$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/nzTXJ9YMa2e1rZcB-ExJQEmzWz0.roa File: nzTXJ9YMa2e1rZcB-ExJQEmzWz0.roa (raw, json) Hash identifier: FmABVUKvx+ZJAdhWxSZpxs+KUb37cAjya4SAMVOqphY= Subject key identifier: 9F:34:D7:27:D6:0C:6B:67:B5:AD:97:01:F8:4C:49:40:49:B3:5B:3D Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1E9C Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/nzTXJ9YMa2e1rZcB-ExJQEmzWz0.roa Signing time: Fri 01 Sep 2023 10:16:15 +0000 ROA not before: Fri 01 Sep 2023 10:16:15 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24163 IP address blocks: 49.158.192.0/21 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 10:15:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7836 (0x1e9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:16:15 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=9F34D727D60C6B67B5AD9701F84C494049B35B3D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:eb:d4:92:3c:22:47:cc:d5:14:b5:eb:93:38: ca:cc:88:1c:46:d1:26:83:25:66:bb:ed:d6:cb:5b: 46:49:60:19:00:ed:51:3a:4e:46:2c:c1:bd:0d:5e: 09:1e:e4:dd:50:ea:c5:2d:21:47:33:bc:5f:19:ab: a8:c3:ad:d4:13:01:c7:1a:87:c8:04:2c:f3:80:9b: 7a:3b:c7:38:9d:47:0d:b6:40:33:4f:83:88:53:75: 00:98:90:ca:e6:15:5c:80:40:26:46:2c:06:e5:af: 21:33:18:b5:4a:6f:2d:6e:34:28:73:86:95:0a:8a: d5:aa:44:3a:25:13:ab:a1:b2:a1:c0:35:47:0c:e5: 1e:6b:7e:bc:27:c3:39:01:c0:d7:73:c4:83:45:85: 95:19:f4:06:32:4c:d1:74:54:f6:98:eb:2b:22:be: 9a:45:b6:bf:31:54:ee:da:6d:be:e5:13:1c:6c:f6: 73:95:18:70:63:e0:d6:b9:b3:a1:1f:6f:5e:5d:3b: 3d:a5:4e:ab:d3:b3:7c:cb:b5:9a:c0:e5:6e:49:cf: a1:24:40:25:05:16:6d:cb:09:ac:e5:b8:6e:e4:53: e1:bc:32:99:16:03:a5:82:b2:b4:c0:57:13:64:63: 1c:c8:1f:24:20:f3:6c:85:3e:e4:bf:68:e8:5e:9d: 4b:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:34:D7:27:D6:0C:6B:67:B5:AD:97:01:F8:4C:49:40:49:B3:5B:3D X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/nzTXJ9YMa2e1rZcB-ExJQEmzWz0.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.192.0/21 Signature Algorithm: sha256WithRSAEncryption 07:1f:87:d2:57:6c:40:26:76:21:f6:2f:43:06:bf:63:75:c3: dd:11:77:f9:bf:53:92:d5:d7:91:89:ef:6e:53:1d:84:66:4e: 97:21:b5:f1:71:93:ee:64:f5:6f:ea:00:f6:ad:e6:18:68:4f: f3:2e:1f:96:2c:8f:d9:0f:21:d8:1d:f1:70:ed:aa:1f:1f:c4: b4:78:db:cf:08:94:a5:80:d9:5f:6b:a9:53:48:91:be:f4:f9: e1:40:a1:45:6c:29:ea:a9:11:d4:5f:be:1c:d8:99:83:cd:00: 99:2d:44:d6:ca:32:38:5e:c7:38:69:a2:a8:06:d4:ec:68:9c: df:47:7a:fc:7c:73:bd:d4:af:dd:a5:6a:1b:12:7a:de:7e:b4: 68:c2:f5:7e:19:5c:5c:bd:c5:fc:31:c1:ea:3c:f3:61:ed:fe: d9:57:9c:5d:31:07:c9:15:66:9a:85:f0:18:79:9a:a7:5c:fe: 95:e6:e6:07:3b:c8:4f:69:17:da:62:32:0e:70:1a:18:30:50: ae:be:9b:4c:8a:e9:e5:f6:67:00:87:3e:cd:28:ed:0b:fc:12: c0:1d:c7:34:1b:e3:cc:ca:15:13:89:b4:04:af:a2:f3:0c:5e: 68:2d:de:ad:70:5b:46:10:c3:74:24:02:7b:84:18:98:13:d6: 73:14:f1:c8 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHpwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE2MTVaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDlGMzRENzI3RDYwQzZC NjdCNUFEOTcwMUY4NEM0OTQwNDlCMzVCM0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC369SSPCJHzNUUteuTOMrMiBxG0SaDJWa77dbLW0ZJYBkA7VE6 TkYswb0NXgke5N1Q6sUtIUczvF8Zq6jDrdQTAccah8gELPOAm3o7xzidRw22QDNP g4hTdQCYkMrmFVyAQCZGLAblryEzGLVKby1uNChzhpUKitWqRDolE6uhsqHANUcM 5R5rfrwnwzkBwNdzxINFhZUZ9AYyTNF0VPaY6ysivppFtr8xVO7abb7lExxs9nOV GHBj4Na5s6Efb15dOz2lTqvTs3zLtZrA5W5Jz6EkQCUFFm3LCazluG7kU+G8MpkW A6WCsrTAVxNkYxzIHyQg82yFPuS/aOhenUvbAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUnzTXJ9YMa2e1rZcB+ExJQEmzWz0wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL256VFhKOVlNYTJlMXJaY0It RXhKUUVteld6MC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx nsAwDQYJKoZIhvcNAQELBQADggEBAAcfh9JXbEAmdiH2L0MGv2N1w90Rd/m/U5LV 15GJ725THYRmTpchtfFxk+5k9W/qAPat5hhoT/MuH5Ysj9kPIdgd8XDtqh8fxLR4 288IlKWA2V9rqVNIkb70+eFAoUVsKeqpEdRfvhzYmYPNAJktRNbKMjhexzhpoqgG 1OxonN9Hevx8c73Ur92lahsSet5+tGjC9X4ZXFy9xfwxweo882Ht/tlXnF0xB8kV ZpqF8Bh5mqdc/pXm5gc7yE9pF9piMg5wGhgwUK6+m0yK6eX2ZwCHPs0o7Qv8EsAd xzQb48zKFROJtASvovMMXmgt3q1wW0YQw3QkAnuEGJgT1nMU8cg= -----END CERTIFICATE-----Generated at Tue Jun 18 13:13:50 2024 by rpki-client on console-fra.rpki-client.org