$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/IOSQB1cQT6tc9OSrKyEML7OtosI.roa File: IOSQB1cQT6tc9OSrKyEML7OtosI.roa (raw, json) Hash identifier: f4Zzqlu1OwEV+zf0m8e8pPhFitCMKNJCTQFlvC++XG8= Subject key identifier: 20:E4:90:07:57:10:4F:AB:5C:F4:E4:AB:2B:21:0C:2F:B3:AD:A2:C2 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1E6E Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/IOSQB1cQT6tc9OSrKyEML7OtosI.roa Signing time: Fri 01 Sep 2023 10:16:02 +0000 ROA not before: Fri 01 Sep 2023 10:16:02 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24163 IP address blocks: 119.77.140.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 23:59:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7790 (0x1e6e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:16:02 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=20E4900757104FAB5CF4E4AB2B210C2FB3ADA2C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:70:da:5f:c9:1b:68:0d:a3:e6:97:3b:86:94: 59:f7:8b:6c:38:23:95:df:df:12:d7:15:1a:5a:60: 77:fd:26:b7:f2:d0:71:09:e6:93:e6:fe:78:b2:58: 2e:cf:77:90:15:43:75:dd:58:f1:6e:df:49:6b:15: 49:5e:8d:b9:74:f8:f8:7f:d0:bc:a9:68:3e:87:13: 8e:7e:c9:94:67:3b:84:6a:ab:9c:93:45:b2:f2:26: ab:a1:3b:ef:c4:c4:3f:b0:dd:96:0f:94:e6:91:18: ab:ad:14:ca:a8:16:37:d7:56:cb:8d:22:5e:25:c7: f1:69:2b:ad:ee:ec:0b:7b:08:4b:02:4d:11:18:75: 5f:40:0f:4f:97:1e:db:c7:5d:5e:98:f1:71:4f:1f: 77:b7:6a:63:1a:3c:02:b2:c1:ec:cd:9d:38:42:1d: 34:91:0e:c6:c9:5e:9e:9c:38:b6:83:08:6e:e7:a0: dd:61:33:56:fe:40:e0:2c:6c:01:5a:e1:b6:c9:6f: 3a:5e:78:3e:39:b0:d8:9f:93:dd:8a:77:7b:ec:57: f3:91:07:b3:cf:8f:5b:2a:be:9e:15:99:e6:db:d0: 7b:93:3c:2a:b2:47:04:34:bf:41:57:b4:b7:4c:c1: d8:7c:a1:af:ee:03:65:7e:b1:77:fe:e9:e0:7f:55: 2b:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:E4:90:07:57:10:4F:AB:5C:F4:E4:AB:2B:21:0C:2F:B3:AD:A2:C2 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/IOSQB1cQT6tc9OSrKyEML7OtosI.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 119.77.140.0/22 Signature Algorithm: sha256WithRSAEncryption 07:bd:e9:9a:55:a1:ca:e2:92:0f:0c:90:04:73:78:68:16:12: 52:13:c9:dd:e0:53:db:97:6e:45:95:df:a7:7a:63:00:ad:0a: 0c:dd:2f:70:fd:91:f7:e5:cc:70:a4:fc:4e:0e:5c:b5:c8:a6: 42:9d:4d:e7:ad:fe:1e:3d:bc:fe:9a:35:46:5b:d0:6d:64:cc: 0d:c2:69:8d:25:38:e5:5b:a8:76:33:f6:3d:72:3d:39:bc:55: 17:19:ce:ad:91:bc:6e:aa:a0:b4:3f:32:5a:88:b5:ca:89:bc: c2:5d:0b:e8:35:d5:46:43:fe:d4:63:ee:1b:fb:8b:10:e6:c9: e2:37:9b:f0:c8:3b:f9:4f:e9:b7:75:d9:ce:a3:81:30:ac:93: f8:87:7c:93:7f:cc:9e:6d:c7:ce:46:42:8d:fd:2f:e7:32:9f: ee:73:b8:f7:8e:8b:10:a1:84:48:6a:7b:ec:7a:a7:e7:a2:50: 4a:3d:a5:e9:7b:0f:58:61:c6:7d:b3:59:33:f6:ec:da:e3:1d: f9:e4:56:58:65:f8:ba:20:4d:d5:71:23:45:98:44:b8:aa:93: a3:04:aa:dd:94:57:9d:b8:2d:0b:d9:f1:f6:87:d2:d9:1a:7d: fd:f7:07:58:2a:60:d3:ae:6b:b1:dd:a1:c8:52:ab:80:f4:73: 55:26:58:da -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHm4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE2MDJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDIwRTQ5MDA3NTcxMDRG QUI1Q0Y0RTRBQjJCMjEwQzJGQjNBREEyQzIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCtcNpfyRtoDaPmlzuGlFn3i2w4I5Xf3xLXFRpaYHf9Jrfy0HEJ 5pPm/niyWC7Pd5AVQ3XdWPFu30lrFUlejbl0+Ph/0LypaD6HE45+yZRnO4Rqq5yT RbLyJquhO+/ExD+w3ZYPlOaRGKutFMqoFjfXVsuNIl4lx/FpK63u7At7CEsCTREY dV9AD0+XHtvHXV6Y8XFPH3e3amMaPAKywezNnThCHTSRDsbJXp6cOLaDCG7noN1h M1b+QOAsbAFa4bbJbzpeeD45sNifk92Kd3vsV/ORB7PPj1sqvp4Vmebb0HuTPCqy RwQ0v0FXtLdMwdh8oa/uA2V+sXf+6eB/VSvdAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUIOSQB1cQT6tc9OSrKyEML7OtosIwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0lPU1FCMWNRVDZ0YzlPU3JL eUVNTDdPdG9zSS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAJ3 TYwwDQYJKoZIhvcNAQELBQADggEBAAe96ZpVocrikg8MkARzeGgWElITyd3gU9uX bkWV36d6YwCtCgzdL3D9kfflzHCk/E4OXLXIpkKdTeet/h49vP6aNUZb0G1kzA3C aY0lOOVbqHYz9j1yPTm8VRcZzq2RvG6qoLQ/MlqItcqJvMJdC+g11UZD/tRj7hv7 ixDmyeI3m/DIO/lP6bd12c6jgTCsk/iHfJN/zJ5tx85GQo39L+cyn+5zuPeOixCh hEhqe+x6p+eiUEo9pel7D1hhxn2zWTP27NrjHfnkVlhl+LogTdVxI0WYRLiqk6ME qt2UV524LQvZ8faH0tkaff33B1gqYNOua7HdochSq4D0c1UmWNo= -----END CERTIFICATE-----Generated at Mon Jun 3 04:22:02 2024 by rpki-client on console-ams.rpki-client.org