$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/TBVrB9gL_ZbSaE9G9VRFRMHPxGg.roa File: TBVrB9gL_ZbSaE9G9VRFRMHPxGg.roa (raw, json) Hash identifier: cq4Zm99gzM0FkospmDxWm4VEQO5Q5tuLFJprheZIwTg= Subject key identifier: 4C:15:6B:07:D8:0B:FD:96:D2:68:4F:46:F5:54:45:44:C1:CF:C4:68 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1E57 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/TBVrB9gL_ZbSaE9G9VRFRMHPxGg.roa Signing time: Fri 01 Sep 2023 10:15:54 +0000 ROA not before: Fri 01 Sep 2023 10:15:54 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24164 IP address blocks: 122.254.40.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 10:15:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7767 (0x1e57) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:15:54 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=4C156B07D80BFD96D2684F46F5544544C1CFC468 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:8d:b7:98:1d:9b:7e:28:85:24:97:46:f8:75: 38:17:d7:c4:e9:20:ca:85:a4:da:23:33:07:38:22: 1a:19:0e:c2:c4:81:f0:91:8b:3d:94:bb:67:90:23: 62:0d:ac:34:1a:0a:7f:2f:37:33:86:7a:6c:e9:30: 70:ac:5b:9e:64:eb:94:6d:2d:b0:c3:93:c0:fe:f1: 14:cf:5c:81:b8:a6:9c:1a:26:61:cc:f6:c9:9b:18: 6e:33:77:00:87:57:f6:6a:92:80:2e:b5:d2:91:9d: 9d:54:f7:1a:34:50:72:87:ab:b1:bf:e6:52:3b:f4: d4:05:52:fd:17:17:e0:c0:fe:bf:51:15:5c:97:6d: b1:90:64:2d:47:14:29:3e:fe:79:27:16:92:74:e7: b9:04:af:b4:c9:11:75:e7:4a:5c:db:11:2a:9e:93: 3b:57:95:f8:ec:57:08:65:ed:70:f3:0b:d4:4c:0e: b0:01:96:64:7e:aa:7b:ad:c2:56:1c:01:88:7c:f1: 3d:1e:01:c6:67:29:8c:cd:83:69:ba:14:91:64:59: 48:5d:66:61:46:1a:ec:e1:b9:b5:5b:04:ff:16:19: 48:64:64:e2:8e:58:42:b7:94:e3:d8:d4:ee:ed:ea: 61:0a:e4:30:b4:89:e5:e2:06:b1:0d:f8:f0:e1:38: 0a:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:15:6B:07:D8:0B:FD:96:D2:68:4F:46:F5:54:45:44:C1:CF:C4:68 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/TBVrB9gL_ZbSaE9G9VRFRMHPxGg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.254.40.0/21 Signature Algorithm: sha256WithRSAEncryption 95:8b:93:82:29:17:6b:06:e1:f5:9a:b9:ef:73:4d:4e:53:85: a8:da:5f:f9:2b:94:d6:b3:48:31:f4:89:37:13:6a:fa:e7:0d: 32:b6:72:6f:19:f5:69:63:ba:86:27:bc:e2:6f:85:de:9e:9f: f4:46:d8:dc:ec:23:1a:2b:94:79:04:0e:50:bc:c6:7d:48:b6: ad:30:8c:2d:30:93:59:f5:e4:de:50:5d:68:c9:c6:3b:98:70: 70:08:5c:c7:2a:5c:4d:2a:82:d9:46:56:1a:51:4b:24:ba:3f: 78:55:ed:b2:1b:40:f0:83:80:87:8c:2b:12:73:cc:fb:6e:33: 6e:fe:fd:d0:53:86:4e:ec:67:e1:f5:9a:64:dc:c1:c3:2a:b1: 5d:ed:fd:37:1b:2e:82:68:14:ee:7d:9c:10:29:32:88:8a:28: 9d:67:3b:cf:53:a8:95:d2:fa:5e:4c:6a:7c:80:40:b7:d7:b4: 19:7c:44:86:bf:3b:a6:92:ca:5e:70:09:53:ae:69:0d:e9:26: 6b:c5:68:a4:95:47:7a:99:94:71:0a:f3:ba:0f:df:9c:d1:6c: 17:6b:78:b9:7b:db:62:8d:02:18:62:82:00:5a:68:a1:ca:56: 20:9a:69:af:cf:50:48:5e:37:56:f3:30:12:bb:b6:9c:42:37: 05:6d:03:36 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHlcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE1NTRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDRDMTU2QjA3RDgwQkZE OTZEMjY4NEY0NkY1NTQ0NTQ0QzFDRkM0NjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCojbeYHZt+KIUkl0b4dTgX18TpIMqFpNojMwc4IhoZDsLEgfCR iz2Uu2eQI2INrDQaCn8vNzOGemzpMHCsW55k65RtLbDDk8D+8RTPXIG4ppwaJmHM 9smbGG4zdwCHV/ZqkoAutdKRnZ1U9xo0UHKHq7G/5lI79NQFUv0XF+DA/r9RFVyX bbGQZC1HFCk+/nknFpJ057kEr7TJEXXnSlzbESqekztXlfjsVwhl7XDzC9RMDrAB lmR+qnutwlYcAYh88T0eAcZnKYzNg2m6FJFkWUhdZmFGGuzhubVbBP8WGUhkZOKO WEK3lOPY1O7t6mEK5DC0ieXiBrEN+PDhOArHAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUTBVrB9gL/ZbSaE9G9VRFRMHPxGgwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1RCVnJCOWdMX1piU2FFOUc5 VlJGUk1IUHhHZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN6 /igwDQYJKoZIhvcNAQELBQADggEBAJWLk4IpF2sG4fWaue9zTU5ThajaX/krlNaz SDH0iTcTavrnDTK2cm8Z9WljuoYnvOJvhd6en/RG2NzsIxorlHkEDlC8xn1Itq0w jC0wk1n15N5QXWjJxjuYcHAIXMcqXE0qgtlGVhpRSyS6P3hV7bIbQPCDgIeMKxJz zPtuM27+/dBThk7sZ+H1mmTcwcMqsV3t/TcbLoJoFO59nBApMoiKKJ1nO89TqJXS +l5ManyAQLfXtBl8RIa/O6aSyl5wCVOuaQ3pJmvFaKSVR3qZlHEK87oP35zRbBdr eLl722KNAhhiggBaaKHKViCaaa/PUEheN1bzMBK7tpxCNwVtAzY= -----END CERTIFICATE-----Generated at Tue Jun 18 13:13:50 2024 by rpki-client on console-fra.rpki-client.org