$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/c4KX5tjjyGVsLycoPrZvn0a8h5I.roa File: c4KX5tjjyGVsLycoPrZvn0a8h5I.roa (raw, json) Hash identifier: YumIbLb366PB89dSQVOCi7kFgSovJJ2S+/aSZ+8fOSo= Subject key identifier: 73:82:97:E6:D8:E3:C8:65:6C:2F:27:28:3E:B6:6F:9F:46:BC:87:92 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 21D6 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/c4KX5tjjyGVsLycoPrZvn0a8h5I.roa Signing time: Mon 26 Aug 2024 05:33:23 +0000 ROA not before: Mon 26 Aug 2024 05:33:23 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 49.159.144.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8662 (0x21d6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:23 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=738297E6D8E3C8656C2F27283EB66F9F46BC8792 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:de:43:a9:4d:49:e3:fb:bd:86:36:de:3c:22: f9:69:c4:a0:c1:79:12:89:fe:f9:18:ec:09:23:8c: f5:77:99:b8:d7:fb:d3:a0:33:61:19:6f:97:60:c2: 7f:cb:95:d1:f2:b2:7e:f4:c1:17:7e:1f:66:0b:62: 5e:07:d4:04:ec:64:00:8a:08:45:cd:df:bd:37:2b: 0b:06:94:02:e1:48:da:6a:a9:de:c4:c9:2a:51:e4: 20:e5:9d:e5:a5:71:38:28:c1:16:ba:62:49:17:45: cd:39:b0:4b:52:d1:0a:7b:b9:b6:c7:cf:d5:9f:5f: 71:f1:f0:82:65:cd:51:4c:af:b6:7e:37:c9:72:ab: 9f:2e:2a:e1:92:90:4e:4a:d6:3c:ef:d3:a9:06:e9: 3a:26:31:17:66:b8:fb:c5:25:e7:14:9d:cf:08:34: 2a:a4:5c:af:9e:e1:92:ae:da:2e:c0:f4:12:67:08: 64:68:0c:1b:28:14:9d:01:59:68:a1:74:89:cc:49: ac:d7:f1:b9:6c:f5:17:05:27:1b:23:5c:a8:af:cc: b3:b2:b3:46:dc:80:0d:87:ce:c9:db:ad:69:50:1b: da:d7:33:a2:bb:82:45:74:87:9c:ba:ce:47:b3:67: 4b:b3:61:49:b7:0d:66:0e:e3:01:2c:58:8c:c0:fa: ed:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:82:97:E6:D8:E3:C8:65:6C:2F:27:28:3E:B6:6F:9F:46:BC:87:92 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/c4KX5tjjyGVsLycoPrZvn0a8h5I.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.144.0/22 Signature Algorithm: sha256WithRSAEncryption 24:16:48:fd:a0:35:40:e8:68:b2:e0:39:a4:7f:91:48:44:26: 31:1b:20:79:8d:5c:75:2c:68:29:58:48:06:da:98:12:d3:4a: dc:69:b4:b4:39:21:be:02:86:48:d8:ed:2b:cf:e5:46:15:7b: f1:5b:93:f5:ea:a8:e8:b3:9f:ff:9c:79:53:35:49:13:b9:ba: 28:c1:46:7b:92:ef:fa:18:47:ce:e7:a0:ff:50:7f:5e:ee:2e: ec:3c:a1:98:89:44:0d:a5:c5:59:f8:73:da:2e:f8:af:bf:d6: ef:cd:16:bc:c9:9e:42:1d:62:08:22:44:6c:2a:01:f8:22:28: 4d:00:2e:bf:df:8a:03:f5:7d:4a:96:a8:f7:4d:3f:0f:e5:e9: b9:64:eb:fe:25:f7:22:3d:46:bf:5f:e4:36:b4:cd:f5:7b:3b: c1:0d:2b:86:29:d6:b9:5d:18:0a:2c:9d:eb:ce:56:72:b5:13: c1:c3:8f:21:99:50:8e:b5:fc:3e:10:c0:d8:05:bd:4f:7d:4b: 07:e8:53:04:4d:b0:48:c6:b8:04:60:7f:5b:ac:09:5c:1e:67: 09:14:7a:4a:05:6f:64:a7:0b:06:71:90:0a:3f:ab:91:5b:e8: b4:7a:d4:10:c6:c4:fd:c6:7e:d6:d3:f7:ad:2f:63:c6:86:74: a5:e4:f3:f8 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIdYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzMjNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDczODI5N0U2RDhFM0M4 NjU2QzJGMjcyODNFQjY2RjlGNDZCQzg3OTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCu3kOpTUnj+72GNt48IvlpxKDBeRKJ/vkY7AkjjPV3mbjX+9Og M2EZb5dgwn/LldHysn70wRd+H2YLYl4H1ATsZACKCEXN3703KwsGlALhSNpqqd7E ySpR5CDlneWlcTgowRa6YkkXRc05sEtS0Qp7ubbHz9WfX3Hx8IJlzVFMr7Z+N8ly q58uKuGSkE5K1jzv06kG6TomMRdmuPvFJecUnc8INCqkXK+e4ZKu2i7A9BJnCGRo DBsoFJ0BWWihdInMSazX8bls9RcFJxsjXKivzLOys0bcgA2HzsnbrWlQG9rXM6K7 gkV0h5y6zkezZ0uzYUm3DWYO4wEsWIzA+u3vAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUc4KX5tjjyGVsLycoPrZvn0a8h5IwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2M0S1g1dGpqeUdWc0x5Y29Q clp2bjBhOGg1SS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIx n5AwDQYJKoZIhvcNAQELBQADggEBACQWSP2gNUDoaLLgOaR/kUhEJjEbIHmNXHUs aClYSAbamBLTStxptLQ5Ib4ChkjY7SvP5UYVe/Fbk/XqqOizn/+ceVM1SRO5uijB RnuS7/oYR87noP9Qf17uLuw8oZiJRA2lxVn4c9ou+K+/1u/NFrzJnkIdYggiRGwq AfgiKE0ALr/figP1fUqWqPdNPw/l6blk6/4l9yI9Rr9f5Da0zfV7O8ENK4Yp1rld GAosnevOVnK1E8HDjyGZUI61/D4QwNgFvU99SwfoUwRNsEjGuARgf1usCVweZwkU ekoFb2SnCwZxkAo/q5Fb6LR61BDGxP3GftbT960vY8aGdKXk8/g= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:55 2024 by rpki-client on console-fra.rpki-client.org