$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/qDjWWPruxX_Gw1J9xW_rmcqKF6o.roa File: qDjWWPruxX_Gw1J9xW_rmcqKF6o.roa (raw, json) Hash identifier: MGIeEKRKUTJ4HHIjQ+vRMxMjPZ1KgZl7VLLKA1sUN+o= Subject key identifier: A8:38:D6:58:FA:EE:C5:7F:C6:C3:52:7D:C5:6F:EB:99:CA:8A:17:AA Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1EB7 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/qDjWWPruxX_Gw1J9xW_rmcqKF6o.roa Signing time: Fri 01 Sep 2023 10:16:22 +0000 ROA not before: Fri 01 Sep 2023 10:16:22 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24164 IP address blocks: 49.158.72.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 10:15:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7863 (0x1eb7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:16:22 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=A838D658FAEEC57FC6C3527DC56FEB99CA8A17AA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:8a:9f:d3:1a:5c:bb:94:d0:10:f9:0b:63:5b: 4a:48:2d:f9:ae:a8:a1:b8:41:84:0e:29:c0:a6:98: f1:c8:55:4a:97:81:c4:37:eb:c1:b2:44:af:be:1b: f1:9d:c2:d2:b2:7b:eb:74:b1:39:94:e1:c9:e1:ae: 71:d6:4c:cb:71:f9:78:79:7c:0c:3c:05:7f:6c:11: d2:7a:63:5b:d6:8a:d1:0a:bd:8e:45:35:8e:f1:42: 74:f8:82:e2:13:ed:46:46:e8:84:2e:97:65:b2:55: 8a:90:e4:64:8b:f9:a2:bc:1b:f0:af:78:61:61:09: 46:93:04:1c:64:ac:7a:ac:bf:d8:60:15:d3:2e:0d: 10:e3:96:29:17:7d:54:02:51:27:68:4a:84:93:41: b1:19:cc:77:b4:dd:ce:ef:3a:de:c0:fc:ae:5f:a0: 3c:5b:d2:70:36:db:ea:89:dc:50:85:ec:cc:76:97: ee:a1:c2:b9:44:60:92:4d:1c:41:4e:da:9b:19:0b: 06:b6:8b:4e:e3:51:f3:a5:19:b7:6b:32:2f:9e:01: 57:f9:4b:cd:1c:e2:1f:4c:41:44:eb:87:03:41:2c: 22:72:b6:e9:06:3b:99:a0:bb:10:bb:f7:75:9f:66: 5b:bf:9e:7b:04:a8:d2:73:d1:2b:87:41:8f:60:7a: 42:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:38:D6:58:FA:EE:C5:7F:C6:C3:52:7D:C5:6F:EB:99:CA:8A:17:AA X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/qDjWWPruxX_Gw1J9xW_rmcqKF6o.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.72.0/21 Signature Algorithm: sha256WithRSAEncryption 66:e0:30:fe:72:66:9d:eb:38:b3:8c:ac:a4:ed:e5:b7:82:96: 35:6b:b2:fa:42:5a:63:b6:7c:09:d1:36:89:8d:c6:a8:90:ed: 99:0c:09:89:42:b0:a6:8b:fc:fc:47:71:76:dc:97:4c:d7:af: 11:49:f7:0c:44:b1:eb:5e:2a:bf:87:5d:6f:7b:95:2e:66:b5: e0:9a:fe:2a:45:6a:cb:1b:78:94:7b:8d:4d:db:95:a9:90:16: a8:82:83:e0:61:5a:cf:9c:a2:ca:12:db:a9:49:4d:b6:2b:ad: cd:3d:4b:74:49:dc:3a:6f:a7:40:96:e5:6c:46:db:6f:1a:c9: 22:27:20:4a:a8:60:c7:09:ca:1c:f6:62:84:47:da:80:25:ae: 78:c0:7e:2e:10:4f:c1:bb:37:fd:74:53:26:f6:a1:25:05:c3: 0b:63:4b:df:64:ca:15:5f:d3:d5:c7:3e:0f:9d:fe:fd:3d:42: 54:3b:c6:ea:74:7a:9c:ec:aa:b6:12:3f:27:db:9e:a1:2e:8c: b7:c9:2b:1b:47:87:a8:2d:22:21:20:e6:f8:ff:02:30:ea:a1: a1:81:a0:28:d2:5a:13:0b:ae:3f:45:56:89:ab:a7:63:bd:ce: 78:e5:91:9a:13:79:71:f6:2f:aa:a5:be:d2:8a:e2:b8:b3:10: 63:3a:56:93 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHrcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE2MjJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEE4MzhENjU4RkFFRUM1 N0ZDNkMzNTI3REM1NkZFQjk5Q0E4QTE3QUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVip/TGly7lNAQ+QtjW0pILfmuqKG4QYQOKcCmmPHIVUqXgcQ3 68GyRK++G/GdwtKye+t0sTmU4cnhrnHWTMtx+Xh5fAw8BX9sEdJ6Y1vWitEKvY5F NY7xQnT4guIT7UZG6IQul2WyVYqQ5GSL+aK8G/CveGFhCUaTBBxkrHqsv9hgFdMu DRDjlikXfVQCUSdoSoSTQbEZzHe03c7vOt7A/K5foDxb0nA22+qJ3FCF7Mx2l+6h wrlEYJJNHEFO2psZCwa2i07jUfOlGbdrMi+eAVf5S80c4h9MQUTrhwNBLCJytukG O5mguxC793WfZlu/nnsEqNJz0SuHQY9gekLRAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUqDjWWPruxX/Gw1J9xW/rmcqKF6owHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3FEaldXUHJ1eFhfR3cxSjl4 V19ybWNxS0Y2by5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx nkgwDQYJKoZIhvcNAQELBQADggEBAGbgMP5yZp3rOLOMrKTt5beCljVrsvpCWmO2 fAnRNomNxqiQ7ZkMCYlCsKaL/PxHcXbcl0zXrxFJ9wxEseteKr+HXW97lS5mteCa /ipFassbeJR7jU3blamQFqiCg+BhWs+cosoS26lJTbYrrc09S3RJ3Dpvp0CW5WxG 228aySInIEqoYMcJyhz2YoRH2oAlrnjAfi4QT8G7N/10Uyb2oSUFwwtjS99kyhVf 09XHPg+d/v09QlQ7xup0epzsqrYSPyfbnqEujLfJKxtHh6gtIiEg5vj/AjDqoaGB oCjSWhMLrj9FVomrp2O9znjlkZoTeXH2L6qlvtKK4rizEGM6VpM= -----END CERTIFICATE-----Generated at Tue Jun 18 13:13:50 2024 by rpki-client on console-fra.rpki-client.org