$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/OG2rJKqpbDyRsG_yA6q9cX_2zNo.roa File: OG2rJKqpbDyRsG_yA6q9cX_2zNo.roa (raw, json) Hash identifier: p1gmkZiffOOXfoooVSGbNTBAaO7B+VpOph5FFqBHIrE= Subject key identifier: 38:6D:AB:24:AA:A9:6C:3C:91:B0:6F:F2:03:AA:BD:71:7F:F6:CC:DA Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1DBD Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/OG2rJKqpbDyRsG_yA6q9cX_2zNo.roa Signing time: Fri 01 Sep 2023 10:15:13 +0000 ROA not before: Fri 01 Sep 2023 10:15:13 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24164 IP address blocks: 122.100.126.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 10:15:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7613 (0x1dbd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:15:13 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=386DAB24AAA96C3C91B06FF203AABD717FF6CCDA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f8:2d:22:be:03:5d:18:3d:2a:67:a4:e0:68: cf:ea:5d:88:41:dd:91:8b:d2:c2:52:38:a8:63:b1: f4:b0:2a:1b:1b:1f:27:4f:ed:86:86:da:93:ba:1b: 12:25:38:f7:c9:02:99:e0:ed:eb:91:46:4a:21:67: 31:3c:42:7e:14:0d:2e:51:1d:78:e4:7e:3d:a1:cf: 0f:ae:66:f3:04:07:e7:ce:92:75:ea:09:fa:4d:80: 18:60:99:01:f5:3a:07:24:f1:7f:85:c2:98:de:4a: 3c:86:7b:cb:5b:00:5a:31:e0:ef:5d:71:cf:3a:13: 75:f7:3a:61:f3:2e:84:e0:9b:51:84:9a:f8:17:eb: 4a:36:a2:cc:04:ee:cb:e2:57:94:ac:f2:2d:2a:ea: f7:84:f0:c1:f5:fa:0f:4b:87:2b:79:ac:bd:a3:80: 3e:15:e0:77:95:b8:dc:0d:ac:12:2f:1b:bd:b4:06: 3c:26:20:75:8d:49:df:e3:61:97:99:40:88:ff:22: d7:13:c7:da:23:b0:53:a6:22:59:82:fd:38:a2:b8: 2f:10:10:0d:c2:bb:f5:48:22:70:5c:e4:42:ca:25: c3:77:ba:9e:cb:7d:06:a1:d0:fb:6e:8b:15:43:7b: 4d:04:be:d7:1b:b8:14:b6:68:5a:3d:da:1c:49:4b: 70:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:6D:AB:24:AA:A9:6C:3C:91:B0:6F:F2:03:AA:BD:71:7F:F6:CC:DA X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/OG2rJKqpbDyRsG_yA6q9cX_2zNo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.100.126.0/23 Signature Algorithm: sha256WithRSAEncryption 69:96:e1:0f:95:82:69:00:63:01:e4:d2:bc:b9:26:30:27:b7: d6:e3:96:17:eb:fb:01:53:63:cc:76:9d:61:ef:f5:f1:4e:ec: 0b:fa:60:45:d0:1c:d5:f7:28:6a:20:67:61:51:b8:e1:33:4e: 51:54:f0:0f:9e:7e:71:3e:64:c5:af:8a:ec:5c:28:1d:4c:8a: dd:7c:cb:7a:40:51:d4:bf:64:43:95:71:00:5d:c8:b6:58:ea: 71:2d:45:54:d5:2f:23:08:eb:35:2e:ea:83:9c:08:5f:73:5f: 66:84:b5:e8:e0:02:39:6f:a9:e9:ac:2f:6d:58:15:36:da:f0: 3d:66:4f:71:01:8d:41:1a:b6:0d:bd:26:fa:3f:70:63:74:f9: f5:e3:b6:b1:28:bc:d7:06:f2:46:02:16:be:70:eb:d7:bb:d4: ae:da:cc:05:1f:33:4a:80:2f:64:4d:15:7d:dc:08:29:0c:3b: ba:4c:a8:2d:b6:6f:f7:06:9c:91:8d:c6:f1:8f:de:7c:78:df: 91:d9:85:e8:98:d0:44:1f:09:cc:02:79:6b:89:56:a9:8a:9a: 9d:6a:34:d0:fd:1c:62:fc:59:c1:36:1e:62:14:24:9f:6a:e7: eb:8a:e4:68:32:fa:26:b6:60:01:82:a8:3d:da:54:61:97:20: 84:dd:b9:84 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHb0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE1MTNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDM4NkRBQjI0QUFBOTZD M0M5MUIwNkZGMjAzQUFCRDcxN0ZGNkNDREEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCx+C0ivgNdGD0qZ6TgaM/qXYhB3ZGL0sJSOKhjsfSwKhsbHydP 7YaG2pO6GxIlOPfJApng7euRRkohZzE8Qn4UDS5RHXjkfj2hzw+uZvMEB+fOknXq CfpNgBhgmQH1Ogck8X+FwpjeSjyGe8tbAFox4O9dcc86E3X3OmHzLoTgm1GEmvgX 60o2oswE7sviV5Ss8i0q6veE8MH1+g9Lhyt5rL2jgD4V4HeVuNwNrBIvG720Bjwm IHWNSd/jYZeZQIj/ItcTx9ojsFOmIlmC/TiiuC8QEA3Cu/VIInBc5ELKJcN3up7L fQah0PtuixVDe00EvtcbuBS2aFo92hxJS3B/AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUOG2rJKqpbDyRsG/yA6q9cX/2zNowHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL09HMnJKS3FwYkR5UnNHX3lB NnE5Y1hfMnpOby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAF6 ZH4wDQYJKoZIhvcNAQELBQADggEBAGmW4Q+VgmkAYwHk0ry5JjAnt9bjlhfr+wFT Y8x2nWHv9fFO7Av6YEXQHNX3KGogZ2FRuOEzTlFU8A+efnE+ZMWviuxcKB1Mit18 y3pAUdS/ZEOVcQBdyLZY6nEtRVTVLyMI6zUu6oOcCF9zX2aEtejgAjlvqemsL21Y FTba8D1mT3EBjUEatg29Jvo/cGN0+fXjtrEovNcG8kYCFr5w69e71K7azAUfM0qA L2RNFX3cCCkMO7pMqC22b/cGnJGNxvGP3nx435HZheiY0EQfCcwCeWuJVqmKmp1q NND9HGL8WcE2HmIUJJ9q5+uK5Ggy+ia2YAGCqD3aVGGXIITduYQ= -----END CERTIFICATE-----Generated at Tue Jun 18 12:54:12 2024 by rpki-client on console-ams.rpki-client.org