$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/M2M04y8KlSQ5RONxoSg9R0GvFlU.roa File: M2M04y8KlSQ5RONxoSg9R0GvFlU.roa (raw, json) Hash identifier: NCiFdfUQn3sXZukee0yEHX9y4v1vjF8pnM6jjsYFDps= Subject key identifier: 33:63:34:E3:2F:0A:95:24:39:44:E3:71:A1:28:3D:47:41:AF:16:55 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1E3E Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/M2M04y8KlSQ5RONxoSg9R0GvFlU.roa Signing time: Fri 01 Sep 2023 10:15:49 +0000 ROA not before: Fri 01 Sep 2023 10:15:49 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24164 IP address blocks: 180.218.192.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 23:59:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7742 (0x1e3e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:15:49 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=336334E32F0A95243944E371A1283D4741AF1655 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:44:a9:e1:43:16:2d:21:96:c6:84:37:14:35: f6:a7:16:53:a8:2b:01:64:a1:ff:ab:3f:eb:48:40: d0:f6:0b:b7:a2:cf:0f:0a:21:b8:05:f1:23:1f:e8: fc:15:d3:d7:01:84:f7:8f:97:71:89:26:4c:8d:92: f0:be:bb:b5:90:a6:2a:9b:5f:9b:de:31:b3:b9:56: 55:7b:6e:f2:5d:c7:5e:ec:59:60:08:10:7e:97:7e: 14:02:7b:75:c7:9f:c8:3d:81:24:12:83:d9:57:80: 1e:c6:55:75:f5:61:2d:e6:c3:b8:01:a0:30:04:ef: 1e:50:f7:0d:95:29:29:ee:d0:01:1f:50:76:bb:06: 60:d2:9b:64:73:31:f0:e6:82:34:82:9c:ef:a8:cd: 16:dd:39:8c:dc:f9:8d:2e:f0:97:47:d7:9a:84:24: a6:fd:ce:3e:67:77:e4:40:ab:e3:ad:7c:3e:f6:00: af:28:69:92:f7:7c:02:53:d5:59:97:b9:76:95:be: 3b:63:24:35:eb:32:ae:ee:64:6d:07:bc:98:cd:7a: 5e:44:4d:6f:9f:c2:25:bf:2b:15:81:f4:dd:1f:f8: 6c:80:27:5a:d2:fd:9c:59:0f:de:3d:c1:cb:ed:ee: 29:dd:7c:46:de:f7:2a:6e:cb:5e:e1:14:af:a0:96: 59:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:63:34:E3:2F:0A:95:24:39:44:E3:71:A1:28:3D:47:41:AF:16:55 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/M2M04y8KlSQ5RONxoSg9R0GvFlU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.192.0/21 Signature Algorithm: sha256WithRSAEncryption 36:36:c8:df:8a:0b:fc:47:72:d8:f9:fb:bb:2d:c3:4f:37:7b: c9:11:2b:30:ae:b7:98:bf:a8:db:77:0f:b0:72:fa:f2:38:34: 11:9f:af:2c:6c:8c:a6:ed:ea:94:5b:80:3d:9f:16:ec:7c:a8: 46:02:87:32:a7:dd:c7:03:13:a5:95:e8:53:3e:9a:1b:41:4e: 02:ca:e4:4a:d2:22:9c:a6:97:88:b2:f5:13:89:bb:3f:72:32: 8d:4e:aa:48:cd:c6:25:17:ed:a3:07:bd:0c:73:21:93:3b:2a: 77:29:41:b0:21:9b:c3:63:72:bd:d0:36:88:3a:07:42:3a:43: 8b:5d:b0:c1:36:00:c3:f5:d5:7e:76:77:c3:35:f2:e5:17:b4: 81:ca:d9:46:ce:ab:6b:35:4b:14:0a:54:4d:7e:90:c9:6a:c1: 33:d7:f1:65:69:1e:94:8f:83:52:a6:b4:a4:74:ab:b1:07:b0: 20:39:53:28:36:8a:02:93:ff:6c:b3:03:bb:7a:24:4a:a1:3c: c2:7e:0a:c8:94:f0:a8:35:b2:74:2f:3f:fb:2c:5c:30:3a:62: 1b:9d:2c:6f:92:de:db:05:25:6e:e2:0c:89:f5:f1:87:64:bc: 8a:04:de:c1:2b:fb:c5:d0:dc:16:2f:b5:92:97:c3:d1:15:5b: 6d:50:cd:cd -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHj4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE1NDlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDMzNjMzNEUzMkYwQTk1 MjQzOTQ0RTM3MUExMjgzRDQ3NDFBRjE2NTUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCjRKnhQxYtIZbGhDcUNfanFlOoKwFkof+rP+tIQND2C7eizw8K IbgF8SMf6PwV09cBhPePl3GJJkyNkvC+u7WQpiqbX5veMbO5VlV7bvJdx17sWWAI EH6XfhQCe3XHn8g9gSQSg9lXgB7GVXX1YS3mw7gBoDAE7x5Q9w2VKSnu0AEfUHa7 BmDSm2RzMfDmgjSCnO+ozRbdOYzc+Y0u8JdH15qEJKb9zj5nd+RAq+OtfD72AK8o aZL3fAJT1VmXuXaVvjtjJDXrMq7uZG0HvJjNel5ETW+fwiW/KxWB9N0f+GyAJ1rS /ZxZD949wcvt7indfEbe9ypuy17hFK+gllkxAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUM2M04y8KlSQ5RONxoSg9R0GvFlUwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL00yTTA0eThLbFNRNVJPTnhv U2c5UjBHdkZsVS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAO0 2sAwDQYJKoZIhvcNAQELBQADggEBADY2yN+KC/xHctj5+7stw083e8kRKzCut5i/ qNt3D7By+vI4NBGfryxsjKbt6pRbgD2fFux8qEYChzKn3ccDE6WV6FM+mhtBTgLK 5ErSIpyml4iy9ROJuz9yMo1OqkjNxiUX7aMHvQxzIZM7KncpQbAhm8Njcr3QNog6 B0I6Q4tdsME2AMP11X52d8M18uUXtIHK2UbOq2s1SxQKVE1+kMlqwTPX8WVpHpSP g1KmtKR0q7EHsCA5Uyg2igKT/2yzA7t6JEqhPMJ+CsiU8Kg1snQvP/ssXDA6Yhud LG+S3tsFJW7iDIn18YdkvIoE3sEr+8XQ3BYvtZKXw9EVW21Qzc0= -----END CERTIFICATE-----Generated at Mon Jun 3 04:22:02 2024 by rpki-client on console-ams.rpki-client.org