$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/OoqxqTJWtB5FGYVjKlgWSViR94k.roa File: OoqxqTJWtB5FGYVjKlgWSViR94k.roa (raw, json) Hash identifier: RSjAF1St2DXWzQCKc85HvuTFhw6AxD9ErU6hB+Zm86w= Subject key identifier: 3A:8A:B1:A9:32:56:B4:1E:45:19:85:63:2A:58:16:49:58:91:F7:89 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2241 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/OoqxqTJWtB5FGYVjKlgWSViR94k.roa Signing time: Mon 26 Aug 2024 05:33:49 +0000 ROA not before: Mon 26 Aug 2024 05:33:49 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 49.159.4.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8769 (0x2241) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:49 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3A8AB1A93256B41E451985632A5816495891F789 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:aa:9c:ce:8b:2a:b4:9f:ff:c4:0c:ea:bc:20: b2:68:f4:77:ae:ab:5f:cb:9c:5c:44:57:5c:95:b5: c6:43:4b:74:7e:ea:8e:c1:6e:52:35:8d:84:61:f8: d6:31:65:28:14:1d:9f:e5:a4:45:f7:1d:3b:a6:16: b8:d9:44:08:47:a9:d0:da:ed:ca:27:75:69:02:2d: 7f:ed:94:95:5f:52:5c:14:17:44:5b:12:7c:63:a2: 47:87:c6:f8:48:a9:60:d3:32:c5:aa:7e:28:96:5b: 4e:2a:ea:42:91:ed:52:30:ea:14:88:e7:96:28:4f: 58:12:2c:14:0e:9c:ee:e9:4e:62:43:c3:dc:52:89: 3e:1e:ab:41:1b:3a:49:19:5c:2e:cf:86:f8:93:66: e2:18:64:a8:68:b8:97:e5:2a:2a:4d:ba:db:a2:cb: 4d:42:ef:6a:b7:05:48:be:52:c1:9a:3a:c4:b4:e1: a5:8d:f1:27:9c:73:8e:6d:48:0d:24:c1:6e:6e:7b: 17:4a:cd:96:df:43:2a:d1:09:be:42:85:ff:5f:f4: 48:df:ce:41:64:af:4f:99:5d:40:7e:ae:de:1c:1b: 7d:e2:5a:03:54:b9:8e:53:2b:85:94:22:d1:33:a0: cb:23:25:ac:7c:da:49:bd:3d:fb:82:69:db:00:21: 33:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:8A:B1:A9:32:56:B4:1E:45:19:85:63:2A:58:16:49:58:91:F7:89 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/OoqxqTJWtB5FGYVjKlgWSViR94k.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.4.0/22 Signature Algorithm: sha256WithRSAEncryption 9c:3f:78:c8:19:4f:89:e1:d1:98:97:b1:ca:bd:8a:a7:76:53: 6e:f1:9f:0c:04:ba:57:f1:35:a6:6c:ba:28:45:ca:aa:a7:97: c5:e5:ba:fc:92:30:c0:60:42:63:fe:9f:8c:e5:79:ae:f6:28: d0:9b:89:de:38:7e:cd:5c:83:b2:39:a7:06:89:d1:19:32:b5: 5e:28:a7:6e:1a:71:b9:47:06:04:93:d0:40:b1:c2:89:71:46: 4d:66:17:cc:8d:e9:d3:49:50:fc:29:6b:80:d0:6b:38:ab:83: 02:44:44:35:8a:84:4b:ef:79:d5:0a:53:93:8f:2e:9e:cf:36: 71:a0:4b:8f:d6:25:dd:06:bc:c6:a6:eb:25:f6:b3:c9:4e:16: eb:95:ee:6e:8b:f6:cf:a0:89:be:19:1f:45:95:1d:82:08:3f: 56:9e:b7:f6:eb:5f:e9:eb:11:51:8f:09:48:15:36:27:b7:49: 0a:82:25:dd:10:90:d1:5a:35:c0:a0:47:82:06:e0:87:4a:1f: 2c:02:20:78:ad:b5:e5:ce:2c:b3:95:c5:03:b5:8f:ae:5c:22: f4:3f:43:10:7d:4e:0b:ee:dc:c1:d7:12:ee:23:bc:15:98:1c: 33:f0:ec:6b:dd:b2:a0:85:ae:9c:e0:f7:8f:71:bd:77:f5:94: 57:af:6e:31 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIkEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzNDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNBOEFCMUE5MzI1NkI0 MUU0NTE5ODU2MzJBNTgxNjQ5NTg5MUY3ODkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNqpzOiyq0n//EDOq8ILJo9Heuq1/LnFxEV1yVtcZDS3R+6o7B blI1jYRh+NYxZSgUHZ/lpEX3HTumFrjZRAhHqdDa7condWkCLX/tlJVfUlwUF0Rb EnxjokeHxvhIqWDTMsWqfiiWW04q6kKR7VIw6hSI55YoT1gSLBQOnO7pTmJDw9xS iT4eq0EbOkkZXC7PhviTZuIYZKhouJflKipNutuiy01C72q3BUi+UsGaOsS04aWN 8Secc45tSA0kwW5uexdKzZbfQyrRCb5Chf9f9EjfzkFkr0+ZXUB+rt4cG33iWgNU uY5TK4WUItEzoMsjJax82km9PfuCadsAITNxAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUOoqxqTJWtB5FGYVjKlgWSViR94kwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL09vcXhxVEpXdEI1RkdZVmpL bGdXU1ZpUjk0ay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIx nwQwDQYJKoZIhvcNAQELBQADggEBAJw/eMgZT4nh0ZiXscq9iqd2U27xnwwEulfx NaZsuihFyqqnl8XluvySMMBgQmP+n4zlea72KNCbid44fs1cg7I5pwaJ0RkytV4o p24acblHBgST0ECxwolxRk1mF8yN6dNJUPwpa4DQazirgwJERDWKhEvvedUKU5OP Lp7PNnGgS4/WJd0GvMam6yX2s8lOFuuV7m6L9s+gib4ZH0WVHYIIP1aet/brX+nr EVGPCUgVNie3SQqCJd0QkNFaNcCgR4IG4IdKHywCIHitteXOLLOVxQO1j65cIvQ/ QxB9Tgvu3MHXEu4jvBWYHDPw7GvdsqCFrpzg949xvXf1lFevbjE= -----END CERTIFICATE-----Generated at Fri Nov 22 14:13:18 2024 by rpki-client on console-fra.rpki-client.org