25:67:ee:64:de:1a:39:b8:32:e2:f0:45:de:76: ac:a6:a5:e4:03:78:1b:92:31:cb:67:0c:c7:41:ec: e4:12:34:8e:78:29:9f:b8:96:6c:d9:aa:1e:c1:64: ca:67:95:a9:b3:95:94:89:4c:29:fc:96:89:eb:0c: 05:de:b0:28:3a:ff:c1:43:49:15:52:68:f1:f0:66: 4e:f0:4a:29:23:17:33:87:ff:e5:13:c8:8c:bc:fc: 3a:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:5B:BA:C4:63:B7:8E:7C:6F:10:20:56:F3:75:21:37:D2:63:A6:35 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/FVu6xGO3jnxvECBW83UhN9JjpjU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.144.0/21 Signature Algorithm: sha256WithRSAEncryption 07:e2:c0:a6:34:84:7c:00:2f:7f:80:07:3d:b3:10:87:41:b9: 54:59:a0:f2:7b:c6:8a:3c:90:f6:4c:92:db:3a:41:7c:05:66: 84:ef:27:dc:08:af:7f:95:ea:ac:57:0d:33:eb:64:8d:90:e3: 41:cd:01:e3:6b:4d:4a:94:08:15:ff:64:e1:96:30:79:41:66: 19:48:6a:98:2f:41:3c:a2:0b:9d:e1:27:de:a5:84:fa:e1:02: 0e:c2:48:5f:3b:c5:eb:15:06:60:f7:5e:8b:91:80:b3:dd:45: c9:4d:73:b4:f7:5a:43:b3:37:75:ab:fb:48:1d:cb:3d:c8:17: 4c:18:3b:e8:a4:3b:5e:47:74:66:c2:fd:da:27:34:29:6e:8c: fa:e0:04:68:68:7f:46:a3:39:e9:04:e0:ee:57:b5:18:86:03: 33:56:cd:fb:cc:d4:06:23:19:f1:31:81:d2:d6:99:b5:d9:72: 41:84:e2:e2:29:09:42:36:3a:44:4d:e8:fe:03:83:e3:81:8a: 9c:99:3f:ca:33:6b:4e:de:9c:c9:be:c4:81:c3:df:4e:19:a1: 70:02:5c:dc:e6:2a:9e:a7:40:b9:b4:22:ed:39:54:57:61:f0: 52:92:e9:24:95:fc:50:81:1c:08:8b:56:a9:b9:87:42:1b:f7: b7:0e:18:4e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIqowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTM0MTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE1NUJCQUM0NjNCNzhF N0M2RjEwMjA1NkYzNzUyMTM3RDI2M0E2MzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIloIHkVuN/R+w4Thq54ADjAAYmBuT2XGo58I4WzWXsXHCi+PX pQz+eAnB7Zq2N2qVxdbjSRwSxg+egcCMT8M/cNcqsra2VE5CRirAlNe851VQWje2 Zvf6mgip+2DotXxrQU1pFEYIZFJtOjBWylf/sOec4Ur8JhbhcPMAP1jP14yGSMla OjNd/8NQrJrHZgow83096qiJCfUSTpWnWs/6dConH04lZ+5k3ho5uDLi8EXedqym peQDeBuSMctnDMdB7OQSNI54KZ+4lmzZqh7BZMpnlamzlZSJTCn8lonrDAXesCg6 /8FDSRVSaPHwZk7wSikjFzOH/+UTyIy8/DozAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUFVu6xGO3jnxvECBW83UhN9JjpjUwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0ZWdTZ4R08zam54dkVDQlc4 M1VoTjlKanBqVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx n5AwDQYJKoZIhvcNAQELBQADggEBAAfiwKY0hHwAL3+ABz2zEIdBuVRZoPJ7xoo8 kPZMkts6QXwFZoTvJ9wIr3+V6qxXDTPrZI2Q40HNAeNrTUqUCBX/ZOGWMHlBZhlI apgvQTyiC53hJ96lhPrhAg7CSF87xesVBmD3XouRgLPdRclNc7T3WkOzN3Wr+0gd yz3IF0wYO+ikO15HdGbC/donNClujPrgBGhof0ajOekE4O5XtRiGAzNWzfvM1AYj GfExgdLWmbXZckGE4uIpCUI2OkRN6P4Dg+OBipyZP8oza07enMm+xIHD304ZoXAC XNzmKp6nQLm0Iu05VFdh8FKS6SSV/FCBHAiLVqm5h0Ib97cOGE4= -----END CERTIFICATE-----Generated at Mon Nov 25 20:56:44 2024 by rpki-client on console-fra.rpki-client.org