$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/n8abElVjUgv9Ymu8y4_bXfij99I.roa File: n8abElVjUgv9Ymu8y4_bXfij99I.roa (raw, json) Hash identifier: wl6qgR8cguHvO/3xNLPoAVO8aBNXYWkGcb0DugEK+HY= Subject key identifier: 9F:C6:9B:12:55:63:52:0B:FD:62:6B:BC:CB:8F:DB:5D:F8:A3:F7:D2 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1E90 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/n8abElVjUgv9Ymu8y4_bXfij99I.roa Signing time: Fri 01 Sep 2023 10:16:12 +0000 ROA not before: Fri 01 Sep 2023 10:16:12 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24164 IP address blocks: 103.225.0.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 10:15:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7824 (0x1e90) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:16:12 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=9FC69B125563520BFD626BBCCB8FDB5DF8A3F7D2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:99:fd:f6:f6:3b:5a:cb:27:81:0d:eb:b8:b9: 07:7e:d3:be:41:50:e5:bf:b2:c5:59:0f:a9:cb:1d: f7:6c:b5:32:6d:e1:f2:23:52:7b:d4:95:3d:8e:ba: 20:9e:08:bd:54:ec:77:7b:52:56:10:3f:ca:76:e6: 29:22:40:92:b8:48:30:81:c5:27:a6:a1:b6:71:e0: 27:14:6e:94:de:82:af:51:86:51:e4:d4:e9:38:d4: 60:c2:44:56:30:c9:87:13:ab:58:3b:14:45:7b:34: 33:33:f0:3c:90:94:d4:f2:66:99:2e:35:cb:c3:79: 31:ac:fc:b0:8f:bd:d6:b0:01:51:91:ba:b1:ab:27: 60:17:55:de:29:b1:38:40:07:8b:d0:23:47:bb:eb: 51:32:1c:58:8d:d9:83:63:a6:09:34:ff:f2:37:a8: 36:ef:b2:9f:0f:24:95:47:b8:12:4a:6f:ef:90:18: be:04:52:49:5d:18:d7:68:c0:a3:74:98:6a:b6:1e: c1:bf:f1:03:49:07:0f:7c:18:1c:7c:3c:94:30:22: b8:70:d3:4e:47:63:88:e5:07:5d:ff:6f:22:e2:ee: 3a:d5:cf:58:f3:4b:11:fa:28:de:f8:66:76:38:4c: 8e:c9:6f:e6:16:b7:93:dc:51:32:ba:a9:cd:5e:e5: 35:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:C6:9B:12:55:63:52:0B:FD:62:6B:BC:CB:8F:DB:5D:F8:A3:F7:D2 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/n8abElVjUgv9Ymu8y4_bXfij99I.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 103.225.0.0/24 Signature Algorithm: sha256WithRSAEncryption 87:db:d8:86:1d:2b:fa:f0:4f:c8:f5:7d:d7:a3:84:6b:5c:f7: 26:46:47:c4:23:61:15:3f:ef:69:28:19:8e:42:88:8d:93:4d: 74:9d:a2:c9:9c:0a:d5:76:da:21:b2:0a:69:7b:85:f7:f7:aa: 8e:e0:3c:e8:0b:92:2d:3a:c5:bf:ca:8b:2d:3c:38:59:e3:fd: d8:47:75:26:a1:f8:8d:50:26:15:1f:d2:f5:f2:51:ed:e8:20: ee:7d:e6:ba:3d:48:2c:bd:31:e7:6a:ff:4f:73:31:77:bb:5a: ea:c2:06:81:93:43:6e:f2:69:46:94:d4:f6:1f:8a:82:42:52: 0a:96:2a:40:7b:3b:f4:4d:43:44:71:8d:78:b8:5a:6a:08:22: 0c:a4:7a:6b:08:1e:bc:35:5c:c3:9d:90:a2:89:b4:52:6a:06: 29:3c:66:88:40:e0:d6:df:1a:fa:99:2a:98:fa:cd:8a:10:f9: 45:03:dc:9c:d6:b5:6e:39:f4:ef:4e:eb:61:fa:84:3f:aa:5d: c5:2f:2c:ab:ec:e6:bb:6f:52:a3:b7:0f:6b:9e:e7:0b:c0:ff: 7f:4a:18:d8:85:a1:3a:02:0a:2d:b9:a7:74:4b:35:49:ba:70: 7f:d2:20:5e:c4:a7:46:88:40:52:82:61:41:4c:cb:48:2e:fe: 2a:b2:53:76 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHpAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE2MTJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDlGQzY5QjEyNTU2MzUy MEJGRDYyNkJCQ0NCOEZEQjVERjhBM0Y3RDIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4mf329jtayyeBDeu4uQd+075BUOW/ssVZD6nLHfdstTJt4fIj UnvUlT2OuiCeCL1U7Hd7UlYQP8p25ikiQJK4SDCBxSemobZx4CcUbpTegq9RhlHk 1Ok41GDCRFYwyYcTq1g7FEV7NDMz8DyQlNTyZpkuNcvDeTGs/LCPvdawAVGRurGr J2AXVd4psThAB4vQI0e761EyHFiN2YNjpgk0//I3qDbvsp8PJJVHuBJKb++QGL4E UkldGNdowKN0mGq2HsG/8QNJBw98GBx8PJQwIrhw005HY4jlB13/byLi7jrVz1jz SxH6KN74ZnY4TI7Jb+YWt5PcUTK6qc1e5TXdAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUn8abElVjUgv9Ymu8y4/bXfij99IwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL244YWJFbFZqVWd2OVltdTh5 NF9iWGZpajk5SS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBABn 4QAwDQYJKoZIhvcNAQELBQADggEBAIfb2IYdK/rwT8j1fdejhGtc9yZGR8QjYRU/ 72koGY5CiI2TTXSdosmcCtV22iGyCml7hff3qo7gPOgLki06xb/Kiy08OFnj/dhH dSah+I1QJhUf0vXyUe3oIO595ro9SCy9Medq/09zMXe7WurCBoGTQ27yaUaU1PYf ioJCUgqWKkB7O/RNQ0RxjXi4WmoIIgykemsIHrw1XMOdkKKJtFJqBik8ZohA4Nbf GvqZKpj6zYoQ+UUD3JzWtW459O9O62H6hD+qXcUvLKvs5rtvUqO3D2ue5wvA/39K GNiFoToCCi25p3RLNUm6cH/SIF7Ep0aIQFKCYUFMy0gu/iqyU3Y= -----END CERTIFICATE-----Generated at Tue Jun 18 13:13:50 2024 by rpki-client on console-fra.rpki-client.org