$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/NMhCyjcGPErljsG-xYVVyOWwEB0.roa File: NMhCyjcGPErljsG-xYVVyOWwEB0.roa (raw, json) Hash identifier: h506zsLLgXqn0vGmpq23QrKcMu7xRDBsYN25S+YyA7o= Subject key identifier: 34:C8:42:CA:37:06:3C:4A:E5:8E:C1:BE:C5:85:55:C8:E5:B0:10:1D Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 220B Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/NMhCyjcGPErljsG-xYVVyOWwEB0.roa Signing time: Mon 26 Aug 2024 05:33:36 +0000 ROA not before: Mon 26 Aug 2024 05:33:36 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24163 IP address blocks: 49.158.200.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:55:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8715 (0x220b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:36 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=34C842CA37063C4AE58EC1BEC58555C8E5B0101D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:5f:11:e5:7e:ea:fe:e7:90:2a:79:d5:ee:c2: bd:dc:43:0f:a7:d9:5f:51:30:c9:90:ec:ec:bf:82: 5a:3b:9d:5c:8b:4d:4a:f5:bd:51:7c:3b:3a:80:6c: df:62:a8:21:8d:dd:dc:7c:82:e7:b1:11:2e:b9:05: f8:0c:54:92:60:2b:76:bd:a4:52:18:16:7f:46:61: c2:76:78:54:17:3d:f2:1c:42:80:cd:55:b0:75:54: fd:03:60:15:53:fc:76:f6:e1:b1:c3:14:21:3b:da: b3:e9:1b:6b:cb:d0:67:34:2d:c3:24:d9:9b:c5:81: 5e:f3:06:2c:a4:d4:ef:48:c9:2a:78:7f:ca:3a:34: dd:14:fd:9f:60:a9:f3:59:f5:2b:10:59:e8:35:74: e1:e7:16:43:ee:b7:a6:0a:f3:0a:5b:e2:aa:77:4a: 65:0c:8a:6a:ec:15:07:5a:17:7a:0e:b3:b7:ee:f2: 71:68:f2:c1:fb:cd:0f:4c:fc:7c:d1:93:f9:6c:a3: 3a:55:98:47:6b:c3:3a:27:66:b8:88:f9:9d:99:65: d1:58:9e:e4:64:d7:94:f7:18:7e:bb:2f:a4:f2:24: 2b:cb:74:7a:ed:bf:3f:30:08:a2:29:b3:1e:3a:f2: 42:80:f7:4a:71:2a:88:41:11:85:b4:b0:e9:b6:d4: 48:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:C8:42:CA:37:06:3C:4A:E5:8E:C1:BE:C5:85:55:C8:E5:B0:10:1D X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/NMhCyjcGPErljsG-xYVVyOWwEB0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.200.0/21 Signature Algorithm: sha256WithRSAEncryption 9c:e4:05:92:2c:91:33:0f:c0:c7:a9:fb:f8:a6:87:e0:5e:85: 7f:d3:7b:be:26:45:2a:53:cf:cd:68:46:96:91:08:2f:42:08: aa:ac:4f:56:4a:c0:4b:f3:22:3a:6a:71:95:0f:d9:5f:82:7b: 3a:66:9b:18:61:eb:63:47:dd:03:3e:5e:af:f2:d6:0b:0e:c9: f7:0a:a0:7c:74:4d:69:60:bb:89:ce:3a:e7:ee:09:91:c8:5b: 3d:51:60:37:bc:1f:31:ae:c7:b6:0d:24:ed:35:88:e3:09:51: 3c:b0:98:a3:c2:0b:98:99:8d:e8:83:78:2f:8b:22:83:cd:8a: 82:fd:59:54:da:6f:52:b9:b0:93:31:d2:54:5f:e9:da:ea:b9: 7a:70:3d:e0:9e:4d:6f:fb:46:da:ef:38:68:24:76:20:24:2e: b6:65:eb:b4:54:04:cb:5f:a4:b9:d3:7c:2a:41:6e:95:ba:40: 71:0b:97:db:67:2b:23:b4:5c:0c:fc:86:ff:13:24:2f:1e:c4: 6f:1b:aa:ee:27:a6:7c:7d:51:13:65:94:87:35:d2:55:75:09: 89:c7:67:54:fb:c4:6f:dd:6c:27:4a:05:f5:ad:6d:58:34:23: f6:03:d5:0a:b9:5d:f8:78:8b:3e:82:a6:9a:0e:cb:f5:04:48: 63:34:fc:db -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIgswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzMzZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDM0Qzg0MkNBMzcwNjND NEFFNThFQzFCRUM1ODU1NUM4RTVCMDEwMUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCsXxHlfur+55AqedXuwr3cQw+n2V9RMMmQ7Oy/glo7nVyLTUr1 vVF8OzqAbN9iqCGN3dx8guexES65BfgMVJJgK3a9pFIYFn9GYcJ2eFQXPfIcQoDN VbB1VP0DYBVT/Hb24bHDFCE72rPpG2vL0Gc0LcMk2ZvFgV7zBiyk1O9IySp4f8o6 NN0U/Z9gqfNZ9SsQWeg1dOHnFkPut6YK8wpb4qp3SmUMimrsFQdaF3oOs7fu8nFo 8sH7zQ9M/HzRk/lsozpVmEdrwzonZriI+Z2ZZdFYnuRk15T3GH67L6TyJCvLdHrt vz8wCKIpsx468kKA90pxKohBEYW0sOm21EhtAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUNMhCyjcGPErljsG+xYVVyOWwEB0wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL05NaEN5amNHUEVybGpzRy14 WVZWeU9Xd0VCMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx nsgwDQYJKoZIhvcNAQELBQADggEBAJzkBZIskTMPwMep+/imh+BehX/Te74mRSpT z81oRpaRCC9CCKqsT1ZKwEvzIjpqcZUP2V+Cezpmmxhh62NH3QM+Xq/y1gsOyfcK oHx0TWlgu4nOOufuCZHIWz1RYDe8HzGux7YNJO01iOMJUTywmKPCC5iZjeiDeC+L IoPNioL9WVTab1K5sJMx0lRf6drquXpwPeCeTW/7RtrvOGgkdiAkLrZl67RUBMtf pLnTfCpBbpW6QHELl9tnKyO0XAz8hv8TJC8exG8bqu4npnx9URNllIc10lV1CYnH Z1T7xG/dbCdKBfWtbVg0I/YD1Qq5Xfh4iz6CppoOy/UESGM0/Ns= -----END CERTIFICATE-----Generated at Mon Nov 25 20:56:44 2024 by rpki-client on console-fra.rpki-client.org