$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/LSE9-g0ZkKNsKngZX1rRBJUfRCE.roa File: LSE9-g0ZkKNsKngZX1rRBJUfRCE.roa (raw, json) Hash identifier: RosQo9lYylPQql9VlVFranjbIDa4wNUZcILHc5BJHes= Subject key identifier: 2D:21:3D:FA:0D:19:90:A3:6C:2A:78:19:5F:5A:D1:04:95:1F:44:21 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1E2B Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/LSE9-g0ZkKNsKngZX1rRBJUfRCE.roa Signing time: Fri 01 Sep 2023 10:15:45 +0000 ROA not before: Fri 01 Sep 2023 10:15:45 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24164 IP address blocks: 180.218.48.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 10:15:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7723 (0x1e2b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:15:45 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=2D213DFA0D1990A36C2A78195F5AD104951F4421 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:2e:c3:4c:51:d0:54:82:7a:b3:33:b8:e8:e2: 49:6c:cc:ae:95:e7:30:60:7d:f6:10:b8:34:c8:f3: 4b:a0:a6:fc:6e:6e:02:da:95:7e:ff:a1:d4:09:62: 68:30:f9:ea:80:c7:8f:00:4c:37:de:af:70:8b:b0: f4:20:f4:f1:1c:f4:f3:96:71:d7:85:da:a7:76:29: b7:a7:8c:79:3e:c4:11:3b:b9:2a:d8:7c:18:d2:6b: 01:30:f8:e1:f8:43:22:0c:b8:ad:70:4a:0f:8c:e9: 8f:74:8d:19:ba:12:df:be:5d:dc:77:54:50:98:a6: 3c:d3:6e:c7:08:f1:f0:77:f4:f9:56:d1:d0:7a:d0: 05:c6:18:f8:3e:1c:84:f2:50:3c:cd:43:ef:8c:0a: 4f:44:52:bb:6a:89:49:34:d0:26:36:d1:0c:5d:8b: 54:1d:3e:bb:2d:00:89:ed:91:2f:8c:ae:fc:1f:7e: 8b:ff:ce:1d:d6:04:dd:d0:2c:05:4a:bb:6f:af:31: 79:d4:90:a3:f0:0b:fa:d3:44:f4:86:29:9a:bd:71: bb:1d:54:51:18:ff:ae:cc:30:0e:c8:93:5d:fe:42: 4a:61:35:04:34:f9:1d:4e:53:31:56:c6:4f:2b:89: 86:02:77:5a:f9:4e:c3:c2:46:e8:c6:e0:8b:0e:1e: d2:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:21:3D:FA:0D:19:90:A3:6C:2A:78:19:5F:5A:D1:04:95:1F:44:21 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/LSE9-g0ZkKNsKngZX1rRBJUfRCE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.48.0/21 Signature Algorithm: sha256WithRSAEncryption 8e:9d:33:fe:56:9f:0a:fe:2a:ec:82:a4:39:35:be:16:61:a3: 4c:32:b4:f4:8d:ac:07:0f:82:c9:2d:8a:4a:69:e4:57:a7:5a: 2d:aa:ba:0e:59:71:d9:41:58:57:39:f9:67:25:dc:2c:1c:71: 1f:88:e4:cb:85:d7:be:1e:bb:36:c6:43:5b:09:6f:8c:52:b5: 1a:55:fb:aa:1e:78:cf:35:36:6d:03:17:34:f8:ed:61:15:46: 2b:5d:71:ee:98:a6:85:e2:f3:d1:02:9c:83:0f:55:aa:3f:28: 40:4d:90:67:f2:c3:4f:8e:b9:da:5f:17:88:a6:21:3f:c5:b4: 25:82:5b:ad:0c:89:df:11:bc:e9:aa:d2:8a:d2:c7:b0:e1:67: f9:a7:68:5f:1e:df:24:52:96:72:81:a1:12:32:38:d6:4e:ff: 86:fa:94:96:6c:4c:40:2f:9f:95:af:a3:63:f8:c1:86:90:6e: 5d:d8:18:eb:35:47:9e:19:49:2e:0f:6a:fa:8b:cd:dc:82:c2: cf:36:c5:c9:38:36:0a:84:bc:49:d4:1b:8d:84:ef:69:ff:e7: fd:bb:77:af:b2:00:61:62:a8:83:af:3c:c5:ee:68:05:24:47: 7c:28:1e:cf:4c:dd:03:55:e5:df:55:ad:45:51:aa:f6:a6:30: e5:09:60:51 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHiswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE1NDVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDJEMjEzREZBMEQxOTkw QTM2QzJBNzgxOTVGNUFEMTA0OTUxRjQ0MjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0LsNMUdBUgnqzM7jo4klszK6V5zBgffYQuDTI80ugpvxubgLa lX7/odQJYmgw+eqAx48ATDfer3CLsPQg9PEc9POWcdeF2qd2KbenjHk+xBE7uSrY fBjSawEw+OH4QyIMuK1wSg+M6Y90jRm6Et++Xdx3VFCYpjzTbscI8fB39PlW0dB6 0AXGGPg+HITyUDzNQ++MCk9EUrtqiUk00CY20Qxdi1QdPrstAIntkS+Mrvwffov/ zh3WBN3QLAVKu2+vMXnUkKPwC/rTRPSGKZq9cbsdVFEY/67MMA7Ik13+QkphNQQ0 +R1OUzFWxk8riYYCd1r5TsPCRujG4IsOHtLDAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQULSE9+g0ZkKNsKngZX1rRBJUfRCEwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0xTRTktZzBaa0tOc0tuZ1pY MXJSQkpVZlJDRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0 2jAwDQYJKoZIhvcNAQELBQADggEBAI6dM/5Wnwr+KuyCpDk1vhZho0wytPSNrAcP gsktikpp5FenWi2qug5ZcdlBWFc5+Wcl3CwccR+I5MuF174euzbGQ1sJb4xStRpV +6oeeM81Nm0DFzT47WEVRitdce6YpoXi89ECnIMPVao/KEBNkGfyw0+OudpfF4im IT/FtCWCW60Mid8RvOmq0orSx7DhZ/mnaF8e3yRSlnKBoRIyONZO/4b6lJZsTEAv n5Wvo2P4wYaQbl3YGOs1R54ZSS4PavqLzdyCws82xck4NgqEvEnUG42E72n/5/27 d6+yAGFiqIOvPMXuaAUkR3woHs9M3QNV5d9VrUVRqvamMOUJYFE= -----END CERTIFICATE-----Generated at Tue Jun 18 12:54:12 2024 by rpki-client on console-ams.rpki-client.org