$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/OMQZCbbg08c7v64icDATbCyZUqc.roa File: OMQZCbbg08c7v64icDATbCyZUqc.roa (raw, json) Hash identifier: rmT+AWDUbEAtB4JTE0mFKfsmXRskxxUdG7jcC8ikdXE= Subject key identifier: 38:C4:19:09:B6:E0:D3:C7:3B:BF:AE:22:70:30:13:6C:2C:99:52:A7 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1D96 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/OMQZCbbg08c7v64icDATbCyZUqc.roa Signing time: Fri 01 Sep 2023 10:15:02 +0000 ROA not before: Fri 01 Sep 2023 10:15:02 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24164 IP address blocks: 180.218.160.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 23:59:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7574 (0x1d96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:15:02 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=38C41909B6E0D3C73BBFAE227030136C2C9952A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:51:5d:c6:18:5d:ca:8e:b2:ed:f3:d4:b7:2c: 4f:62:7e:7f:db:32:0b:e6:9e:c6:60:fb:65:15:19: 7b:69:f5:76:34:c5:a5:9d:f5:01:a4:7c:6d:cd:bc: 26:c4:2e:d7:90:54:ad:6a:81:22:b3:4d:0b:a3:6c: 15:26:ec:0f:3b:74:f2:7a:5b:54:b4:4a:fd:83:8c: 78:5a:90:c4:dc:54:ef:1c:c4:ce:6b:c8:1a:ba:57: b3:3d:7b:69:cf:aa:38:2b:6c:3f:6b:69:ae:59:01: bf:a1:3e:7a:ea:ad:df:d6:ac:5c:5f:09:3d:f6:a6: f5:f0:bc:b1:21:39:ba:71:35:54:1e:d2:58:58:eb: 77:4a:82:29:dc:16:f2:89:89:2a:64:fd:54:b2:8e: 8e:8f:74:07:b5:de:43:ff:0d:dd:0d:ab:66:ea:19: 91:da:ee:69:2d:62:55:64:f0:96:e5:f7:8d:35:dd: 6e:5a:b9:b2:0a:50:3b:9d:6c:e5:9a:e6:e7:ef:50: d7:31:1e:15:84:2d:0c:ec:93:e9:e5:61:99:4a:76: 36:ae:25:ce:9e:86:64:07:60:77:d5:59:83:2b:c7: 85:7d:5d:43:ef:23:ec:e0:dd:9f:58:45:0e:62:ad: e0:1e:9e:14:64:ce:a2:fd:30:a6:25:b6:2d:be:3a: 9d:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:C4:19:09:B6:E0:D3:C7:3B:BF:AE:22:70:30:13:6C:2C:99:52:A7 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/OMQZCbbg08c7v64icDATbCyZUqc.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 180.218.160.0/20 Signature Algorithm: sha256WithRSAEncryption 11:de:7c:43:7f:ff:56:ff:5c:da:4a:d3:03:72:d8:29:1c:3e: 9e:06:20:48:5e:67:c6:31:90:2e:b1:08:9a:05:65:78:ae:42: ac:79:4b:5e:80:30:fc:3f:24:db:a2:b1:b2:fb:c0:1d:af:90: ec:d3:1c:20:57:d3:b2:1e:5e:50:be:b3:eb:f8:d5:de:dc:bd: cb:a1:91:1d:96:29:47:a4:98:40:4a:f3:2d:f8:ed:86:b8:39: 0d:55:99:86:70:fc:c4:2f:ac:ce:8d:0a:cb:7e:e9:83:10:d2: cc:9b:42:be:9e:e3:03:26:77:be:3c:44:b3:0f:33:da:b0:34: a0:20:f1:1b:d3:f5:ef:7c:a0:0e:c7:ac:5f:58:cc:a0:27:ee: a1:51:e8:b8:43:8f:2d:32:d9:9b:2f:07:98:b8:5b:95:2e:e3: 12:36:b5:0a:82:72:71:8f:1f:5e:b1:1d:22:f6:d8:fb:01:08: 5e:0d:7f:99:14:f5:fb:74:d9:e9:7c:97:90:24:08:85:8f:85: fa:53:4c:b9:1c:b5:96:97:ab:b4:39:53:a8:7a:b0:63:cd:9f: b2:ff:eb:91:3a:f1:ca:26:50:c2:f9:53:90:23:12:c4:db:33: 4f:46:da:c8:b5:a2:9b:56:71:57:f0:7e:51:fa:9c:46:5f:0d: 45:c6:bd:55 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHZYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE1MDJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDM4QzQxOTA5QjZFMEQz QzczQkJGQUUyMjcwMzAxMzZDMkM5OTUyQTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5UV3GGF3KjrLt89S3LE9ifn/bMgvmnsZg+2UVGXtp9XY0xaWd 9QGkfG3NvCbELteQVK1qgSKzTQujbBUm7A87dPJ6W1S0Sv2DjHhakMTcVO8cxM5r yBq6V7M9e2nPqjgrbD9raa5ZAb+hPnrqrd/WrFxfCT32pvXwvLEhObpxNVQe0lhY 63dKgincFvKJiSpk/VSyjo6PdAe13kP/Dd0Nq2bqGZHa7mktYlVk8Jbl94013W5a ubIKUDudbOWa5ufvUNcxHhWELQzsk+nlYZlKdjauJc6ehmQHYHfVWYMrx4V9XUPv I+zg3Z9YRQ5ireAenhRkzqL9MKYlti2+Op2DAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUOMQZCbbg08c7v64icDATbCyZUqcwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL09NUVpDYmJnMDhjN3Y2NGlj REFUYkN5WlVxYy5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAS0 2qAwDQYJKoZIhvcNAQELBQADggEBABHefEN//1b/XNpK0wNy2CkcPp4GIEheZ8Yx kC6xCJoFZXiuQqx5S16AMPw/JNuisbL7wB2vkOzTHCBX07IeXlC+s+v41d7cvcuh kR2WKUekmEBK8y347Ya4OQ1VmYZw/MQvrM6NCst+6YMQ0sybQr6e4wMmd748RLMP M9qwNKAg8RvT9e98oA7HrF9YzKAn7qFR6LhDjy0y2ZsvB5i4W5Uu4xI2tQqCcnGP H16xHSL22PsBCF4Nf5kU9ft02el8l5AkCIWPhfpTTLkctZaXq7Q5U6h6sGPNn7L/ 65E68comUML5U5AjEsTbM09G2si1optWcVfwflH6nEZfDUXGvVU= -----END CERTIFICATE-----Generated at Mon Jun 3 04:22:03 2024 by rpki-client on console-ams.rpki-client.org