$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/i-nQz5R3yMfH8p5j9Ylo7PfhuOo.roa File: i-nQz5R3yMfH8p5j9Ylo7PfhuOo.roa (raw, json) Hash identifier: HHXncR4rLROijkL3/OPcKwYsoVGkW28cOxJ5vjbRoWQ= Subject key identifier: 8B:E9:D0:CF:94:77:C8:C7:C7:F2:9E:63:F5:89:68:EC:F7:E1:B8:EA Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1DB4 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/i-nQz5R3yMfH8p5j9Ylo7PfhuOo.roa Signing time: Fri 01 Sep 2023 10:15:11 +0000 ROA not before: Fri 01 Sep 2023 10:15:11 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24164 IP address blocks: 61.64.4.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 10:15:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7604 (0x1db4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:15:11 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=8BE9D0CF9477C8C7C7F29E63F58968ECF7E1B8EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:77:30:00:16:7f:36:22:6c:ca:40:ab:8a:0c: 79:0e:19:a0:4c:26:76:33:ae:46:51:37:9e:b1:e5: 2f:b9:f2:ba:c3:ec:f1:5f:f8:87:0d:0e:6b:82:2d: ac:ab:98:d2:bd:94:93:d2:73:64:2e:d9:11:ed:3a: 26:9a:08:f9:c4:d4:26:e2:1b:e0:f8:43:8f:35:5e: d3:58:14:73:73:a5:fc:fc:ac:88:6a:ab:2e:a8:b0: 19:ad:67:2e:a7:86:cc:9c:cd:c3:cc:41:c8:07:af: 87:22:eb:df:e2:28:64:cc:f5:08:31:16:cc:d4:91: 02:79:3c:36:17:7a:51:c3:f6:be:57:e0:d8:d1:c6: e0:fc:74:ac:04:43:b0:b0:9c:51:bd:dd:f1:b4:7b: 4e:ca:e1:39:2f:05:0a:86:5d:58:a6:66:e8:ad:b6: af:d2:f9:ef:ae:bf:73:36:ae:11:57:d1:af:51:9d: 1e:8c:c8:00:34:59:27:e4:57:76:b7:80:a3:30:5e: ed:51:a9:e4:73:16:52:b2:28:3f:f9:7b:86:f9:63: 91:56:04:1a:67:91:36:12:cd:1a:7c:6c:11:84:6b: 3a:0f:17:c0:c8:f6:95:bf:39:be:da:f5:d7:14:94: cd:65:05:3e:81:b5:79:ca:b5:13:1c:c5:d0:4a:07: 9d:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:E9:D0:CF:94:77:C8:C7:C7:F2:9E:63:F5:89:68:EC:F7:E1:B8:EA X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/i-nQz5R3yMfH8p5j9Ylo7PfhuOo.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.64.4.0/22 Signature Algorithm: sha256WithRSAEncryption 1a:d7:84:75:54:e4:c7:50:cd:c9:15:5f:fb:4a:96:2f:e0:86: 30:d0:67:fa:13:7f:df:75:5b:83:c3:c5:77:39:7a:8a:e8:4c: d3:67:cd:dd:99:70:b1:04:6c:f5:79:3b:7a:e3:43:7c:76:da: ea:4a:3a:5d:52:3e:61:38:b3:28:36:14:5f:4e:e2:d5:c8:7d: 89:ff:53:0a:ac:93:95:dc:a5:1c:6c:d7:96:75:e0:67:8d:f9: 31:f0:7d:08:72:ba:8e:71:8f:4d:4a:9d:35:b3:d9:1c:e4:90: ad:25:76:34:cb:33:37:18:13:58:45:88:b4:de:64:0f:3e:14: eb:ed:ef:05:db:1a:76:0e:2a:e9:8a:e9:c9:aa:ab:45:5a:6f: 5f:4a:f6:af:6a:d5:07:19:ea:a0:97:c2:17:86:af:17:97:63: 6d:0f:fe:4a:08:8b:15:9d:08:3b:ac:a7:4f:da:98:ae:64:8b: 8a:b8:4e:57:60:09:a8:10:b0:55:92:cf:d1:de:48:84:b6:69: e4:8e:f2:fb:f3:77:09:82:11:50:dc:7a:9b:f7:f5:1e:85:46: 43:b3:ea:e1:22:d3:fc:48:ac:f1:9b:24:9f:81:80:06:3e:ff: c7:3b:7f:3f:28:b1:19:4d:3c:db:c7:76:8d:fd:5a:8d:8e:79: 8e:29:59:96 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHbQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE1MTFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDhCRTlEMENGOTQ3N0M4 QzdDN0YyOUU2M0Y1ODk2OEVDRjdFMUI4RUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCndzAAFn82ImzKQKuKDHkOGaBMJnYzrkZRN56x5S+58rrD7PFf +IcNDmuCLayrmNK9lJPSc2Qu2RHtOiaaCPnE1CbiG+D4Q481XtNYFHNzpfz8rIhq qy6osBmtZy6nhsyczcPMQcgHr4ci69/iKGTM9QgxFszUkQJ5PDYXelHD9r5X4NjR xuD8dKwEQ7CwnFG93fG0e07K4TkvBQqGXVimZuittq/S+e+uv3M2rhFX0a9RnR6M yAA0WSfkV3a3gKMwXu1RqeRzFlKyKD/5e4b5Y5FWBBpnkTYSzRp8bBGEazoPF8DI 9pW/Ob7a9dcUlM1lBT6BtXnKtRMcxdBKB52tAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUi+nQz5R3yMfH8p5j9Ylo7PfhuOowHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2ktblF6NVIzeU1mSDhwNWo5 WWxvN1BmaHVPby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAI9 QAQwDQYJKoZIhvcNAQELBQADggEBABrXhHVU5MdQzckVX/tKli/ghjDQZ/oTf991 W4PDxXc5eoroTNNnzd2ZcLEEbPV5O3rjQ3x22upKOl1SPmE4syg2FF9O4tXIfYn/ Uwqsk5XcpRxs15Z14GeN+THwfQhyuo5xj01KnTWz2RzkkK0ldjTLMzcYE1hFiLTe ZA8+FOvt7wXbGnYOKumK6cmqq0Vab19K9q9q1QcZ6qCXwheGrxeXY20P/koIixWd CDusp0/amK5ki4q4TldgCagQsFWSz9HeSIS2aeSO8vvzdwmCEVDcepv39R6FRkOz 6uEi0/xIrPGbJJ+BgAY+/8c7fz8osRlNPNvHdo39Wo2OeY4pWZY= -----END CERTIFICATE-----Generated at Tue Jun 18 13:13:50 2024 by rpki-client on console-fra.rpki-client.org