$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ipjdJ5UsmHVAoP8l0eBh1fYijgc.roa File: ipjdJ5UsmHVAoP8l0eBh1fYijgc.roa (raw, json) Hash identifier: F6Y3r3nRd8ybiuJrIEvbg95or4N3CJ8EwJQjQxZ9EHk= Subject key identifier: 8A:98:DD:27:95:2C:98:75:40:A0:FF:25:D1:E0:61:D5:F6:22:8E:07 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2298 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ipjdJ5UsmHVAoP8l0eBh1fYijgc.roa Signing time: Mon 26 Aug 2024 05:34:10 +0000 ROA not before: Mon 26 Aug 2024 05:34:10 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24163 IP address blocks: 49.159.192.0/20 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8856 (0x2298) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:34:10 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8A98DD27952C987540A0FF25D1E061D5F6228E07 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:32:c7:48:99:41:47:62:93:7e:0c:5f:33:3c: 0d:ad:5a:b7:3d:8b:6b:69:f8:6e:c1:b6:c4:b6:c6: e6:d9:ee:44:47:de:ce:fb:e2:fa:5b:87:75:6c:16: 43:50:70:db:d1:38:09:00:34:c1:c5:44:32:37:91: 62:16:98:2b:ee:71:a8:1f:21:63:5a:25:d9:97:c2: 18:66:1a:99:30:85:79:fa:40:ec:d2:29:40:5b:3d: b1:a6:5f:3d:5c:56:8b:02:59:29:fd:fd:04:13:79: 90:a3:98:b6:72:c5:04:71:c7:40:0d:72:56:9f:b6: 32:c8:f8:2d:ff:ad:da:64:b2:38:51:64:7f:4f:6b: 61:76:a2:b4:c4:59:d0:e4:14:31:f9:53:b3:f0:ec: 44:23:9e:a6:d9:33:f0:2a:55:3e:19:1e:59:cb:ed: 55:76:a0:d9:53:ae:36:16:b6:77:b2:f8:8a:f2:d4: a1:51:d2:03:bf:7f:4f:c8:81:c9:51:44:46:59:54: 9c:23:1e:6a:67:c5:74:4e:bf:62:49:eb:1d:b2:68: f7:c1:8a:74:ee:c8:27:73:89:13:8e:3d:37:03:06: 31:86:f3:cd:a6:88:65:fe:8e:f4:df:44:e6:f2:c9: 09:61:c9:94:37:c0:f0:6b:04:80:95:76:56:77:b0: 09:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:98:DD:27:95:2C:98:75:40:A0:FF:25:D1:E0:61:D5:F6:22:8E:07 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ipjdJ5UsmHVAoP8l0eBh1fYijgc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.192.0/20 Signature Algorithm: sha256WithRSAEncryption 42:49:e7:7d:3e:1c:4c:1d:17:cc:aa:37:04:d4:95:fd:5a:58: 55:60:8b:7e:cf:d3:c5:70:ab:d8:a9:0f:35:bd:67:d7:24:91: 44:19:4f:36:3a:98:82:8a:85:77:df:f2:3d:cf:75:7d:8e:0a: 05:2d:e5:ae:e9:b1:b5:c3:e5:f4:53:03:d8:18:46:f0:5f:49: 37:64:52:d9:82:ff:fe:e2:85:f4:48:8e:30:65:2d:91:a3:eb: 8f:0b:94:81:f8:89:06:bb:dc:22:ab:29:d2:ae:36:8c:4b:64: 8e:e7:89:70:44:53:80:5c:40:30:80:aa:92:cf:3e:45:43:17: 9e:0c:97:4a:da:87:5d:e7:eb:89:a8:2f:02:32:bd:61:c5:40: 44:e0:06:2d:ec:62:5d:79:4b:34:42:3e:d7:8f:89:37:56:63: ba:5f:fe:60:a4:c4:d8:21:44:24:46:ed:9e:3f:a7:26:36:3f: 30:c6:db:1e:98:75:92:ce:28:7e:c1:a4:76:be:6e:35:7f:fa: 2d:42:48:d4:e8:cd:43:2d:f5:01:d9:40:0b:dc:e8:12:bb:73: 64:63:94:43:47:a6:98:59:68:49:f4:97:5c:84:b4:82:71:d6: ff:c2:10:fb:0f:b7:27:5a:22:ea:68:8f:b2:0b:6b:a7:fd:8d: 85:f8:ce:c3 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIpgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTM0MTBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhBOThERDI3OTUyQzk4 NzU0MEEwRkYyNUQxRTA2MUQ1RjYyMjhFMDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDUMsdImUFHYpN+DF8zPA2tWrc9i2tp+G7BtsS2xubZ7kRH3s77 4vpbh3VsFkNQcNvROAkANMHFRDI3kWIWmCvucagfIWNaJdmXwhhmGpkwhXn6QOzS KUBbPbGmXz1cVosCWSn9/QQTeZCjmLZyxQRxx0ANclaftjLI+C3/rdpksjhRZH9P a2F2orTEWdDkFDH5U7Pw7EQjnqbZM/AqVT4ZHlnL7VV2oNlTrjYWtney+Iry1KFR 0gO/f0/IgclRREZZVJwjHmpnxXROv2JJ6x2yaPfBinTuyCdziROOPTcDBjGG882m iGX+jvTfRObyyQlhyZQ3wPBrBICVdlZ3sAmjAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUipjdJ5UsmHVAoP8l0eBh1fYijgcwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2lwamRKNVVzbUhWQW9QOGww ZUJoMWZZaWpnYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQx n8AwDQYJKoZIhvcNAQELBQADggEBAEJJ530+HEwdF8yqNwTUlf1aWFVgi37P08Vw q9ipDzW9Z9ckkUQZTzY6mIKKhXff8j3PdX2OCgUt5a7psbXD5fRTA9gYRvBfSTdk UtmC//7ihfRIjjBlLZGj648LlIH4iQa73CKrKdKuNoxLZI7niXBEU4BcQDCAqpLP PkVDF54Ml0rah13n64moLwIyvWHFQETgBi3sYl15SzRCPtePiTdWY7pf/mCkxNgh RCRG7Z4/pyY2PzDG2x6YdZLOKH7BpHa+bjV/+i1CSNTozUMt9QHZQAvc6BK7c2Rj lENHpphZaEn0l1yEtIJx1v/CEPsPtydaIupoj7ILa6f9jYX4zsM= -----END CERTIFICATE-----Generated at Fri Nov 22 10:07:00 2024 by rpki-client on console-fra.rpki-client.org