$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Qt7U_72z7ToJd6mQsE2Ouhnlkvk.roa File: Qt7U_72z7ToJd6mQsE2Ouhnlkvk.roa (raw, json) Hash identifier: q7MRb+Bsv4pBLj48xftxjG52+0AEgra6uKAXV1S66Dk= Subject key identifier: 42:DE:D4:FF:BD:B3:ED:3A:09:77:A9:90:B0:4D:8E:BA:19:E5:92:F9 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 228C Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Qt7U_72z7ToJd6mQsE2Ouhnlkvk.roa Signing time: Mon 26 Aug 2024 05:34:08 +0000 ROA not before: Mon 26 Aug 2024 05:34:08 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 49.158.136.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:55:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8844 (0x228c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:34:08 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=42DED4FFBDB3ED3A0977A990B04D8EBA19E592F9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:5f:d3:93:b6:45:48:81:c1:cc:51:99:cc:07: f1:91:32:54:70:e3:ee:1e:4c:e5:86:2e:28:ba:3d: 12:f9:9f:97:b9:c9:00:97:23:09:1d:46:6a:53:20: 10:da:b3:83:da:49:cc:d0:41:df:e8:43:19:b1:66: 19:07:29:1b:b2:c2:87:ac:6e:82:8f:57:5c:62:ce: 12:32:21:16:04:2e:e2:3c:77:f6:0d:22:13:32:8f: 05:46:82:c5:a7:4a:2e:a7:ef:e2:35:0c:bb:5f:a7: 44:65:0e:84:3b:9c:d3:a2:95:6a:8e:19:2a:8f:62: 1c:b4:51:5f:79:09:2f:72:8f:03:9e:d5:fb:32:f4: 4c:6c:e6:3f:3d:15:0c:2d:61:26:d2:fb:5b:2c:f2: d0:11:a6:7b:d9:a7:fa:1f:a3:e2:b6:f3:9e:12:93: 40:1b:2b:71:61:6d:31:7d:ee:f9:70:25:73:dc:1e: e4:62:82:3f:14:13:76:46:54:e9:41:8d:c4:17:b5: 81:29:ed:e9:58:a6:be:ed:09:fe:84:cb:a9:6b:78: 0f:4f:c9:0a:ac:11:66:dc:87:6e:7b:ec:df:1b:0c: 36:8b:f5:28:a9:08:90:ed:25:b5:51:74:70:e5:4e: 55:9a:48:be:e4:63:f3:df:6d:43:78:be:f4:b3:56: ab:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:DE:D4:FF:BD:B3:ED:3A:09:77:A9:90:B0:4D:8E:BA:19:E5:92:F9 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Qt7U_72z7ToJd6mQsE2Ouhnlkvk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.136.0/22 Signature Algorithm: sha256WithRSAEncryption 69:7d:fc:28:ab:76:c5:34:22:0d:2b:cc:74:3c:4a:ed:68:b6: d5:c8:f3:da:7a:e6:79:91:63:56:c3:79:44:91:4e:11:a3:fb: a9:ff:da:30:7b:18:b7:21:4d:db:d5:ec:83:98:47:7f:b1:26: 5e:79:96:2b:a3:ff:0d:bd:d0:27:34:8d:50:92:e3:4b:4d:dc: 5c:72:ed:25:ea:f4:77:dc:c9:cb:6f:47:52:d5:52:14:d8:e7: a1:af:f7:8e:d6:1c:39:e1:76:eb:2f:69:d6:6d:71:b5:2b:0e: 46:78:4b:0e:90:6e:97:bf:8f:26:08:bd:bb:95:16:b6:e9:59: 6c:5f:d7:06:06:9e:82:51:3e:a4:57:13:66:cc:f8:87:e7:2a: 13:57:34:72:72:ab:7d:0f:25:8f:aa:ba:e2:71:ea:7f:c4:28: 41:39:26:2c:ea:6f:52:ad:a4:33:22:e0:4e:de:86:ce:45:d0: e5:a0:2d:a4:6f:7f:7d:f4:1e:4c:70:32:aa:fe:cf:98:50:5f: 4b:75:ca:88:3a:b5:96:8f:0a:20:6c:53:21:56:ae:69:fe:69: 7a:3b:e2:d7:8e:6d:ff:c2:88:9c:7b:e7:23:14:05:61:b9:e6: 22:e3:2b:24:8e:d9:dd:79:4d:ff:80:63:46:19:17:05:3e:32: a8:98:62:ee -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIowwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTM0MDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQyREVENEZGQkRCM0VE M0EwOTc3QTk5MEIwNEQ4RUJBMTlFNTkyRjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDiX9OTtkVIgcHMUZnMB/GRMlRw4+4eTOWGLii6PRL5n5e5yQCX IwkdRmpTIBDas4PaSczQQd/oQxmxZhkHKRuywoesboKPV1xizhIyIRYELuI8d/YN IhMyjwVGgsWnSi6n7+I1DLtfp0RlDoQ7nNOilWqOGSqPYhy0UV95CS9yjwOe1fsy 9Exs5j89FQwtYSbS+1ss8tARpnvZp/ofo+K2854Sk0AbK3FhbTF97vlwJXPcHuRi gj8UE3ZGVOlBjcQXtYEp7elYpr7tCf6Ey6lreA9PyQqsEWbch2577N8bDDaL9Sip CJDtJbVRdHDlTlWaSL7kY/PfbUN4vvSzVqv5AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUQt7U/72z7ToJd6mQsE2OuhnlkvkwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1F0N1VfNzJ6N1RvSmQ2bVFz RTJPdWhubGt2ay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIx nogwDQYJKoZIhvcNAQELBQADggEBAGl9/CirdsU0Ig0rzHQ8Su1ottXI89p65nmR Y1bDeUSRThGj+6n/2jB7GLchTdvV7IOYR3+xJl55liuj/w290Cc0jVCS40tN3Fxy 7SXq9HfcyctvR1LVUhTY56Gv947WHDnhdusvadZtcbUrDkZ4Sw6Qbpe/jyYIvbuV FrbpWWxf1wYGnoJRPqRXE2bM+IfnKhNXNHJyq30PJY+quuJx6n/EKEE5Jizqb1Kt pDMi4E7ehs5F0OWgLaRvf330HkxwMqr+z5hQX0t1yog6tZaPCiBsUyFWrmn+aXo7 4teObf/CiJx75yMUBWG55iLjKySO2d15Tf+AY0YZFwU+MqiYYu4= -----END CERTIFICATE-----Generated at Mon Nov 25 20:56:44 2024 by rpki-client on console-fra.rpki-client.org