$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/K4fWDFyzzUY4I2jKFK7GIvc-zds.roa File: K4fWDFyzzUY4I2jKFK7GIvc-zds.roa (raw, json) Hash identifier: j+6zR9F/1Gf56txrdAe27saxQS4FWMUM+Gvww2nHCcg= Subject key identifier: 2B:87:D6:0C:5C:B3:CD:46:38:23:68:CA:14:AE:C6:22:F7:3E:CD:DB Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 22C2 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/K4fWDFyzzUY4I2jKFK7GIvc-zds.roa Signing time: Mon 26 Aug 2024 05:34:20 +0000 ROA not before: Mon 26 Aug 2024 05:34:20 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 49.158.96.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8898 (0x22c2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:34:20 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2B87D60C5CB3CD46382368CA14AEC622F73ECDDB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:dc:06:b5:6b:ec:0b:19:bc:c5:5a:ae:31:2e: b9:56:3b:81:fa:7d:f5:94:71:dc:29:53:01:c4:bb: 80:ed:73:6a:a4:a9:68:4f:c2:fc:69:09:f4:38:5a: 34:6b:4f:12:4c:78:76:84:ac:ea:17:f3:1c:56:70: 84:41:98:53:45:d8:7e:c8:21:04:8b:89:21:c1:79: 9f:a3:78:93:4a:c8:c0:7f:b3:73:33:d3:96:9b:f5: 03:2f:ac:35:97:f5:50:be:33:b9:f2:35:ce:3a:b1: 5e:53:3f:dc:bc:4c:a3:bd:a9:51:5c:67:7b:f8:c7: 99:57:6d:13:5a:f6:69:79:f5:87:a3:bd:29:0e:b2: 1c:5e:3f:5f:c9:a7:1f:da:0f:45:06:ab:f2:d4:90: d7:41:9e:49:c2:36:99:c0:99:f2:6c:2c:a6:ce:cc: f4:40:0d:96:ce:eb:02:9e:14:1c:a1:f9:35:4b:fb: a8:b1:01:c2:3f:f5:2a:70:b4:dd:b8:bf:81:29:0b: 03:e3:02:d5:87:f0:10:2b:e2:a6:67:39:22:d6:ee: bb:92:e1:1e:3d:ac:f5:22:9b:61:9c:e8:a4:ed:98: c3:5f:ad:8b:4f:9d:50:7f:d6:ca:c1:7c:ab:48:8c: dc:f9:bb:81:a3:00:da:11:96:f5:b3:6c:e8:55:88: 05:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:87:D6:0C:5C:B3:CD:46:38:23:68:CA:14:AE:C6:22:F7:3E:CD:DB X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/K4fWDFyzzUY4I2jKFK7GIvc-zds.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.96.0/22 Signature Algorithm: sha256WithRSAEncryption 50:f0:fe:43:56:4b:61:a7:d9:13:64:42:9e:97:38:03:b6:53: 53:28:cf:ce:84:d1:37:50:79:e6:bd:9e:87:da:86:b1:b8:4a: 58:3a:37:06:e4:74:2d:b2:b2:9f:c9:36:c2:3a:9b:6d:f0:8d: 9e:35:9f:97:12:25:58:8e:ef:49:a2:64:e8:26:f9:a9:5c:63: 85:3c:55:d8:6f:5e:b9:b6:c8:68:52:23:dd:5a:8f:e4:c3:17: 7f:3e:18:e2:ca:67:65:05:2d:81:cd:20:14:89:85:cf:3a:e4: ea:f7:1b:e5:18:42:ad:18:ce:ce:65:9f:18:43:0e:5f:a2:7a: 31:80:0c:23:14:35:80:ee:f0:11:f4:50:d6:a6:da:04:60:e7: 6a:10:d8:86:16:6d:7c:21:7a:69:80:c8:a4:a8:af:c7:c4:79: b5:0c:e5:5e:4c:6f:d8:7a:29:27:ab:c8:cb:2d:23:57:95:6c: 51:d0:58:fa:28:a5:33:87:c3:74:6e:14:88:97:44:ca:bd:78: 03:9d:c8:53:e5:7d:41:3c:05:74:11:eb:b4:b1:e8:c1:66:6b: 8a:82:f3:78:04:a6:8e:65:73:b4:9d:c0:15:b2:ab:5a:6b:c1: 2b:ae:18:67:41:62:6e:0a:39:05:cc:8d:1b:26:ef:bd:c3:2c: 1c:60:bd:7f -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIsIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTM0MjBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDJCODdENjBDNUNCM0NE NDYzODIzNjhDQTE0QUVDNjIyRjczRUNEREIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC63Aa1a+wLGbzFWq4xLrlWO4H6ffWUcdwpUwHEu4Dtc2qkqWhP wvxpCfQ4WjRrTxJMeHaErOoX8xxWcIRBmFNF2H7IIQSLiSHBeZ+jeJNKyMB/s3Mz 05ab9QMvrDWX9VC+M7nyNc46sV5TP9y8TKO9qVFcZ3v4x5lXbRNa9ml59YejvSkO shxeP1/Jpx/aD0UGq/LUkNdBnknCNpnAmfJsLKbOzPRADZbO6wKeFByh+TVL+6ix AcI/9SpwtN24v4EpCwPjAtWH8BAr4qZnOSLW7ruS4R49rPUim2Gc6KTtmMNfrYtP nVB/1srBfKtIjNz5u4GjANoRlvWzbOhViAUPAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUK4fWDFyzzUY4I2jKFK7GIvc+zdswHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0s0ZldERnl6elVZNEkyaktG SzdHSXZjLXpkcy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIx nmAwDQYJKoZIhvcNAQELBQADggEBAFDw/kNWS2Gn2RNkQp6XOAO2U1Moz86E0TdQ eea9nofahrG4Slg6NwbkdC2ysp/JNsI6m23wjZ41n5cSJViO70miZOgm+alcY4U8 VdhvXrm2yGhSI91aj+TDF38+GOLKZ2UFLYHNIBSJhc865Or3G+UYQq0Yzs5lnxhD Dl+iejGADCMUNYDu8BH0UNam2gRg52oQ2IYWbXwhemmAyKSor8fEebUM5V5Mb9h6 KSeryMstI1eVbFHQWPoopTOHw3RuFIiXRMq9eAOdyFPlfUE8BXQR67Sx6MFma4qC 83gEpo5lc7SdwBWyq1prwSuuGGdBYm4KOQXMjRsm773DLBxgvX8= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:25 2024 by rpki-client on console-ams.rpki-client.org