$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ct_E8zIhcVaseWQPBCz6kU8pC8M.roa File: ct_E8zIhcVaseWQPBCz6kU8pC8M.roa (raw, json) Hash identifier: kixfj82LhXx0/Os8SKj9KYwd0wCNUptvGlx+NLHhFSs= Subject key identifier: 72:DF:C4:F3:32:21:71:56:AC:79:64:0F:04:2C:FA:91:4F:29:0B:C3 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 21C0 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ct_E8zIhcVaseWQPBCz6kU8pC8M.roa Signing time: Mon 26 Aug 2024 05:33:19 +0000 ROA not before: Mon 26 Aug 2024 05:33:19 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 49.158.48.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8640 (0x21c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:19 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=72DFC4F332217156AC79640F042CFA914F290BC3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:7a:e9:5a:5b:83:35:40:14:e3:9a:e9:12:b5: c9:c0:b9:cd:e8:75:ae:8e:41:01:5f:c6:b6:38:c3: 31:f8:80:76:4a:f1:52:68:32:80:46:69:03:d9:e9: 78:27:40:0d:32:6b:69:fc:0f:b6:2b:37:91:89:fb: 88:42:ad:51:7b:77:84:db:f5:aa:c5:20:86:49:f0: ee:86:fc:ae:aa:6c:c9:7a:92:48:51:ce:da:a7:3c: 66:e8:28:06:87:ee:fe:71:0e:3c:bb:47:d8:7b:45: 1e:c2:d9:bc:ed:6d:7d:81:5e:94:95:aa:77:b2:69: 9b:4a:df:b3:03:5f:dc:b7:02:c3:c5:47:2a:61:89: 9f:7b:97:42:6b:fc:c9:34:7a:c7:86:fb:86:3f:9d: 4d:96:9f:7a:1e:30:15:eb:ed:dc:a1:e0:ef:7e:89: d2:74:45:93:27:68:1a:ec:8f:a0:15:f1:71:d2:1d: 55:53:12:1f:ca:8e:80:3a:f3:b6:de:3b:d8:a8:9c: 88:b5:d3:e8:ca:19:3e:a8:35:ac:55:ae:93:d1:f5: 03:22:68:9e:8a:3b:ef:d6:e6:1e:97:64:04:fd:51: c0:f0:15:2d:45:06:45:93:d5:f3:42:b7:b5:10:12: 9f:61:5f:1b:cf:23:ad:14:9d:3e:4f:e8:a9:f1:90: 75:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:DF:C4:F3:32:21:71:56:AC:79:64:0F:04:2C:FA:91:4F:29:0B:C3 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ct_E8zIhcVaseWQPBCz6kU8pC8M.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.48.0/21 Signature Algorithm: sha256WithRSAEncryption 13:b0:81:5e:0a:d0:62:ca:42:4c:27:6f:a9:45:97:ba:27:22: e3:a5:73:94:5b:9f:cf:f3:44:da:d0:19:bc:a8:66:ea:42:bb: 4c:20:89:57:c6:34:79:2f:54:0a:84:f1:27:f5:f8:af:7f:6b: a1:6c:b9:83:57:45:5d:2b:d1:7f:5a:15:87:dd:36:96:15:29: 81:a8:3c:88:72:db:de:a4:26:44:19:cd:a9:73:7e:13:02:b5: 9b:3a:e2:c9:b9:be:5a:44:8c:ae:90:53:a0:ed:a7:d5:e8:85: 3f:a9:f9:d9:e1:1f:b4:29:cd:fc:7e:ce:32:b9:1c:29:d9:7a: a7:c2:7a:48:9b:ef:f0:be:2f:88:e6:c6:d1:4b:60:1e:95:06: 38:83:e2:4a:65:32:16:d6:44:97:6a:ab:a7:42:57:93:d1:29: 1c:c6:90:5e:63:fd:4a:38:42:da:4e:61:a9:9a:3e:51:67:ca: 27:1f:0b:8f:62:07:d4:97:03:1b:8a:8e:4a:d4:b4:fd:12:9e: 10:3c:5b:da:63:f7:7a:cf:54:19:8d:c8:07:81:37:28:83:3b: 13:d7:56:96:c5:e8:77:81:99:eb:0f:e4:6f:9c:9e:4d:4a:8a: 8f:bd:44:e7:38:01:96:ee:f6:1d:8c:8a:a2:20:01:7a:83:98: 68:07:6e:57 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIcAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzMTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDcyREZDNEYzMzIyMTcx NTZBQzc5NjQwRjA0MkNGQTkxNEYyOTBCQzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEeulaW4M1QBTjmukStcnAuc3oda6OQQFfxrY4wzH4gHZK8VJo MoBGaQPZ6XgnQA0ya2n8D7YrN5GJ+4hCrVF7d4Tb9arFIIZJ8O6G/K6qbMl6kkhR ztqnPGboKAaH7v5xDjy7R9h7RR7C2bztbX2BXpSVqneyaZtK37MDX9y3AsPFRyph iZ97l0Jr/Mk0eseG+4Y/nU2Wn3oeMBXr7dyh4O9+idJ0RZMnaBrsj6AV8XHSHVVT Eh/KjoA687beO9ionIi10+jKGT6oNaxVrpPR9QMiaJ6KO+/W5h6XZAT9UcDwFS1F BkWT1fNCt7UQEp9hXxvPI60UnT5P6KnxkHWVAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUct/E8zIhcVaseWQPBCz6kU8pC8MwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2N0X0U4ekloY1Zhc2VXUVBC Q3o2a1U4cEM4TS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx njAwDQYJKoZIhvcNAQELBQADggEBABOwgV4K0GLKQkwnb6lFl7onIuOlc5Rbn8/z RNrQGbyoZupCu0wgiVfGNHkvVAqE8Sf1+K9/a6FsuYNXRV0r0X9aFYfdNpYVKYGo PIhy296kJkQZzalzfhMCtZs64sm5vlpEjK6QU6Dtp9XohT+p+dnhH7Qpzfx+zjK5 HCnZeqfCekib7/C+L4jmxtFLYB6VBjiD4kplMhbWRJdqq6dCV5PRKRzGkF5j/Uo4 QtpOYamaPlFnyicfC49iB9SXAxuKjkrUtP0SnhA8W9pj93rPVBmNyAeBNyiDOxPX VpbF6HeBmesP5G+cnk1Kio+9ROc4AZbu9h2MiqIgAXqDmGgHblc= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:26 2024 by rpki-client on console-ams.rpki-client.org