$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/wyHdOKfanRBOKoC2_ercDixsPWc.roa File: wyHdOKfanRBOKoC2_ercDixsPWc.roa (raw, json) Hash identifier: H4lLOowYrhhzVUIjc8KT5ko6CH9EAFTP8Uviu/yuhQU= Subject key identifier: C3:21:DD:38:A7:DA:9D:10:4E:2A:80:B6:FD:EA:DC:0E:2C:6C:3D:67 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 21CC Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/wyHdOKfanRBOKoC2_ercDixsPWc.roa Signing time: Mon 26 Aug 2024 05:33:22 +0000 ROA not before: Mon 26 Aug 2024 05:33:22 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24164 IP address blocks: 49.159.120.0/21 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 26 Nov 2024 00:55:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8652 (0x21cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:33:22 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C321DD38A7DA9D104E2A80B6FDEADC0E2C6C3D67 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:b2:b3:a2:6a:c0:f3:b5:6c:22:b6:d2:ce:0a: c9:3a:f6:05:0b:ec:e3:70:87:92:c9:37:e3:41:9c: f6:27:1f:7e:56:58:64:84:14:a2:fc:d9:5a:0a:9e: 3d:69:01:b4:92:aa:ae:6d:28:ae:9d:d0:e3:db:c0: 31:87:bb:4a:3b:ca:c2:41:47:a2:75:e4:93:ac:77: 5f:04:8d:1f:44:94:97:87:9c:d8:c5:8d:02:e2:cc: df:78:1c:7b:31:33:94:7b:e4:0b:12:ed:f7:08:07: e5:74:b1:7c:91:e2:59:8b:45:02:4b:35:5a:bd:e3: ec:7a:68:5a:5b:42:34:4e:07:d6:69:92:6d:eb:e2: 37:5a:05:d6:0c:33:80:d1:00:ba:96:04:bd:f2:7e: 54:37:89:d4:de:e2:51:c9:8e:d7:3e:32:2b:5f:88: 33:bc:c7:81:52:2e:08:13:49:ef:87:b0:47:88:1e: f9:11:f2:23:e5:4a:70:19:21:0a:6c:7b:81:e5:c6: ec:12:b0:ac:c6:a2:d8:8d:8d:c2:f6:d9:d6:c4:9f: fc:6b:13:89:1e:05:fc:bc:1a:e6:36:d3:74:0e:c0: 72:5e:0a:0f:a4:db:b2:f4:e3:30:ff:56:1a:a3:6a: fc:9a:92:57:2a:6e:2f:90:f5:a2:43:fe:38:aa:8f: 26:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:21:DD:38:A7:DA:9D:10:4E:2A:80:B6:FD:EA:DC:0E:2C:6C:3D:67 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/wyHdOKfanRBOKoC2_ercDixsPWc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.120.0/21 Signature Algorithm: sha256WithRSAEncryption 5a:15:2c:3a:01:aa:d6:4e:cc:10:99:d0:36:47:38:49:95:2a: 97:77:f6:56:3d:bc:bf:38:50:52:21:09:c0:b7:08:ac:88:65: 26:2c:80:74:ec:e3:bb:6a:63:5b:91:13:c3:32:e4:54:08:13: d1:ca:dd:d8:dd:86:eb:98:50:57:15:0d:d2:a5:82:d1:10:ea: 70:42:da:28:10:34:f9:3d:f2:69:ee:5f:e4:99:6e:f7:2b:2e: a7:eb:fd:2b:3f:ac:1a:81:2a:74:c4:97:4a:8f:a8:ab:5f:19: 6f:c8:f9:63:6e:7d:58:8a:ed:54:c3:1f:67:72:71:b4:ba:ea: 7c:e3:9e:e6:a4:36:d7:db:a9:e0:6e:95:f9:1d:99:9e:05:5c: df:5f:63:33:f1:6a:4f:9d:53:e8:f5:20:00:52:9e:6e:7b:1e: bf:8a:db:e2:86:98:28:f9:a3:85:01:c0:65:24:62:9d:f9:ab: fe:61:f4:c6:59:73:0a:8d:a1:f3:f1:f8:00:83:2e:82:dd:c9: 1a:ab:41:ae:58:db:8c:9e:66:2f:45:2c:ff:db:48:53:f4:e7: 28:da:4a:69:95:55:4d:d0:1a:24:27:b3:06:2c:ea:f9:81:2a: 64:28:fb:3b:29:14:f9:61:f5:91:0d:1d:85:7b:8a:b1:c1:6c: ef:97:9f:29 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICIcwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTMzMjJaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEMzMjFERDM4QTdEQTlE MTA0RTJBODBCNkZERUFEQzBFMkM2QzNENjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3srOiasDztWwittLOCsk69gUL7ONwh5LJN+NBnPYnH35WWGSE FKL82VoKnj1pAbSSqq5tKK6d0OPbwDGHu0o7ysJBR6J15JOsd18EjR9ElJeHnNjF jQLizN94HHsxM5R75AsS7fcIB+V0sXyR4lmLRQJLNVq94+x6aFpbQjROB9Zpkm3r 4jdaBdYMM4DRALqWBL3yflQ3idTe4lHJjtc+MitfiDO8x4FSLggTSe+HsEeIHvkR 8iPlSnAZIQpse4HlxuwSsKzGotiNjcL22dbEn/xrE4keBfy8GuY203QOwHJeCg+k 27L04zD/Vhqjavyaklcqbi+Q9aJD/jiqjyatAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUwyHdOKfanRBOKoC2/ercDixsPWcwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3d5SGRPS2ZhblJCT0tvQzJf ZXJjRGl4c1BXYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx n3gwDQYJKoZIhvcNAQELBQADggEBAFoVLDoBqtZOzBCZ0DZHOEmVKpd39lY9vL84 UFIhCcC3CKyIZSYsgHTs47tqY1uRE8My5FQIE9HK3djdhuuYUFcVDdKlgtEQ6nBC 2igQNPk98mnuX+SZbvcrLqfr/Ss/rBqBKnTEl0qPqKtfGW/I+WNufViK7VTDH2dy cbS66nzjnuakNtfbqeBulfkdmZ4FXN9fYzPxak+dU+j1IABSnm57Hr+K2+KGmCj5 o4UBwGUkYp35q/5h9MZZcwqNofPx+ACDLoLdyRqrQa5Y24yeZi9FLP/bSFP05yja SmmVVU3QGiQnswYs6vmBKmQo+zspFPlh9ZENHYV7irHBbO+Xnyk= -----END CERTIFICATE-----Generated at Mon Nov 25 20:56:46 2024 by rpki-client on console-fra.rpki-client.org