$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/pWW8FcEt7c8TH0OG7cfpLJXBzEk.roa File: pWW8FcEt7c8TH0OG7cfpLJXBzEk.roa (raw, json) Hash identifier: 1ZtoV+q2QB5X/LkE11vSTOkQx/lq3YAgdcOPpg5rhdk= Subject key identifier: A5:65:BC:15:C1:2D:ED:CF:13:1F:43:86:ED:C7:E9:2C:95:C1:CC:49 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 22B5 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/pWW8FcEt7c8TH0OG7cfpLJXBzEk.roa Signing time: Mon 26 Aug 2024 05:34:17 +0000 ROA not before: Mon 26 Aug 2024 05:34:17 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24163 IP address blocks: 49.158.192.0/21 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8885 (0x22b5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:34:17 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=A565BC15C12DEDCF131F4386EDC7E92C95C1CC49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:5a:7b:36:c9:dc:ea:32:4a:7b:1a:e6:27:bf: 8b:bf:e6:0a:69:27:89:05:b2:e9:92:8f:7b:b1:e7: be:f4:c3:9c:39:f3:0d:8a:29:24:0e:f6:4b:f4:1d: e1:f5:a5:55:52:c8:4d:8e:97:5b:c8:d9:eb:36:57: f3:0b:1e:10:f1:f7:b9:1d:5c:a6:26:ef:db:9d:bc: 64:58:9a:16:60:e9:50:da:6a:9f:d7:b9:f8:07:f1: ee:c4:8f:99:f6:17:51:63:d6:e2:79:36:7e:af:98: 32:c6:c7:f5:72:5b:db:5b:8a:cf:d1:3e:db:b1:cd: 78:43:65:47:0d:21:ff:37:3a:a1:92:05:23:0d:90: 41:18:c4:f4:fa:8b:17:72:a9:bb:da:57:9c:aa:10: 85:ae:e6:61:71:44:62:48:41:ba:e5:99:9f:e5:18: 69:43:f1:c2:d2:68:58:c1:06:ec:75:a6:63:5f:fc: 29:17:5a:6f:f5:8b:f4:c8:c7:29:69:0b:d2:6c:1d: 1c:c6:5a:29:d3:58:95:a9:f1:a8:a5:04:71:55:6c: 44:5f:cc:91:8f:ef:5f:1d:72:7a:20:63:1e:e8:25: e6:a4:9c:dc:d2:df:5e:74:35:d3:48:34:8e:66:f8: 52:42:48:9a:99:d5:ad:3d:26:7d:40:b6:bc:fc:d3: 94:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:65:BC:15:C1:2D:ED:CF:13:1F:43:86:ED:C7:E9:2C:95:C1:CC:49 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/pWW8FcEt7c8TH0OG7cfpLJXBzEk.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.192.0/21 Signature Algorithm: sha256WithRSAEncryption 4c:7f:c4:59:d3:a4:bf:ef:67:f2:28:ef:a0:07:e2:fd:a7:71: d8:af:51:16:e6:56:65:b5:dc:fa:d9:81:30:1e:1a:ee:1c:16: 82:90:38:6c:35:7d:d3:7d:4a:4f:89:d6:58:f6:e9:bf:50:d8: 09:ec:32:eb:c2:13:b5:74:0e:eb:dd:f4:19:a4:96:27:bf:bc: 8e:69:c5:f6:70:8f:9f:4e:ed:b4:32:4c:b9:50:1b:69:bd:84: 8e:fb:0a:5f:30:c2:74:85:14:a7:be:fe:c0:fd:f1:6a:bf:b4: c1:08:4f:2d:a3:ac:33:16:c0:de:02:e1:89:3d:c9:26:77:c1: d1:76:cb:25:e4:d3:df:6b:7b:bb:61:15:69:0b:21:6f:2e:0d: 90:22:80:f0:3f:a1:d9:18:ba:a6:28:c9:8c:5f:92:fc:00:02: 67:89:04:d8:b9:eb:65:12:5c:13:90:f8:6a:de:e5:85:46:5c: ae:9a:c2:c0:b9:72:cc:21:44:23:de:8c:eb:48:18:cf:70:4b: cc:04:a1:e9:ee:77:84:74:0d:8f:aa:50:0a:28:5f:9e:c1:73: 54:10:13:93:37:95:89:0e:f6:11:83:ad:5c:d5:30:c1:a7:84: a2:e4:4e:a3:b5:d4:ca:56:f0:7e:1f:da:a8:85:68:8f:21:0c: 1d:1b:98:76 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIrUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTM0MTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEE1NjVCQzE1QzEyREVE Q0YxMzFGNDM4NkVEQzdFOTJDOTVDMUNDNDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDWWns2ydzqMkp7GuYnv4u/5gppJ4kFsumSj3ux5770w5w58w2K KSQO9kv0HeH1pVVSyE2Ol1vI2es2V/MLHhDx97kdXKYm79udvGRYmhZg6VDaap/X ufgH8e7Ej5n2F1Fj1uJ5Nn6vmDLGx/VyW9tbis/RPtuxzXhDZUcNIf83OqGSBSMN kEEYxPT6ixdyqbvaV5yqEIWu5mFxRGJIQbrlmZ/lGGlD8cLSaFjBBux1pmNf/CkX Wm/1i/TIxylpC9JsHRzGWinTWJWp8ailBHFVbERfzJGP718dcnogYx7oJeaknNzS 3150NdNINI5m+FJCSJqZ1a09Jn1Atrz805TJAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUpWW8FcEt7c8TH0OG7cfpLJXBzEkwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3BXVzhGY0V0N2M4VEgwT0c3 Y2ZwTEpYQnpFay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx nsAwDQYJKoZIhvcNAQELBQADggEBAEx/xFnTpL/vZ/Io76AH4v2ncdivURbmVmW1 3PrZgTAeGu4cFoKQOGw1fdN9Sk+J1lj26b9Q2AnsMuvCE7V0Duvd9Bmklie/vI5p xfZwj59O7bQyTLlQG2m9hI77Cl8wwnSFFKe+/sD98Wq/tMEITy2jrDMWwN4C4Yk9 ySZ3wdF2yyXk099re7thFWkLIW8uDZAigPA/odkYuqYoyYxfkvwAAmeJBNi562US XBOQ+Gre5YVGXK6awsC5cswhRCPejOtIGM9wS8wEoenud4R0DY+qUAooX57Bc1QQ E5M3lYkO9hGDrVzVMMGnhKLkTqO11MpW8H4f2qiFaI8hDB0bmHY= -----END CERTIFICATE-----Generated at Fri Nov 22 14:13:19 2024 by rpki-client on console-fra.rpki-client.org