$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/SW88OM2lC7q2Ma5SFS3g-Nk9_wE.roa File: SW88OM2lC7q2Ma5SFS3g-Nk9_wE.roa (raw, json) Hash identifier: NMGm3bloQkshsqOFhhW1ffFxOxiV+ZAyIhXIeI/T/Dw= Subject key identifier: 49:6F:3C:38:CD:A5:0B:BA:B6:31:AE:52:15:2D:E0:F8:D9:3D:FF:01 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2279 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/SW88OM2lC7q2Ma5SFS3g-Nk9_wE.roa Signing time: Mon 26 Aug 2024 05:34:02 +0000 ROA not before: Mon 26 Aug 2024 05:34:02 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24163 IP address blocks: 211.76.72.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8825 (0x2279) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:34:02 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=496F3C38CDA50BBAB631AE52152DE0F8D93DFF01 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:a2:1e:1f:ed:8b:cb:0f:63:50:ff:46:a8:29: 65:60:cf:73:a3:03:38:11:39:3e:e0:88:37:40:31: 1e:9b:36:96:cf:f6:f2:68:46:31:c1:16:03:2d:b0: 43:db:13:96:5f:5a:8e:3e:8d:e6:85:76:de:22:03: 0c:09:c8:9e:bc:fd:2f:81:bf:8b:41:c2:c4:c3:c8: 38:88:33:1c:56:ce:bd:a5:1e:0f:8b:d6:37:68:21: 42:e2:93:ab:07:3d:49:6b:cc:5b:d6:4b:d6:da:7a: 2e:65:e3:01:4e:f5:d9:5f:aa:bf:b1:be:21:b7:c6: d5:c0:1b:e3:ce:e9:97:39:a9:ae:c2:29:0b:69:6b: f9:17:37:52:f8:7d:aa:46:d7:34:ca:0d:d8:e3:23: 8c:dc:7b:ad:89:e5:cd:43:59:bf:04:10:06:87:1c: f5:9f:20:f0:79:7d:d2:8d:13:26:91:80:c7:9b:c4: 0a:25:c6:36:4c:7b:27:33:44:de:1b:01:7b:d7:d7: 95:cc:49:13:32:47:ff:1c:4c:55:6d:bc:14:c8:18: 45:0e:27:aa:11:18:fa:0e:6c:d0:eb:9e:74:6e:c1: 20:a9:0f:59:37:e7:8d:41:37:38:99:26:5f:ed:46: a1:20:8b:3b:7b:c6:92:c9:d9:fe:44:af:a7:99:be: 34:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 49:6F:3C:38:CD:A5:0B:BA:B6:31:AE:52:15:2D:E0:F8:D9:3D:FF:01 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/SW88OM2lC7q2Ma5SFS3g-Nk9_wE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.72.0/22 Signature Algorithm: sha256WithRSAEncryption 34:0f:bd:e8:80:48:98:60:83:46:f0:c0:e7:70:cc:c0:ae:7b: 33:9e:ac:72:25:80:91:c9:80:ac:4d:62:55:19:c3:ae:34:c5: fb:33:a7:10:bd:07:70:e6:00:e5:7f:14:14:54:75:a0:71:a6: 1e:04:7b:df:a7:fe:9c:56:78:55:37:29:0d:db:be:b5:cd:55: 96:00:cb:4c:47:52:28:e2:36:89:31:4a:92:fd:17:95:8f:58: 94:58:b9:3e:f6:63:7a:7c:d0:37:cc:3c:7f:8c:4b:a9:29:15: e8:9a:ce:97:04:e4:d0:c0:64:1d:f6:ee:58:63:51:17:82:59: b4:5f:e7:9d:0a:74:15:77:79:8d:d2:4e:09:82:87:90:d3:1a: cb:77:eb:e0:8a:e3:2a:28:17:9f:23:83:0b:7a:a4:82:ca:d9: bc:54:f1:0e:f7:13:8e:38:48:97:e2:3d:3a:93:95:f4:3b:1b: b6:33:31:45:49:6b:41:49:b2:8a:28:b4:31:59:e7:29:b7:c5: d8:e3:58:31:f8:2b:3c:a1:72:b0:b4:6d:b1:06:9b:8a:c1:87: d9:2c:70:7d:47:8b:68:4d:a7:ce:92:ee:ef:f9:91:d2:dd:e6: b1:9c:05:92:ab:39:ae:c1:c4:c3:0d:d5:e9:2e:62:e5:09:4d: 8c:51:4b:bd -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICInkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTM0MDJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ5NkYzQzM4Q0RBNTBC QkFCNjMxQUU1MjE1MkRFMEY4RDkzREZGMDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4oh4f7YvLD2NQ/0aoKWVgz3OjAzgROT7giDdAMR6bNpbP9vJo RjHBFgMtsEPbE5ZfWo4+jeaFdt4iAwwJyJ68/S+Bv4tBwsTDyDiIMxxWzr2lHg+L 1jdoIULik6sHPUlrzFvWS9baei5l4wFO9dlfqr+xviG3xtXAG+PO6Zc5qa7CKQtp a/kXN1L4fapG1zTKDdjjI4zce62J5c1DWb8EEAaHHPWfIPB5fdKNEyaRgMebxAol xjZMeyczRN4bAXvX15XMSRMyR/8cTFVtvBTIGEUOJ6oRGPoObNDrnnRuwSCpD1k3 541BNziZJl/tRqEgizt7xpLJ2f5Er6eZvjTnAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUSW88OM2lC7q2Ma5SFS3g+Nk9/wEwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1NXODhPTTJsQzdxMk1hNVNG UzNnLU5rOV93RS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBALT TEgwDQYJKoZIhvcNAQELBQADggEBADQPveiASJhgg0bwwOdwzMCuezOerHIlgJHJ gKxNYlUZw640xfszpxC9B3DmAOV/FBRUdaBxph4Ee9+n/pxWeFU3KQ3bvrXNVZYA y0xHUijiNokxSpL9F5WPWJRYuT72Y3p80DfMPH+MS6kpFeiazpcE5NDAZB327lhj UReCWbRf550KdBV3eY3STgmCh5DTGst36+CK4yooF58jgwt6pILK2bxU8Q73E444 SJfiPTqTlfQ7G7YzMUVJa0FJsoootDFZ5ym3xdjjWDH4KzyhcrC0bbEGm4rBh9ks cH1Hi2hNp86S7u/5kdLd5rGcBZKrOa7BxMMN1ekuYuUJTYxRS70= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:25 2024 by rpki-client on console-ams.rpki-client.org