$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/F96G8i45hZ9-SyBsE51D3DITjhU.roa File: F96G8i45hZ9-SyBsE51D3DITjhU.roa (raw, json) Hash identifier: OOXxqQQHRDiQwTgFdLcAm+WwW7jVER7KVQH+5vTdUmw= Subject key identifier: 17:DE:86:F2:2E:39:85:9F:7E:4B:20:6C:13:9D:43:DC:32:13:8E:15 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1D71 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/F96G8i45hZ9-SyBsE51D3DITjhU.roa Signing time: Fri 01 Sep 2023 10:14:49 +0000 ROA not before: Fri 01 Sep 2023 10:14:49 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24165 IP address blocks: 122.254.8.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 23:59:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7537 (0x1d71) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:14:49 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=17DE86F22E39859F7E4B206C139D43DC32138E15 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:cd:74:6f:ae:0b:69:f7:a9:fd:c3:24:4c:bb: 6a:c8:b3:e9:e6:5f:48:45:0a:a1:9b:e8:5e:c7:fa: 43:dc:81:e6:c4:10:60:c3:e5:58:37:cd:f9:af:bd: 92:d8:b1:88:8a:43:b6:36:a5:03:43:6e:72:7b:1d: 43:24:3e:5f:ff:67:ae:1c:65:18:3a:38:e0:d2:c0: 96:22:e2:f2:10:b4:0e:43:23:7e:98:79:48:e5:1e: e9:a6:f8:02:92:1e:e8:4c:b9:17:36:47:5b:d8:53: 18:be:45:8e:2e:80:64:d9:c5:4f:bf:76:31:e1:8e: e8:58:3d:b3:aa:66:6e:5c:fd:e7:f3:c8:39:da:7b: 07:76:ed:53:60:ed:d8:0a:91:92:d0:af:7e:96:3b: df:c5:50:7a:4f:84:df:3e:84:19:6e:4b:eb:32:54: 6f:c5:bf:a8:3d:b1:24:70:89:f0:cb:e9:76:16:79: 6c:1d:35:eb:48:8e:ea:e2:db:77:86:d6:11:e4:f9: 8b:a7:3f:94:2d:42:fb:49:e6:2d:1d:0f:dc:97:81: 9b:12:04:dc:86:fc:41:b8:c2:32:cb:af:2c:03:b5: 6c:4b:9d:95:f9:0c:3d:ab:3e:5f:e8:cc:31:70:2b: 65:b6:eb:c5:46:3d:6c:10:7f:7c:47:7e:85:11:19: 8b:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:DE:86:F2:2E:39:85:9F:7E:4B:20:6C:13:9D:43:DC:32:13:8E:15 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/F96G8i45hZ9-SyBsE51D3DITjhU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 122.254.8.0/21 Signature Algorithm: sha256WithRSAEncryption 0c:4e:34:16:ce:50:4a:7b:48:ef:28:3f:11:97:3f:9e:10:f2: 26:cb:66:10:a0:b2:0f:9b:01:6e:97:ad:69:51:b9:15:c7:e5: 53:e9:fe:f9:aa:fa:2e:a9:5d:25:a9:16:bb:d5:59:e1:03:b7: 3a:e9:6e:91:c0:a4:61:cd:0e:b1:3a:7c:92:86:23:0d:dc:6e: c1:64:85:62:78:bf:48:8e:93:a6:33:7a:88:a4:0b:be:14:18: ee:4f:28:44:2a:3e:de:87:70:27:be:a8:7b:fc:21:22:74:a3: 2b:b0:d3:82:c5:9f:9f:2a:58:b7:eb:d4:9e:f8:42:ef:ab:c8: 9a:9c:be:62:1a:98:2a:f6:d3:e8:e3:e3:93:4e:43:08:05:1c: 78:3e:11:ff:e5:b0:38:ab:9e:a6:5d:d7:65:22:b4:f2:9e:86: 55:a0:40:46:cb:1c:c9:37:c1:b3:04:a8:c6:a9:38:88:af:72: 88:26:9f:ea:0c:73:2e:ec:99:eb:54:81:4c:c6:b8:67:1c:ed: 9c:f4:48:0b:cd:a6:00:87:73:c2:28:87:aa:1e:fa:df:e6:0f: c3:4c:6b:84:f6:98:06:d2:d1:61:2e:64:c5:ba:df:d4:fe:40: fc:06:88:ce:99:11:14:83:30:82:ce:11:b9:67:52:47:c3:4d: f8:8d:b0:79 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHXEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE0NDlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDE3REU4NkYyMkUzOTg1 OUY3RTRCMjA2QzEzOUQ0M0RDMzIxMzhFMTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDazXRvrgtp96n9wyRMu2rIs+nmX0hFCqGb6F7H+kPcgebEEGDD 5Vg3zfmvvZLYsYiKQ7Y2pQNDbnJ7HUMkPl//Z64cZRg6OODSwJYi4vIQtA5DI36Y eUjlHumm+AKSHuhMuRc2R1vYUxi+RY4ugGTZxU+/djHhjuhYPbOqZm5c/efzyDna ewd27VNg7dgKkZLQr36WO9/FUHpPhN8+hBluS+syVG/Fv6g9sSRwifDL6XYWeWwd NetIjuri23eG1hHk+YunP5QtQvtJ5i0dD9yXgZsSBNyG/EG4wjLLrywDtWxLnZX5 DD2rPl/ozDFwK2W268VGPWwQf3xHfoURGYtfAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUF96G8i45hZ9+SyBsE51D3DITjhUwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0Y5Nkc4aTQ1aFo5LVN5QnNF NTFEM0RJVGpoVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAN6 /ggwDQYJKoZIhvcNAQELBQADggEBAAxONBbOUEp7SO8oPxGXP54Q8ibLZhCgsg+b AW6XrWlRuRXH5VPp/vmq+i6pXSWpFrvVWeEDtzrpbpHApGHNDrE6fJKGIw3cbsFk hWJ4v0iOk6YzeoikC74UGO5PKEQqPt6HcCe+qHv8ISJ0oyuw04LFn58qWLfr1J74 Qu+ryJqcvmIamCr20+jj45NOQwgFHHg+Ef/lsDirnqZd12UitPKehlWgQEbLHMk3 wbMEqMapOIivcogmn+oMcy7smetUgUzGuGcc7Zz0SAvNpgCHc8Ioh6oe+t/mD8NM a4T2mAbS0WEuZMW639T+QPwGiM6ZERSDMILOEblnUkfDTfiNsHk= -----END CERTIFICATE-----Generated at Mon Jun 3 04:22:02 2024 by rpki-client on console-ams.rpki-client.org