$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/DKcuzzjFjKh0e6i2luAC0ROEHDg.roa File: DKcuzzjFjKh0e6i2luAC0ROEHDg.roa (raw, json) Hash identifier: 3eF+VeS2Y4GXpZIWTR5yYEiC6UoBkhkI6JI9y0j36B0= Subject key identifier: 0C:A7:2E:CF:38:C5:8C:A8:74:7B:A8:B6:96:E0:02:D1:13:84:1C:38 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1E49 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/DKcuzzjFjKh0e6i2luAC0ROEHDg.roa Signing time: Fri 01 Sep 2023 10:15:51 +0000 ROA not before: Fri 01 Sep 2023 10:15:51 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24165 IP address blocks: 119.77.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 10:15:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7753 (0x1e49) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:15:51 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=0CA72ECF38C58CA8747BA8B696E002D113841C38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:f6:ef:c9:30:a6:b5:ef:55:31:84:f1:9e:4b: e4:c7:a4:7d:1a:87:c9:5b:35:35:ca:c3:70:a7:a8: 0c:e2:fc:0e:23:53:46:ec:25:3e:a4:dd:6d:10:0f: aa:94:56:a2:13:9c:d3:a3:26:ff:88:98:74:af:2d: 89:10:35:34:f9:b6:52:8a:42:33:b0:b9:77:e8:35: 9f:7c:9c:fe:90:97:43:ab:47:00:4c:16:5d:16:cc: 8a:6a:60:c9:5c:69:9c:55:e5:f9:f4:67:dd:2f:9f: 3b:57:04:4a:3c:e1:22:a3:b6:40:ac:ef:d8:ae:f1: 7b:0d:7c:25:17:de:e2:4f:f2:7a:10:16:76:c5:7c: f7:72:21:e5:97:87:9f:e5:cc:4a:7a:6a:6e:0d:7b: 9f:ca:ef:2d:50:46:40:b1:aa:46:3e:2e:8a:a7:68: 49:b8:be:95:73:22:31:70:b1:59:22:0e:6f:65:b6: 8d:92:76:aa:36:e4:a9:9a:a6:da:12:25:33:00:64: c4:9a:12:69:c9:8b:a1:52:49:e8:83:4c:43:d8:0d: 4f:2a:0c:93:27:1b:91:ac:5b:6b:69:df:33:7a:d9: c5:09:13:c2:d6:4f:96:3f:fd:ea:f2:fb:aa:7b:73: 62:23:1e:84:30:63:7d:3c:a8:51:17:95:a2:7b:10: 45:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:A7:2E:CF:38:C5:8C:A8:74:7B:A8:B6:96:E0:02:D1:13:84:1C:38 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/DKcuzzjFjKh0e6i2luAC0ROEHDg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 119.77.128.0/17 Signature Algorithm: sha256WithRSAEncryption 48:91:67:40:e5:f3:d4:95:b4:09:07:42:34:8b:39:e1:5a:73: d0:3c:1f:43:44:aa:b9:13:63:cf:6e:4c:18:28:90:fb:7e:33: 4b:40:72:08:ae:0a:63:b0:26:68:38:bd:5d:ff:f3:2b:f4:fe: 24:60:fb:a4:6e:0f:d5:4b:4d:d9:f3:01:a3:c9:95:d6:2d:f9: ad:e1:01:48:b2:14:f2:7a:46:cd:cb:90:78:f7:5c:a5:ff:75: c3:74:74:44:0c:0a:f4:0f:b0:90:0e:0d:e4:2d:66:2a:78:b5: 30:e1:b9:40:16:55:a1:fb:d0:7a:5d:88:bf:23:75:c0:f1:0b: bb:f8:73:28:de:2a:02:ff:a4:94:32:ea:36:a2:a3:11:10:fb: 00:0a:24:dd:94:76:10:35:a8:f4:e0:32:7c:aa:90:74:9f:38: aa:18:f9:3f:1a:ff:6d:29:93:d5:a0:da:fd:40:0d:7f:d2:11: 19:87:2a:ae:03:c8:8a:2a:fc:5b:02:e3:37:fb:9f:c8:72:22: eb:9d:c2:c8:9d:6a:aa:b0:18:11:1a:b0:98:83:1a:bf:a5:20: 8a:c0:77:65:c2:55:1b:b2:a7:c6:c6:2a:37:f6:ff:25:8c:c4: 3a:7a:28:9d:a2:3b:43:94:3b:19:76:cc:33:3b:29:c3:1f:d3: d6:48:48:e8 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHkkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE1NTFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDBDQTcyRUNGMzhDNThD QTg3NDdCQThCNjk2RTAwMkQxMTM4NDFDMzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDT9u/JMKa171UxhPGeS+THpH0ah8lbNTXKw3CnqAzi/A4jU0bs JT6k3W0QD6qUVqITnNOjJv+ImHSvLYkQNTT5tlKKQjOwuXfoNZ98nP6Ql0OrRwBM Fl0WzIpqYMlcaZxV5fn0Z90vnztXBEo84SKjtkCs79iu8XsNfCUX3uJP8noQFnbF fPdyIeWXh5/lzEp6am4Ne5/K7y1QRkCxqkY+LoqnaEm4vpVzIjFwsVkiDm9lto2S dqo25KmaptoSJTMAZMSaEmnJi6FSSeiDTEPYDU8qDJMnG5GsW2tp3zN62cUJE8LW T5Y//ery+6p7c2IjHoQwY308qFEXlaJ7EEWHAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUDKcuzzjFjKh0e6i2luAC0ROEHDgwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0RLY3V6empGaktoMGU2aTJs dUFDMFJPRUhEZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAd3 TYAwDQYJKoZIhvcNAQELBQADggEBAEiRZ0Dl89SVtAkHQjSLOeFac9A8H0NEqrkT Y89uTBgokPt+M0tAcgiuCmOwJmg4vV3/8yv0/iRg+6RuD9VLTdnzAaPJldYt+a3h AUiyFPJ6Rs3LkHj3XKX/dcN0dEQMCvQPsJAODeQtZip4tTDhuUAWVaH70HpdiL8j dcDxC7v4cyjeKgL/pJQy6jaioxEQ+wAKJN2UdhA1qPTgMnyqkHSfOKoY+T8a/20p k9Wg2v1ADX/SERmHKq4DyIoq/FsC4zf7n8hyIuudwsidaqqwGBEasJiDGr+lIIrA d2XCVRuyp8bGKjf2/yWMxDp6KJ2iO0OUOxl2zDM7KcMf09ZISOg= -----END CERTIFICATE-----Generated at Tue Jun 18 13:13:49 2024 by rpki-client on console-fra.rpki-client.org