$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ZwtQeN4k1ALxfNgrssqAR7W6rWE.roa File: ZwtQeN4k1ALxfNgrssqAR7W6rWE.roa (raw, json) Hash identifier: VyjeO/oCFNufKO/svjJdPa8ZeNCymqvkiWjfwZyUb5Y= Subject key identifier: 67:0B:50:78:DE:24:D4:02:F1:7C:D8:2B:B2:CA:80:47:B5:BA:AD:61 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1D68 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ZwtQeN4k1ALxfNgrssqAR7W6rWE.roa Signing time: Fri 01 Sep 2023 10:14:46 +0000 ROA not before: Fri 01 Sep 2023 10:14:46 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24163 IP address blocks: 211.76.52.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 10:15:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7528 (0x1d68) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:14:46 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=670B5078DE24D402F17CD82BB2CA8047B5BAAD61 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:00:4f:c7:36:2c:2e:a9:21:60:95:89:51:ec: b0:a9:e9:f2:bd:3c:7d:71:b6:fc:8e:84:a8:5e:cd: f5:47:45:f3:2e:f2:92:43:68:f6:7f:5c:df:c1:fd: 68:90:2f:67:10:6b:46:0a:2f:38:4f:8d:68:17:82: c4:91:a8:7b:fe:a3:a0:a0:dc:c2:fa:77:bc:ff:1e: ac:0f:b5:f1:42:be:73:38:b1:3f:0a:a7:d7:66:55: f0:ff:2c:33:e6:fb:c4:dd:05:d1:b4:05:06:1b:5c: ff:95:4a:40:eb:63:d7:bf:40:ce:0c:ed:f0:cc:2b: 29:b1:00:f3:21:c9:98:08:f1:8e:bb:7d:07:8a:09: f6:da:50:8e:e9:a4:1c:49:db:e5:43:ea:04:d6:4b: f9:91:7a:fc:e2:89:da:91:5d:29:e3:af:89:b4:f6: 0f:98:74:b9:34:f3:bf:29:9a:fd:d2:95:1f:6c:a3: 5f:4e:6d:ee:01:1e:10:7a:fa:1c:56:4d:e6:7d:05: c5:ca:99:b1:6b:d1:da:7d:23:e1:56:7b:73:b4:51: 3e:ca:a5:d0:40:96:b2:ad:ac:eb:9e:b2:c9:2d:a2: de:e6:29:a6:a2:98:27:b3:de:ac:f6:f8:e2:61:00: a4:37:21:1c:c2:7a:3e:7a:14:09:4f:d4:02:8d:5d: 28:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:0B:50:78:DE:24:D4:02:F1:7C:D8:2B:B2:CA:80:47:B5:BA:AD:61 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/ZwtQeN4k1ALxfNgrssqAR7W6rWE.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.52.0/23 Signature Algorithm: sha256WithRSAEncryption 5d:ef:c4:d5:77:64:04:90:1c:55:fc:da:f1:be:4b:98:b7:2e: 6e:31:4d:f9:92:09:6a:46:6b:be:a7:6d:fb:ca:1f:a3:1c:a6: ab:02:08:ef:58:a9:73:a9:11:70:e7:1c:89:33:44:29:4a:e8: 3b:c5:a3:dd:dd:0c:65:15:81:47:3d:15:5c:6f:57:e9:c6:95: 2d:67:d3:73:a9:c3:51:93:37:cd:1c:10:84:91:10:2d:80:0b: cb:86:ca:65:3a:3b:62:a2:72:af:a7:14:30:c4:38:70:d6:23: 13:91:a4:54:0b:cc:52:2f:6b:ab:03:a2:c0:90:82:77:89:69: 69:14:63:cd:6b:bf:41:c3:cf:18:4a:72:79:e8:21:e2:47:5f: ef:58:a7:55:54:5c:bd:3f:43:79:76:8f:6a:70:22:9b:90:da: e3:fb:ba:7a:35:99:f3:32:0e:20:3e:dd:c8:1e:36:a5:df:a4: 89:02:39:7d:34:fd:7c:17:a6:9f:d2:bd:65:35:c6:ad:fe:dc: 3b:c5:3d:2d:20:6d:57:a1:c6:4a:7a:c0:12:7e:35:9a:e5:ae: 75:95:1f:05:72:df:f5:d4:2d:e1:4a:41:db:c9:a8:d0:bd:42: d3:2b:6d:63:aa:3c:8a:34:95:70:d4:9b:5d:d0:e2:18:b6:50: 7f:ab:4a:11 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHWgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE0NDZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDY3MEI1MDc4REUyNEQ0 MDJGMTdDRDgyQkIyQ0E4MDQ3QjVCQUFENjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDJAE/HNiwuqSFglYlR7LCp6fK9PH1xtvyOhKhezfVHRfMu8pJD aPZ/XN/B/WiQL2cQa0YKLzhPjWgXgsSRqHv+o6Cg3ML6d7z/HqwPtfFCvnM4sT8K p9dmVfD/LDPm+8TdBdG0BQYbXP+VSkDrY9e/QM4M7fDMKymxAPMhyZgI8Y67fQeK CfbaUI7ppBxJ2+VD6gTWS/mRevziidqRXSnjr4m09g+YdLk0878pmv3SlR9so19O be4BHhB6+hxWTeZ9BcXKmbFr0dp9I+FWe3O0UT7KpdBAlrKtrOuessktot7mKaai mCez3qz2+OJhAKQ3IRzCej56FAlP1AKNXSgDAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUZwtQeN4k1ALxfNgrssqAR7W6rWEwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1p3dFFlTjRrMUFMeGZOZ3Jz c3FBUjdXNnJXRS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAHT TDQwDQYJKoZIhvcNAQELBQADggEBAF3vxNV3ZASQHFX82vG+S5i3Lm4xTfmSCWpG a76nbfvKH6McpqsCCO9YqXOpEXDnHIkzRClK6DvFo93dDGUVgUc9FVxvV+nGlS1n 03Opw1GTN80cEISREC2AC8uGymU6O2Kicq+nFDDEOHDWIxORpFQLzFIva6sDosCQ gneJaWkUY81rv0HDzxhKcnnoIeJHX+9Yp1VUXL0/Q3l2j2pwIpuQ2uP7uno1mfMy DiA+3cgeNqXfpIkCOX00/XwXpp/SvWU1xq3+3DvFPS0gbVehxkp6wBJ+NZrlrnWV HwVy3/XULeFKQdvJqNC9QtMrbWOqPIo0lXDUm13Q4hi2UH+rShE= -----END CERTIFICATE-----Generated at Tue Jun 18 12:54:12 2024 by rpki-client on console-ams.rpki-client.org