$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3-KKvrHHFQxMq_4qvGDUy-nao3c.roa File: 3-KKvrHHFQxMq_4qvGDUy-nao3c.roa (raw, json) Hash identifier: ghAx2Ts76EHhcTTuAM17OVspZJaaMNI2RJeVV2/ptxc= Subject key identifier: DF:E2:8A:BE:B1:C7:15:0C:4C:AB:FE:2A:BC:60:D4:CB:E9:DA:A3:77 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1E25 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3-KKvrHHFQxMq_4qvGDUy-nao3c.roa Signing time: Fri 01 Sep 2023 10:15:43 +0000 ROA not before: Fri 01 Sep 2023 10:15:43 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24165 IP address blocks: 124.6.0.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 10:15:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7717 (0x1e25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:15:43 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=DFE28ABEB1C7150C4CABFE2ABC60D4CBE9DAA377 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:e8:dc:2d:b4:65:94:9b:00:f3:c5:72:38:1a: 04:17:fb:9d:14:a2:1b:52:13:ab:b4:53:88:9e:ea: 6c:d7:f1:83:27:21:e7:6d:89:93:8c:94:e2:14:04: 28:ce:26:39:38:60:c8:63:00:4f:26:b4:29:93:b4: b8:ec:d1:19:8f:63:09:ed:31:29:b7:a6:76:5f:da: 3c:4f:0e:8c:6b:06:da:fa:40:79:4c:b3:29:cb:4a: 6d:0b:fe:24:f6:b9:ed:f6:10:f1:ab:7b:20:5f:dd: 2f:8e:86:dd:c1:26:e7:50:e7:29:00:95:1e:61:14: 25:63:54:82:47:3f:58:e2:49:7c:43:f9:b1:8f:7f: 72:6d:d1:98:07:7b:f0:cb:73:ef:cc:96:e9:02:b0: 77:2d:06:5d:c1:48:a5:f7:be:e9:19:cb:21:f5:70: e0:72:84:a4:5a:4b:d7:9e:0a:e7:22:d0:f0:56:cd: 09:ea:c2:e5:de:25:40:5e:c1:77:d1:fa:2d:50:95: 4b:11:be:eb:36:05:64:51:43:94:f5:51:a7:c1:60: 4d:bd:dd:b7:9f:25:2e:58:ee:07:b1:08:96:f2:7f: 08:bf:45:62:9c:3f:83:ac:f2:05:db:04:c3:7a:6e: 66:9a:ec:c2:b6:c6:da:1d:40:41:d3:c5:7a:92:dd: d0:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:E2:8A:BE:B1:C7:15:0C:4C:AB:FE:2A:BC:60:D4:CB:E9:DA:A3:77 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/3-KKvrHHFQxMq_4qvGDUy-nao3c.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 124.6.0.0/21 Signature Algorithm: sha256WithRSAEncryption 85:5f:ce:cd:83:26:1a:fa:a2:43:43:76:97:59:b2:1d:c0:db: 4a:4b:13:19:d2:7c:41:b2:2a:f7:cb:5d:2d:9e:68:6a:88:a5: 5b:16:e5:00:91:d3:3f:87:7c:fd:26:68:88:49:af:58:4a:77: 00:53:fe:d4:fb:16:eb:ec:e5:b2:f8:d9:59:a4:63:82:e0:4d: d5:07:92:3a:2b:a8:3a:ed:d0:87:5f:f1:84:9f:a5:9f:bc:7d: d1:3d:e7:d8:c7:c6:94:1d:ea:93:46:c5:ba:fd:28:ae:f6:c3: a9:7b:6c:a3:55:ac:42:91:13:78:1c:f4:74:21:8b:97:22:cc: 64:65:9c:b2:c6:11:a6:5f:48:47:e5:33:79:5e:68:6d:75:30: 7b:bf:a0:3d:c6:2c:a2:12:1c:1f:8d:06:3f:a1:7d:f3:74:20: dc:70:30:bf:b5:8c:f8:8d:a0:62:46:33:1a:09:04:2d:f5:ad: 11:f7:a0:dc:30:1f:0f:21:67:46:e8:af:a8:b3:00:e5:7b:c2: a3:bb:ee:e5:50:e4:ff:43:c6:f7:ad:c9:d5:7c:5a:7f:44:5a: c2:0b:15:cb:6c:d8:f5:f8:9b:d4:02:0e:1e:02:27:dd:f2:ef: 5d:86:26:98:3d:13:db:55:74:f3:08:86:92:48:1d:10:5f:db: ad:dc:c9:55 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHiUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE1NDNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKERGRTI4QUJFQjFDNzE1 MEM0Q0FCRkUyQUJDNjBENENCRTlEQUEzNzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC96NwttGWUmwDzxXI4GgQX+50UohtSE6u0U4ie6mzX8YMnIedt iZOMlOIUBCjOJjk4YMhjAE8mtCmTtLjs0RmPYwntMSm3pnZf2jxPDoxrBtr6QHlM synLSm0L/iT2ue32EPGreyBf3S+Oht3BJudQ5ykAlR5hFCVjVIJHP1jiSXxD+bGP f3Jt0ZgHe/DLc+/MlukCsHctBl3BSKX3vukZyyH1cOByhKRaS9eeCuci0PBWzQnq wuXeJUBewXfR+i1QlUsRvus2BWRRQ5T1UafBYE293befJS5Y7gexCJbyfwi/RWKc P4Os8gXbBMN6bmaa7MK2xtodQEHTxXqS3dCZAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU3+KKvrHHFQxMq/4qvGDUy+nao3cwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzMtS0t2ckhIRlF4TXFfNHF2 R0RVeS1uYW8zYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN8 BgAwDQYJKoZIhvcNAQELBQADggEBAIVfzs2DJhr6okNDdpdZsh3A20pLExnSfEGy KvfLXS2eaGqIpVsW5QCR0z+HfP0maIhJr1hKdwBT/tT7Fuvs5bL42VmkY4LgTdUH kjorqDrt0Idf8YSfpZ+8fdE959jHxpQd6pNGxbr9KK72w6l7bKNVrEKRE3gc9HQh i5cizGRlnLLGEaZfSEflM3leaG11MHu/oD3GLKISHB+NBj+hffN0INxwML+1jPiN oGJGMxoJBC31rRH3oNwwHw8hZ0bor6izAOV7wqO77uVQ5P9DxvetydV8Wn9EWsIL Fcts2PX4m9QCDh4CJ93y712GJpg9E9tVdPMIhpJIHRBf263cyVU= -----END CERTIFICATE-----Generated at Tue Jun 18 13:13:49 2024 by rpki-client on console-fra.rpki-client.org