$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/I_8qcrF9uWBrMkt-XhpjVsgfD3k.roa File: I_8qcrF9uWBrMkt-XhpjVsgfD3k.roa (raw, json) Hash identifier: 58uornqWK/vtWG/VETniyve+WRMcqWHYjR09AUUHoK8= Subject key identifier: 23:FF:2A:72:B1:7D:B9:60:6B:32:4B:7E:5E:1A:63:56:C8:1F:0F:79 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1DC6 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/I_8qcrF9uWBrMkt-XhpjVsgfD3k.roa Signing time: Fri 01 Sep 2023 10:15:16 +0000 ROA not before: Fri 01 Sep 2023 10:15:16 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24164 IP address blocks: 49.158.136.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 23:59:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7622 (0x1dc6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:15:16 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=23FF2A72B17DB9606B324B7E5E1A6356C81F0F79 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:4b:d7:e1:f4:a4:f0:e9:61:80:50:62:1d:e2: 64:d8:7e:75:4b:93:25:6e:c2:3d:c4:d5:1d:f7:21: de:90:f2:ea:84:95:ca:45:83:26:83:75:57:c2:ff: 4e:18:51:1f:a1:2b:58:9a:86:71:87:db:d6:45:e5: 27:38:a4:80:69:c3:1a:01:af:34:c5:ad:4d:e3:05: 26:29:35:8d:5b:9f:8e:74:69:8a:38:34:a0:ad:d6: ab:3e:71:3e:d2:47:70:18:dd:ce:b8:7d:f4:93:2b: e9:19:65:cd:76:f3:c0:5e:18:6f:59:ea:92:40:1f: 80:ec:98:36:32:df:df:d0:ec:fb:26:3d:58:c9:03: c9:29:42:48:45:fc:b1:57:74:cd:74:10:a4:c8:d6: 1c:d2:c7:fb:04:ec:65:a1:1a:f0:18:43:7b:ed:b1: 66:8e:72:47:bf:d0:82:fe:f8:40:cb:a9:57:c8:63: 60:f6:42:3b:15:a5:fb:12:59:d5:34:71:8f:0c:f8: e9:00:e3:2a:ae:0d:ac:03:57:04:dc:d2:30:45:1e: 6f:16:9b:b4:29:0c:a7:b1:31:8e:71:90:1a:af:5a: 64:1c:f1:80:e7:39:41:1e:6b:4f:b1:c4:f6:bf:6c: 7a:05:ad:94:3b:c5:46:81:20:97:78:42:63:b7:ef: 11:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:FF:2A:72:B1:7D:B9:60:6B:32:4B:7E:5E:1A:63:56:C8:1F:0F:79 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/I_8qcrF9uWBrMkt-XhpjVsgfD3k.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 49.158.136.0/24 Signature Algorithm: sha256WithRSAEncryption 0a:a2:24:34:e2:f0:3d:69:2e:8a:0c:c0:11:29:4a:1b:7e:ce: 6c:54:f1:f5:a6:93:db:03:93:21:f2:06:6a:15:19:6d:36:bb: 2d:89:10:a7:ee:0f:e7:95:4a:11:4e:bc:ae:26:8e:55:f7:b4: 5b:51:11:aa:ea:f0:22:8e:9e:ed:bb:37:36:e7:79:d0:5c:f2: 18:50:28:db:f3:79:4e:2b:2e:35:18:45:21:60:7b:4d:e8:54: e7:9a:d2:63:cf:4a:b8:be:e0:44:29:db:b5:27:e9:bf:01:73: 04:64:e0:06:2c:2b:64:a3:77:c2:75:38:be:55:bc:9d:21:41: 16:bb:37:52:f5:4c:a1:f7:38:80:6a:5b:9f:b7:57:17:85:9a: 2f:95:df:62:13:04:a3:74:59:42:69:70:a7:0e:d0:62:95:57: 3d:6f:07:d9:31:88:92:9d:a4:9d:41:9e:c5:0f:bd:44:c3:3f: 96:10:54:b4:e2:e8:55:3f:b6:4e:dd:89:2a:2e:63:6e:8a:76: d3:e2:21:50:d7:93:78:41:89:6b:39:7a:73:53:d1:c5:32:a5: 86:e7:d6:d8:7a:88:f2:e0:33:fa:79:48:42:8c:33:4f:4a:69: 7d:89:ae:a7:ee:d6:22:f2:87:0e:59:c5:ad:ba:dc:24:ef:a3: 42:f6:22:30 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHcYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE1MTZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDIzRkYyQTcyQjE3REI5 NjA2QjMyNEI3RTVFMUE2MzU2QzgxRjBGNzkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDDS9fh9KTw6WGAUGId4mTYfnVLkyVuwj3E1R33Id6Q8uqElcpF gyaDdVfC/04YUR+hK1iahnGH29ZF5Sc4pIBpwxoBrzTFrU3jBSYpNY1bn450aYo4 NKCt1qs+cT7SR3AY3c64ffSTK+kZZc1288BeGG9Z6pJAH4DsmDYy39/Q7PsmPVjJ A8kpQkhF/LFXdM10EKTI1hzSx/sE7GWhGvAYQ3vtsWaOcke/0IL++EDLqVfIY2D2 QjsVpfsSWdU0cY8M+OkA4yquDawDVwTc0jBFHm8Wm7QpDKexMY5xkBqvWmQc8YDn OUEea0+xxPa/bHoFrZQ7xUaBIJd4QmO37xEzAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUI/8qcrF9uWBrMkt+XhpjVsgfD3kwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL0lfOHFjckY5dVdCck1rdC1Y aHBqVnNnZkQzay5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAAx nogwDQYJKoZIhvcNAQELBQADggEBAAqiJDTi8D1pLooMwBEpSht+zmxU8fWmk9sD kyHyBmoVGW02uy2JEKfuD+eVShFOvK4mjlX3tFtREarq8CKOnu27NzbnedBc8hhQ KNvzeU4rLjUYRSFge03oVOea0mPPSri+4EQp27Un6b8BcwRk4AYsK2Sjd8J1OL5V vJ0hQRa7N1L1TKH3OIBqW5+3VxeFmi+V32ITBKN0WUJpcKcO0GKVVz1vB9kxiJKd pJ1BnsUPvUTDP5YQVLTi6FU/tk7diSouY26KdtPiIVDXk3hBiWs5enNT0cUypYbn 1th6iPLgM/p5SEKMM09KaX2Jrqfu1iLyhw5Zxa263CTvo0L2IjA= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:07 2024 by rpki-client on console-fra.rpki-client.org