$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/-dqIOkPTotKg7XwN7f-lWJIcSdQ.roa File: -dqIOkPTotKg7XwN7f-lWJIcSdQ.roa (raw, json) Hash identifier: 4dQ6Loa6AdFZhM9rfUTcVgYptBV5S1IEBfxY7nicHAQ= Subject key identifier: F9:DA:88:3A:43:D3:A2:D2:A0:ED:7C:0D:ED:FF:A5:58:92:1C:49:D4 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1E20 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/-dqIOkPTotKg7XwN7f-lWJIcSdQ.roa Signing time: Fri 01 Sep 2023 10:15:42 +0000 ROA not before: Fri 01 Sep 2023 10:15:42 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24164 IP address blocks: 49.158.8.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 23:59:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7712 (0x1e20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:15:42 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=F9DA883A43D3A2D2A0ED7C0DEDFFA558921C49D4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:cf:33:7f:2c:7e:74:56:3e:19:1c:53:1e:f2: 52:b4:6d:a8:e9:27:36:30:06:15:2c:7b:c3:65:16: be:38:af:76:cd:8f:6d:6c:d4:cd:e9:f7:18:23:27: 14:33:fb:b8:fe:56:fd:a9:b5:a3:d6:4f:27:45:1c: 6c:f0:c6:84:c8:d9:2c:ed:fb:10:b7:20:36:f5:88: bd:af:bc:c9:ef:91:96:53:13:aa:25:ac:da:3a:2e: 75:35:35:03:75:b2:4d:9d:20:3b:9f:31:a8:ce:74: 6d:e8:70:aa:79:0c:ba:c5:fc:5b:dc:99:a0:98:06: 71:7a:2d:07:6e:2e:a4:00:2f:41:55:d9:5c:57:55: b2:fa:db:c9:a4:51:dd:8e:c0:9c:84:38:54:b7:ef: 57:e3:bd:25:6c:7a:dd:51:06:50:0a:96:36:2b:82: eb:29:19:a4:88:c5:c8:a3:af:f3:7f:ea:83:3e:6f: 12:66:92:f9:3d:c0:10:7c:df:7c:99:18:eb:51:e5: e2:bd:01:4c:8a:88:57:27:a9:88:4c:cc:84:8b:34: c7:a5:52:40:9d:71:f5:b9:29:c5:9f:81:46:fe:1b: c2:05:02:17:77:c6:80:0e:18:6a:15:bb:a2:ab:9b: 7d:bc:d7:e1:9a:3d:0c:fb:ac:2b:c4:5a:6e:09:df: aa:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:DA:88:3A:43:D3:A2:D2:A0:ED:7C:0D:ED:FF:A5:58:92:1C:49:D4 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/-dqIOkPTotKg7XwN7f-lWJIcSdQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.8.0/21 Signature Algorithm: sha256WithRSAEncryption 16:e4:2c:50:ba:b0:59:87:a4:87:ca:ae:91:c1:23:5e:15:5d: d0:59:3c:25:4f:03:77:51:c3:52:64:6f:58:31:00:bb:c3:1b: d6:2c:43:da:51:ac:be:77:d3:dc:92:f1:14:96:cc:91:f4:0b: 8b:37:09:23:08:17:ee:0a:38:92:39:bd:fa:9d:68:f6:87:6d: 4b:2b:95:10:c8:aa:82:a7:4b:a6:57:c2:40:d5:bc:87:6d:e3: c9:ea:1e:c7:c6:b4:1f:01:7c:26:b6:c7:82:6b:65:44:87:e3: a2:81:6e:d4:28:51:ae:d7:0e:c2:71:5d:1a:0a:60:ba:b7:8f: 8e:a1:c1:01:f9:27:e5:16:3c:5b:20:e7:c5:86:28:dd:df:58: 04:79:e9:59:ff:1b:09:f0:4c:b6:b5:45:50:85:f6:5b:e8:5c: b4:19:c5:71:2a:b7:9a:33:95:84:7c:f3:79:f2:b3:40:b9:7c: 92:76:5a:aa:02:23:87:71:a0:a3:99:d0:8e:1c:6b:b9:6c:59: 72:68:d5:09:82:b0:a3:af:dc:01:a6:df:24:99:73:59:e2:bf: 46:0c:f8:ee:af:d9:2e:f2:78:3b:1c:ac:96:e8:ed:75:77:e5: 63:4c:5e:a3:e4:54:de:5c:b5:f9:f4:ff:97:4b:0d:83:90:e2: 2e:fd:4a:23 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHiAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE1NDJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKEY5REE4ODNBNDNEM0Ey RDJBMEVEN0MwREVERkZBNTU4OTIxQzQ5RDQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDgzzN/LH50Vj4ZHFMe8lK0bajpJzYwBhUse8NlFr44r3bNj21s 1M3p9xgjJxQz+7j+Vv2ptaPWTydFHGzwxoTI2Szt+xC3IDb1iL2vvMnvkZZTE6ol rNo6LnU1NQN1sk2dIDufMajOdG3ocKp5DLrF/FvcmaCYBnF6LQduLqQAL0FV2VxX VbL628mkUd2OwJyEOFS371fjvSVset1RBlAKljYrguspGaSIxcijr/N/6oM+bxJm kvk9wBB833yZGOtR5eK9AUyKiFcnqYhMzISLNMelUkCdcfW5KcWfgUb+G8IFAhd3 xoAOGGoVu6Krm3281+GaPQz7rCvEWm4J36obAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQU+dqIOkPTotKg7XwN7f+lWJIcSdQwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVULy1kcUlPa1BUb3RLZzdYd043 Zi1sV0pJY1NkUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx nggwDQYJKoZIhvcNAQELBQADggEBABbkLFC6sFmHpIfKrpHBI14VXdBZPCVPA3dR w1Jkb1gxALvDG9YsQ9pRrL5309yS8RSWzJH0C4s3CSMIF+4KOJI5vfqdaPaHbUsr lRDIqoKnS6ZXwkDVvIdt48nqHsfGtB8BfCa2x4JrZUSH46KBbtQoUa7XDsJxXRoK YLq3j46hwQH5J+UWPFsg58WGKN3fWAR56Vn/GwnwTLa1RVCF9lvoXLQZxXEqt5oz lYR883nys0C5fJJ2WqoCI4dxoKOZ0I4ca7lsWXJo1QmCsKOv3AGm3ySZc1niv0YM +O6v2S7yeDscrJbo7XV35WNMXqPkVN5ctfn0/5dLDYOQ4i79SiM= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:07 2024 by rpki-client on console-fra.rpki-client.org