$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/xZpoIdmUKPx21j85N0N0xCKhuIA.roa File: xZpoIdmUKPx21j85N0N0xCKhuIA.roa (raw, json) Hash identifier: NrOkYRbOBI5UanJ4dRHyKokMET/mY90sryJo+ZTQyPQ= Subject key identifier: C5:9A:68:21:D9:94:28:FC:76:D6:3F:39:37:43:74:C4:22:A1:B8:80 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1E60 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/xZpoIdmUKPx21j85N0N0xCKhuIA.roa Signing time: Fri 01 Sep 2023 10:15:58 +0000 ROA not before: Fri 01 Sep 2023 10:15:58 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24163 IP address blocks: 211.76.76.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 19 Jun 2024 10:15:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7776 (0x1e60) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:15:58 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=C59A6821D99428FC76D63F39374374C422A1B880 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ef:32:f5:9e:9b:db:68:c4:90:a2:84:8c:17: 70:ae:1e:c3:00:35:a5:a3:91:1d:84:2b:58:8a:97: e3:71:07:f3:a6:62:26:5b:7c:66:16:05:c5:f5:05: 0d:5a:b3:8c:74:d3:5e:45:27:f5:f6:44:40:5c:4c: f0:88:90:d1:ee:17:8f:9b:2b:ad:78:92:16:d5:2a: 8f:8b:ff:0e:3f:72:0e:f7:07:08:c3:9b:06:a4:bd: fc:3b:fd:a6:39:ec:cb:c9:71:43:74:6f:fe:4a:4b: a2:25:0a:b5:37:ae:12:53:0a:25:cd:44:e9:2d:ba: e2:45:e9:2e:36:5e:3f:38:c8:38:19:77:d6:bb:dc: 71:a2:d7:77:ae:6a:10:ef:86:a6:01:21:54:72:83: 61:8b:3e:53:f0:8a:62:b0:64:06:39:cb:c2:a9:44: 92:7e:14:ea:e8:47:ce:85:53:34:22:dd:7c:35:30: 4e:81:ad:2b:01:64:dd:9b:3a:d9:76:8f:42:16:bc: 97:7a:11:7b:15:fc:6f:58:34:26:73:e3:ce:00:fb: 08:b9:2e:dd:14:f7:3f:f4:91:ce:32:20:19:ba:30: 8a:72:3b:6f:4b:48:1b:14:37:a1:ab:de:79:b1:a5: df:80:a8:a8:fe:6e:0a:0e:46:29:21:d1:90:80:98: a3:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:9A:68:21:D9:94:28:FC:76:D6:3F:39:37:43:74:C4:22:A1:B8:80 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/xZpoIdmUKPx21j85N0N0xCKhuIA.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 211.76.76.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:a7:a6:bf:bc:b7:0b:23:ee:5e:0c:d4:01:de:79:94:54:1c: 6e:11:9c:6f:c3:12:0a:31:25:12:b2:74:e6:df:41:c4:78:8b: ec:a7:aa:0b:6c:a5:8c:6a:62:bc:f4:8c:bc:07:2c:8a:eb:e8: 64:07:ac:9d:35:8b:a5:f6:99:d6:19:10:4a:86:72:87:e1:7d: 09:5f:10:74:05:6a:1d:f4:f8:53:65:f4:52:d4:1a:8d:d2:ae: 5d:c3:53:b7:5d:35:ca:61:4f:8f:22:dc:9b:9d:42:ce:a6:b4: fe:67:0e:fb:f3:f6:dd:ea:50:6e:43:38:b8:72:80:02:e4:48: 58:52:13:0f:e9:85:07:f5:14:e4:e7:e0:fd:9d:32:2e:b6:0e: a0:a9:76:71:88:64:4d:ea:eb:a6:cd:a7:c2:1f:58:36:92:95: 84:c7:c6:d6:39:7b:38:22:39:12:2a:9d:e8:16:e0:0f:3a:42: 08:bf:fa:ac:70:b2:cb:6e:28:e7:fa:50:e9:d4:4d:ca:f9:9e: 04:89:1a:29:8f:f0:e3:16:fe:dd:d5:2d:b4:62:ca:19:fe:b7: 72:5a:a7:8a:a4:5e:24:3e:79:f2:e1:5a:67:fe:32:8d:d6:0a: dd:02:45:fa:28:5b:3f:c6:04:c6:dd:5d:f6:d1:29:de:00:18: 20:bb:d5:39 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHmAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE1NThaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEM1OUE2ODIxRDk5NDI4 RkM3NkQ2M0YzOTM3NDM3NEM0MjJBMUI4ODAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC67zL1npvbaMSQooSMF3CuHsMANaWjkR2EK1iKl+NxB/OmYiZb fGYWBcX1BQ1as4x0015FJ/X2REBcTPCIkNHuF4+bK614khbVKo+L/w4/cg73BwjD mwakvfw7/aY57MvJcUN0b/5KS6IlCrU3rhJTCiXNROktuuJF6S42Xj84yDgZd9a7 3HGi13euahDvhqYBIVRyg2GLPlPwimKwZAY5y8KpRJJ+FOroR86FUzQi3Xw1ME6B rSsBZN2bOtl2j0IWvJd6EXsV/G9YNCZz484A+wi5Lt0U9z/0kc4yIBm6MIpyO29L SBsUN6Gr3nmxpd+AqKj+bgoORikh0ZCAmKNnAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUxZpoIdmUKPx21j85N0N0xCKhuIAwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL3hacG9JZG1VS1B4MjFqODVO ME4weENLaHVJQS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBADT TEwwDQYJKoZIhvcNAQELBQADggEBAH+npr+8twsj7l4M1AHeeZRUHG4RnG/DEgox JRKydObfQcR4i+ynqgtspYxqYrz0jLwHLIrr6GQHrJ01i6X2mdYZEEqGcofhfQlf EHQFah30+FNl9FLUGo3Srl3DU7ddNcphT48i3JudQs6mtP5nDvvz9t3qUG5DOLhy gALkSFhSEw/phQf1FOTn4P2dMi62DqCpdnGIZE3q66bNp8IfWDaSlYTHxtY5ezgi ORIqnegW4A86Qgi/+qxwsstuKOf6UOnUTcr5ngSJGimP8OMW/t3VLbRiyhn+t3Ja p4qkXiQ+efLhWmf+Mo3WCt0CRfooWz/GBMbdXfbRKd4AGCC71Tk= -----END CERTIFICATE-----Generated at Tue Jun 18 13:13:50 2024 by rpki-client on console-fra.rpki-client.org