$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/HWK8wwY0TR5retrqUhWtmHo4efg.roa File: HWK8wwY0TR5retrqUhWtmHo4efg.roa (raw, json) Hash identifier: Ti6I3q/5jdZbpcuqLPwEGKhhKLu4vhgOWWAwoIv61yQ= Subject key identifier: 1D:62:BC:C3:06:34:4D:1E:6B:7A:DA:EA:52:15:AD:98:7A:38:79:F8 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1E39 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/HWK8wwY0TR5retrqUhWtmHo4efg.roa Signing time: Fri 01 Sep 2023 10:15:48 +0000 ROA not before: Fri 01 Sep 2023 10:15:48 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24164 IP address blocks: 49.159.0.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 23:59:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7737 (0x1e39) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:15:48 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=1D62BCC306344D1E6B7ADAEA5215AD987A3879F8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:45:7c:c3:f8:66:d0:e4:36:bf:3f:41:23:f1: ea:a1:1c:81:49:e8:53:5b:fa:37:40:9e:0c:1f:97: 02:3e:e4:df:05:13:ef:85:41:42:99:38:58:ec:72: f6:56:eb:cb:4e:ee:22:13:45:2b:da:8f:2e:24:97: 27:d3:4e:63:2c:f2:c9:14:91:70:fc:b3:18:a9:ca: ca:9a:61:a1:97:65:c1:2f:96:92:c3:10:15:03:47: 40:8b:cd:3d:78:a1:db:1d:41:ca:26:aa:82:e5:64: 8f:30:88:b0:c4:ec:f2:d3:7c:d4:bf:81:ff:7c:31: a5:be:49:ee:54:f1:8b:5a:fa:17:9c:ca:4b:23:0f: 01:3c:07:c7:26:5d:50:6c:a9:f1:62:06:c3:8a:64: 9b:e7:cf:1e:42:48:81:6d:9b:38:39:8e:b1:64:20: 52:2f:b7:f1:bc:f2:8a:c7:d1:2b:98:8e:80:9c:d1: 5c:9f:e1:a4:65:aa:d7:ff:5d:f7:35:43:c5:2a:5d: a2:57:f6:c2:08:ad:ba:2e:5a:90:2e:0c:2a:24:43: f6:e6:1c:b9:6c:04:ce:42:c1:52:5e:38:d6:43:c5: 92:1b:6b:13:8b:a8:e4:44:68:93:f6:12:9f:8b:e0: 7f:2f:41:3d:e7:37:92:7d:c9:b7:b0:5b:35:17:4b: 89:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:62:BC:C3:06:34:4D:1E:6B:7A:DA:EA:52:15:AD:98:7A:38:79:F8 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/HWK8wwY0TR5retrqUhWtmHo4efg.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.159.0.0/22 Signature Algorithm: sha256WithRSAEncryption 93:c2:ba:51:f9:21:16:21:69:a2:1a:7a:72:99:35:d1:46:07: df:57:b1:2e:3a:8b:4d:14:9b:f3:47:ba:91:cb:37:bf:bd:c9: c8:24:43:00:6d:05:dc:a2:d7:d3:40:84:0d:2e:96:1a:47:01: d1:72:ff:b9:50:9a:66:83:fc:38:51:ba:21:6a:d7:1a:97:26: 08:44:80:a8:e8:31:5b:08:d2:c0:80:58:84:b1:d4:99:c1:37: 59:74:e6:22:87:c8:a7:dd:d3:f1:bd:6a:ed:9f:5d:fc:9d:c3: ea:71:c6:7d:55:89:f9:f4:20:f7:ec:3c:d6:c4:15:e8:ea:4a: a3:25:bb:38:a1:67:76:d2:71:a8:b8:2b:50:08:7c:1b:ec:6a: ec:48:44:bf:28:31:60:cd:15:66:1c:c1:ff:b2:69:59:c6:87: 85:37:f9:0d:c1:92:62:10:95:b1:14:4d:e6:13:80:a8:5f:80: ba:98:3b:ee:39:df:ca:f7:e6:87:1a:fe:4d:6f:5e:a0:ae:ab: dd:51:49:db:11:2e:f7:50:21:9f:05:47:bd:af:31:37:9d:89: 22:5d:80:df:52:95:19:a2:ee:df:eb:4e:6f:fc:04:0f:36:8c: 7d:f0:02:71:74:48:23:fa:dc:bc:b4:a8:c2:33:df:6f:71:e2: 23:1b:13:d9 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHjkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE1NDhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDFENjJCQ0MzMDYzNDRE MUU2QjdBREFFQTUyMTVBRDk4N0EzODc5RjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9RXzD+GbQ5Da/P0Ej8eqhHIFJ6FNb+jdAngwflwI+5N8FE++F QUKZOFjscvZW68tO7iITRSvajy4klyfTTmMs8skUkXD8sxipysqaYaGXZcEvlpLD EBUDR0CLzT14odsdQcomqoLlZI8wiLDE7PLTfNS/gf98MaW+Se5U8Yta+hecyksj DwE8B8cmXVBsqfFiBsOKZJvnzx5CSIFtmzg5jrFkIFIvt/G88orH0SuYjoCc0Vyf 4aRlqtf/Xfc1Q8UqXaJX9sIIrbouWpAuDCokQ/bmHLlsBM5CwVJeONZDxZIbaxOL qOREaJP2Ep+L4H8vQT3nN5J9ybewWzUXS4lhAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUHWK8wwY0TR5retrqUhWtmHo4efgwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0hXSzh3d1kwVFI1cmV0cnFV aFd0bUhvNGVmZy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAIx nwAwDQYJKoZIhvcNAQELBQADggEBAJPCulH5IRYhaaIaenKZNdFGB99XsS46i00U m/NHupHLN7+9ycgkQwBtBdyi19NAhA0ulhpHAdFy/7lQmmaD/DhRuiFq1xqXJghE gKjoMVsI0sCAWISx1JnBN1l05iKHyKfd0/G9au2fXfydw+pxxn1Vifn0IPfsPNbE FejqSqMluzihZ3bScai4K1AIfBvsauxIRL8oMWDNFWYcwf+yaVnGh4U3+Q3BkmIQ lbEUTeYTgKhfgLqYO+4538r35oca/k1vXqCuq91RSdsRLvdQIZ8FR72vMTediSJd gN9SlRmi7t/rTm/8BA82jH3wAnF0SCP63Ly0qMIz329x4iMbE9k= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:07 2024 by rpki-client on console-fra.rpki-client.org