$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Amnf1rWrG9j5glSMIs-YWtk6TQM.roa File: Amnf1rWrG9j5glSMIs-YWtk6TQM.roa (raw, json) Hash identifier: gmLo92Y6InOceWO4cke4zz6192bgYHsCBf/Hu/5hrq8= Subject key identifier: 02:69:DF:D6:B5:AB:1B:D8:F9:82:54:8C:22:CF:98:5A:D9:3A:4D:03 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1EBC Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Amnf1rWrG9j5glSMIs-YWtk6TQM.roa Signing time: Fri 01 Sep 2023 10:16:24 +0000 ROA not before: Fri 01 Sep 2023 10:16:24 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24164 IP address blocks: 49.159.16.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 23:59:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7868 (0x1ebc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:16:24 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=0269DFD6B5AB1BD8F982548C22CF985AD93A4D03 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:04:a4:04:ec:10:58:fa:6f:36:e7:95:fb:8a: fb:43:f3:0f:52:4c:6b:23:91:24:15:51:13:13:e6: 38:05:2b:e9:d9:df:70:93:79:7d:e0:db:9f:b2:e6: 92:d7:e1:68:47:ba:4e:3f:42:2a:bc:21:20:ad:1a: 8c:df:8f:41:4e:4d:12:95:15:b9:c2:fb:6d:5b:9a: 0e:f5:84:b0:10:7c:45:74:66:8c:a3:a7:fc:65:af: 02:74:55:df:0f:cc:e0:93:8b:12:37:af:bb:56:ac: 76:5c:67:cd:1e:44:8e:4e:21:1b:cb:77:b4:7c:27: b9:c5:be:7d:bf:35:34:12:cd:33:d9:f5:5d:51:02: da:c0:e0:5d:b6:37:67:da:cc:c9:0c:b1:bf:10:14: 31:75:52:c4:81:77:11:ec:c8:0f:c0:cf:ea:19:6b: 98:5d:52:22:89:25:5d:a5:35:50:3b:6a:b6:31:7b: ab:2e:cc:c5:ab:41:63:78:5e:23:b7:87:54:eb:e2: 08:74:60:a0:d5:ec:ec:7c:a1:89:41:62:ec:9f:ea: 3a:52:37:6c:66:9b:7e:89:f8:62:e8:94:4b:27:00: 53:bb:6b:6d:37:9d:6b:75:b2:4d:fa:76:c1:fa:21: b2:ac:28:18:b1:97:f0:31:6b:f3:f5:b8:13:e4:66: ac:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:69:DF:D6:B5:AB:1B:D8:F9:82:54:8C:22:CF:98:5A:D9:3A:4D:03 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Amnf1rWrG9j5glSMIs-YWtk6TQM.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.16.0/21 Signature Algorithm: sha256WithRSAEncryption 3f:3f:88:64:0f:a6:3a:6e:b5:82:35:4f:ad:fe:cb:52:bc:4a: 94:b0:93:be:62:6f:9e:d0:07:f6:b2:70:c7:cc:30:fa:f4:ef: 4b:3c:87:99:23:3a:b7:d2:06:c9:58:57:c4:19:ae:98:09:f6: 8f:a4:1e:9b:70:84:b7:e9:c1:fa:f9:75:8c:2e:99:18:77:9c: 8e:95:e6:27:b6:02:8c:f1:3f:97:a5:33:37:47:73:67:e0:58: 93:91:41:77:00:f1:4c:00:9b:2c:82:f2:ea:45:36:ea:0e:aa: a3:5f:f9:66:32:c3:d7:70:eb:bd:dd:10:24:87:f1:fe:bd:57: 47:7c:d0:cc:72:12:54:9b:87:80:53:86:93:a5:fe:be:74:55: 48:83:08:b2:1f:3a:36:fb:29:39:7c:75:b8:c4:3e:bd:4b:16: e8:c4:f0:96:1f:3a:c7:11:83:ca:9f:42:57:89:76:1f:b1:90: ed:1d:0f:0f:77:f9:7c:02:70:bf:29:58:9c:ca:9d:05:b6:ad: 6f:17:7c:54:62:66:5d:9a:a3:bd:dd:25:21:24:1c:8b:e8:a2: 47:f0:ef:ee:cd:f1:b5:78:79:69:cf:17:3b:51:3b:4c:8f:57: 24:bf:30:a9:82:45:b9:d0:2f:59:9c:d2:df:ba:f2:be:e4:97: 1e:9c:db:ea -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHrwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE2MjRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDAyNjlERkQ2QjVBQjFC RDhGOTgyNTQ4QzIyQ0Y5ODVBRDkzQTREMDMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRBKQE7BBY+m8255X7ivtD8w9STGsjkSQVURMT5jgFK+nZ33CT eX3g25+y5pLX4WhHuk4/Qiq8ISCtGozfj0FOTRKVFbnC+21bmg71hLAQfEV0Zoyj p/xlrwJ0Vd8PzOCTixI3r7tWrHZcZ80eRI5OIRvLd7R8J7nFvn2/NTQSzTPZ9V1R AtrA4F22N2fazMkMsb8QFDF1UsSBdxHsyA/Az+oZa5hdUiKJJV2lNVA7arYxe6su zMWrQWN4XiO3h1Tr4gh0YKDV7Ox8oYlBYuyf6jpSN2xmm36J+GLolEsnAFO7a203 nWt1sk36dsH6IbKsKBixl/Axa/P1uBPkZqyTAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUAmnf1rWrG9j5glSMIs+YWtk6TQMwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0FtbmYxcldyRzlqNWdsU01J cy1ZV3RrNlRRTS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx nxAwDQYJKoZIhvcNAQELBQADggEBAD8/iGQPpjputYI1T63+y1K8SpSwk75ib57Q B/aycMfMMPr070s8h5kjOrfSBslYV8QZrpgJ9o+kHptwhLfpwfr5dYwumRh3nI6V 5ie2AozxP5elMzdHc2fgWJORQXcA8UwAmyyC8upFNuoOqqNf+WYyw9dw673dECSH 8f69V0d80MxyElSbh4BThpOl/r50VUiDCLIfOjb7KTl8dbjEPr1LFujE8JYfOscR g8qfQleJdh+xkO0dDw93+XwCcL8pWJzKnQW2rW8XfFRiZl2ao73dJSEkHIvookfw 7+7N8bV4eWnPFztRO0yPVyS/MKmCRbnQL1mc0t+68r7klx6c2+o= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:07 2024 by rpki-client on console-fra.rpki-client.org