$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/hMM4vjpQCzcETRMKYUcgWKZw4tE.roa File: hMM4vjpQCzcETRMKYUcgWKZw4tE.roa (raw, json) Hash identifier: 2AHwoZCdmjpIja2djbYsMPq45Y+RcRblCwtUN8wJAL4= Subject key identifier: 84:C3:38:BE:3A:50:0B:37:04:4D:13:0A:61:47:20:58:A6:70:E2:D1 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 21E4 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/hMM4vjpQCzcETRMKYUcgWKZw4tE.roa Signing time: Mon 26 Aug 2024 05:33:26 +0000 ROA not before: Mon 26 Aug 2024 05:33:26 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 49.159.132.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8676 (0x21e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:26 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=84C338BE3A500B37044D130A61472058A670E2D1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:9e:c5:b0:38:98:fc:7c:b7:f2:5c:a7:7d:07: 28:8b:48:08:5a:64:49:a8:3d:dc:ae:4d:b7:0d:fb: 2a:e5:dd:04:95:aa:58:af:f9:5d:a0:5d:57:bf:f6: c5:6b:00:9a:42:f4:1b:50:f0:9a:45:04:6e:5e:da: 00:d1:67:8e:3f:d5:c5:a3:ab:a3:50:84:09:42:31: ce:f2:ec:15:3f:df:f9:53:1c:6f:28:70:40:57:55: 55:2e:46:ea:c3:a4:f3:97:32:7e:80:a2:a0:dd:7b: ce:ab:4b:c8:f7:4e:82:b6:6b:07:77:0c:c6:cb:36: 85:ad:86:b6:d1:b6:ae:a5:a4:5d:09:22:ba:00:0c: 67:63:8c:f2:2d:07:e8:fd:7a:98:75:aa:b5:07:fc: ab:ee:f0:0e:29:bd:44:8c:6b:fa:1a:27:01:3e:5b: e6:2f:41:de:3f:1e:c9:4f:7c:e4:e8:92:95:21:f2: a9:be:98:08:15:65:6e:ab:71:50:93:6c:5b:96:47: 15:f9:37:91:ed:dc:d4:cf:85:ad:81:3b:01:3a:dc: cd:5d:bf:de:94:d1:d4:6f:d7:e5:09:b0:af:5b:e3: 0c:66:a8:9a:3d:b0:3e:28:40:2d:c3:95:69:0e:4b: f4:9d:a6:5e:3d:99:f8:fd:0d:71:e3:e3:d1:69:34: 24:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:C3:38:BE:3A:50:0B:37:04:4D:13:0A:61:47:20:58:A6:70:E2:D1 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/hMM4vjpQCzcETRMKYUcgWKZw4tE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.132.0/22 Signature Algorithm: sha256WithRSAEncryption 0a:7b:ed:3b:3b:34:f9:69:42:3d:00:96:c1:44:89:63:c2:d8: 15:bc:4e:41:fe:50:5a:c0:cf:5f:8c:cc:fc:84:a5:31:04:a7: 22:a2:bf:80:00:3c:4f:2f:80:fe:80:15:6e:92:4a:c6:58:d1: bf:66:f5:bc:c8:f9:66:7e:bb:90:f8:94:90:b3:1e:e8:e1:d0: f1:fe:cd:a3:b0:e5:34:19:e2:6a:dd:ae:63:f0:32:9c:06:e0: ce:87:f0:b7:19:68:c7:83:60:84:7c:3a:db:a5:c8:73:05:5d: ef:71:ac:57:dd:4c:10:37:51:fc:40:78:ee:8f:8f:63:35:87: b6:d7:79:78:de:23:b6:39:cb:ce:fc:f1:a0:e8:88:44:bd:c4: 8a:1e:ba:45:e6:d3:a0:a1:60:d6:db:80:8a:be:1d:91:f0:ec: cb:83:93:fc:32:ff:32:e6:30:65:f4:f8:44:38:83:2a:9e:68: de:7a:e3:c8:07:12:e5:6b:24:e6:cf:46:14:63:7d:fa:2c:40: 40:77:2a:64:05:0d:92:76:3c:5a:e0:8a:52:a9:fa:c6:48:d0: 4c:a7:ad:c8:db:0d:61:16:38:d8:e6:2f:23:7b:97:40:8d:1a: 70:4d:10:32:2d:7c:ed:65:9e:5c:9e:70:10:23:24:ff:48:ce: e9:89:14:5b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIeQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzMjZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDg0QzMzOEJFM0E1MDBC MzcwNDREMTMwQTYxNDcyMDU4QTY3MEUyRDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6nsWwOJj8fLfyXKd9ByiLSAhaZEmoPdyuTbcN+yrl3QSVqliv +V2gXVe/9sVrAJpC9BtQ8JpFBG5e2gDRZ44/1cWjq6NQhAlCMc7y7BU/3/lTHG8o cEBXVVUuRurDpPOXMn6AoqDde86rS8j3ToK2awd3DMbLNoWthrbRtq6lpF0JIroA DGdjjPItB+j9eph1qrUH/Kvu8A4pvUSMa/oaJwE+W+YvQd4/HslPfOTokpUh8qm+ mAgVZW6rcVCTbFuWRxX5N5Ht3NTPha2BOwE63M1dv96U0dRv1+UJsK9b4wxmqJo9 sD4oQC3DlWkOS/Sdpl49mfj9DXHj49FpNCTXAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUhMM4vjpQCzcETRMKYUcgWKZw4tEwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2hNTTR2anBRQ3pjRVRSTUtZ VWNnV0tadzR0RS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIx n4QwDQYJKoZIhvcNAQELBQADggEBAAp77Ts7NPlpQj0AlsFEiWPC2BW8TkH+UFrA z1+MzPyEpTEEpyKiv4AAPE8vgP6AFW6SSsZY0b9m9bzI+WZ+u5D4lJCzHujh0PH+ zaOw5TQZ4mrdrmPwMpwG4M6H8LcZaMeDYIR8OtulyHMFXe9xrFfdTBA3UfxAeO6P j2M1h7bXeXjeI7Y5y8788aDoiES9xIoeukXm06ChYNbbgIq+HZHw7MuDk/wy/zLm MGX0+EQ4gyqeaN5648gHEuVrJObPRhRjffosQEB3KmQFDZJ2PFrgilKp+sZI0Eyn rcjbDWEWONjmLyN7l0CNGnBNEDItfO1lnlyecBAjJP9IzumJFFs= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:41 2024 by rpki-client on console-ams.rpki-client.org