$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/SQ_2SeyavSba30rWQQRyVdktJ8E.roa File: SQ_2SeyavSba30rWQQRyVdktJ8E.roa (raw, json) Hash identifier: I3bx28kIl9RmszSaTnNUovwFevoX8cIQlAFhh96mAGk= Subject key identifier: 49:0F:F6:49:EC:9A:BD:26:DA:DF:4A:D6:41:04:72:55:D9:2D:27:C1 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2171 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/SQ_2SeyavSba30rWQQRyVdktJ8E.roa Signing time: Mon 26 Aug 2024 05:33:00 +0000 ROA not before: Mon 26 Aug 2024 05:33:00 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24165 IP address blocks: 49.158.128.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8561 (0x2171) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:00 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=490FF649EC9ABD26DADF4AD641047255D92D27C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:3e:a7:b2:61:4b:cf:92:8d:e0:f0:4b:2d:08: 2a:84:38:b5:75:da:95:31:b3:65:ac:b8:52:9a:b4: 61:45:c7:a0:9b:8a:9d:21:23:46:6d:f0:39:5e:7e: 12:f8:55:3b:3c:ba:a2:a0:dc:39:3d:12:7b:00:11: eb:09:f8:4d:99:3d:35:1a:c7:18:4a:36:c0:d8:66: 00:d6:6f:d9:6a:89:eb:b8:3b:5a:08:76:40:57:42: 65:f6:7b:6f:ed:1e:33:95:03:ef:a9:56:40:17:52: 35:a4:f9:66:55:57:c4:04:fd:c4:e9:e0:f8:81:9e: fa:0c:3b:f7:24:1b:b2:b4:51:38:75:28:7c:36:a6: 65:8e:cc:02:7b:e2:d3:d9:a1:72:9f:e3:0f:84:20: 89:8b:d3:ce:56:92:41:a0:cf:eb:65:3c:fe:11:75: 49:5d:0b:0b:96:df:d2:38:45:fc:31:bb:f9:f5:80: 8c:06:a6:70:f6:bd:ab:11:b4:64:88:42:3f:73:0e: a9:1f:d0:92:37:db:fa:cc:83:cb:20:4b:e2:0b:d8: bd:e3:a7:36:4a:4d:0e:2b:ca:ee:2f:41:75:55:01: 45:20:da:c6:19:0e:7f:9c:ed:1d:37:ff:1c:a2:46: a2:7f:03:5a:b7:c1:9c:6b:cd:75:d5:42:f0:df:04: 7b:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:0F:F6:49:EC:9A:BD:26:DA:DF:4A:D6:41:04:72:55:D9:2D:27:C1 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/SQ_2SeyavSba30rWQQRyVdktJ8E.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.128.0/22 Signature Algorithm: sha256WithRSAEncryption 9f:34:0b:d7:e7:17:e8:97:86:96:96:eb:b8:37:79:ec:8e:33: 2b:fd:36:0c:db:e3:96:4a:d2:7f:8d:8a:43:75:99:f0:77:98: 91:8c:09:b6:d4:5d:b0:40:37:01:5e:23:3a:2c:22:04:63:5c: 9f:26:13:da:53:6a:31:65:9b:97:70:4e:2d:32:4e:40:a3:1a: a2:ea:f4:00:1c:a4:46:fb:24:23:4f:1c:41:74:5d:25:48:36: 73:1e:26:2c:83:19:2d:8b:6e:47:7b:61:4a:e0:7e:15:1f:7c: e8:12:aa:15:26:52:03:b0:bb:c9:b4:7f:b5:bb:23:d7:6f:6e: b3:6a:f8:cf:4b:bc:c3:d9:fe:06:f0:07:55:e2:1b:c5:99:86: 10:10:97:7a:10:83:d4:3e:4f:b8:97:86:ec:cb:7e:63:24:41: e0:78:49:a1:2e:37:40:4d:d0:9c:66:9b:08:76:96:1c:50:50: 89:9e:58:3c:cf:a3:9a:2a:1d:db:a4:1a:3e:ff:8d:4d:55:c9: 15:7c:d5:9c:d1:a2:42:3c:78:5a:90:07:3d:3f:41:51:97:85: 00:5c:58:38:af:d1:0b:eb:df:01:0f:b6:fc:a9:ac:7a:01:d5: b9:e1:0d:e5:b4:4d:76:50:0c:ce:a4:10:aa:45:55:20:d3:4d: fd:ff:80:6d -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIXEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzMDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ5MEZGNjQ5RUM5QUJE MjZEQURGNEFENjQxMDQ3MjU1RDkyRDI3QzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/PqeyYUvPko3g8EstCCqEOLV12pUxs2WsuFKatGFFx6Cbip0h I0Zt8DlefhL4VTs8uqKg3Dk9EnsAEesJ+E2ZPTUaxxhKNsDYZgDWb9lqieu4O1oI dkBXQmX2e2/tHjOVA++pVkAXUjWk+WZVV8QE/cTp4PiBnvoMO/ckG7K0UTh1KHw2 pmWOzAJ74tPZoXKf4w+EIImL085WkkGgz+tlPP4RdUldCwuW39I4Rfwxu/n1gIwG pnD2vasRtGSIQj9zDqkf0JI32/rMg8sgS+IL2L3jpzZKTQ4ryu4vQXVVAUUg2sYZ Dn+c7R03/xyiRqJ/A1q3wZxrzXXVQvDfBHuFAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUSQ/2SeyavSba30rWQQRyVdktJ8EwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1NRXzJTZXlhdlNiYTMwcldR UVJ5VmRrdEo4RS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIx noAwDQYJKoZIhvcNAQELBQADggEBAJ80C9fnF+iXhpaW67g3eeyOMyv9Ngzb45ZK 0n+NikN1mfB3mJGMCbbUXbBANwFeIzosIgRjXJ8mE9pTajFlm5dwTi0yTkCjGqLq 9AAcpEb7JCNPHEF0XSVINnMeJiyDGS2Lbkd7YUrgfhUffOgSqhUmUgOwu8m0f7W7 I9dvbrNq+M9LvMPZ/gbwB1XiG8WZhhAQl3oQg9Q+T7iXhuzLfmMkQeB4SaEuN0BN 0Jxmmwh2lhxQUImeWDzPo5oqHdukGj7/jU1VyRV81ZzRokI8eFqQBz0/QVGXhQBc WDiv0Qvr3wEPtvyprHoB1bnhDeW0TXZQDM6kEKpFVSDTTf3/gG0= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:41 2024 by rpki-client on console-ams.rpki-client.org