$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/kfj0jHJQL0oW17wR4DpNCkk5Jdw.roa File: kfj0jHJQL0oW17wR4DpNCkk5Jdw.roa (raw, json) Hash identifier: yA222Ay8AlSaRUTjetRR5T6JbAn4TZqX0VWRpWsTQxM= Subject key identifier: 91:F8:F4:8C:72:50:2F:4A:16:D7:BC:11:E0:3A:4D:0A:49:39:25:DC Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1E6B Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/kfj0jHJQL0oW17wR4DpNCkk5Jdw.roa Signing time: Fri 01 Sep 2023 10:16:01 +0000 ROA not before: Fri 01 Sep 2023 10:16:01 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24165 IP address blocks: 61.58.120.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 10:15:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7787 (0x1e6b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:16:01 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=91F8F48C72502F4A16D7BC11E03A4D0A493925DC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:7f:71:be:94:c0:5a:87:1e:d1:d5:ff:d0:b0: f7:26:51:67:ab:09:ce:d7:84:31:54:67:7e:43:c0: 6b:95:de:18:4a:68:2d:2e:f0:e9:4e:88:a1:1a:c7: a6:a3:60:06:65:01:bd:96:02:d6:b8:90:37:4f:98: 15:28:78:31:d7:5d:c7:96:1b:c3:ae:bf:05:79:90: c0:27:0a:b7:5e:f1:d2:4b:1c:a0:6b:ff:4e:76:99: 30:7c:eb:73:1d:87:59:72:f3:2a:d3:30:de:74:5e: 24:37:7d:3e:cc:fb:5a:66:76:a5:c0:ac:63:d1:91: 73:88:58:a6:d8:cf:be:23:47:cd:a4:fa:80:0e:9a: f7:d0:63:45:d6:7d:a8:1f:c3:2d:99:3a:9b:5c:7d: db:ff:75:6a:6f:cc:d3:dc:f6:d6:02:15:fb:6f:71: 02:83:dd:bd:4a:c5:98:2b:ef:e4:a8:fa:41:4d:6c: 47:57:6e:68:5f:87:ca:3a:5f:25:3a:f4:a0:38:ff: 71:c3:04:58:06:df:c4:b8:89:35:9a:35:93:84:71: 9c:27:00:4c:ff:90:cb:ec:48:70:c5:d6:d7:27:7c: 29:9b:a5:7f:73:aa:46:e0:c8:de:2f:7d:45:cf:ce: 55:e8:2f:dd:47:58:d7:66:ab:10:4a:b4:06:36:b7: 01:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:F8:F4:8C:72:50:2F:4A:16:D7:BC:11:E0:3A:4D:0A:49:39:25:DC X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/kfj0jHJQL0oW17wR4DpNCkk5Jdw.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.58.120.0/22 Signature Algorithm: sha256WithRSAEncryption 78:39:b3:d9:ba:6f:0f:14:22:ba:b1:4d:f8:e9:93:5f:76:27: d9:e7:67:dd:b3:e9:a5:d3:f8:c2:20:1c:82:a7:36:d3:bc:8d: 6a:33:6f:6f:de:47:ff:1c:e7:63:57:1e:3b:a1:ee:72:83:fa: 40:c3:cc:07:b7:75:e3:91:0f:d9:24:dd:8e:1b:37:b1:7d:29: 3b:84:8f:f5:05:fc:b0:63:3f:45:d7:af:16:a8:19:6d:3e:fe: 58:db:6e:96:bb:94:af:ea:c2:4a:65:3c:a4:96:f3:c0:ed:c2: fe:b8:17:59:d0:f0:54:b8:a1:30:7b:3c:4c:8a:7d:f7:a9:64: c5:16:75:b8:a4:d7:a9:fd:fe:35:09:5f:04:6c:03:a8:f6:a5: c5:aa:45:95:61:bc:fa:96:06:ee:42:40:7d:62:a9:8b:93:f1: b9:f5:cf:15:7f:29:94:94:19:8f:16:d5:72:21:6e:80:f6:e2: df:44:0a:14:bb:fc:95:08:e1:dc:57:d2:1d:88:db:f7:2d:3b: f7:52:b8:94:3e:00:bd:e0:54:8f:57:31:71:cb:99:ae:06:2b: 35:d4:a0:05:7c:91:9c:dd:9c:2d:1b:b1:05:ea:4d:29:b9:78: be:64:6c:17:42:13:f3:28:41:bd:3f:9f:77:79:fe:88:9e:81: 85:98:f2:ee -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHmswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE2MDFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDkxRjhGNDhDNzI1MDJG NEExNkQ3QkMxMUUwM0E0RDBBNDkzOTI1REMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4f3G+lMBahx7R1f/QsPcmUWerCc7XhDFUZ35DwGuV3hhKaC0u 8OlOiKEax6ajYAZlAb2WAta4kDdPmBUoeDHXXceWG8OuvwV5kMAnCrde8dJLHKBr /052mTB863Mdh1ly8yrTMN50XiQ3fT7M+1pmdqXArGPRkXOIWKbYz74jR82k+oAO mvfQY0XWfagfwy2ZOptcfdv/dWpvzNPc9tYCFftvcQKD3b1KxZgr7+So+kFNbEdX bmhfh8o6XyU69KA4/3HDBFgG38S4iTWaNZOEcZwnAEz/kMvsSHDF1tcnfCmbpX9z qkbgyN4vfUXPzlXoL91HWNdmqxBKtAY2twHBAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUkfj0jHJQL0oW17wR4DpNCkk5JdwwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL2tmajBqSEpRTDBvVzE3d1I0 RHBOQ2trNUpkdy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAI9 OngwDQYJKoZIhvcNAQELBQADggEBAHg5s9m6bw8UIrqxTfjpk192J9nnZ92z6aXT +MIgHIKnNtO8jWozb2/eR/8c52NXHjuh7nKD+kDDzAe3deORD9kk3Y4bN7F9KTuE j/UF/LBjP0XXrxaoGW0+/ljbbpa7lK/qwkplPKSW88Dtwv64F1nQ8FS4oTB7PEyK ffepZMUWdbik16n9/jUJXwRsA6j2pcWqRZVhvPqWBu5CQH1iqYuT8bn1zxV/KZSU GY8W1XIhboD24t9EChS7/JUI4dxX0h2I2/ctO/dSuJQ+AL3gVI9XMXHLma4GKzXU oAV8kZzdnC0bsQXqTSm5eL5kbBdCE/MoQb0/n3d5/oiegYWY8u4= -----END CERTIFICATE-----Generated at Tue Jun 18 12:54:13 2024 by rpki-client on console-ams.rpki-client.org