$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/S3x2-mndLwxOujMIN6Y3lnHIXvo.roa File: S3x2-mndLwxOujMIN6Y3lnHIXvo.roa (raw, json) Hash identifier: tqN7bi9RFbxaMWov2DNyGmxZz+UTzMNFbuzQn5IwV9w= Subject key identifier: 4B:7C:76:FA:69:DD:2F:0C:4E:BA:33:08:37:A6:37:96:71:C8:5E:FA Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2267 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/S3x2-mndLwxOujMIN6Y3lnHIXvo.roa Signing time: Mon 26 Aug 2024 05:33:58 +0000 ROA not before: Mon 26 Aug 2024 05:33:58 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 49.159.240.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8807 (0x2267) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:58 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4B7C76FA69DD2F0C4EBA330837A6379671C85EFA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:1f:63:d9:d6:b7:7b:27:65:da:63:44:e9:8b: 2c:5b:40:86:a4:f1:01:0c:c8:c1:ca:78:7c:db:41: 90:13:65:1b:0b:f8:b6:9d:17:26:c7:e3:2b:e2:55: ca:5f:4e:21:b5:5c:7d:a3:46:c1:28:19:54:58:bd: 5e:7f:60:1d:be:83:ed:29:5e:2b:86:35:c7:17:5f: 64:1f:87:cf:9c:86:81:80:b5:58:13:4c:87:55:b7: 69:cf:ab:10:04:69:c4:59:49:db:7f:5c:8e:eb:88: 8a:e0:bb:49:ae:4f:2a:1f:e2:93:71:ff:40:a2:3a: 18:e8:70:b9:b0:7c:a0:a1:a9:20:b3:ec:40:96:83: 03:ef:c6:cc:b7:3a:a3:b8:5c:35:92:9e:ea:67:fa: da:30:6e:30:3d:79:cb:cd:8e:f1:c2:33:5c:ac:19: 7f:83:d4:d3:b1:ad:30:af:d5:0d:00:94:de:31:c1: dd:33:e3:eb:d3:25:fc:ef:ab:20:69:ff:9b:d8:76: 9c:2f:9a:fe:6f:2a:bd:df:7a:f8:b0:2f:53:4c:b1: ad:03:9b:64:be:b3:d7:39:0e:f5:97:15:85:ec:6e: 89:0c:0a:b8:fd:82:79:14:ba:c6:a8:cb:90:81:a3: 26:ca:68:5b:a7:83:28:25:63:25:dd:46:cd:04:8e: a7:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:7C:76:FA:69:DD:2F:0C:4E:BA:33:08:37:A6:37:96:71:C8:5E:FA X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/S3x2-mndLwxOujMIN6Y3lnHIXvo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.240.0/21 Signature Algorithm: sha256WithRSAEncryption 0f:38:9c:89:94:a1:8b:c5:42:b7:81:42:be:9e:52:f8:5a:74: 99:8c:57:12:2e:f5:53:20:d0:41:70:2f:cd:03:45:ee:61:09: 39:60:90:da:ca:eb:72:33:98:61:28:0e:73:b6:bb:5a:a1:ca: 56:72:4b:86:5f:22:1d:3b:ab:13:fb:fa:d7:a9:2c:8c:17:e1: 84:17:47:63:0a:95:01:39:49:49:a9:f0:9d:ba:0a:b3:ec:72: 86:b8:5a:66:9d:f9:62:df:dd:29:1d:d3:ac:35:04:8b:46:4f: 04:e2:81:28:ee:92:e5:67:8a:14:ae:12:da:11:d0:7f:7d:69: ff:06:08:46:69:99:39:af:14:ef:a5:43:a8:2c:bc:96:04:68: 41:3e:e1:d3:b6:a1:7f:7c:de:9d:95:02:0b:2c:e4:70:72:2d: a2:35:61:f4:01:46:b6:a6:a2:66:92:6f:05:f9:dd:49:14:40: d8:8b:ac:13:41:36:8b:a2:53:cb:57:07:bd:31:a0:8f:12:36: 90:3d:90:db:df:d8:1b:e0:d7:ea:4b:a4:0e:46:1f:fe:8b:dc: 7a:ce:e4:3b:74:69:cd:4c:64:79:22:ba:b6:9a:7a:03:cc:b9: 03:21:2d:57:3e:48:18:dc:7c:a9:1c:01:63:ae:44:1e:2e:a6: 55:94:ab:31 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICImcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzNThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDRCN0M3NkZBNjlERDJG MEM0RUJBMzMwODM3QTYzNzk2NzFDODVFRkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDqH2PZ1rd7J2XaY0TpiyxbQIak8QEMyMHKeHzbQZATZRsL+Lad FybH4yviVcpfTiG1XH2jRsEoGVRYvV5/YB2+g+0pXiuGNccXX2Qfh8+choGAtVgT TIdVt2nPqxAEacRZSdt/XI7riIrgu0muTyof4pNx/0CiOhjocLmwfKChqSCz7ECW gwPvxsy3OqO4XDWSnupn+towbjA9ecvNjvHCM1ysGX+D1NOxrTCv1Q0AlN4xwd0z 4+vTJfzvqyBp/5vYdpwvmv5vKr3feviwL1NMsa0Dm2S+s9c5DvWXFYXsbokMCrj9 gnkUusaoy5CBoybKaFungyglYyXdRs0Ejqe5AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUS3x2+mndLwxOujMIN6Y3lnHIXvowHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1MzeDItbW5kTHd4T3VqTUlO NlkzbG5ISVh2by5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx n/AwDQYJKoZIhvcNAQELBQADggEBAA84nImUoYvFQreBQr6eUvhadJmMVxIu9VMg 0EFwL80DRe5hCTlgkNrK63IzmGEoDnO2u1qhylZyS4ZfIh07qxP7+tepLIwX4YQX R2MKlQE5SUmp8J26CrPscoa4Wmad+WLf3Skd06w1BItGTwTigSjukuVnihSuEtoR 0H99af8GCEZpmTmvFO+lQ6gsvJYEaEE+4dO2oX983p2VAgss5HByLaI1YfQBRram omaSbwX53UkUQNiLrBNBNouiU8tXB70xoI8SNpA9kNvf2Bvg1+pLpA5GH/6L3HrO 5Dt0ac1MZHkiuraaegPMuQMhLVc+SBjcfKkcAWOuRB4uplWUqzE= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:25 2024 by rpki-client on console-ams.rpki-client.org