$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/jtfy1J6fh4bFj1Cit-KeU_YwCSQ.roa File: jtfy1J6fh4bFj1Cit-KeU_YwCSQ.roa (raw, json) Hash identifier: bWaQlqqENMs1u3I4QIwSpy7mRwFNum+2bnjUahMQCOg= Subject key identifier: 8E:D7:F2:D4:9E:9F:87:86:C5:8F:50:A2:B7:E2:9E:53:F6:30:09:24 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2291 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/jtfy1J6fh4bFj1Cit-KeU_YwCSQ.roa Signing time: Mon 26 Aug 2024 05:34:08 +0000 ROA not before: Mon 26 Aug 2024 05:34:08 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 49.159.120.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8849 (0x2291) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:34:08 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8ED7F2D49E9F8786C58F50A2B7E29E53F6300924 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:df:ec:27:04:4d:3d:fc:70:1a:cf:d2:9e:a0: 4d:cc:2c:16:25:29:be:fa:aa:01:64:23:c1:d0:19: 78:33:d3:ae:65:33:66:95:0a:dc:64:10:29:8a:1a: a3:9f:01:03:be:f2:f0:68:a3:49:bf:22:3e:ae:e4: ac:e0:bd:f9:50:1c:8a:29:65:02:37:39:b2:c6:e0: 88:62:d5:63:4f:53:bf:69:7a:60:c8:7e:c2:2d:30: d4:3b:44:e8:96:a9:19:2f:49:eb:42:50:d6:32:da: b4:54:22:ea:4c:4d:2a:e8:2b:03:51:1c:bc:a0:f0: c1:be:0d:ac:03:3b:2a:45:aa:7c:d7:82:31:7b:29: 22:93:2e:dc:0f:3b:ac:3a:2e:c4:7f:61:39:94:5b: 09:c7:dd:ff:cf:25:fd:03:71:ae:d6:9d:68:4a:7c: ae:b8:b0:c7:b1:78:55:34:bd:65:7b:ec:67:ec:a8: f1:84:b3:c0:37:b1:19:78:de:58:35:70:1e:47:a8: 6b:4b:13:12:99:01:dd:98:b6:42:86:de:b7:91:60: af:fb:e2:56:97:3e:d1:ed:73:79:2e:3c:2c:ea:c5: a7:14:14:12:5a:cb:79:02:57:18:b4:7f:f9:27:1d: 32:2e:b7:4e:cc:90:fc:8f:33:dd:27:70:81:f4:e4: 38:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:D7:F2:D4:9E:9F:87:86:C5:8F:50:A2:B7:E2:9E:53:F6:30:09:24 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/jtfy1J6fh4bFj1Cit-KeU_YwCSQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.120.0/21 Signature Algorithm: sha256WithRSAEncryption 63:0c:67:41:84:fb:97:66:07:b2:da:78:16:f5:30:3d:4f:36: 96:6b:d0:d8:5b:d9:d4:95:5c:72:3a:e3:75:bd:bb:20:b5:d6: 4b:05:6b:86:d3:b3:e9:9c:e2:81:9e:7c:1d:7c:ca:35:8b:e2: cc:00:02:8c:8d:89:ac:62:cb:ef:61:ad:66:fb:46:f5:72:0f: f1:b5:6e:43:2d:48:9f:f3:3e:c5:98:aa:a0:f7:2c:83:f9:57: 89:98:ed:da:79:57:7d:d8:66:2b:b7:01:2c:17:bf:82:95:a9: 9b:a4:eb:0a:9f:29:ba:fa:e6:a2:e2:a9:85:bc:82:c9:7b:80: ef:73:8a:40:3a:59:8c:b8:9b:0c:04:90:8c:6c:fa:cf:b2:d1: 5d:97:63:4e:26:e5:11:b9:51:68:33:9c:52:f5:5e:14:58:b9: 11:cd:4b:45:55:a8:c9:23:48:fd:7d:4f:eb:cd:4a:2d:3f:fb: 38:48:65:56:2e:a5:df:51:69:6c:48:ad:21:6d:fc:00:02:7d: 48:cf:dd:c9:9d:40:d6:9e:e5:93:f8:df:05:50:45:15:57:51: 0c:bb:1a:d8:c2:85:3b:93:ff:ba:db:c2:40:c8:65:92:8f:fb: 89:01:03:93:99:a2:37:d0:1e:03:66:cf:e7:54:11:be:a2:5c: 0b:c4:48:08 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIpEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTM0MDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhFRDdGMkQ0OUU5Rjg3 ODZDNThGNTBBMkI3RTI5RTUzRjYzMDA5MjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDT3+wnBE09/HAaz9KeoE3MLBYlKb76qgFkI8HQGXgz065lM2aV CtxkECmKGqOfAQO+8vBoo0m/Ij6u5KzgvflQHIopZQI3ObLG4Ihi1WNPU79pemDI fsItMNQ7ROiWqRkvSetCUNYy2rRUIupMTSroKwNRHLyg8MG+DawDOypFqnzXgjF7 KSKTLtwPO6w6LsR/YTmUWwnH3f/PJf0Dca7WnWhKfK64sMexeFU0vWV77GfsqPGE s8A3sRl43lg1cB5HqGtLExKZAd2YtkKG3reRYK/74laXPtHtc3kuPCzqxacUFBJa y3kCVxi0f/knHTIut07MkPyPM90ncIH05Dh3AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUjtfy1J6fh4bFj1Cit+KeU/YwCSQwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2p0ZnkxSjZmaDRiRmoxQ2l0 LUtlVV9Zd0NTUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx n3gwDQYJKoZIhvcNAQELBQADggEBAGMMZ0GE+5dmB7LaeBb1MD1PNpZr0Nhb2dSV XHI643W9uyC11ksFa4bTs+mc4oGefB18yjWL4swAAoyNiaxiy+9hrWb7RvVyD/G1 bkMtSJ/zPsWYqqD3LIP5V4mY7dp5V33YZiu3ASwXv4KVqZuk6wqfKbr65qLiqYW8 gsl7gO9zikA6WYy4mwwEkIxs+s+y0V2XY04m5RG5UWgznFL1XhRYuRHNS0VVqMkj SP19T+vNSi0/+zhIZVYupd9RaWxIrSFt/AACfUjP3cmdQNae5ZP43wVQRRVXUQy7 GtjChTuT/7rbwkDIZZKP+4kBA5OZojfQHgNmz+dUEb6iXAvESAg= -----END CERTIFICATE-----Generated at Fri Nov 22 14:13:19 2024 by rpki-client on console-fra.rpki-client.org