$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/AlO6CoVgws1CyanzBw68juz9oII.roa File: AlO6CoVgws1CyanzBw68juz9oII.roa (raw, json) Hash identifier: vSHJL/9mxmLpMc4+GYnYDmSISj8mECU2e+06iBNlvGI= Subject key identifier: 02:53:BA:0A:85:60:C2:CD:42:C9:A9:F3:07:0E:BC:8E:EC:FD:A0:82 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1D7D Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/AlO6CoVgws1CyanzBw68juz9oII.roa Signing time: Fri 01 Sep 2023 10:14:53 +0000 ROA not before: Fri 01 Sep 2023 10:14:53 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24163 IP address blocks: 103.225.0.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 10:15:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7549 (0x1d7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:14:53 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=0253BA0A8560C2CD42C9A9F3070EBC8EECFDA082 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ed:97:0e:94:85:0d:b2:c5:fa:d9:d5:15:2c: ae:96:8a:b6:49:0b:d8:91:39:cf:4b:22:29:d0:da: 31:12:21:65:2d:c0:c7:f1:ef:43:cf:90:f7:1a:8a: d6:a1:52:cd:08:b9:88:b2:79:52:67:e1:3e:01:8a: fc:f4:aa:62:6d:23:77:e7:32:35:98:80:76:98:d8: 63:2c:ba:c7:80:f6:c2:a6:fe:e2:8d:c9:c9:a6:85: 6c:c2:2d:09:8e:ac:d9:3e:6c:e0:6b:b4:aa:07:02: 34:03:cf:a4:19:16:f0:65:d3:68:1f:17:ea:bc:0f: 65:8e:73:e6:17:33:ac:56:a8:b1:ac:ac:9e:70:65: ef:0b:85:12:dd:21:e9:b4:14:04:4e:66:51:64:7f: ab:36:fc:cc:89:11:13:b6:7f:e5:a5:cf:e4:60:3e: bb:cf:2f:06:db:9c:d8:c7:6f:5a:da:22:0e:14:27: 3c:85:97:d1:d3:4b:43:2d:08:19:96:20:f0:0f:31: 84:3f:f5:7a:c8:59:19:ad:98:49:ec:fc:46:5f:be: 72:47:df:25:af:0a:c9:cd:fb:4a:f3:31:3a:0e:2f: f6:93:4c:83:7b:dc:8f:ec:88:fc:01:21:22:0d:59: 5c:2c:30:ee:ef:e6:d5:92:05:77:a4:ee:fc:59:5f: 77:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:53:BA:0A:85:60:C2:CD:42:C9:A9:F3:07:0E:BC:8E:EC:FD:A0:82 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/AlO6CoVgws1CyanzBw68juz9oII.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.225.0.0/22 Signature Algorithm: sha256WithRSAEncryption 6c:e8:68:48:cf:7e:db:cb:d8:cc:85:12:91:eb:57:64:52:e4: 34:76:17:3d:85:93:bc:64:c2:ff:5b:93:e2:3e:52:e5:0e:c3: b3:f5:ff:81:1c:3a:c2:a2:c9:2f:7f:53:02:48:c0:c9:60:86: e5:1b:39:0e:0e:16:d4:0a:c5:4a:77:28:5f:66:9b:f8:c2:34: b7:85:37:d2:1d:b0:94:be:49:97:a5:ef:0d:aa:aa:12:25:f2: e8:e6:45:6f:39:9d:eb:23:f8:00:8b:c6:49:62:42:c9:6b:59: 5c:ad:51:01:ba:df:1d:2f:4b:20:06:9f:99:cf:13:38:fe:23: d9:47:83:8f:c2:d2:0d:56:23:3a:c9:e9:56:20:f4:f6:a6:ea: ee:22:51:d1:3b:ec:e5:f5:9d:d7:d6:8f:31:43:cb:72:7c:77: dd:20:15:9a:67:f4:ea:e9:16:e9:00:c0:9e:f7:dd:aa:98:68: 1b:d3:b8:21:5c:8b:3a:38:5a:25:72:2c:ed:2e:c6:3d:2a:36: e0:85:2a:e1:5b:6f:5f:3f:a8:26:78:82:ec:91:aa:5d:60:97: 9e:86:ae:35:c3:62:1e:15:eb:01:35:8a:40:6e:35:81:af:0c: 38:20:a9:0c:35:c5:7b:04:00:04:ee:fa:29:99:a7:a5:7b:da: 11:c3:c0:eb -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHX0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE0NTNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDAyNTNCQTBBODU2MEMy Q0Q0MkM5QTlGMzA3MEVCQzhFRUNGREEwODIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDO7ZcOlIUNssX62dUVLK6WirZJC9iROc9LIinQ2jESIWUtwMfx 70PPkPcaitahUs0IuYiyeVJn4T4Bivz0qmJtI3fnMjWYgHaY2GMsuseA9sKm/uKN ycmmhWzCLQmOrNk+bOBrtKoHAjQDz6QZFvBl02gfF+q8D2WOc+YXM6xWqLGsrJ5w Ze8LhRLdIem0FAROZlFkf6s2/MyJERO2f+Wlz+RgPrvPLwbbnNjHb1raIg4UJzyF l9HTS0MtCBmWIPAPMYQ/9XrIWRmtmEns/EZfvnJH3yWvCsnN+0rzMToOL/aTTIN7 3I/siPwBISINWVwsMO7v5tWSBXek7vxZX3d/AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUAlO6CoVgws1CyanzBw68juz9oIIwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0FsTzZDb1Znd3MxQ3lhbnpC dzY4anV6OW9JSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJn 4QAwDQYJKoZIhvcNAQELBQADggEBAGzoaEjPftvL2MyFEpHrV2RS5DR2Fz2Fk7xk wv9bk+I+UuUOw7P1/4EcOsKiyS9/UwJIwMlghuUbOQ4OFtQKxUp3KF9mm/jCNLeF N9IdsJS+SZel7w2qqhIl8ujmRW85nesj+ACLxkliQslrWVytUQG63x0vSyAGn5nP Ezj+I9lHg4/C0g1WIzrJ6VYg9Pam6u4iUdE77OX1ndfWjzFDy3J8d90gFZpn9Orp FukAwJ733aqYaBvTuCFcizo4WiVyLO0uxj0qNuCFKuFbb18/qCZ4guyRql1gl56G rjXDYh4V6wE1ikBuNYGvDDggqQw1xXsEAATu+imZp6V72hHDwOs= -----END CERTIFICATE-----Generated at Tue Jun 18 13:13:49 2024 by rpki-client on console-fra.rpki-client.org