$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/PIG-ZTFPnw7yc5MNDIdSrxynfoM.roa File: PIG-ZTFPnw7yc5MNDIdSrxynfoM.roa (raw, json) Hash identifier: nW7J33kdJSw2wZw4BSe214tLedTgzoAlgZK3UonlHh8= Subject key identifier: 3C:81:BE:65:31:4F:9F:0E:F2:73:93:0D:0C:87:52:AF:1C:A7:7E:83 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1EA9 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/PIG-ZTFPnw7yc5MNDIdSrxynfoM.roa Signing time: Fri 01 Sep 2023 10:16:19 +0000 ROA not before: Fri 01 Sep 2023 10:16:19 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24164 IP address blocks: 49.158.96.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 10:15:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7849 (0x1ea9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:16:19 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=3C81BE65314F9F0EF273930D0C8752AF1CA77E83 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:b0:c9:af:0c:26:45:10:67:97:4b:53:2a:e5: c0:a6:7a:d6:8a:df:f1:8f:f7:c5:49:85:cd:71:d9: 88:9c:b0:6f:76:be:fa:85:b9:e0:f9:37:39:b9:3d: 9f:72:45:a3:a6:42:25:8f:86:84:95:30:6d:ca:a4: d5:62:ff:34:df:0b:22:d0:5c:1e:3b:4f:e2:b7:00: 38:72:20:18:d9:a8:18:43:4a:f1:5f:b5:73:79:c8: 4a:b5:6b:88:a6:e3:cf:64:f3:59:21:72:63:aa:0f: 05:72:4d:8e:32:16:10:30:1c:b1:64:65:7c:41:9e: b7:76:e9:b0:d0:26:19:b3:7b:d4:70:a9:dc:af:b6: 6b:01:38:22:3c:53:3b:42:f4:b9:6e:10:66:2e:4d: 89:9b:16:83:c8:93:c4:ca:9f:d4:67:05:c2:64:27: 8d:d9:e3:37:44:f6:e0:c4:fe:de:a4:df:d2:d0:5a: 1d:6b:f1:fa:c3:36:a8:7b:3e:ff:4c:3b:e4:30:93: f6:af:3b:4b:d3:25:3d:11:e7:a6:ba:8d:86:b4:66: 14:fd:27:16:9a:89:20:ec:35:a9:d6:d1:31:86:12: 70:5f:7d:c6:99:12:f7:9c:68:82:1f:d8:76:dc:53: 80:1f:4b:f6:14:43:fa:b2:fd:ad:75:e4:cb:42:11: af:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:81:BE:65:31:4F:9F:0E:F2:73:93:0D:0C:87:52:AF:1C:A7:7E:83 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/PIG-ZTFPnw7yc5MNDIdSrxynfoM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.96.0/22 Signature Algorithm: sha256WithRSAEncryption 68:da:6e:e6:e1:89:6d:90:13:10:09:d1:eb:b5:41:dd:d4:48: c4:83:a6:a7:7d:22:ae:e9:ba:cf:02:53:84:3b:ce:e5:68:e3: 75:24:a4:f6:77:28:24:84:5b:9a:8d:8c:93:00:36:ad:d3:e7: 5f:2f:51:9a:45:37:43:4f:c5:7e:b2:ac:de:70:10:93:be:1a: fd:61:02:90:08:a0:24:db:ab:4f:97:49:8e:b3:bf:97:5c:2f: 1d:ed:51:07:40:23:8f:0d:f7:0b:b0:85:b4:75:88:9c:d1:c1: 27:8a:32:86:07:86:bd:fe:a1:53:7c:c5:77:2b:09:58:82:55: e2:ca:92:61:0d:dd:af:10:31:a4:18:16:26:47:5e:6c:de:3e: 27:f0:10:c4:37:09:ad:6a:82:53:d1:8c:20:70:84:a0:f2:74: 02:7d:e9:d1:9f:d5:48:05:17:1e:ec:43:6b:3a:28:03:03:22: 7a:0e:61:4c:fb:d0:a2:e4:b8:a2:2c:e2:5f:4d:b3:c0:a2:9a: 4a:c2:21:2a:d8:98:c5:52:56:75:8d:5f:5c:3a:72:16:f5:f9: 66:ed:e0:ea:a5:04:d1:aa:a3:ce:7c:7f:6a:56:09:f8:e1:a5: 79:61:d0:53:3a:b6:9b:43:e9:da:93:77:bf:fe:e1:c2:0b:1e: bc:74:a7:e5 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHqkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE2MTlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDNDODFCRTY1MzE0RjlG MEVGMjczOTMwRDBDODc1MkFGMUNBNzdFODMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC3sMmvDCZFEGeXS1Mq5cCmetaK3/GP98VJhc1x2YicsG92vvqF ueD5Nzm5PZ9yRaOmQiWPhoSVMG3KpNVi/zTfCyLQXB47T+K3ADhyIBjZqBhDSvFf tXN5yEq1a4im489k81khcmOqDwVyTY4yFhAwHLFkZXxBnrd26bDQJhmze9Rwqdyv tmsBOCI8UztC9LluEGYuTYmbFoPIk8TKn9RnBcJkJ43Z4zdE9uDE/t6k39LQWh1r 8frDNqh7Pv9MO+Qwk/avO0vTJT0R56a6jYa0ZhT9JxaaiSDsNanW0TGGEnBffcaZ EvecaIIf2HbcU4AfS/YUQ/qy/a115MtCEa+3AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUPIG+ZTFPnw7yc5MNDIdSrxynfoMwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1BJRy1aVEZQbnc3eWM1TU5E SWRTcnh5bmZvTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIx nmAwDQYJKoZIhvcNAQELBQADggEBAGjabubhiW2QExAJ0eu1Qd3USMSDpqd9Iq7p us8CU4Q7zuVo43UkpPZ3KCSEW5qNjJMANq3T518vUZpFN0NPxX6yrN5wEJO+Gv1h ApAIoCTbq0+XSY6zv5dcLx3tUQdAI48N9wuwhbR1iJzRwSeKMoYHhr3+oVN8xXcr CViCVeLKkmEN3a8QMaQYFiZHXmzePifwEMQ3Ca1qglPRjCBwhKDydAJ96dGf1UgF Fx7sQ2s6KAMDInoOYUz70KLkuKIs4l9Ns8CimkrCISrYmMVSVnWNX1w6chb1+Wbt 4OqlBNGqo858f2pWCfjhpXlh0FM6tptD6dqTd7/+4cILHrx0p+U= -----END CERTIFICATE-----Generated at Tue Jun 18 13:13:50 2024 by rpki-client on console-fra.rpki-client.org