$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/sDDXS2MmE6stVJFAYl2_j7ftt90.roa File: sDDXS2MmE6stVJFAYl2_j7ftt90.roa (raw, json) Hash identifier: vW7CKVcmMKyIPb17C5sKV1nyTQdGpOdzuhOoPL9RDf4= Subject key identifier: B0:30:D7:4B:63:26:13:AB:2D:54:91:40:62:5D:BF:8F:B7:ED:B7:DD Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2266 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/sDDXS2MmE6stVJFAYl2_j7ftt90.roa Signing time: Mon 26 Aug 2024 05:33:57 +0000 ROA not before: Mon 26 Aug 2024 05:33:57 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 49.159.128.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8806 (0x2266) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:57 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B030D74B632613AB2D549140625DBF8FB7EDB7DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:7f:1b:89:c0:51:0b:6f:83:12:d6:1d:b4:3e: 78:84:23:68:ee:32:79:4c:22:9b:75:bb:ca:d0:3a: 40:3a:cc:b2:41:bb:c5:fe:48:36:dc:e0:c6:be:f8: d6:da:89:e8:dd:79:ed:8b:e4:71:09:5a:9a:8d:76: 25:c2:6e:56:79:f1:7d:34:f7:ec:52:52:9a:2d:6a: 37:0e:d2:46:e0:aa:1b:13:a8:67:12:0c:43:e6:c0: d3:a1:8f:2c:27:b0:b1:b9:9d:03:f2:81:cd:49:a9: d1:94:4b:ea:bd:c1:e9:d2:65:78:27:78:85:d0:d8: 7d:34:03:ba:f4:1a:22:31:e2:df:c0:ff:3c:f4:e7: 72:67:2e:a7:5b:d0:87:3a:63:7e:fa:0a:85:e1:06: a4:f0:27:17:28:36:b0:2a:54:32:ab:0a:bb:13:3a: fe:de:7d:42:23:3b:bc:c9:6d:2d:04:c3:77:3f:1d: f4:6c:74:e2:9b:62:4e:94:67:04:7d:f4:e1:5d:46: 59:f0:43:32:5a:bb:d0:31:6d:18:2c:08:ab:22:94: 39:13:f4:bd:13:78:13:c8:5a:9c:f5:08:21:48:ff: 24:75:9b:c6:1a:3b:92:c4:bb:b0:23:5f:8d:47:b5: 79:08:d0:06:74:f6:53:1f:a0:4c:65:f4:b3:c5:b8: ca:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:30:D7:4B:63:26:13:AB:2D:54:91:40:62:5D:BF:8F:B7:ED:B7:DD X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/sDDXS2MmE6stVJFAYl2_j7ftt90.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.128.0/21 Signature Algorithm: sha256WithRSAEncryption 94:ad:32:3b:1c:56:46:a3:06:6b:2d:86:bc:49:e1:11:cd:84: 28:4a:df:4a:a6:ad:9e:ab:2f:97:86:ca:10:b9:3f:bc:6a:55: 53:de:e1:87:82:96:b2:e3:f9:07:21:a1:12:90:3d:a6:bc:e1: 54:97:c7:6c:dd:21:13:97:85:9e:21:b8:fa:39:0a:9e:93:58: 48:5f:74:9c:7e:d0:cb:54:93:45:a5:72:9e:bd:80:91:13:6a: d8:8f:4d:c6:19:4a:fd:04:67:24:2e:88:7b:1a:d6:f2:c1:44: bd:26:1b:e8:b5:af:ec:c5:fd:86:0a:22:03:c7:1a:59:33:a2: 46:c4:5c:af:7a:94:a6:63:3f:14:f6:3b:f2:f5:7b:f1:a4:70: 63:5b:03:c3:cc:6a:eb:d7:7e:55:2a:c1:41:4b:91:43:62:71: 0b:46:3f:ec:d8:6c:51:cf:7e:75:90:e8:31:bd:e2:3b:60:54: cf:9e:fe:9a:33:53:d5:a3:58:f6:a9:5c:5a:e1:30:d2:36:c1: fb:38:ee:c3:9a:2b:a6:27:99:03:00:11:16:50:06:6c:88:47: 95:b7:20:e7:2a:70:5e:b3:63:28:ed:cd:29:3f:a5:9d:33:f5: 1e:e2:c5:0b:5d:4c:85:66:3e:9a:5f:f2:26:ba:58:c9:ed:d3: 3e:96:fb:1b -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICImYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzNTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEIwMzBENzRCNjMyNjEz QUIyRDU0OTE0MDYyNURCRjhGQjdFREI3REQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDAfxuJwFELb4MS1h20PniEI2juMnlMIpt1u8rQOkA6zLJBu8X+ SDbc4Ma++Nbaiejdee2L5HEJWpqNdiXCblZ58X009+xSUpotajcO0kbgqhsTqGcS DEPmwNOhjywnsLG5nQPygc1JqdGUS+q9wenSZXgneIXQ2H00A7r0GiIx4t/A/zz0 53JnLqdb0Ic6Y376CoXhBqTwJxcoNrAqVDKrCrsTOv7efUIjO7zJbS0Ew3c/HfRs dOKbYk6UZwR99OFdRlnwQzJau9AxbRgsCKsilDkT9L0TeBPIWpz1CCFI/yR1m8Ya O5LEu7AjX41HtXkI0AZ09lMfoExl9LPFuMoZAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUsDDXS2MmE6stVJFAYl2/j7ftt90wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3NERFhTMk1tRTZzdFZKRkFZ bDJfajdmdHQ5MC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx n4AwDQYJKoZIhvcNAQELBQADggEBAJStMjscVkajBmsthrxJ4RHNhChK30qmrZ6r L5eGyhC5P7xqVVPe4YeClrLj+QchoRKQPaa84VSXx2zdIROXhZ4huPo5Cp6TWEhf dJx+0MtUk0Wlcp69gJETatiPTcYZSv0EZyQuiHsa1vLBRL0mG+i1r+zF/YYKIgPH GlkzokbEXK96lKZjPxT2O/L1e/GkcGNbA8PMauvXflUqwUFLkUNicQtGP+zYbFHP fnWQ6DG94jtgVM+e/pozU9WjWPapXFrhMNI2wfs47sOaK6YnmQMAERZQBmyIR5W3 IOcqcF6zYyjtzSk/pZ0z9R7ixQtdTIVmPppf8ia6WMnt0z6W+xs= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:41 2024 by rpki-client on console-ams.rpki-client.org