$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/WcxpWiUkY3KhjnEDMhEhS9fGxF4.roa File: WcxpWiUkY3KhjnEDMhEhS9fGxF4.roa (raw, json) Hash identifier: /suIE+2ILFvAaFMNYcN291/AKRgnNWHNKn0q429Lp98= Subject key identifier: 59:CC:69:5A:25:24:63:72:A1:8E:71:03:32:11:21:4B:D7:C6:C4:5E Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1D7F Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/WcxpWiUkY3KhjnEDMhEhS9fGxF4.roa Signing time: Fri 01 Sep 2023 10:14:54 +0000 ROA not before: Fri 01 Sep 2023 10:14:54 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24164 IP address blocks: 119.77.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 10:15:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7551 (0x1d7f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:14:54 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=59CC695A25246372A18E71033211214BD7C6C45E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:a3:e1:c9:c1:05:1a:49:a1:b7:d2:07:f8:a4: b3:00:0d:3a:50:5f:02:e7:6c:b0:fd:6b:73:44:50: 9d:af:77:03:d6:70:f9:26:aa:44:b2:57:95:49:39: b3:3a:e9:2f:e3:71:5f:df:d0:d9:be:c6:4b:7c:46: c6:85:a5:6f:bf:c9:78:ee:d9:ec:ec:de:19:b4:42: df:81:b1:73:38:92:9b:8d:e1:23:f5:91:df:e0:84: a6:23:3a:ef:de:4b:1b:dd:07:f7:d9:f1:1d:60:7e: 88:63:98:ad:4f:da:d6:68:f0:7c:0f:61:56:3c:22: 53:02:c4:d2:b3:ec:7c:1a:35:33:67:84:20:5b:cb: 1e:a4:d8:02:06:55:ab:2e:ec:7b:67:36:5d:39:91: 95:61:e3:f5:66:ea:75:59:19:9b:e6:82:52:79:86: 1d:d5:e9:55:f4:15:e3:e2:54:1c:a5:39:ea:0d:67: 3e:ed:2b:0f:e5:4f:f9:0f:05:3d:8d:e0:54:02:1d: 6c:aa:9f:26:d6:9e:51:45:cd:11:51:d9:01:6f:e3: bb:df:2e:da:70:0e:26:36:40:eb:bf:5f:2f:96:84: 8e:cf:eb:b6:28:f3:48:7b:67:01:78:ef:1f:b4:f7: 5a:db:e0:1c:54:fa:ed:ee:c0:66:49:2d:21:fe:86: 31:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:CC:69:5A:25:24:63:72:A1:8E:71:03:32:11:21:4B:D7:C6:C4:5E X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/WcxpWiUkY3KhjnEDMhEhS9fGxF4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 119.77.128.0/17 Signature Algorithm: sha256WithRSAEncryption 41:dd:9e:20:46:34:a9:29:ca:f0:8d:a8:57:5b:7d:96:89:14: 86:bb:b7:e9:97:71:29:46:bd:59:47:ea:f4:76:b3:6b:fe:78: 80:a5:76:97:7b:fc:c4:cd:94:b3:91:4e:14:da:d7:9e:cf:81: 59:6a:6e:45:e1:c3:65:c1:29:53:6d:2e:a8:38:c0:4b:33:cb: 26:c0:61:b7:7b:99:a1:72:92:bc:24:b8:a1:a4:79:fd:60:54: ab:03:ec:5f:2e:eb:fd:59:a3:45:09:fe:2a:51:a2:84:8b:0d: 91:c4:81:e2:c6:b5:64:12:f4:24:23:9e:99:89:0a:56:69:ad: 37:58:0b:c5:44:0e:98:1d:fa:77:aa:12:bb:d2:66:38:12:1c: d3:4c:73:6c:a1:f1:ce:75:f8:d3:23:51:7b:ca:09:cd:7a:d0: 4a:f4:db:b8:12:35:48:84:e6:92:dd:5a:e4:97:61:52:b3:60: f8:3b:50:4c:74:17:7c:39:6d:e2:c4:f6:d6:00:a3:94:a3:68: e2:39:3b:37:ab:b3:07:68:39:50:06:b2:8f:e0:72:1a:1b:84: 01:f5:58:b5:23:2c:63:e7:cc:6b:00:44:20:1f:e3:be:54:9c: 9f:a2:6a:8e:ee:5b:c9:ce:5b:88:bb:f1:af:b5:87:4a:2f:53: 62:e7:01:a6 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHX8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE0NTRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDU5Q0M2OTVBMjUyNDYz NzJBMThFNzEwMzMyMTEyMTRCRDdDNkM0NUUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCfo+HJwQUaSaG30gf4pLMADTpQXwLnbLD9a3NEUJ2vdwPWcPkm qkSyV5VJObM66S/jcV/f0Nm+xkt8RsaFpW+/yXju2ezs3hm0Qt+BsXM4kpuN4SP1 kd/ghKYjOu/eSxvdB/fZ8R1gfohjmK1P2tZo8HwPYVY8IlMCxNKz7HwaNTNnhCBb yx6k2AIGVasu7HtnNl05kZVh4/Vm6nVZGZvmglJ5hh3V6VX0FePiVBylOeoNZz7t Kw/lT/kPBT2N4FQCHWyqnybWnlFFzRFR2QFv47vfLtpwDiY2QOu/Xy+WhI7P67Yo 80h7ZwF47x+091rb4BxU+u3uwGZJLSH+hjFBAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUWcxpWiUkY3KhjnEDMhEhS9fGxF4wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1djeHBXaVVrWTNLaGpuRURN aEVoUzlmR3hGNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAd3 TYAwDQYJKoZIhvcNAQELBQADggEBAEHdniBGNKkpyvCNqFdbfZaJFIa7t+mXcSlG vVlH6vR2s2v+eICldpd7/MTNlLORThTa157PgVlqbkXhw2XBKVNtLqg4wEszyybA Ybd7maFykrwkuKGkef1gVKsD7F8u6/1Zo0UJ/ipRooSLDZHEgeLGtWQS9CQjnpmJ ClZprTdYC8VEDpgd+neqErvSZjgSHNNMc2yh8c51+NMjUXvKCc160Er027gSNUiE 5pLdWuSXYVKzYPg7UEx0F3w5beLE9tYAo5SjaOI5OzerswdoOVAGso/gchobhAH1 WLUjLGPnzGsARCAf475UnJ+iao7uW8nOW4i78a+1h0ovU2LnAaY= -----END CERTIFICATE-----Generated at Tue Jun 18 12:54:12 2024 by rpki-client on console-ams.rpki-client.org