$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/-YbPjPHCMRAwC0wJdjhMpnMfSv4.roa File: -YbPjPHCMRAwC0wJdjhMpnMfSv4.roa (raw, json) Hash identifier: qGVwIzPJmL6O/yJlCbAlzXcbQ3XTStYGyBNaFcICSF0= Subject key identifier: F9:86:CF:8C:F1:C2:31:10:30:0B:4C:09:76:38:4C:A6:73:1F:4A:FE Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1D84 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/-YbPjPHCMRAwC0wJdjhMpnMfSv4.roa Signing time: Fri 01 Sep 2023 10:14:56 +0000 ROA not before: Fri 01 Sep 2023 10:14:56 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24163 IP address blocks: 180.218.108.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 23:59:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7556 (0x1d84) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:14:56 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=F986CF8CF1C23110300B4C0976384CA6731F4AFE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:eb:f9:9e:07:aa:67:e4:71:48:98:d9:f0:f2:74: c9:f1:2f:86:05:56:b6:d8:87:bc:69:74:58:3b:b4: 02:a5:f0:aa:da:22:29:28:24:26:aa:52:ab:40:67: b9:d2:ca:bd:b1:e1:9d:11:a2:c8:d5:27:d5:a1:45: 46:d0:73:ac:bc:7e:00:dc:ba:c6:2f:52:12:87:3f: f1:d5:5e:29:42:8c:3a:97:bb:00:e1:86:50:99:e4: e5:5c:91:37:d2:76:ce:2b:d2:38:f2:22:c0:38:1a: c0:b1:07:5a:54:d6:c0:9c:c3:af:4e:11:92:bb:3f: 8e:f2:ae:2a:84:54:62:9f:2d:4c:16:5e:40:a2:34: 64:6a:09:ea:bb:4a:a6:42:94:17:3a:e9:ff:0d:52: b6:fb:9e:bc:ed:1c:c6:03:23:6b:52:64:7c:cc:ef: 0d:a5:e4:e1:6a:ba:0f:8a:65:50:cb:2c:a7:8d:c4: 63:b3:2a:1f:99:ef:c5:fd:d0:a3:c0:bd:e7:29:f4: 56:3d:05:fb:7a:9a:9f:7c:52:9c:e7:7e:49:21:58: fe:af:f1:fc:06:19:85:ad:ca:63:0a:ad:6e:91:d3: 65:75:30:d3:4e:db:1c:c7:0e:39:92:aa:5e:e6:04: b1:6b:36:a9:29:37:0e:1e:57:57:4c:82:09:93:ed: f6:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:86:CF:8C:F1:C2:31:10:30:0B:4C:09:76:38:4C:A6:73:1F:4A:FE X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/-YbPjPHCMRAwC0wJdjhMpnMfSv4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.108.0/22 Signature Algorithm: sha256WithRSAEncryption 11:a5:16:cb:97:d2:e5:37:c6:ed:26:9f:34:1a:9f:b7:42:0d: 3a:05:6d:04:31:7b:b8:d3:06:51:c9:47:47:30:de:22:28:56: 6c:03:2f:1f:4e:73:9d:4d:c2:c0:6f:f1:fb:fb:65:a8:f6:cf: 3a:56:43:1d:00:1e:be:53:de:10:05:2b:19:c0:06:8f:4f:e5: 22:8e:37:bc:ac:39:9a:bf:d9:b3:b5:b5:bb:c1:89:0e:29:65: 44:02:ce:14:b8:6c:fc:fc:eb:b2:4c:6d:64:74:24:b8:6e:0e: 1b:9d:3d:99:aa:a7:34:63:be:bd:46:f8:bf:d1:56:e0:52:e7: 76:1e:14:45:d1:ce:b0:7b:42:46:54:f0:cb:78:df:e1:ec:66: 2c:55:72:f9:9d:4b:52:6d:c7:b8:08:42:d4:e5:19:09:cd:64: 62:cc:e4:1b:95:56:b2:d5:c9:dd:23:42:c7:58:1c:2c:46:8a: f7:09:ff:ca:fe:31:3a:98:a4:bb:22:37:9c:b2:25:11:ff:22: 4a:73:0f:44:e9:ab:98:1a:45:96:03:51:b2:4d:4b:58:2f:ed: f6:b1:08:63:28:65:6c:19:4e:f1:00:09:76:a5:c1:7f:7d:83: 24:8c:b9:34:01:3b:f2:ec:d7:08:f1:dc:67:f4:38:66:82:36: 05:c4:e9:ab -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHYQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE0NTZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEY5ODZDRjhDRjFDMjMx MTAzMDBCNEMwOTc2Mzg0Q0E2NzMxRjRBRkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDr+Z4HqmfkcUiY2fDydMnxL4YFVrbYh7xpdFg7tAKl8KraIiko JCaqUqtAZ7nSyr2x4Z0RosjVJ9WhRUbQc6y8fgDcusYvUhKHP/HVXilCjDqXuwDh hlCZ5OVckTfSds4r0jjyIsA4GsCxB1pU1sCcw69OEZK7P47yriqEVGKfLUwWXkCi NGRqCeq7SqZClBc66f8NUrb7nrztHMYDI2tSZHzM7w2l5OFqug+KZVDLLKeNxGOz Kh+Z78X90KPAvecp9FY9Bft6mp98UpznfkkhWP6v8fwGGYWtymMKrW6R02V1MNNO 2xzHDjmSql7mBLFrNqkpNw4eV1dMggmT7fY1AgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU+YbPjPHCMRAwC0wJdjhMpnMfSv4wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULy1ZYlBqUEhDTVJBd0Mwd0pk amhNcG5NZlN2NC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAK0 2mwwDQYJKoZIhvcNAQELBQADggEBABGlFsuX0uU3xu0mnzQan7dCDToFbQQxe7jT BlHJR0cw3iIoVmwDLx9Oc51NwsBv8fv7Zaj2zzpWQx0AHr5T3hAFKxnABo9P5SKO N7ysOZq/2bO1tbvBiQ4pZUQCzhS4bPz867JMbWR0JLhuDhudPZmqpzRjvr1G+L/R VuBS53YeFEXRzrB7QkZU8Mt43+HsZixVcvmdS1Jtx7gIQtTlGQnNZGLM5BuVVrLV yd0jQsdYHCxGivcJ/8r+MTqYpLsiN5yyJRH/IkpzD0Tpq5gaRZYDUbJNS1gv7fax CGMoZWwZTvEACXalwX99gySMuTQBO/Ls1wjx3Gf0OGaCNgXE6as= -----END CERTIFICATE-----Generated at Mon Jun 3 04:22:02 2024 by rpki-client on console-ams.rpki-client.org