$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/jDz608rEOFjc5pIPUJ2NKR7aFp0.roa File: jDz608rEOFjc5pIPUJ2NKR7aFp0.roa (raw, json) Hash identifier: GXgKaQ1vXC1rGeOQIkMvc3MjaiUPGrTyS3pjPHj8fKY= Subject key identifier: 8C:3C:FA:D3:CA:C4:38:58:DC:E6:92:0F:50:9D:8D:29:1E:DA:16:9D Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2197 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/jDz608rEOFjc5pIPUJ2NKR7aFp0.roa Signing time: Mon 26 Aug 2024 05:33:08 +0000 ROA not before: Mon 26 Aug 2024 05:33:08 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24163 IP address blocks: 49.159.64.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8599 (0x2197) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:08 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8C3CFAD3CAC43858DCE6920F509D8D291EDA169D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:b4:01:e2:07:5d:7d:0a:04:0b:03:f0:a6:1c: b4:99:62:06:cd:82:49:30:9b:dd:e6:7e:94:eb:ca: 67:e0:80:f0:11:dd:6d:94:7e:42:93:8d:10:60:ea: b8:2e:af:c0:16:55:59:f9:ec:0c:d1:60:5b:2e:97: ce:82:57:66:f3:2e:fc:77:5a:81:ac:f1:30:bd:eb: 65:b4:65:db:9f:11:a1:a8:00:12:46:2d:53:83:cb: 12:aa:5b:c0:1c:0f:1c:7d:b9:9b:99:b0:76:b8:2d: ef:bf:c3:a5:1d:bb:23:4d:4a:3e:bf:d9:20:dd:3e: 3f:c8:ea:e0:88:c7:c2:b6:42:e8:0a:84:a8:e7:21: cd:07:96:14:a9:00:fc:70:17:19:f9:de:ba:1e:e9: 4c:59:cc:ec:63:60:90:40:49:1a:be:9f:1c:e9:88: 61:ab:ba:51:e8:fa:2f:d2:7a:7c:ad:a7:7d:66:6e: 78:c1:95:77:38:c4:ab:ed:72:78:74:11:9d:79:77: fd:f5:d5:52:68:c8:8d:53:23:68:c1:6a:d6:22:11: 03:02:3e:4a:ff:fb:ec:66:aa:42:5e:a5:f1:5f:92: ae:8c:cf:96:61:62:72:24:b7:eb:6a:65:65:44:97: 2c:94:b9:3e:a5:1d:19:74:ba:ff:1d:d9:91:17:a1: 34:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:3C:FA:D3:CA:C4:38:58:DC:E6:92:0F:50:9D:8D:29:1E:DA:16:9D X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/jDz608rEOFjc5pIPUJ2NKR7aFp0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.64.0/22 Signature Algorithm: sha256WithRSAEncryption 9a:2f:6a:39:0f:6c:5b:87:60:f1:af:b8:3c:92:03:7a:e3:22: 6b:2c:34:f3:95:80:a5:32:ba:7a:08:9e:91:05:a7:47:78:af: 8c:f5:f0:53:8c:d9:c8:dc:e5:f4:a0:cd:49:73:f1:9b:f3:81: 07:95:ed:ef:1c:87:9d:0a:a3:c9:1c:79:0a:9a:da:d9:f0:11: f5:65:2d:b8:a1:77:ac:eb:76:73:8a:84:b9:14:10:71:e8:97: 3c:ee:5a:83:a8:c8:a3:82:2f:f7:40:0d:e1:75:12:6e:0f:ab: 79:f5:34:6f:f8:6c:77:a8:47:2d:04:71:1e:95:e8:21:20:d7: 1b:e6:01:e4:11:77:2e:ad:f6:de:88:01:9f:9c:17:a9:ce:87: 37:2f:6a:da:ee:a3:f3:fe:0e:10:20:da:ba:9d:e9:95:46:a5: 5e:77:14:70:4d:cc:a3:a0:b3:58:88:6f:00:fa:c8:c1:55:9c: 7d:fe:d2:84:09:27:9a:18:a0:de:cc:20:7b:9f:f4:b2:80:b8: 3c:cc:ea:0b:8d:23:4f:8d:3a:72:6a:03:6f:64:1d:c7:77:6a: ac:f6:e0:4d:08:63:d0:20:d4:63:7b:74:9b:f1:31:02:37:b6: 96:6c:8a:aa:b8:89:bb:4a:59:78:90:dd:3a:2a:73:7e:22:0b: e8:f3:e8:9a -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIZcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzMDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhDM0NGQUQzQ0FDNDM4 NThEQ0U2OTIwRjUwOUQ4RDI5MUVEQTE2OUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDitAHiB119CgQLA/CmHLSZYgbNgkkwm93mfpTrymfggPAR3W2U fkKTjRBg6rgur8AWVVn57AzRYFsul86CV2bzLvx3WoGs8TC962W0ZdufEaGoABJG LVODyxKqW8AcDxx9uZuZsHa4Le+/w6UduyNNSj6/2SDdPj/I6uCIx8K2QugKhKjn Ic0HlhSpAPxwFxn53roe6UxZzOxjYJBASRq+nxzpiGGrulHo+i/Senytp31mbnjB lXc4xKvtcnh0EZ15d/311VJoyI1TI2jBatYiEQMCPkr/++xmqkJepfFfkq6Mz5Zh YnIkt+tqZWVElyyUuT6lHRl0uv8d2ZEXoTT7AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUjDz608rEOFjc5pIPUJ2NKR7aFp0wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2pEejYwOHJFT0ZqYzVwSVBV SjJOS1I3YUZwMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIx n0AwDQYJKoZIhvcNAQELBQADggEBAJovajkPbFuHYPGvuDySA3rjImssNPOVgKUy unoInpEFp0d4r4z18FOM2cjc5fSgzUlz8ZvzgQeV7e8ch50Ko8kceQqa2tnwEfVl Lbihd6zrdnOKhLkUEHHolzzuWoOoyKOCL/dADeF1Em4Pq3n1NG/4bHeoRy0EcR6V 6CEg1xvmAeQRdy6t9t6IAZ+cF6nOhzcvatruo/P+DhAg2rqd6ZVGpV53FHBNzKOg s1iIbwD6yMFVnH3+0oQJJ5oYoN7MIHuf9LKAuDzM6guNI0+NOnJqA29kHcd3aqz2 4E0IY9Ag1GN7dJvxMQI3tpZsiqq4ibtKWXiQ3Toqc34iC+jz6Jo= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:41 2024 by rpki-client on console-ams.rpki-client.org