$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/JZSTbsca20z1Lq-4j05puMYule0.roa File: JZSTbsca20z1Lq-4j05puMYule0.roa (raw, json) Hash identifier: TWys7eNo9JUQsLu89soisrjyyo7OLvhSU48q/6fPghQ= Subject key identifier: 25:94:93:6E:C7:1A:DB:4C:F5:2E:AF:B8:8F:4E:69:B8:C6:2E:95:ED Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1D9A Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/JZSTbsca20z1Lq-4j05puMYule0.roa Signing time: Fri 01 Sep 2023 10:15:04 +0000 ROA not before: Fri 01 Sep 2023 10:15:04 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24164 IP address blocks: 180.218.64.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 10:15:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7578 (0x1d9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:15:04 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=2594936EC71ADB4CF52EAFB88F4E69B8C62E95ED Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:17:72:80:2c:1a:34:86:a4:4b:f6:4a:7c:a2: ed:3f:b2:c4:06:6c:fc:20:75:69:c4:12:4c:c3:4e: f5:ea:10:d0:d6:b8:32:75:2a:ab:ce:ca:2c:04:49: f4:91:98:c1:9b:3e:93:6d:18:fd:b8:20:67:02:59: 7b:58:03:09:02:9e:1b:c7:da:af:c4:c7:a7:21:d8: 9c:13:93:75:dc:42:66:5f:c4:14:44:b4:9f:e3:7b: 19:a9:ae:51:36:d9:2b:36:f1:70:99:71:3e:f5:23: fa:27:f1:45:a2:2e:6c:94:6e:0c:b5:a5:75:49:9e: 3c:87:1d:91:72:c9:be:b6:c1:c0:37:8d:02:12:a0: 9f:32:6e:9a:84:77:3f:ca:a8:21:99:4f:9d:ee:66: 35:5d:cd:ba:f2:14:4a:8c:dc:da:d9:80:dd:77:f9: b1:33:2c:db:fd:d7:b3:5a:7e:98:35:ce:2b:3d:2e: 90:4c:f9:92:4f:9c:74:1d:4e:8f:51:0a:41:52:b8: 91:92:98:f5:4f:0d:81:cd:5c:ed:0c:b9:11:9d:4b: ac:70:28:d6:da:36:da:ff:ae:e9:c6:6f:6b:ae:40: 99:99:00:19:80:ad:1f:31:cf:1b:56:8c:ee:06:33: 5e:bb:df:f4:7d:50:f7:7b:01:cc:84:84:68:cd:94: 1d:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:94:93:6E:C7:1A:DB:4C:F5:2E:AF:B8:8F:4E:69:B8:C6:2E:95:ED X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/JZSTbsca20z1Lq-4j05puMYule0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.64.0/20 Signature Algorithm: sha256WithRSAEncryption 02:39:f1:8a:0c:a9:b4:5f:d4:2f:81:97:80:7f:05:d2:59:73: 86:67:30:0c:7d:53:16:5c:4b:53:34:55:97:18:f1:e1:73:66: 28:ed:f3:55:a5:d5:1b:d9:ef:d1:67:15:4c:72:c7:65:6d:69: 51:40:33:4d:2c:5b:0c:b6:4d:33:40:6b:6d:e7:75:3a:d2:a7: dd:42:ff:83:ed:42:db:f8:bf:fd:d4:b8:c1:12:50:94:88:81: 27:da:97:2e:1b:73:9b:b3:aa:0e:d8:7f:b5:d0:53:3f:28:7b: af:e6:be:51:89:3a:67:20:fb:4e:9c:05:64:e6:ad:04:93:db: 17:e0:af:16:8e:88:f9:63:26:b9:a3:f9:c4:49:c7:c5:f9:50: 17:e0:8e:57:ec:32:72:62:65:bb:e7:51:65:0e:ae:2f:98:eb: c1:13:b2:20:97:6a:a9:86:39:fe:72:08:2d:ea:85:8b:b5:ff: 8e:03:6d:9b:34:82:6e:97:a5:71:cf:c4:a9:e9:e5:0b:23:d0: ea:2d:e6:67:4c:a8:36:76:bd:5e:ce:71:68:23:7b:a2:f6:0a: 76:9c:0d:20:47:6d:05:9a:e6:08:10:cd:c5:56:ed:de:31:92: f5:95:14:17:63:ae:f8:9b:d8:20:c9:12:10:2b:34:78:23:2d: 18:53:41:7e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHZowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE1MDRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDI1OTQ5MzZFQzcxQURC NENGNTJFQUZCODhGNEU2OUI4QzYyRTk1RUQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8F3KALBo0hqRL9kp8ou0/ssQGbPwgdWnEEkzDTvXqENDWuDJ1 KqvOyiwESfSRmMGbPpNtGP24IGcCWXtYAwkCnhvH2q/Ex6ch2JwTk3XcQmZfxBRE tJ/jexmprlE22Ss28XCZcT71I/on8UWiLmyUbgy1pXVJnjyHHZFyyb62wcA3jQIS oJ8ybpqEdz/KqCGZT53uZjVdzbryFEqM3NrZgN13+bEzLNv917Nafpg1zis9LpBM +ZJPnHQdTo9RCkFSuJGSmPVPDYHNXO0MuRGdS6xwKNbaNtr/runGb2uuQJmZABmA rR8xzxtWjO4GM1673/R9UPd7AcyEhGjNlB0JAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUJZSTbsca20z1Lq+4j05puMYule0wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0paU1Ric2NhMjB6MUxxLTRq MDVwdU1ZdWxlMC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAS0 2kAwDQYJKoZIhvcNAQELBQADggEBAAI58YoMqbRf1C+Bl4B/BdJZc4ZnMAx9UxZc S1M0VZcY8eFzZijt81Wl1RvZ79FnFUxyx2VtaVFAM00sWwy2TTNAa23ndTrSp91C /4PtQtv4v/3UuMESUJSIgSfaly4bc5uzqg7Yf7XQUz8oe6/mvlGJOmcg+06cBWTm rQST2xfgrxaOiPljJrmj+cRJx8X5UBfgjlfsMnJiZbvnUWUOri+Y68ETsiCXaqmG Of5yCC3qhYu1/44DbZs0gm6XpXHPxKnp5Qsj0Oot5mdMqDZ2vV7OcWgje6L2Cnac DSBHbQWa5ggQzcVW7d4xkvWVFBdjrvib2CDJEhArNHgjLRhTQX4= -----END CERTIFICATE-----Generated at Tue Jun 18 13:13:50 2024 by rpki-client on console-fra.rpki-client.org