$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/rom9NMHJDV741tbIF7PDvkZxHug.roa File: rom9NMHJDV741tbIF7PDvkZxHug.roa (raw, json) Hash identifier: C7+6XyMO0gDemkIuRuDTz1NxxrHNkkDWpGH6lyeQfy4= Subject key identifier: AE:89:BD:34:C1:C9:0D:5E:F8:D6:D6:C8:17:B3:C3:BE:46:71:1E:E8 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2182 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/rom9NMHJDV741tbIF7PDvkZxHug.roa Signing time: Mon 26 Aug 2024 05:33:04 +0000 ROA not before: Mon 26 Aug 2024 05:33:04 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 49.158.64.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8578 (0x2182) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:04 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=AE89BD34C1C90D5EF8D6D6C817B3C3BE46711EE8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:ac:5c:67:ab:e0:3f:8e:ae:a0:a8:4c:81:1a: 12:8a:d3:bb:d1:e2:55:43:bb:23:0f:24:f8:0f:d7: 81:2c:95:2a:4a:3b:26:04:61:7c:0d:e6:a3:e8:86: 07:de:16:b8:2b:7b:8a:c0:a7:49:92:24:a2:9e:4f: c0:e8:53:13:6f:b9:d6:49:e8:fb:03:a7:fd:12:49: 9f:aa:b6:e7:cc:ed:56:c4:21:ab:3b:e8:8d:8f:f3: c4:a3:d6:ac:7f:be:29:ae:73:33:54:4f:39:0a:b3: 08:34:54:ab:9e:68:3f:25:5b:f8:65:c2:cc:57:21: a9:6f:37:72:0b:05:fc:e7:dd:6c:fc:a1:fd:f9:89: 9c:61:f0:2e:1d:ed:ca:3b:6d:a0:f9:bb:0d:23:07: 7d:61:18:cb:4a:9d:ec:68:fa:8e:a3:f3:80:4c:1c: 4a:92:33:03:27:12:08:20:25:28:8c:65:1a:e1:80: 5d:f0:b5:bf:ef:9b:51:70:3c:be:36:78:04:97:8c: 63:42:97:39:cf:b2:30:cf:df:47:56:7d:a3:fc:93: 5c:fe:77:5e:03:1d:c4:3f:42:11:52:66:46:95:7a: cd:05:4b:12:df:f2:f5:98:81:33:53:98:91:e1:0f: 86:f6:fe:0c:65:81:9f:09:85:02:33:76:db:35:36: 1c:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:89:BD:34:C1:C9:0D:5E:F8:D6:D6:C8:17:B3:C3:BE:46:71:1E:E8 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/rom9NMHJDV741tbIF7PDvkZxHug.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.64.0/20 Signature Algorithm: sha256WithRSAEncryption 66:5a:01:34:55:0e:cf:a9:5c:8d:6e:c8:87:c8:fe:85:80:32: 1f:38:30:dc:ed:95:f0:ee:6f:fc:24:73:15:58:b4:8c:e9:4a: 79:7c:e7:ef:ef:20:d4:30:8d:63:a2:58:18:b2:fd:16:47:49: f0:e1:a6:93:46:93:0a:95:93:ec:05:ca:b0:51:63:fa:db:88: ca:f3:f2:ab:68:a7:9b:24:fc:16:ac:15:d3:ee:dc:f3:b6:67: 38:2f:bc:6d:cf:1d:00:86:db:92:65:5f:f6:56:bd:8f:74:ec: cd:a8:58:f0:54:79:72:a2:e2:ee:e6:7d:d0:7a:1c:96:5a:78: 77:82:80:ab:2c:5b:c0:ca:c0:27:31:e1:11:4e:ac:a9:25:09: 52:48:71:af:f6:f1:62:fa:b7:62:8e:ce:63:3d:b4:91:6a:2f: a1:0e:0a:c7:90:45:c3:0d:a3:74:e7:c3:fa:50:35:5c:0a:50: 22:26:d9:60:58:95:86:50:96:8e:b6:60:ec:eb:d4:29:a5:a7: b5:49:82:c6:5c:75:ca:61:b9:98:44:fb:81:89:db:48:20:89: 02:98:4b:24:9d:d1:a4:af:d7:bc:e2:dd:9c:36:2e:27:8c:58: 11:15:5a:d5:9a:7b:97:13:0e:dd:99:57:3a:ca:58:03:4a:3a: e7:53:2d:93 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIYIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzMDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEFFODlCRDM0QzFDOTBE NUVGOEQ2RDZDODE3QjNDM0JFNDY3MTFFRTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDjrFxnq+A/jq6gqEyBGhKK07vR4lVDuyMPJPgP14EslSpKOyYE YXwN5qPohgfeFrgre4rAp0mSJKKeT8DoUxNvudZJ6PsDp/0SSZ+qtufM7VbEIas7 6I2P88Sj1qx/vimuczNUTzkKswg0VKueaD8lW/hlwsxXIalvN3ILBfzn3Wz8of35 iZxh8C4d7co7baD5uw0jB31hGMtKnexo+o6j84BMHEqSMwMnEgggJSiMZRrhgF3w tb/vm1FwPL42eASXjGNClznPsjDP30dWfaP8k1z+d14DHcQ/QhFSZkaVes0FSxLf 8vWYgTNTmJHhD4b2/gxlgZ8JhQIzdts1NhxFAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUrom9NMHJDV741tbIF7PDvkZxHugwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3JvbTlOTUhKRFY3NDF0YklG N1BEdmtaeEh1Zy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAQx nkAwDQYJKoZIhvcNAQELBQADggEBAGZaATRVDs+pXI1uyIfI/oWAMh84MNztlfDu b/wkcxVYtIzpSnl85+/vINQwjWOiWBiy/RZHSfDhppNGkwqVk+wFyrBRY/rbiMrz 8qtop5sk/BasFdPu3PO2ZzgvvG3PHQCG25JlX/ZWvY907M2oWPBUeXKi4u7mfdB6 HJZaeHeCgKssW8DKwCcx4RFOrKklCVJIca/28WL6t2KOzmM9tJFqL6EOCseQRcMN o3Tnw/pQNVwKUCIm2WBYlYZQlo62YOzr1Cmlp7VJgsZcdcphuZhE+4GJ20ggiQKY SySd0aSv17zi3Zw2LieMWBEVWtWae5cTDt2ZVzrKWANKOudTLZM= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:41 2024 by rpki-client on console-ams.rpki-client.org