$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/fyDGn4qN0Kz5KKQQ1aJV-GI-YXM.roa File: fyDGn4qN0Kz5KKQQ1aJV-GI-YXM.roa (raw, json) Hash identifier: gq1ZGuBmOtFmLp00VHln3+uHMnv20RHcsN/3rZnB7Aw= Subject key identifier: 7F:20:C6:9F:8A:8D:D0:AC:F9:28:A4:10:D5:A2:55:F8:62:3E:61:73 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1E53 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/fyDGn4qN0Kz5KKQQ1aJV-GI-YXM.roa Signing time: Fri 01 Sep 2023 10:15:53 +0000 ROA not before: Fri 01 Sep 2023 10:15:53 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24164 IP address blocks: 49.159.240.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 10:15:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7763 (0x1e53) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:15:53 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=7F20C69F8A8DD0ACF928A410D5A255F8623E6173 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:87:6e:6d:b4:09:c7:d9:b5:21:05:36:e0:e5: 37:bb:99:c8:fc:d2:5b:26:53:ea:7a:e7:1b:ed:e0: 6c:e8:dd:e6:72:31:fe:40:78:24:2e:b2:2b:8e:28: f4:15:19:3f:3f:c3:b4:1a:84:0c:38:fd:0f:1c:9d: 1f:03:36:ed:22:c8:94:0c:15:d8:13:e2:ae:1a:4c: 71:1b:49:05:ce:6a:e4:f3:5e:f2:f3:bc:69:2a:78: 7a:b4:db:58:a8:05:23:ac:30:10:c7:2d:c6:98:e6: d2:5f:cd:59:9e:c3:e4:57:62:c3:1e:f2:4c:e5:d8: b6:3e:17:31:aa:f5:39:df:97:1f:6c:ae:16:79:ca: d7:42:9c:f6:65:7f:48:1a:66:b7:60:f3:0c:e2:72: 83:d0:2e:54:56:40:c0:73:2a:38:11:f1:c6:ec:2d: 67:4b:81:b4:dd:45:1e:c5:2c:bc:a3:0d:a1:59:de: d2:c2:e1:9b:15:87:df:65:f4:d1:eb:ad:13:79:1e: 5c:c0:8b:ed:bb:6f:db:4d:10:e5:45:82:ad:04:2e: fa:03:4c:88:c3:05:95:92:d2:d2:4a:9b:4f:01:26: 54:d6:08:ef:78:8a:c7:53:a6:45:08:b5:9e:6e:aa: f0:75:19:33:4d:15:01:9d:8b:59:f5:31:da:18:9e: b3:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:20:C6:9F:8A:8D:D0:AC:F9:28:A4:10:D5:A2:55:F8:62:3E:61:73 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/fyDGn4qN0Kz5KKQQ1aJV-GI-YXM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.240.0/21 Signature Algorithm: sha256WithRSAEncryption 5e:9a:55:1e:1a:10:0c:53:35:39:64:08:c1:d4:1d:a9:36:e4: 85:30:4c:c7:ee:e4:64:ca:73:a2:f0:50:ac:da:70:f8:18:e6: 63:a3:87:98:b7:9c:7b:09:ad:94:34:f1:f4:39:ee:33:78:e4: d3:9b:dd:92:9f:3c:53:04:c4:30:f6:42:95:6a:91:11:e0:d9: f4:71:18:a4:50:bb:c2:ff:6e:87:05:f6:9f:8d:5b:f4:51:4d: ae:e1:c0:f0:ff:45:f3:b6:72:80:fc:c5:5a:80:11:8e:7a:3d: 46:0f:1a:8b:bb:6f:93:9a:6e:3f:b0:37:5c:aa:dc:f5:6e:9d: a8:5c:52:96:9f:9b:98:c9:1a:7e:4b:8b:20:aa:c0:21:fa:32: c9:ab:a1:d6:f4:6d:ad:b1:0f:a1:3d:af:4e:8a:58:06:57:8b: 5d:8a:71:eb:5c:14:b6:02:06:d7:c2:87:d8:72:5f:81:73:11: 19:03:c5:d8:4a:eb:25:7d:e2:8a:45:e3:08:ec:3d:cd:db:bd: 84:90:f0:b1:8f:7e:80:fc:62:c3:52:33:71:74:aa:90:54:b8: 35:8b:50:05:1c:1f:af:9e:97:36:ce:99:40:60:83:ca:8a:03: 11:78:39:a9:a0:8c:f9:03:37:12:57:fa:d4:ce:ee:6b:75:5a: b8:ca:9e:36 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHlMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE1NTNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDdGMjBDNjlGOEE4REQw QUNGOTI4QTQxMEQ1QTI1NUY4NjIzRTYxNzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCgh25ttAnH2bUhBTbg5Te7mcj80lsmU+p65xvt4Gzo3eZyMf5A eCQusiuOKPQVGT8/w7QahAw4/Q8cnR8DNu0iyJQMFdgT4q4aTHEbSQXOauTzXvLz vGkqeHq021ioBSOsMBDHLcaY5tJfzVmew+RXYsMe8kzl2LY+FzGq9Tnflx9srhZ5 ytdCnPZlf0gaZrdg8wzicoPQLlRWQMBzKjgR8cbsLWdLgbTdRR7FLLyjDaFZ3tLC 4ZsVh99l9NHrrRN5HlzAi+27b9tNEOVFgq0ELvoDTIjDBZWS0tJKm08BJlTWCO94 isdTpkUItZ5uqvB1GTNNFQGdi1n1MdoYnrPdAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUfyDGn4qN0Kz5KKQQ1aJV+GI+YXMwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2Z5REduNHFOMEt6NUtLUVEx YUpWLUdJLVlYTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx n/AwDQYJKoZIhvcNAQELBQADggEBAF6aVR4aEAxTNTlkCMHUHak25IUwTMfu5GTK c6LwUKzacPgY5mOjh5i3nHsJrZQ08fQ57jN45NOb3ZKfPFMExDD2QpVqkRHg2fRx GKRQu8L/bocF9p+NW/RRTa7hwPD/RfO2coD8xVqAEY56PUYPGou7b5Oabj+wN1yq 3PVunahcUpafm5jJGn5LiyCqwCH6Msmrodb0ba2xD6E9r06KWAZXi12KcetcFLYC BtfCh9hyX4FzERkDxdhK6yV94opF4wjsPc3bvYSQ8LGPfoD8YsNSM3F0qpBUuDWL UAUcH6+elzbOmUBgg8qKAxF4OamgjPkDNxJX+tTO7mt1WrjKnjY= -----END CERTIFICATE-----Generated at Tue Jun 18 12:54:12 2024 by rpki-client on console-ams.rpki-client.org