$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/BqhXDboFAsWc-QFhJ-zhsQ-KS_Q.roa File: BqhXDboFAsWc-QFhJ-zhsQ-KS_Q.roa (raw, json) Hash identifier: bpqie0KwTrliEMyBHd8mFMd/WrE1yFRvNIaerP8P3aQ= Subject key identifier: 06:A8:57:0D:BA:05:02:C5:9C:F9:01:61:27:EC:E1:B1:0F:8A:4B:F4 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 2273 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/BqhXDboFAsWc-QFhJ-zhsQ-KS_Q.roa Signing time: Mon 26 Aug 2024 05:34:01 +0000 ROA not before: Mon 26 Aug 2024 05:34:01 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 24163 IP address blocks: 211.76.46.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Sep 2024 03:51:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 8819 (0x2273) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Aug 26 05:34:01 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=06A8570DBA0502C59CF9016127ECE1B10F8A4BF4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a9:37:56:9c:e4:44:9a:38:55:24:d5:68:26: a0:b8:fd:e3:c1:2f:8f:d1:3a:95:6b:74:51:7c:8d: 61:f2:47:52:45:a4:f3:a6:5c:0e:7b:98:34:e5:79: 1a:85:16:5b:5b:43:18:1c:e8:dd:95:9d:45:6b:78: 7b:e3:c7:ae:d5:41:00:f0:3d:77:a3:59:94:94:54: 7f:b1:0c:49:b8:ce:be:a0:99:8c:d7:58:b0:d2:16: 84:b3:20:ed:5d:00:b0:da:67:c2:9d:97:bc:a5:46: ac:60:79:7e:2a:60:b5:48:2e:5b:a0:ce:6a:cb:b7: b6:34:3d:4a:65:e4:b1:87:fe:0a:6d:41:f7:0d:02: ad:0e:b5:44:5c:98:4d:bd:76:9e:9e:c5:c0:d2:d3: b9:47:c8:69:90:3a:e7:b1:4f:f4:ac:4d:b9:74:47: c9:77:a5:17:b8:ce:02:22:95:a0:f0:7f:3a:d0:a8: 0f:23:fb:09:95:df:c0:d7:39:48:7f:bf:dd:27:ef: a4:eb:87:ba:7b:03:08:b7:c6:8e:ab:c0:b9:22:28: 73:eb:ca:d9:ad:64:8a:22:9d:0b:0d:42:a0:92:96: 1e:9c:b9:32:3a:0c:f5:4c:0b:a2:bb:1e:67:49:93: 72:ca:5b:e4:92:da:4c:37:4f:3f:be:19:b1:05:1a: 83:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:A8:57:0D:BA:05:02:C5:9C:F9:01:61:27:EC:E1:B1:0F:8A:4B:F4 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/BqhXDboFAsWc-QFhJ-zhsQ-KS_Q.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.46.0/23 Signature Algorithm: sha256WithRSAEncryption 53:d4:65:42:0d:e7:0e:33:49:3f:c6:4e:e2:26:32:16:49:8d: 8d:d1:9a:d7:50:35:7c:96:28:98:89:b7:a0:45:9e:4e:c6:4f: d3:c0:8e:16:73:72:1d:df:f5:4a:83:69:66:ba:4a:96:52:50: 50:74:b7:ae:a5:df:76:6d:14:cc:96:17:d2:97:a3:87:2f:a4: 3a:5b:48:cd:66:33:87:9e:ea:a2:58:3b:ae:60:c8:bd:4c:4b: cf:f4:a7:33:41:50:6a:ee:07:4b:19:ce:fb:d4:f3:31:77:7a: 5b:64:3d:79:8b:fd:56:3a:88:d7:d3:a0:e5:c4:f3:a4:47:20: b1:2c:24:1c:96:84:4a:c9:87:18:fe:1c:0c:81:3e:d4:33:41: e0:43:74:3a:13:ce:8b:7e:95:40:f8:a2:a4:fb:00:ce:8e:9d: 57:e3:78:9f:2d:25:ef:cd:bd:14:b7:f4:7e:77:cb:ff:3f:8e: ea:b2:cc:36:71:5f:0e:fa:80:3c:02:b7:97:12:af:0d:5b:c6: df:74:cf:71:26:19:9f:0d:ac:ad:87:74:1b:8f:b2:d2:4a:c7: c0:3c:8c:6f:99:08:c7:f9:d6:73:f6:b2:f1:76:53:98:d2:ce: f2:1b:ae:27:0f:8a:81:e7:86:ea:2b:88:2f:5c:5b:24:23:9d: 09:cd:70:45 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICInMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yNDA4MjYw NTM0MDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDA2QTg1NzBEQkEwNTAy QzU5Q0Y5MDE2MTI3RUNFMUIxMEY4QTRCRjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6qTdWnOREmjhVJNVoJqC4/ePBL4/ROpVrdFF8jWHyR1JFpPOm XA57mDTleRqFFltbQxgc6N2VnUVreHvjx67VQQDwPXejWZSUVH+xDEm4zr6gmYzX WLDSFoSzIO1dALDaZ8Kdl7ylRqxgeX4qYLVILlugzmrLt7Y0PUpl5LGH/gptQfcN Aq0OtURcmE29dp6excDS07lHyGmQOuexT/SsTbl0R8l3pRe4zgIilaDwfzrQqA8j +wmV38DXOUh/v90n76Trh7p7Awi3xo6rwLkiKHPrytmtZIoinQsNQqCSlh6cuTI6 DPVMC6K7HmdJk3LKW+SS2kw3Tz++GbEFGoMfAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUBqhXDboFAsWc+QFhJ+zhsQ+KS/QwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0JxaFhEYm9GQXNXYy1RRmhK LXpoc1EtS1NfUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHT TC4wDQYJKoZIhvcNAQELBQADggEBAFPUZUIN5w4zST/GTuImMhZJjY3RmtdQNXyW KJiJt6BFnk7GT9PAjhZzch3f9UqDaWa6SpZSUFB0t66l33ZtFMyWF9KXo4cvpDpb SM1mM4ee6qJYO65gyL1MS8/0pzNBUGruB0sZzvvU8zF3eltkPXmL/VY6iNfToOXE 86RHILEsJByWhErJhxj+HAyBPtQzQeBDdDoTzot+lUD4oqT7AM6OnVfjeJ8tJe/N vRS39H53y/8/juqyzDZxXw76gDwCt5cSrw1bxt90z3EmGZ8NrK2HdBuPstJKx8A8 jG+ZCMf51nP2svF2U5jSzvIbricPioHnhuoriC9cWyQjnQnNcEU= -----END CERTIFICATE-----Generated at Fri Sep 27 23:37:00 2024 by rpki-client on console-fra.rpki-client.org