$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/o2s799J1mdc3JnkqHp1ke8miHYQ.roa File: o2s799J1mdc3JnkqHp1ke8miHYQ.roa (raw, json) Hash identifier: O52hoJIFPifduQpFjCJRq9MKIA9Yn/JbUgWObTlx2JA= Subject key identifier: A3:6B:3B:F7:D2:75:99:D7:37:26:79:2A:1E:9D:64:7B:C9:A2:1D:84 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2206 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/o2s799J1mdc3JnkqHp1ke8miHYQ.roa Signing time: Mon 26 Aug 2024 05:33:35 +0000 ROA not before: Mon 26 Aug 2024 05:33:35 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 49.159.80.0/20 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8710 (0x2206) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:35 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A36B3BF7D27599D73726792A1E9D647BC9A21D84 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:02:00:cb:fd:c4:4c:c6:4d:16:e8:57:38:7d: 00:2c:da:1e:d1:2c:3e:9c:9c:9b:55:cc:7a:c2:ce: 30:e6:ec:99:47:9c:91:c1:34:57:1d:55:35:82:04: a2:4d:c9:6d:13:7d:4a:e3:ae:3d:9c:70:59:9e:24: 5d:76:d2:9c:f5:4f:0b:ac:4d:d7:24:f7:f9:9d:06: 32:30:58:fe:87:0e:ce:70:01:6e:fc:0c:0d:a0:33: 85:ae:09:ce:6d:db:53:60:98:eb:82:25:fe:a3:59: 6b:ac:98:58:db:9e:99:20:29:97:88:bb:c0:d6:35: 07:29:01:67:fc:cc:0d:cd:e4:e2:e9:cd:ef:7d:ae: 98:08:c3:7b:37:84:d9:fd:79:3e:89:fb:d7:5d:59: 89:03:f6:16:d4:3d:c7:f7:22:e1:74:4c:4d:fe:97: fa:9a:c3:9b:6a:7d:b7:96:f9:f0:ec:20:4a:47:be: 57:7a:6a:06:46:52:f1:60:41:4e:04:00:9c:28:d1: 22:93:37:e2:c2:bb:34:5d:75:a3:bf:a4:a8:eb:84: 24:ac:14:4f:6e:33:b7:4f:be:ac:d4:13:4d:33:34: c3:0d:76:9e:9f:65:2b:34:22:8b:74:ea:bc:4f:90: a5:1e:b9:e6:22:80:d6:2d:1b:eb:a9:83:70:eb:62: d4:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:6B:3B:F7:D2:75:99:D7:37:26:79:2A:1E:9D:64:7B:C9:A2:1D:84 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/o2s799J1mdc3JnkqHp1ke8miHYQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.80.0/20 Signature Algorithm: sha256WithRSAEncryption 01:5c:85:52:1f:be:6c:7c:1e:4d:87:a9:48:ca:83:b9:a3:46: 36:65:45:48:8d:fc:92:78:e1:ee:35:93:9d:a7:c3:68:2b:ff: 04:59:b8:ee:0c:1d:8b:08:0e:75:52:96:f6:43:94:35:7f:70: 1a:52:60:6c:b5:c0:13:c6:cf:9f:f0:db:f2:89:de:69:e4:2a: 53:e0:da:b6:00:e3:77:dd:09:dd:5c:ae:0d:21:05:67:61:c5: ab:eb:69:ca:98:da:24:89:d4:65:bc:49:ac:29:5b:18:a5:c2: b2:74:7b:13:19:4c:a7:3e:fc:ad:6a:2c:11:9b:71:06:a8:8d: 02:12:c0:bd:5c:69:6e:ca:8f:b7:9e:e5:03:86:02:78:8b:a2: 5f:10:f2:3f:fd:91:e2:1a:f7:9e:10:85:89:a8:b8:b2:c9:21: b0:4f:f1:67:e9:8a:46:21:b9:01:d1:8a:49:46:00:04:6b:33: 7b:44:0f:2b:21:a4:5d:a7:5c:b4:2a:39:c0:12:ba:f1:5c:09: 3b:da:ea:86:03:c6:9e:67:d7:ea:fb:42:fa:96:30:00:bb:f5: 6a:fc:64:34:aa:e3:73:85:4a:c7:b6:1c:3f:43:8d:40:23:2f: 22:ed:ef:03:e4:5f:41:9a:f1:b4:55:14:2a:2e:eb:5a:0c:3d: 41:c1:5c:fe -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIgYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzMzVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEEzNkIzQkY3RDI3NTk5 RDczNzI2NzkyQTFFOUQ2NDdCQzlBMjFEODQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC1AgDL/cRMxk0W6Fc4fQAs2h7RLD6cnJtVzHrCzjDm7JlHnJHB NFcdVTWCBKJNyW0TfUrjrj2ccFmeJF120pz1TwusTdck9/mdBjIwWP6HDs5wAW78 DA2gM4WuCc5t21NgmOuCJf6jWWusmFjbnpkgKZeIu8DWNQcpAWf8zA3N5OLpze99 rpgIw3s3hNn9eT6J+9ddWYkD9hbUPcf3IuF0TE3+l/qaw5tqfbeW+fDsIEpHvld6 agZGUvFgQU4EAJwo0SKTN+LCuzRddaO/pKjrhCSsFE9uM7dPvqzUE00zNMMNdp6f ZSs0Iot06rxPkKUeueYigNYtG+upg3DrYtTzAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUo2s799J1mdc3JnkqHp1ke8miHYQwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL28yczc5OUoxbWRjM0pua3FI cDFrZThtaUhZUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQx n1AwDQYJKoZIhvcNAQELBQADggEBAAFchVIfvmx8Hk2HqUjKg7mjRjZlRUiN/JJ4 4e41k52nw2gr/wRZuO4MHYsIDnVSlvZDlDV/cBpSYGy1wBPGz5/w2/KJ3mnkKlPg 2rYA43fdCd1crg0hBWdhxavracqY2iSJ1GW8SawpWxilwrJ0exMZTKc+/K1qLBGb cQaojQISwL1caW7Kj7ee5QOGAniLol8Q8j/9keIa954QhYmouLLJIbBP8WfpikYh uQHRiklGAARrM3tEDyshpF2nXLQqOcASuvFcCTva6oYDxp5n1+r7QvqWMAC79Wr8 ZDSq43OFSse2HD9DjUAjLyLt7wPkX0Ga8bRVFCou61oMPUHBXP4= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:41 2024 by rpki-client on console-ams.rpki-client.org