$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/jFiI1LNCrEVXqjKMYFo5Sj6GI3U.roa File: jFiI1LNCrEVXqjKMYFo5Sj6GI3U.roa (raw, json) Hash identifier: tDkJ5iITCD0yZzsEUZKn/i1MCMmtUVeFnzeLKRQqrT8= Subject key identifier: 8C:58:88:D4:B3:42:AC:45:57:AA:32:8C:60:5A:39:4A:3E:86:23:75 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 22D0 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/jFiI1LNCrEVXqjKMYFo5Sj6GI3U.roa Signing time: Mon 26 Aug 2024 05:34:23 +0000 ROA not before: Mon 26 Aug 2024 05:34:23 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 49.158.72.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8912 (0x22d0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:34:23 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8C5888D4B342AC4557AA328C605A394A3E862375 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:3f:3d:9a:df:d5:9a:63:39:5b:cb:77:9e:8a: 74:fd:08:17:8a:9a:71:ea:c8:f4:d9:87:4b:ec:ab: 66:2f:04:01:33:4b:28:90:3e:e2:6a:ee:de:46:b3: 11:22:71:98:a8:c8:76:65:b7:de:55:e4:c3:86:dc: 0a:31:5b:98:be:b0:12:75:03:75:4b:fa:fe:71:55: 15:6d:ec:35:d4:dc:6d:1f:3f:ce:3a:ca:97:fd:cd: a3:ca:e4:a5:70:f7:32:74:59:3f:46:40:48:b6:5a: be:ed:e9:06:7b:93:61:c7:7b:0f:c8:2b:44:fc:98: 4a:75:c0:5e:74:d7:5a:08:59:20:38:5a:47:65:2b: ac:bf:75:81:f5:e9:1c:24:f9:f0:68:f5:d2:03:de: 7a:1f:76:40:b6:3f:12:01:ee:7c:17:e1:2c:84:62: 4f:c2:01:21:85:ee:c8:ae:09:92:66:d4:44:fd:cc: 94:f9:3e:5c:01:6f:e0:c2:4f:a6:14:c7:b6:3f:12: df:33:60:c4:78:10:9f:ed:af:96:c9:cf:2d:8e:78: b7:71:ab:9b:3a:bb:5c:ca:d3:4a:10:e6:45:35:5d: bb:23:68:42:d8:dc:62:52:27:34:03:b1:33:d1:da: 88:13:cf:70:75:7e:db:2a:67:06:b8:f8:32:22:50: e9:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:58:88:D4:B3:42:AC:45:57:AA:32:8C:60:5A:39:4A:3E:86:23:75 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/jFiI1LNCrEVXqjKMYFo5Sj6GI3U.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.72.0/21 Signature Algorithm: sha256WithRSAEncryption 1e:6c:39:9f:ba:ff:d1:49:3d:ec:a3:7c:8d:c3:d7:cb:b7:8b: 40:cd:af:81:da:0c:a9:9a:a6:3d:df:c3:2c:b4:50:ae:94:b1: 93:90:b0:80:26:91:a0:8f:b8:11:97:6a:c3:ae:38:80:b5:25: 80:6a:c7:6c:16:4e:e0:ea:1d:36:11:44:be:7c:c9:0b:59:c6: fa:d2:da:20:83:ab:6c:17:bc:5b:1c:7f:22:1a:e0:77:67:fe: 8a:5c:36:62:e4:3d:1a:fe:96:c6:45:84:f4:d0:8d:80:18:b5: 3d:06:5a:36:b9:3d:66:c5:a1:71:ee:47:bf:a0:74:d3:72:94: 44:95:98:4c:bb:ba:90:31:bc:c8:c3:b7:cb:6b:3f:59:09:09: dc:e1:32:fe:6a:7b:50:38:0a:7d:d0:75:da:ce:0e:aa:c2:5b: 02:91:22:e9:6f:e3:9d:28:ff:7e:03:42:c3:39:31:1e:a8:ef: 22:6c:a3:a3:e9:65:b4:4e:9f:fd:76:f2:29:2c:06:74:92:dc: 33:7a:d7:48:a5:54:77:8d:af:cc:d5:8c:f8:df:f4:31:13:6b: f7:18:55:c5:92:c1:51:d3:dd:6c:69:e1:92:60:f0:19:61:2e: b6:9a:12:1c:5e:41:6f:39:f4:f4:eb:ac:9f:60:9e:f1:c6:d8: 6f:5e:88:ea -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICItAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTM0MjNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhDNTg4OEQ0QjM0MkFD NDU1N0FBMzI4QzYwNUEzOTRBM0U4NjIzNzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4Pz2a39WaYzlby3eeinT9CBeKmnHqyPTZh0vsq2YvBAEzSyiQ PuJq7t5GsxEicZioyHZlt95V5MOG3AoxW5i+sBJ1A3VL+v5xVRVt7DXU3G0fP846 ypf9zaPK5KVw9zJ0WT9GQEi2Wr7t6QZ7k2HHew/IK0T8mEp1wF5011oIWSA4Wkdl K6y/dYH16Rwk+fBo9dID3nofdkC2PxIB7nwX4SyEYk/CASGF7siuCZJm1ET9zJT5 PlwBb+DCT6YUx7Y/Et8zYMR4EJ/tr5bJzy2OeLdxq5s6u1zK00oQ5kU1XbsjaELY 3GJSJzQDsTPR2ogTz3B1ftsqZwa4+DIiUOnnAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUjFiI1LNCrEVXqjKMYFo5Sj6GI3UwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2pGaUkxTE5DckVWWHFqS01Z Rm81U2o2R0kzVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx nkgwDQYJKoZIhvcNAQELBQADggEBAB5sOZ+6/9FJPeyjfI3D18u3i0DNr4HaDKma pj3fwyy0UK6UsZOQsIAmkaCPuBGXasOuOIC1JYBqx2wWTuDqHTYRRL58yQtZxvrS 2iCDq2wXvFscfyIa4Hdn/opcNmLkPRr+lsZFhPTQjYAYtT0GWja5PWbFoXHuR7+g dNNylESVmEy7upAxvMjDt8trP1kJCdzhMv5qe1A4Cn3QddrODqrCWwKRIulv450o /34DQsM5MR6o7yJso6PpZbROn/128iksBnSS3DN610ilVHeNr8zVjPjf9DETa/cY VcWSwVHT3Wxp4ZJg8BlhLraaEhxeQW859PTrrJ9gnvHG2G9eiOo= -----END CERTIFICATE-----Generated at Fri Nov 22 10:07:00 2024 by rpki-client on console-fra.rpki-client.org