$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/BQ4Oa5S12eolYKCItq-bHtMdwtc.roa File: BQ4Oa5S12eolYKCItq-bHtMdwtc.roa (raw, json) Hash identifier: 8RZZGICtwWovrgnMDWowKtc7xXFiE9MBd6LnZSFFGw4= Subject key identifier: 05:0E:0E:6B:94:B5:D9:EA:25:60:A0:88:B6:AF:9B:1E:D3:1D:C2:D7 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1DB2 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/BQ4Oa5S12eolYKCItq-bHtMdwtc.roa Signing time: Fri 01 Sep 2023 10:15:10 +0000 ROA not before: Fri 01 Sep 2023 10:15:10 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24164 IP address blocks: 49.158.48.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 10:15:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7602 (0x1db2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:15:10 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=050E0E6B94B5D9EA2560A088B6AF9B1ED31DC2D7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:9c:e9:f5:4a:42:37:7b:78:90:60:f5:59:ae: 39:8b:f8:d2:1f:bb:bc:29:d1:3f:b6:f1:33:4f:0d: 4b:b8:48:a7:7f:a4:db:6d:88:73:60:fc:16:5f:c2: 11:54:d9:e3:e5:e4:c5:ce:ef:d4:e6:cb:7b:c5:d2: a8:17:a3:71:d9:a6:1f:17:fb:b3:bd:89:1a:4f:62: ad:7c:51:16:7b:61:e3:5d:7a:f0:6e:8a:54:cc:51: 83:f5:00:3d:c0:80:16:7f:42:5c:6e:65:52:7a:dc: 83:f2:2e:46:e5:6b:e1:a9:0c:71:c7:34:80:09:8f: b9:2b:88:5f:53:14:e6:b1:41:d4:bd:f6:de:eb:73: e4:2d:73:e2:8a:b5:f8:79:57:f9:1c:ab:6f:98:a2: a1:2c:2f:ff:ff:4c:24:96:5b:da:4f:34:44:ab:d5: 5d:06:e4:eb:8d:a8:58:f6:76:ca:5d:3e:b7:5b:b2: 86:86:00:9e:7f:ff:11:df:12:43:3e:0a:9c:70:87: a8:47:83:ce:c0:94:36:f3:0f:38:ab:87:78:f0:ec: 1c:6b:56:2c:c0:96:44:58:90:f8:c4:8d:80:33:5f: e8:18:fd:c9:f7:ac:ee:b5:3e:c3:d8:b3:bc:da:84: 41:e1:df:82:48:f7:74:67:4f:81:33:45:dc:6b:d8: 74:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:0E:0E:6B:94:B5:D9:EA:25:60:A0:88:B6:AF:9B:1E:D3:1D:C2:D7 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/BQ4Oa5S12eolYKCItq-bHtMdwtc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.48.0/21 Signature Algorithm: sha256WithRSAEncryption 9f:06:1a:3b:4a:b2:76:04:36:a7:2f:27:60:8d:7c:27:12:2e: a5:28:13:bb:4b:9f:8f:71:2e:0a:ca:f0:5c:26:67:b1:d4:da: 48:2b:3c:bc:e7:d2:91:60:9a:33:ca:0c:74:43:05:13:c6:b5: e3:f7:ef:d7:2a:cf:fe:3e:99:7f:ad:f0:3f:1f:c9:ac:b1:a1: 77:8a:4c:31:f1:0a:ca:60:9b:5a:68:9e:b4:62:e0:27:fc:96: 7f:b1:e8:c5:f6:f6:a0:b1:00:9f:59:c6:68:f7:94:ba:82:28: fd:bc:3d:9b:85:2a:0e:c0:24:70:91:11:b4:7c:4c:3c:3d:13: 31:9b:f2:a2:3c:34:fa:f5:13:a9:eb:c3:d9:2c:17:a8:a5:31: b1:c6:ff:9a:2e:02:7e:cc:fe:f2:ab:ee:8b:06:c9:f3:f1:22: 74:0e:aa:99:8a:94:83:55:5a:8c:3f:36:d8:ed:73:e1:2b:3e: aa:77:f5:72:d2:88:3a:1d:7d:5e:cd:56:a2:7b:f0:3d:65:97: 3e:f8:a4:be:6f:51:22:29:5a:b3:fb:dd:e7:b5:49:e8:0a:16: b3:cf:2a:b7:29:38:aa:fb:34:89:5a:d4:e8:ff:04:83:a9:8d: e5:27:a1:dd:45:2d:c9:6c:3b:04:1b:40:7d:f5:4a:12:e7:33: 0b:df:a4:af -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHbIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE1MTBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDA1MEUwRTZCOTRCNUQ5 RUEyNTYwQTA4OEI2QUY5QjFFRDMxREMyRDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDAnOn1SkI3e3iQYPVZrjmL+NIfu7wp0T+28TNPDUu4SKd/pNtt iHNg/BZfwhFU2ePl5MXO79Tmy3vF0qgXo3HZph8X+7O9iRpPYq18URZ7YeNdevBu ilTMUYP1AD3AgBZ/QlxuZVJ63IPyLkbla+GpDHHHNIAJj7kriF9TFOaxQdS99t7r c+Qtc+KKtfh5V/kcq2+YoqEsL///TCSWW9pPNESr1V0G5OuNqFj2dspdPrdbsoaG AJ5//xHfEkM+Cpxwh6hHg87AlDbzDzirh3jw7BxrVizAlkRYkPjEjYAzX+gY/cn3 rO61PsPYs7zahEHh34JI93RnT4EzRdxr2HRpAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUBQ4Oa5S12eolYKCItq+bHtMdwtcwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0JRNE9hNVMxMmVvbFlLQ0l0 cS1iSHRNZHd0Yy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx njAwDQYJKoZIhvcNAQELBQADggEBAJ8GGjtKsnYENqcvJ2CNfCcSLqUoE7tLn49x LgrK8FwmZ7HU2kgrPLzn0pFgmjPKDHRDBRPGteP379cqz/4+mX+t8D8fyayxoXeK TDHxCspgm1ponrRi4Cf8ln+x6MX29qCxAJ9Zxmj3lLqCKP28PZuFKg7AJHCREbR8 TDw9EzGb8qI8NPr1E6nrw9ksF6ilMbHG/5ouAn7M/vKr7osGyfPxInQOqpmKlINV Wow/Ntjtc+ErPqp39XLSiDodfV7NVqJ78D1llz74pL5vUSIpWrP73ee1SegKFrPP KrcpOKr7NIla1Oj/BIOpjeUnod1FLclsOwQbQH31ShLnMwvfpK8= -----END CERTIFICATE-----Generated at Tue Jun 18 12:54:12 2024 by rpki-client on console-ams.rpki-client.org