$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/IKxQM5Txom7XqlPJwxCTgnWQNUc.roa File: IKxQM5Txom7XqlPJwxCTgnWQNUc.roa (raw, json) Hash identifier: gzo6hANfLIfWVQg3Ra7uHMjUWOtBWaFpLZxUeCyCCTQ= Subject key identifier: 20:AC:50:33:94:F1:A2:6E:D7:AA:53:C9:C3:10:93:82:75:90:35:47 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1DDF Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/IKxQM5Txom7XqlPJwxCTgnWQNUc.roa Signing time: Fri 01 Sep 2023 10:15:24 +0000 ROA not before: Fri 01 Sep 2023 10:15:24 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24164 IP address blocks: 180.218.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 23:59:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7647 (0x1ddf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:15:24 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=20AC503394F1A26ED7AA53C9C310938275903547 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:cd:70:85:11:75:c2:2f:1e:c4:41:93:8b:e0: e2:3f:38:e4:2f:1e:36:67:38:a6:7c:73:3e:d9:3c: ef:41:05:2c:26:a3:9f:91:fe:ad:7e:de:bf:16:9d: 2d:8e:45:09:15:a9:ab:02:71:5e:ad:82:dd:f4:45: 28:f6:90:4e:a7:62:4d:2b:63:63:da:7b:b4:0b:2f: 3e:42:67:14:54:4d:18:10:48:8e:da:d8:03:68:68: 1c:15:58:89:da:28:94:f4:95:cc:34:2c:e2:2d:6f: ce:b8:04:d3:8a:a4:8b:72:8d:16:66:42:04:d8:c2: e9:ce:cd:fb:eb:e5:05:bd:06:8b:38:0e:46:17:bf: 13:f7:5b:e9:fd:12:00:fb:d5:b2:08:d6:b2:b6:91: 1d:26:b8:1d:2d:a1:1b:55:21:04:06:e2:e1:8e:5b: c1:06:96:c0:e0:e0:ab:ef:3d:e4:14:28:14:fa:9b: f5:21:61:9b:d7:28:8d:fa:3e:72:29:2c:27:94:3b: 92:11:c8:25:f7:7a:22:fc:1b:7c:03:80:8f:ef:aa: f5:47:1b:3f:a5:f3:81:c1:06:76:0a:bd:d8:1b:f9: a2:22:13:da:d5:83:a0:5f:30:3b:ab:22:38:45:d1: 74:c9:f7:2c:20:b4:e0:0d:6e:2c:60:22:2e:89:48: e6:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:AC:50:33:94:F1:A2:6E:D7:AA:53:C9:C3:10:93:82:75:90:35:47 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/IKxQM5Txom7XqlPJwxCTgnWQNUc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.56.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:5b:37:1e:5e:f0:c8:3c:32:10:12:cc:e5:af:0a:56:48:41: b3:c2:2c:11:73:a8:60:2c:c2:5b:02:9b:88:e2:6e:bf:aa:d8: 89:8f:bf:1a:c4:e6:71:c6:8e:b4:3c:2f:c7:c4:67:15:87:9f: 6b:7f:75:83:b9:8f:8c:4c:4d:d1:12:f9:0e:c4:c9:39:f7:3b: 69:e0:28:e7:94:96:b9:64:b9:65:bf:0b:59:6a:76:db:ea:38: 30:7a:bd:57:2b:43:e6:b7:49:83:1f:6d:2e:1e:14:eb:13:0e: 3d:54:6b:a9:b3:b3:48:0b:fd:ab:77:68:7a:6d:e3:8c:91:e8: ba:a3:48:61:eb:fc:fe:c4:e2:db:41:38:fe:aa:0b:f6:7b:fd: 74:97:2c:78:df:ce:5d:4a:57:12:2f:7b:5b:04:0d:7b:2c:78: c7:ce:db:ed:e4:56:c0:9a:3a:d0:f8:e7:e6:74:22:75:f8:1f: 0e:cc:e0:53:3d:cc:34:13:30:39:50:6e:78:9f:e9:a3:3a:1f: ba:0f:2e:2f:ee:5d:1a:aa:9b:cc:a6:65:29:b7:dc:ad:0f:84: fa:46:52:9b:92:c6:4e:d0:d4:dc:64:d9:af:72:c4:cc:56:bf: a5:5e:8b:f1:fa:b6:e5:2e:c6:d6:56:26:9c:43:67:69:38:49: f9:9e:cd:53 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHd8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE1MjRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDIwQUM1MDMzOTRGMUEy NkVEN0FBNTNDOUMzMTA5MzgyNzU5MDM1NDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtzXCFEXXCLx7EQZOL4OI/OOQvHjZnOKZ8cz7ZPO9BBSwmo5+R /q1+3r8WnS2ORQkVqasCcV6tgt30RSj2kE6nYk0rY2Pae7QLLz5CZxRUTRgQSI7a 2ANoaBwVWInaKJT0lcw0LOItb864BNOKpItyjRZmQgTYwunOzfvr5QW9Bos4DkYX vxP3W+n9EgD71bII1rK2kR0muB0toRtVIQQG4uGOW8EGlsDg4KvvPeQUKBT6m/Uh YZvXKI36PnIpLCeUO5IRyCX3eiL8G3wDgI/vqvVHGz+l84HBBnYKvdgb+aIiE9rV g6BfMDurIjhF0XTJ9ywgtOANbixgIi6JSOYnAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUIKxQM5Txom7XqlPJwxCTgnWQNUcwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0lLeFFNNVR4b203WHFsUEp3 eENUZ25XUU5VYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAC0 2jgwDQYJKoZIhvcNAQELBQADggEBAJ5bNx5e8Mg8MhASzOWvClZIQbPCLBFzqGAs wlsCm4jibr+q2ImPvxrE5nHGjrQ8L8fEZxWHn2t/dYO5j4xMTdES+Q7EyTn3O2ng KOeUlrlkuWW/C1lqdtvqODB6vVcrQ+a3SYMfbS4eFOsTDj1Ua6mzs0gL/at3aHpt 44yR6LqjSGHr/P7E4ttBOP6qC/Z7/XSXLHjfzl1KVxIve1sEDXsseMfO2+3kVsCa OtD45+Z0InX4Hw7M4FM9zDQTMDlQbnif6aM6H7oPLi/uXRqqm8ymZSm33K0PhPpG UpuSxk7Q1Nxk2a9yxMxWv6Vei/H6tuUuxtZWJpxDZ2k4SfmezVM= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:07 2024 by rpki-client on console-fra.rpki-client.org