$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/GCSQs2x3TmF-ulrRy1uXmXO9zLA.roa File: GCSQs2x3TmF-ulrRy1uXmXO9zLA.roa (raw, json) Hash identifier: zmQUOWxpc6h+svKasvZrnEyksCPHS6CUB7sqEPtkG1g= Subject key identifier: 18:24:90:B3:6C:77:4E:61:7E:BA:5A:D1:CB:5B:97:99:73:BD:CC:B0 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1DB8 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/GCSQs2x3TmF-ulrRy1uXmXO9zLA.roa Signing time: Fri 01 Sep 2023 10:15:12 +0000 ROA not before: Fri 01 Sep 2023 10:15:12 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24164 IP address blocks: 180.218.152.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 10:15:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7608 (0x1db8) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:15:12 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=182490B36C774E617EBA5AD1CB5B979973BDCCB0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b0:4a:67:6c:eb:af:2d:3d:f4:ab:13:fc:b1: 5b:29:fc:e0:b7:2d:2a:af:c4:4b:7b:b0:7a:82:6c: 87:7b:06:0a:3b:03:6b:30:0b:bd:40:fd:36:14:60: b1:bc:ac:bc:95:fa:64:ed:97:78:4e:24:26:eb:d9: bc:6b:b8:e0:22:f8:46:99:e3:1c:63:a7:ab:19:df: 1e:e1:d8:af:e1:92:61:04:21:ee:39:b6:77:de:ce: 7e:84:38:c2:2c:7b:7f:f4:f1:f5:ba:d3:48:67:9f: 31:c8:9d:c6:ae:a7:56:d7:15:f6:77:f4:cf:68:06: d3:37:fc:f5:2a:56:50:71:c7:ff:e0:88:39:6c:56: 18:d9:40:4c:d3:27:f2:d7:32:4c:5d:b1:e5:8f:e0: 61:b9:6a:e2:ce:63:c2:d4:b3:75:16:36:88:bc:27: 81:45:34:38:8a:f7:52:f6:70:ad:6c:13:86:c9:03: fa:6f:c0:38:76:85:f6:d6:02:d6:08:b5:8d:3b:9d: f2:14:ee:2c:89:e9:ac:d1:1d:dd:d9:8a:81:b9:80: bf:c7:5d:21:bc:7f:60:59:6d:72:1a:64:bc:37:8a: 51:bb:a9:97:75:a3:56:65:b9:d1:82:32:76:81:9c: f2:4c:c6:b0:ea:2e:73:b4:2d:33:a6:8a:4a:d6:e9: ad:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:24:90:B3:6C:77:4E:61:7E:BA:5A:D1:CB:5B:97:99:73:BD:CC:B0 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/GCSQs2x3TmF-ulrRy1uXmXO9zLA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.152.0/22 Signature Algorithm: sha256WithRSAEncryption 16:e5:62:e3:e8:a1:77:49:be:de:62:fc:c7:85:ef:1d:47:5a: 49:04:df:53:da:17:74:24:6e:86:96:74:bc:1b:7b:3f:d5:4d: 94:19:4b:f8:51:1e:20:55:77:ca:cd:c4:66:42:6a:44:e9:07: fb:20:50:5d:53:71:00:4d:51:f4:e1:97:74:ed:e3:d5:0e:0e: 47:4b:32:ac:de:30:0e:ea:72:25:c5:69:c8:aa:53:9c:ba:7c: f4:cb:08:7e:d3:6f:3a:55:a0:70:25:ab:6d:1a:19:4a:71:4c: d7:5e:16:6a:27:a9:17:ae:b5:e0:82:ef:d8:bf:31:56:e5:d9: 0a:c4:ed:25:60:44:56:d6:7b:a6:21:74:56:01:49:d3:ee:d7: a1:64:3a:dc:6b:4b:1a:e7:18:12:88:89:95:8a:24:1b:55:5e: af:58:b9:a6:50:16:5f:43:12:24:39:f9:d8:f7:5f:02:3d:2f: ba:23:b5:2d:77:f2:73:87:83:ee:b5:c8:57:b4:3a:77:d0:c0: 9c:20:4d:c3:58:70:63:53:18:07:20:14:b6:90:ab:e4:35:c7: db:00:dc:d3:8d:31:6a:40:be:18:e1:e8:68:b5:f9:f4:8e:4c: c6:f8:29:ee:4a:1e:f0:f2:57:53:12:08:62:ce:4c:2e:00:c5: 5d:98:d9:d4 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHbgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE1MTJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDE4MjQ5MEIzNkM3NzRF NjE3RUJBNUFEMUNCNUI5Nzk5NzNCRENDQjAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9sEpnbOuvLT30qxP8sVsp/OC3LSqvxEt7sHqCbId7Bgo7A2sw C71A/TYUYLG8rLyV+mTtl3hOJCbr2bxruOAi+EaZ4xxjp6sZ3x7h2K/hkmEEIe45 tnfezn6EOMIse3/08fW600hnnzHIncaup1bXFfZ39M9oBtM3/PUqVlBxx//giDls VhjZQEzTJ/LXMkxdseWP4GG5auLOY8LUs3UWNoi8J4FFNDiK91L2cK1sE4bJA/pv wDh2hfbWAtYItY07nfIU7iyJ6azRHd3ZioG5gL/HXSG8f2BZbXIaZLw3ilG7qZd1 o1ZludGCMnaBnPJMxrDqLnO0LTOmikrW6a03AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUGCSQs2x3TmF+ulrRy1uXmXO9zLAwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0dDU1FzMngzVG1GLXVsclJ5 MXVYbVhPOXpMQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK0 2pgwDQYJKoZIhvcNAQELBQADggEBABblYuPooXdJvt5i/MeF7x1HWkkE31PaF3Qk boaWdLwbez/VTZQZS/hRHiBVd8rNxGZCakTpB/sgUF1TcQBNUfThl3Tt49UODkdL MqzeMA7qciXFaciqU5y6fPTLCH7TbzpVoHAlq20aGUpxTNdeFmonqReuteCC79i/ MVbl2QrE7SVgRFbWe6YhdFYBSdPu16FkOtxrSxrnGBKIiZWKJBtVXq9YuaZQFl9D EiQ5+dj3XwI9L7ojtS138nOHg+61yFe0OnfQwJwgTcNYcGNTGAcgFLaQq+Q1x9sA 3NONMWpAvhjh6Gi1+fSOTMb4Ke5KHvDyV1MSCGLOTC4AxV2Y2dQ= -----END CERTIFICATE-----Generated at Tue Jun 18 12:54:12 2024 by rpki-client on console-ams.rpki-client.org