$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/dnM_-ulNovpQOlpVErHO-fKE6sk.roa File: dnM_-ulNovpQOlpVErHO-fKE6sk.roa (raw, json) Hash identifier: 74NoaeOZdg/Kb3UoVW3j9JX+xLQPVKBf5CdwRMHDLHQ= Subject key identifier: 76:73:3F:FA:E9:4D:A2:FA:50:3A:5A:55:12:B1:CE:F9:F2:84:EA:C9 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2193 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/dnM_-ulNovpQOlpVErHO-fKE6sk.roa Signing time: Mon 26 Aug 2024 05:33:07 +0000 ROA not before: Mon 26 Aug 2024 05:33:07 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 49.159.32.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8595 (0x2193) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:07 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=76733FFAE94DA2FA503A5A5512B1CEF9F284EAC9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:8f:ad:0d:95:3b:f9:a4:e3:c8:ab:ed:23:0f: c9:b0:67:1d:4e:a3:21:19:c5:df:d0:11:3a:03:1c: 91:cc:56:d4:ee:a9:50:17:01:ea:87:b2:10:53:4e: ca:4a:d2:ce:ec:ed:6f:bb:10:57:1b:44:37:85:50: ab:03:8e:46:1d:73:3a:ca:25:08:7d:ac:15:6a:b1: fe:92:9e:a2:06:47:e1:c5:50:3c:fe:bc:2d:37:12: 60:5e:48:2a:4b:a0:df:52:98:1a:2f:9a:98:9a:f8: 39:cc:20:18:e2:1b:ed:1f:7a:d7:5f:ba:79:3a:86: a5:e5:e3:95:6f:7a:d9:3f:30:c8:29:cb:8b:3f:5f: 20:53:5a:a3:1a:3b:da:87:43:15:75:fc:8c:69:89: c8:cd:a9:f7:8d:f1:a5:eb:cb:47:69:25:19:e3:27: 9c:0c:bb:e6:de:54:ac:69:b7:1b:c5:32:00:18:ab: 33:7e:52:28:09:75:0a:90:dd:51:ee:ea:68:8b:8c: 49:34:bf:60:67:ac:53:7c:97:87:ea:3a:8b:5e:da: ce:f0:35:dd:29:b4:fd:cc:15:25:48:77:91:cb:85: ce:8f:e6:c7:55:49:1c:4f:52:88:d4:74:a9:70:00: 29:d5:14:65:21:5a:4a:ba:98:4b:7b:90:fe:cd:58: 90:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:73:3F:FA:E9:4D:A2:FA:50:3A:5A:55:12:B1:CE:F9:F2:84:EA:C9 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/dnM_-ulNovpQOlpVErHO-fKE6sk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.32.0/21 Signature Algorithm: sha256WithRSAEncryption 05:b2:ff:a9:be:cf:67:c5:12:33:e7:1f:38:da:90:ef:9b:bc: 59:0d:a5:9b:73:3e:07:cb:d2:32:cb:15:91:19:fd:5c:fc:bc: 7f:46:5e:16:ea:8b:a9:1e:fa:11:f0:05:d0:2a:cc:16:8d:fc: 35:5b:c9:ca:61:71:fd:47:2d:a3:d9:2b:8e:f4:fd:22:2f:ce: 88:d5:a2:f9:3c:83:4f:30:fb:3f:86:61:99:95:f0:8a:78:0c: 38:de:8f:15:a6:91:f0:42:cf:c9:6a:48:70:20:2e:90:01:34: be:66:53:d1:a6:66:f9:8e:96:d9:bf:00:d2:a6:ee:f2:1e:ba: aa:ad:e8:e2:d1:09:30:fb:a5:30:78:5b:22:20:89:d3:91:a6: 2c:48:f8:d1:41:09:00:60:09:9c:f3:da:96:8c:ae:9c:50:a4: 9d:88:f2:92:0a:e9:1e:a0:76:38:60:ba:29:9b:e1:31:22:cd: 32:7b:c6:5d:46:97:76:53:ca:65:95:ba:cc:76:5e:9e:42:e4: 9e:c5:95:32:40:c5:ff:89:62:71:d2:b0:83:07:41:95:c0:c5: 30:d9:c2:2a:14:05:e2:fe:7e:40:02:1c:b1:50:b6:5b:59:7e: 8e:9a:81:a5:92:cf:c2:ae:70:93:3a:c0:cd:e0:cb:6b:76:4d: 42:82:de:55 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIZMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzMDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDc2NzMzRkZBRTk0REEy RkE1MDNBNUE1NTEyQjFDRUY5RjI4NEVBQzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3j60NlTv5pOPIq+0jD8mwZx1OoyEZxd/QEToDHJHMVtTuqVAX AeqHshBTTspK0s7s7W+7EFcbRDeFUKsDjkYdczrKJQh9rBVqsf6SnqIGR+HFUDz+ vC03EmBeSCpLoN9SmBovmpia+DnMIBjiG+0fetdfunk6hqXl45Vvetk/MMgpy4s/ XyBTWqMaO9qHQxV1/IxpicjNqfeN8aXry0dpJRnjJ5wMu+beVKxptxvFMgAYqzN+ UigJdQqQ3VHu6miLjEk0v2BnrFN8l4fqOote2s7wNd0ptP3MFSVId5HLhc6P5sdV SRxPUojUdKlwACnVFGUhWkq6mEt7kP7NWJAZAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUdnM/+ulNovpQOlpVErHO+fKE6skwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2RuTV8tdWxOb3ZwUU9scFZF ckhPLWZLRTZzay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx nyAwDQYJKoZIhvcNAQELBQADggEBAAWy/6m+z2fFEjPnHzjakO+bvFkNpZtzPgfL 0jLLFZEZ/Vz8vH9GXhbqi6ke+hHwBdAqzBaN/DVbycphcf1HLaPZK470/SIvzojV ovk8g08w+z+GYZmV8Ip4DDjejxWmkfBCz8lqSHAgLpABNL5mU9GmZvmOltm/ANKm 7vIeuqqt6OLRCTD7pTB4WyIgidORpixI+NFBCQBgCZzz2paMrpxQpJ2I8pIK6R6g djhguimb4TEizTJ7xl1Gl3ZTymWVusx2Xp5C5J7FlTJAxf+JYnHSsIMHQZXAxTDZ wioUBeL+fkACHLFQtltZfo6agaWSz8KucJM6wM3gy2t2TUKC3lU= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:55 2024 by rpki-client on console-fra.rpki-client.org