$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/9IJZ77jThoAmicrsrqrQngRalYM.roa File: 9IJZ77jThoAmicrsrqrQngRalYM.roa (raw, json) Hash identifier: p1waPE06vtoWKVtIs18Mro1nvkEgoavu8BuVeg2bFdk= Subject key identifier: F4:82:59:EF:B8:D3:86:80:26:89:CA:EC:AE:AA:D0:9E:04:5A:95:83 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1E23 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/9IJZ77jThoAmicrsrqrQngRalYM.roa Signing time: Fri 01 Sep 2023 10:15:43 +0000 ROA not before: Fri 01 Sep 2023 10:15:43 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24164 IP address blocks: 49.158.136.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 10:15:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7715 (0x1e23) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:15:43 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=F48259EFB8D386802689CAECAEAAD09E045A9583 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:78:ce:5b:5e:18:44:fa:3b:9a:97:7c:f5:01: 05:e3:69:6c:97:94:3a:de:77:d6:a0:d1:f8:c9:af: fc:76:58:c8:a0:2e:54:99:17:78:13:2a:6c:9f:8d: 9c:8b:96:03:d4:22:fe:9b:40:2e:4e:fa:32:35:5c: 56:80:36:a2:fe:bc:f9:f3:e4:c3:75:d3:93:59:19: 98:23:03:6a:04:cc:b5:76:7d:59:c2:ff:94:ba:38: 98:40:b6:79:bf:43:ec:4f:38:59:86:95:a1:c3:1f: 42:42:65:96:a1:fa:6e:48:33:61:7f:52:44:9d:23: c7:63:eb:a9:80:7a:41:2c:25:c0:d5:f8:cf:e5:7f: 9a:53:59:62:e2:12:84:44:01:3f:3c:72:22:7e:33: 2c:06:fc:60:41:be:52:4a:a9:c5:8d:ef:07:d8:46: 28:af:58:46:f5:18:5f:50:98:51:06:76:d8:41:6b: 5a:85:77:6d:de:87:a2:b6:20:b5:b7:31:53:6a:55: ca:82:0b:29:92:37:ac:2e:12:53:5c:cf:67:b8:24: 2a:75:9b:34:d2:75:bc:fc:50:c2:6d:b3:60:e7:9d: b4:ed:92:94:d3:56:9a:78:0d:03:07:18:e5:6c:ab: 29:3a:6e:ad:38:86:82:e6:db:d1:dc:7e:b4:df:2f: 30:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:82:59:EF:B8:D3:86:80:26:89:CA:EC:AE:AA:D0:9E:04:5A:95:83 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/9IJZ77jThoAmicrsrqrQngRalYM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.136.0/21 Signature Algorithm: sha256WithRSAEncryption 61:7f:c8:2d:0a:ae:ff:24:d0:b2:4b:8a:db:e0:9e:8b:b4:29: bc:c8:d8:61:28:b3:b3:e5:80:d8:9c:2f:b8:aa:5d:e8:9c:4a: c1:8a:01:0d:b9:43:63:4c:46:e7:06:c4:fe:fa:99:b5:65:40: c8:5d:5a:74:6d:97:a3:b7:80:c3:84:0d:87:ef:30:c9:40:de: 26:58:a5:d4:d6:b1:bd:91:f4:71:62:f4:fd:55:d9:c6:0a:f4: bc:dc:d2:37:20:31:e7:fb:d3:91:d5:82:1d:b1:ae:cb:cf:0d: 4e:2f:b9:04:e1:6f:4b:1a:54:e0:73:3e:49:49:ba:60:b6:80: 3c:66:7f:bb:5c:7d:22:6c:5f:46:73:a6:23:e1:46:54:88:22: 2a:97:da:ed:42:96:9d:f3:4f:1a:bd:f1:fc:8d:67:3b:25:c8: 01:4a:83:9f:04:99:3f:42:6b:80:ff:2a:19:a2:86:6d:22:99: da:fc:af:45:84:b1:5f:fa:79:86:f0:ae:6a:dd:8c:d4:1b:52: 2a:b2:2b:a6:e1:a3:fe:e4:92:df:fe:7c:99:2b:44:12:ef:ff: ab:15:6d:1f:47:0a:18:91:6d:2b:10:31:3d:55:cb:d8:57:5b: 15:97:ec:a3:9f:e3:e7:97:e2:6c:36:7b:4b:af:c5:5b:96:e0: 63:f7:14:c5 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHiMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE1NDNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEY0ODI1OUVGQjhEMzg2 ODAyNjg5Q0FFQ0FFQUFEMDlFMDQ1QTk1ODMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCXeM5bXhhE+jual3z1AQXjaWyXlDred9ag0fjJr/x2WMigLlSZ F3gTKmyfjZyLlgPUIv6bQC5O+jI1XFaANqL+vPnz5MN105NZGZgjA2oEzLV2fVnC /5S6OJhAtnm/Q+xPOFmGlaHDH0JCZZah+m5IM2F/UkSdI8dj66mAekEsJcDV+M/l f5pTWWLiEoREAT88ciJ+MywG/GBBvlJKqcWN7wfYRiivWEb1GF9QmFEGdthBa1qF d23eh6K2ILW3MVNqVcqCCymSN6wuElNcz2e4JCp1mzTSdbz8UMJts2DnnbTtkpTT Vpp4DQMHGOVsqyk6bq04hoLm29HcfrTfLzBvAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU9IJZ77jThoAmicrsrqrQngRalYMwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULzlJSlo3N2pUaG9BbWljcnNy cXJRbmdSYWxZTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx nogwDQYJKoZIhvcNAQELBQADggEBAGF/yC0Krv8k0LJLitvgnou0KbzI2GEos7Pl gNicL7iqXeicSsGKAQ25Q2NMRucGxP76mbVlQMhdWnRtl6O3gMOEDYfvMMlA3iZY pdTWsb2R9HFi9P1V2cYK9Lzc0jcgMef705HVgh2xrsvPDU4vuQThb0saVOBzPklJ umC2gDxmf7tcfSJsX0ZzpiPhRlSIIiqX2u1Clp3zTxq98fyNZzslyAFKg58EmT9C a4D/Khmihm0imdr8r0WEsV/6eYbwrmrdjNQbUiqyK6bho/7kkt/+fJkrRBLv/6sV bR9HChiRbSsQMT1Vy9hXWxWX7KOf4+eX4mw2e0uvxVuW4GP3FMU= -----END CERTIFICATE-----Generated at Tue Jun 18 13:13:49 2024 by rpki-client on console-fra.rpki-client.org