$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ITaSdKleHITlG1Vy3qT3cH2pTgY.roa File: ITaSdKleHITlG1Vy3qT3cH2pTgY.roa (raw, json) Hash identifier: ard98FpQwy0NSGmHWms3+ceTfGFQuiy1eTqUpjIr5b8= Subject key identifier: 21:36:92:74:A9:5E:1C:84:E5:1B:55:72:DE:A4:F7:70:7D:A9:4E:06 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1D9E Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ITaSdKleHITlG1Vy3qT3cH2pTgY.roa Signing time: Fri 01 Sep 2023 10:15:05 +0000 ROA not before: Fri 01 Sep 2023 10:15:05 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24164 IP address blocks: 180.218.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 10:15:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7582 (0x1d9e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:15:05 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=21369274A95E1C84E51B5572DEA4F7707DA94E06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ce:cb:6d:92:96:89:27:8a:78:ab:cd:c6:b8: 07:6c:2a:1f:fc:02:18:37:d9:23:4c:06:2a:3b:a2: b6:d4:72:39:b8:f2:1c:bc:f0:48:9b:1f:9b:e6:e9: 01:a3:22:ad:f0:89:9a:c6:9c:53:ac:f2:88:03:85: 02:90:c5:4e:cb:53:65:d7:27:59:fb:75:2c:b4:71: e7:20:bd:73:ce:c6:f2:f2:00:f3:07:f4:9d:42:95: 2e:bf:e8:8e:78:f6:92:05:56:47:9e:37:16:bc:17: 00:62:e9:8a:cc:fa:ea:45:70:e2:6e:70:49:74:ce: 99:db:55:9f:22:f6:26:31:f2:7f:6a:af:ea:30:d7: ed:42:cf:7d:02:2a:78:f3:c4:17:ec:f5:5e:c7:f6: c2:22:85:ca:03:95:06:99:52:c8:91:b2:4f:55:3d: c6:31:ab:d1:4e:27:de:eb:c7:69:15:40:80:d5:2a: 74:49:b7:91:73:4c:3f:08:f3:bf:a5:fd:c6:ac:04: 73:aa:29:b7:20:45:90:b5:16:b1:b6:4e:e4:15:0e: 12:a3:61:2f:5d:ac:ea:dd:8d:8b:ce:c2:1c:3b:03: 1d:cb:92:10:3c:af:09:26:ab:50:ee:c9:d0:65:cb: 94:5c:07:79:2b:18:20:91:43:f1:df:e6:a9:ff:ef: a8:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:36:92:74:A9:5E:1C:84:E5:1B:55:72:DE:A4:F7:70:7D:A9:4E:06 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ITaSdKleHITlG1Vy3qT3cH2pTgY.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.134.0/24 Signature Algorithm: sha256WithRSAEncryption 65:7f:3d:f5:15:67:7c:2d:e2:88:47:43:16:c2:98:ee:0e:bc: fe:3f:73:3d:84:01:d3:14:9e:60:62:00:43:b0:c7:13:50:57: 55:ef:53:07:2e:53:5d:83:6a:4b:fa:fb:0e:8c:1d:c6:72:90: 44:35:e9:e6:ce:da:9e:64:7c:b9:c9:e4:e3:7c:f3:5f:cf:65: 2b:1a:b2:bd:ea:48:98:e1:76:28:da:86:d7:24:f4:4f:42:35: 0c:d0:f1:da:71:46:a7:cd:e3:d6:ee:f9:b2:00:e7:9c:1d:e3: 51:69:92:72:2e:82:be:5d:d2:2b:f8:72:40:74:74:9f:a5:67: 3f:ff:f5:61:a7:d4:de:6f:59:37:ef:c9:a9:78:43:06:6c:c0: 6e:4e:72:3c:26:37:aa:90:bd:9e:99:61:52:06:48:0d:07:1b: 07:a9:d4:0c:13:50:03:8a:cb:28:41:39:30:9e:fa:e5:2a:7a: 64:05:f6:1d:f8:1c:07:4a:da:aa:72:ad:96:af:6a:55:23:83: 31:4c:72:e4:34:54:eb:40:6f:63:8d:6a:ba:5a:76:ab:d2:38: c9:2c:e2:c0:5e:5d:1d:9b:87:81:37:15:ca:6d:ce:7b:aa:0a: a9:38:e2:67:bc:92:05:e7:8b:21:c4:f6:ec:f2:41:29:41:fe: e4:5f:ec:14 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHZ4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE1MDVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDIxMzY5Mjc0QTk1RTFD ODRFNTFCNTU3MkRFQTRGNzcwN0RBOTRFMDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHzsttkpaJJ4p4q83GuAdsKh/8Ahg32SNMBio7orbUcjm48hy8 8EibH5vm6QGjIq3wiZrGnFOs8ogDhQKQxU7LU2XXJ1n7dSy0cecgvXPOxvLyAPMH 9J1ClS6/6I549pIFVkeeNxa8FwBi6YrM+upFcOJucEl0zpnbVZ8i9iYx8n9qr+ow 1+1Cz30CKnjzxBfs9V7H9sIihcoDlQaZUsiRsk9VPcYxq9FOJ97rx2kVQIDVKnRJ t5FzTD8I87+l/casBHOqKbcgRZC1FrG2TuQVDhKjYS9drOrdjYvOwhw7Ax3LkhA8 rwkmq1DuydBly5RcB3krGCCRQ/Hf5qn/76g7AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUITaSdKleHITlG1Vy3qT3cH2pTgYwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0lUYVNkS2xlSElUbEcxVnkz cVQzY0gycFRnWS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAC0 2oYwDQYJKoZIhvcNAQELBQADggEBAGV/PfUVZ3wt4ohHQxbCmO4OvP4/cz2EAdMU nmBiAEOwxxNQV1XvUwcuU12Dakv6+w6MHcZykEQ16ebO2p5kfLnJ5ON881/PZSsa sr3qSJjhdijahtck9E9CNQzQ8dpxRqfN49bu+bIA55wd41FpknIugr5d0iv4ckB0 dJ+lZz//9WGn1N5vWTfvyal4QwZswG5OcjwmN6qQvZ6ZYVIGSA0HGwep1AwTUAOK yyhBOTCe+uUqemQF9h34HAdK2qpyrZavalUjgzFMcuQ0VOtAb2ONarpadqvSOMks 4sBeXR2bh4E3FcptznuqCqk44me8kgXniyHE9uzyQSlB/uRf7BQ= -----END CERTIFICATE-----Generated at Tue Jun 18 12:54:12 2024 by rpki-client on console-ams.rpki-client.org