$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ZBZbsAFYZjxqooLkeUtOXA_Aef8.roa File: ZBZbsAFYZjxqooLkeUtOXA_Aef8.roa (raw, json) Hash identifier: VDT6UhTXFiZgDld7usXM6+ypEbGao4QozS5MaI/mBwU= Subject key identifier: 64:16:5B:B0:01:58:66:3C:6A:A2:82:E4:79:4B:4E:5C:0F:C0:79:FF Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 21C3 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ZBZbsAFYZjxqooLkeUtOXA_Aef8.roa Signing time: Mon 26 Aug 2024 05:33:20 +0000 ROA not before: Mon 26 Aug 2024 05:33:20 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24165 IP address blocks: 49.159.212.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8643 (0x21c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:20 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=64165BB00158663C6AA282E4794B4E5C0FC079FF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:e2:98:b2:20:67:f0:74:74:4b:bc:32:ec:bd: 42:21:dc:cb:6c:d6:66:f8:6d:91:ae:47:f1:f3:77: 06:fe:d2:44:7d:9c:da:8b:51:d8:b3:81:7c:54:58: f2:59:ca:46:01:82:af:94:b9:fa:90:08:c0:78:c3: e7:eb:a7:9c:2f:cb:4a:3c:92:de:2a:90:12:bb:cd: 58:ac:97:11:70:95:68:b8:0b:71:95:b6:d0:74:fb: dd:92:5d:22:8e:29:71:b7:d5:90:2f:32:c9:17:2b: d8:55:f7:b9:32:8b:7c:01:9b:c9:e8:84:9d:b3:4e: 4f:ae:09:80:14:0d:ad:3f:a9:5d:92:7b:1b:f3:e2: b6:49:a8:f7:ab:b6:d1:c8:79:cb:df:04:0e:5c:b4: 22:26:67:be:c1:ac:65:6a:54:cb:be:be:7f:73:45: 0c:a0:4c:d1:a7:2b:73:de:65:57:68:5b:3b:ee:b1: 75:0a:0d:42:71:cb:32:b1:81:06:3c:8b:01:fc:1c: da:03:46:ad:b8:aa:90:92:9e:42:a5:08:bf:6e:f5: cd:2e:0c:c0:6e:de:68:07:28:7f:72:ce:8f:4f:68: 16:d7:94:53:72:a9:aa:fa:2e:9b:4c:5c:35:17:5b: c8:f6:94:90:d9:57:65:13:00:4d:2c:55:37:69:6e: d9:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:16:5B:B0:01:58:66:3C:6A:A2:82:E4:79:4B:4E:5C:0F:C0:79:FF X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ZBZbsAFYZjxqooLkeUtOXA_Aef8.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.212.0/22 Signature Algorithm: sha256WithRSAEncryption 0a:1a:e5:37:52:20:f9:8e:4b:fc:ac:92:96:d9:da:a4:78:56: 43:fe:ad:ba:45:08:d6:24:2d:53:f7:93:ee:ca:43:b0:a3:52: af:8b:a8:be:54:89:5a:49:eb:24:cc:a0:71:15:73:18:02:89: 10:82:12:ae:fc:57:d2:c3:ca:a6:5b:c3:bc:1a:16:73:64:de: 5c:d0:94:4c:e8:13:97:de:da:04:09:a2:61:fd:4c:bf:e1:d8: 8b:5c:57:c2:f9:d0:c8:d6:cd:31:0d:04:fd:64:c5:80:9a:e5: 26:c0:23:5c:45:cf:cd:2b:d8:19:bb:46:b5:63:d9:70:f0:05: 7c:85:45:01:b3:01:8e:6d:d8:7a:7c:68:9a:dd:5a:64:be:d0: e5:79:f1:4a:d7:6a:87:98:fa:17:5f:11:f7:8f:98:67:05:11: c4:e3:e0:73:b9:4c:25:54:b4:dd:71:a9:19:88:bd:cb:b6:e2: 3f:ac:74:f6:e6:3c:f7:ff:f3:4c:48:0f:40:c8:3f:97:04:98: 6c:38:24:5f:94:f7:69:ff:00:07:67:2b:2f:66:26:27:27:56: f5:a9:9d:d4:10:ef:26:a9:af:50:0b:43:1b:4b:a7:30:76:04: 87:1e:5c:68:c2:4d:ba:a9:7d:c7:ca:2d:f3:79:74:96:ba:b2: f2:ec:d8:7a -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIcMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzMjBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY0MTY1QkIwMDE1ODY2 M0M2QUEyODJFNDc5NEI0RTVDMEZDMDc5RkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCm4piyIGfwdHRLvDLsvUIh3Mts1mb4bZGuR/Hzdwb+0kR9nNqL UdizgXxUWPJZykYBgq+UufqQCMB4w+frp5wvy0o8kt4qkBK7zVislxFwlWi4C3GV ttB0+92SXSKOKXG31ZAvMskXK9hV97kyi3wBm8nohJ2zTk+uCYAUDa0/qV2Sexvz 4rZJqPerttHIecvfBA5ctCImZ77BrGVqVMu+vn9zRQygTNGnK3PeZVdoWzvusXUK DUJxyzKxgQY8iwH8HNoDRq24qpCSnkKlCL9u9c0uDMBu3mgHKH9yzo9PaBbXlFNy qar6LptMXDUXW8j2lJDZV2UTAE0sVTdpbtnpAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUZBZbsAFYZjxqooLkeUtOXA/Aef8wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1pCWmJzQUZZWmp4cW9vTGtl VXRPWEFfQWVmOC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIx n9QwDQYJKoZIhvcNAQELBQADggEBAAoa5TdSIPmOS/yskpbZ2qR4VkP+rbpFCNYk LVP3k+7KQ7CjUq+LqL5UiVpJ6yTMoHEVcxgCiRCCEq78V9LDyqZbw7waFnNk3lzQ lEzoE5fe2gQJomH9TL/h2ItcV8L50MjWzTENBP1kxYCa5SbAI1xFz80r2Bm7RrVj 2XDwBXyFRQGzAY5t2Hp8aJrdWmS+0OV58UrXaoeY+hdfEfePmGcFEcTj4HO5TCVU tN1xqRmIvcu24j+sdPbmPPf/80xID0DIP5cEmGw4JF+U92n/AAdnKy9mJicnVvWp ndQQ7yapr1ALQxtLpzB2BIceXGjCTbqpfcfKLfN5dJa6svLs2Ho= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:41 2024 by rpki-client on console-ams.rpki-client.org