$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/IWtFJFacUwCXpIIy7aebHaiwCko.roa File: IWtFJFacUwCXpIIy7aebHaiwCko.roa (raw, json) Hash identifier: hLz9k20vlkOoFHuHKRyjwpzqEnrIwu7XRhwFtFppZvQ= Subject key identifier: 21:6B:45:24:56:9C:53:00:97:A4:82:32:ED:A7:9B:1D:A8:B0:0A:4A Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1EBF Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/IWtFJFacUwCXpIIy7aebHaiwCko.roa Signing time: Fri 01 Sep 2023 10:16:24 +0000 ROA not before: Fri 01 Sep 2023 10:16:24 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24164 IP address blocks: 49.158.88.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 23:59:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7871 (0x1ebf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:16:24 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=216B4524569C530097A48232EDA79B1DA8B00A4A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:31:43:85:d5:d9:4f:d0:54:af:a6:d3:a7:98: ed:b0:7e:7c:cb:f0:6a:24:25:6a:25:ee:d8:e4:16: bd:ee:d8:bb:71:eb:90:4f:59:cf:40:44:29:01:23: 20:76:93:7b:fb:b7:93:30:56:b6:69:59:f0:e1:16: a3:b7:f3:d2:3d:b9:16:9d:35:d7:4c:7f:9b:f2:73: 58:10:7b:16:3b:8e:5c:1c:ac:c2:03:64:b5:91:ae: 05:a5:b6:ec:e3:81:d2:0f:26:88:85:d6:24:8f:1d: 25:cb:12:09:a5:4e:7d:5e:a8:84:7b:99:87:9d:47: 45:16:fd:61:87:ed:e0:96:e9:db:82:28:20:9b:2c: db:21:4b:c7:a9:f2:8c:1d:38:4f:ec:9a:f9:29:5b: 14:8c:74:55:08:11:e1:b6:8c:29:6e:37:49:73:6f: ce:b6:4f:77:67:23:76:88:8e:0f:21:fd:98:b7:52: 31:0d:ef:51:f3:c7:42:3e:d9:0a:dc:b2:c8:71:fb: 5f:07:05:07:79:bc:69:76:e7:ad:d1:75:c8:8d:58: 58:14:28:bc:85:40:92:96:84:89:c9:58:50:1f:be: 92:ff:fa:fa:23:09:0b:1d:04:ff:2d:d7:2b:fe:e7: 65:cb:e6:a7:0b:5d:22:da:49:49:36:a9:e5:b0:1f: e8:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:6B:45:24:56:9C:53:00:97:A4:82:32:ED:A7:9B:1D:A8:B0:0A:4A X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/IWtFJFacUwCXpIIy7aebHaiwCko.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.88.0/21 Signature Algorithm: sha256WithRSAEncryption 27:85:f8:dd:23:f2:32:db:a2:f3:28:5a:d5:43:f0:2b:a3:7e: 89:06:be:87:c3:72:44:52:5c:22:17:e2:4e:cb:5f:4e:18:76: 8b:cc:a9:60:cc:a7:3c:8f:b4:c0:cf:d8:8d:83:f5:9a:5e:55: e7:a3:a3:93:81:e8:ca:03:1f:b4:bb:9d:6f:ff:42:ab:f6:98: 77:9d:f1:d5:f5:6b:be:a5:1e:06:e4:82:77:76:a5:9e:8f:31: e6:2a:0f:05:dc:e2:fc:b3:d3:25:3c:8f:d3:ff:ae:71:14:b2: 3c:a1:3e:24:a9:ba:f1:d4:9a:41:3e:70:c2:dc:5b:e5:d7:43: c2:dd:87:26:b1:22:d7:72:c3:4e:48:c2:a1:fc:6a:04:eb:8f: 5d:28:cf:d2:b5:6a:ab:d6:1b:93:53:a8:4f:8f:b9:29:ed:32: 5c:d9:2e:dd:f4:48:7c:c5:73:c1:5e:81:9c:a2:bf:70:67:78: 5f:3c:23:87:93:bf:d2:ae:67:4c:95:8d:11:77:d8:c4:02:13: ea:6e:54:74:26:d9:3d:5d:fd:2b:90:79:1f:a6:dd:10:10:b6: 28:2e:cf:de:5d:78:b9:c1:56:bc:d2:f8:f7:3d:3a:15:7d:1c: 8e:61:62:1a:7d:55:cf:f8:53:36:39:5d:3f:2f:75:74:e3:a2: 8b:25:61:4e -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHr8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE2MjRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDIxNkI0NTI0NTY5QzUz MDA5N0E0ODIzMkVEQTc5QjFEQThCMDBBNEEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLMUOF1dlP0FSvptOnmO2wfnzL8GokJWol7tjkFr3u2Ltx65BP Wc9ARCkBIyB2k3v7t5MwVrZpWfDhFqO389I9uRadNddMf5vyc1gQexY7jlwcrMID ZLWRrgWltuzjgdIPJoiF1iSPHSXLEgmlTn1eqIR7mYedR0UW/WGH7eCW6duCKCCb LNshS8ep8owdOE/smvkpWxSMdFUIEeG2jCluN0lzb862T3dnI3aIjg8h/Zi3UjEN 71Hzx0I+2Qrcsshx+18HBQd5vGl2563RdciNWFgUKLyFQJKWhInJWFAfvpL/+voj CQsdBP8t1yv+52XL5qcLXSLaSUk2qeWwH+hRAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUIWtFJFacUwCXpIIy7aebHaiwCkowHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0lXdEZKRmFjVXdDWHBJSXk3 YWViSGFpd0Nrby5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAMx nlgwDQYJKoZIhvcNAQELBQADggEBACeF+N0j8jLbovMoWtVD8CujfokGvofDckRS XCIX4k7LX04YdovMqWDMpzyPtMDP2I2D9ZpeVeejo5OB6MoDH7S7nW//Qqv2mHed 8dX1a76lHgbkgnd2pZ6PMeYqDwXc4vyz0yU8j9P/rnEUsjyhPiSpuvHUmkE+cMLc W+XXQ8LdhyaxItdyw05IwqH8agTrj10oz9K1aqvWG5NTqE+PuSntMlzZLt30SHzF c8FegZyiv3BneF88I4eTv9KuZ0yVjRF32MQCE+puVHQm2T1d/SuQeR+m3RAQtigu z95deLnBVrzS+Pc9OhV9HI5hYhp9Vc/4UzY5XT8vdXTjooslYU4= -----END CERTIFICATE-----Generated at Mon Jun 3 04:22:02 2024 by rpki-client on console-ams.rpki-client.org