$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/VN41R1aqT5Pg1np_kxmMgLTLvVI.roa File: VN41R1aqT5Pg1np_kxmMgLTLvVI.roa (raw, json) Hash identifier: jDExMlpwoi/XxVuMkSg73NKlQYvy85y954ywbiHH0fo= Subject key identifier: 54:DE:35:47:56:AA:4F:93:E0:D6:7A:7F:93:19:8C:80:B4:CB:BD:52 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2158 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/VN41R1aqT5Pg1np_kxmMgLTLvVI.roa Signing time: Mon 26 Aug 2024 05:32:54 +0000 ROA not before: Mon 26 Aug 2024 05:32:54 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 49.158.168.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:55:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8536 (0x2158) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:32:54 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=54DE354756AA4F93E0D67A7F93198C80B4CBBD52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:9d:f7:d9:96:63:94:ad:09:fb:4d:c1:29:70: 6f:24:91:e6:0d:cd:5b:56:41:59:4f:d8:a1:81:da: d0:66:ed:2a:04:e1:c4:5b:62:52:28:31:02:e0:7f: 3b:61:c4:4c:83:63:fb:82:b4:61:50:c0:6e:4e:13: b9:1d:07:b1:2b:96:af:74:22:65:d9:0c:81:86:69: c3:e8:86:91:fb:79:c8:48:39:01:9d:5c:73:b5:d3: 08:7e:0c:8b:c2:f0:95:bf:15:eb:0b:af:d3:00:28: 78:ae:c3:6a:ba:e0:49:e9:df:4b:e6:16:83:2f:ec: a8:a6:30:4b:ce:52:63:47:96:2d:3f:7e:d8:56:2f: e5:f5:bd:54:03:08:7c:d0:fa:4a:14:1a:6b:32:e1: ba:b6:d0:5f:e5:11:d7:ae:1c:4e:e6:1b:e3:44:ad: 04:d4:26:19:60:8c:25:4f:42:fb:5b:0f:24:8e:25: 34:6c:9a:d7:d3:3b:fa:2c:7d:64:11:09:d4:55:be: 1a:98:3e:8c:13:c3:32:ea:f5:d6:37:83:9e:33:f8: db:e0:ec:2b:5b:1b:e1:a1:7a:eb:80:fc:61:60:9f: e5:25:24:5c:d0:c7:6c:5a:4e:8c:bd:d8:22:9f:62: 8f:66:b9:16:86:dd:58:21:82:6e:0f:f0:20:fc:62: 12:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:DE:35:47:56:AA:4F:93:E0:D6:7A:7F:93:19:8C:80:B4:CB:BD:52 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/VN41R1aqT5Pg1np_kxmMgLTLvVI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.168.0/21 Signature Algorithm: sha256WithRSAEncryption 49:9f:60:86:bd:a0:6f:2a:47:68:70:0a:61:42:e2:b1:d1:f1: f2:36:f1:b9:59:27:87:96:a5:13:7f:72:01:58:08:b9:82:1d: 1b:33:7b:40:ac:f0:14:c7:fe:02:79:30:84:25:de:c6:d4:1e: 85:d0:4a:80:30:13:51:71:f9:7f:8b:44:e0:15:fe:62:e4:a9: a0:5f:c5:84:f8:4d:1e:1b:3a:5f:14:4f:27:c8:4f:d7:17:7c: dd:0d:c0:66:b3:6c:a0:39:fb:95:8e:3a:39:12:0f:fc:9a:58: 81:88:fc:ec:5e:5a:2f:65:85:ae:dc:29:a8:49:11:a8:b9:18: e1:9f:2f:66:b2:07:ce:7f:cc:57:61:69:bd:bb:92:a6:b1:dc: 92:c0:96:42:17:ba:f0:a0:58:11:02:8b:65:48:69:2f:70:cc: 31:95:a1:49:01:a8:12:2b:98:3a:54:64:ea:cd:74:2a:cd:0e: 8a:b9:75:2d:35:0a:e3:dd:df:c8:11:b6:97:b2:a8:8b:e8:7c: b8:9f:83:2a:09:26:b9:64:d4:75:bb:a2:5f:6f:07:eb:e6:5a: 28:07:99:65:e2:61:3a:03:cd:db:4e:24:bb:4e:a8:a3:d4:31: 04:c1:11:b2:22:e7:9f:fe:bf:6b:59:93:a7:b8:0e:64:18:fa: 8d:27:44:8b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIVgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMyNTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU0REUzNTQ3NTZBQTRG OTNFMEQ2N0E3RjkzMTk4QzgwQjRDQkJENTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPnffZlmOUrQn7TcEpcG8kkeYNzVtWQVlP2KGB2tBm7SoE4cRb YlIoMQLgfzthxEyDY/uCtGFQwG5OE7kdB7Erlq90ImXZDIGGacPohpH7echIOQGd XHO10wh+DIvC8JW/FesLr9MAKHiuw2q64Enp30vmFoMv7KimMEvOUmNHli0/fthW L+X1vVQDCHzQ+koUGmsy4bq20F/lEdeuHE7mG+NErQTUJhlgjCVPQvtbDySOJTRs mtfTO/osfWQRCdRVvhqYPowTwzLq9dY3g54z+Nvg7CtbG+GheuuA/GFgn+UlJFzQ x2xaToy92CKfYo9muRaG3Vghgm4P8CD8YhITAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUVN41R1aqT5Pg1np/kxmMgLTLvVIwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1ZONDFSMWFxVDVQZzFucF9r eG1NZ0xUTHZWSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx nqgwDQYJKoZIhvcNAQELBQADggEBAEmfYIa9oG8qR2hwCmFC4rHR8fI28blZJ4eW pRN/cgFYCLmCHRsze0Cs8BTH/gJ5MIQl3sbUHoXQSoAwE1Fx+X+LROAV/mLkqaBf xYT4TR4bOl8UTyfIT9cXfN0NwGazbKA5+5WOOjkSD/yaWIGI/OxeWi9lha7cKahJ Eai5GOGfL2ayB85/zFdhab27kqax3JLAlkIXuvCgWBECi2VIaS9wzDGVoUkBqBIr mDpUZOrNdCrNDoq5dS01CuPd38gRtpeyqIvofLifgyoJJrlk1HW7ol9vB+vmWigH mWXiYToDzdtOJLtOqKPUMQTBEbIi55/+v2tZk6e4DmQY+o0nRIs= -----END CERTIFICATE-----Generated at Mon Nov 25 20:56:45 2024 by rpki-client on console-fra.rpki-client.org