$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/emwcFxOVpzUUQWkMcDRMLzG3A4c.roa File: emwcFxOVpzUUQWkMcDRMLzG3A4c.roa (raw, json) Hash identifier: EIlaajluWrVhA9fBrfB5z6DncFGYlakpPtY8sibSjEo= Subject key identifier: 7A:6C:1C:17:13:95:A7:35:14:41:69:0C:70:34:4C:2F:31:B7:03:87 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1D8C Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/emwcFxOVpzUUQWkMcDRMLzG3A4c.roa Signing time: Fri 01 Sep 2023 10:14:59 +0000 ROA not before: Fri 01 Sep 2023 10:14:59 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24164 IP address blocks: 211.76.64.0/21 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 10:15:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7564 (0x1d8c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:14:59 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=7A6C1C171395A7351441690C70344C2F31B70387 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:15:52:fb:75:60:0f:53:f5:f6:40:1e:11:0c: 14:b8:1f:aa:4d:63:e0:a7:d3:e3:9f:26:dd:7a:66: b5:5d:9d:33:f4:5c:56:a3:56:5e:db:00:b4:cb:38: 1c:66:61:34:1f:0d:f1:82:24:00:eb:c7:04:46:5f: 30:01:11:a8:ad:66:92:c1:fe:f9:96:46:43:be:1a: 76:f9:da:ce:48:de:73:87:b1:f6:14:d9:50:0f:73: b5:58:1c:f8:b2:d3:a7:43:98:bc:cf:4a:ca:4a:50: 0c:0f:aa:23:fb:3f:3c:bb:98:a1:45:e5:bb:af:39: e1:eb:06:87:45:c5:f1:77:b8:f1:9b:05:77:b7:29: 83:65:13:97:87:79:93:c5:59:2e:8c:b8:05:5b:c5: 2b:ec:68:8e:bb:78:59:55:da:d5:96:d6:00:78:07: af:19:a6:ba:fe:00:7c:19:df:f3:b8:89:c2:d2:93: 8f:d8:05:54:9a:d2:9a:e8:2c:c6:c4:4c:db:1c:ae: a2:bd:6a:9c:88:aa:36:c2:6f:96:50:ce:a3:89:0d: 77:a2:6d:2b:40:c8:78:ac:ec:cb:3b:47:b6:e5:3f: ca:06:95:a6:92:90:9c:e5:46:8c:fa:5c:d4:01:10: 43:de:c1:2f:c9:d2:f6:5d:1c:bd:28:62:bd:fd:86: 43:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:6C:1C:17:13:95:A7:35:14:41:69:0C:70:34:4C:2F:31:B7:03:87 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/emwcFxOVpzUUQWkMcDRMLzG3A4c.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.64.0/21 Signature Algorithm: sha256WithRSAEncryption 88:1e:66:69:93:0c:66:af:c2:37:eb:99:42:74:67:c6:b3:83: fd:16:bf:49:a7:71:c2:44:52:04:fd:9e:4c:52:04:08:fc:0f: 1c:87:9d:1a:21:fa:c5:e9:fb:89:1b:a7:64:e0:7d:8c:34:07: 72:82:54:3b:c5:61:0c:56:d1:c7:d4:08:b2:94:05:1d:4c:ec: 4c:9c:b9:cc:33:84:68:a0:45:de:ca:80:89:3d:55:88:2d:27: 6d:1f:17:18:d8:b1:15:c1:1e:85:3d:75:67:11:4c:bd:8e:3a: e5:7a:65:3c:82:22:68:cb:8b:29:77:22:cb:94:82:01:95:75: a0:25:ce:d6:fb:9e:e0:3a:10:3f:9a:ba:b3:20:77:2b:89:2c: bc:41:f3:a9:99:ca:07:7b:7a:35:4d:ed:b4:01:fc:79:79:21: a5:b9:4d:31:60:a4:b9:d7:b5:90:e0:61:c7:02:dc:37:f5:d8: 8a:69:f4:94:b4:9a:05:10:d8:05:0f:55:cd:70:77:aa:80:8d: f7:45:89:fc:67:72:1a:45:77:55:18:c2:2b:0f:65:c3:a7:c4: 4d:8c:e6:06:47:d5:a9:c6:0b:ed:12:bd:b0:e3:e4:2e:10:cc: 26:95:b9:3f:f8:e4:43:19:0c:ab:f5:e4:08:a2:49:b5:9c:35: a1:d6:c6:bd -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHYwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE0NTlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDdBNkMxQzE3MTM5NUE3 MzUxNDQxNjkwQzcwMzQ0QzJGMzFCNzAzODcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDFFVL7dWAPU/X2QB4RDBS4H6pNY+Cn0+OfJt16ZrVdnTP0XFaj Vl7bALTLOBxmYTQfDfGCJADrxwRGXzABEaitZpLB/vmWRkO+Gnb52s5I3nOHsfYU 2VAPc7VYHPiy06dDmLzPSspKUAwPqiP7Pzy7mKFF5buvOeHrBodFxfF3uPGbBXe3 KYNlE5eHeZPFWS6MuAVbxSvsaI67eFlV2tWW1gB4B68Zprr+AHwZ3/O4icLSk4/Y BVSa0proLMbETNscrqK9apyIqjbCb5ZQzqOJDXeibStAyHis7Ms7R7blP8oGlaaS kJzlRoz6XNQBEEPewS/J0vZdHL0oYr39hkNNAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUemwcFxOVpzUUQWkMcDRMLzG3A4cwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2Vtd2NGeE9WcHpVVVFXa01j RFJNTHpHM0E0Yy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAPT TEAwDQYJKoZIhvcNAQELBQADggEBAIgeZmmTDGavwjfrmUJ0Z8azg/0Wv0mnccJE UgT9nkxSBAj8DxyHnRoh+sXp+4kbp2TgfYw0B3KCVDvFYQxW0cfUCLKUBR1M7Eyc ucwzhGigRd7KgIk9VYgtJ20fFxjYsRXBHoU9dWcRTL2OOuV6ZTyCImjLiyl3IsuU ggGVdaAlztb7nuA6ED+aurMgdyuJLLxB86mZygd7ejVN7bQB/Hl5IaW5TTFgpLnX tZDgYccC3Df12Ipp9JS0mgUQ2AUPVc1wd6qAjfdFifxnchpFd1UYwisPZcOnxE2M 5gZH1anGC+0SvbDj5C4QzCaVuT/45EMZDKv15AiiSbWcNaHWxr0= -----END CERTIFICATE-----Generated at Tue Jun 18 13:13:50 2024 by rpki-client on console-fra.rpki-client.org