$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Oeg3Hx5vhDHFjZWroIpbW_MVYKQ.roa File: Oeg3Hx5vhDHFjZWroIpbW_MVYKQ.roa (raw, json) Hash identifier: f3KUCd/BJ8aN6m4OL+D1lE7BhZ/ygIzdZ3NVsUSbyhs= Subject key identifier: 39:E8:37:1F:1E:6F:84:31:C5:8D:95:AB:A0:8A:5B:5B:F3:15:60:A4 Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1E37 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Oeg3Hx5vhDHFjZWroIpbW_MVYKQ.roa Signing time: Fri 01 Sep 2023 10:15:48 +0000 ROA not before: Fri 01 Sep 2023 10:15:48 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 4662 IP address blocks: 61.64.0.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 23:59:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7735 (0x1e37) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:15:48 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=39E8371F1E6F8431C58D95ABA08A5B5BF31560A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:17:db:6f:8a:1a:e5:27:3f:83:5d:58:d7:e1: 07:63:39:00:08:ef:14:1b:7c:22:8c:e8:bb:b2:43: 4e:21:f0:2b:ec:d2:41:22:86:40:68:4c:64:1a:55: 21:55:8b:4f:66:b4:b8:ec:f7:2e:94:83:ff:e1:6b: 6b:24:a5:ab:ef:99:fb:91:a5:89:3b:f2:26:bf:14: 28:7f:7c:15:ed:06:52:20:79:73:56:17:0c:2e:e6: 84:5a:35:38:5b:a0:39:eb:3e:3e:3e:87:61:10:56: 9d:0a:de:dd:f4:5f:08:bb:66:5c:42:a0:49:5f:6d: d0:c2:8d:ea:bd:89:a4:0f:25:c5:d0:6b:57:d8:53: 20:46:1f:12:62:ec:3f:31:f4:26:7a:80:a1:72:77: 36:28:fc:72:aa:fe:eb:4a:e3:95:0c:25:77:43:6c: 3a:be:b4:2c:6e:5a:82:ef:ae:44:76:60:4b:e2:28: 08:0b:52:9a:a8:07:8b:6d:4c:55:59:30:17:3c:60: 64:94:49:da:95:63:0f:82:ff:83:7b:8a:a1:a5:33: 0e:91:b7:df:62:2c:51:d9:95:a1:87:d0:6d:93:90: c8:8a:0c:28:35:55:cb:a7:07:47:16:74:cb:2b:e2: ad:8d:bb:16:4e:58:52:47:51:a5:bd:53:93:4a:b3: e4:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:E8:37:1F:1E:6F:84:31:C5:8D:95:AB:A0:8A:5B:5B:F3:15:60:A4 X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/Oeg3Hx5vhDHFjZWroIpbW_MVYKQ.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 61.64.0.0/19 Signature Algorithm: sha256WithRSAEncryption 4d:3a:2b:af:ed:e6:c4:09:86:c5:a6:af:9f:43:42:87:1f:a2: a4:7a:b7:51:8e:8a:48:5b:e9:c0:29:72:d5:5e:90:4c:64:7a: a2:b3:ec:8e:28:40:e7:fe:8b:0a:00:73:30:dd:bf:21:cd:0f: 71:83:97:35:3d:20:c7:de:31:4e:5e:d8:83:b4:ff:29:92:83: 9b:5f:4c:8c:b6:d6:c0:e5:3e:85:6a:3f:64:d4:1b:eb:56:96: b7:ae:9c:2a:9f:ee:3a:ca:f7:d7:18:6c:0d:34:d2:07:39:c4: 89:35:6a:d6:d9:c0:dd:73:9b:44:8c:e3:41:4a:46:fe:07:b0: 0c:a7:52:be:c6:b3:4d:d3:00:46:93:03:88:b6:f8:5a:c6:24: ac:dc:8c:39:3f:76:50:45:81:fb:eb:79:2e:3a:e9:91:af:26: 20:b0:ed:9a:31:f0:9b:1f:62:9d:a7:1e:c7:ab:78:ea:2f:f2: d1:9e:95:27:77:49:78:35:7f:9d:67:1e:fd:d6:38:7d:27:c2: 61:96:c6:53:8a:c6:71:44:42:c2:93:51:3f:d2:78:3a:d2:c7: d5:fc:99:3c:31:dc:84:a6:dc:0a:37:7a:b6:22:39:b3:bb:44: 7a:2e:49:99:af:1a:28:c5:ce:65:77:e7:3a:18:df:c7:ac:17: e8:8c:32:29 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHjcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE1NDhaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDM5RTgzNzFGMUU2Rjg0 MzFDNThEOTVBQkEwOEE1QjVCRjMxNTYwQTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCF9tvihrlJz+DXVjX4QdjOQAI7xQbfCKM6LuyQ04h8Cvs0kEi hkBoTGQaVSFVi09mtLjs9y6Ug//ha2skpavvmfuRpYk78ia/FCh/fBXtBlIgeXNW Fwwu5oRaNThboDnrPj4+h2EQVp0K3t30Xwi7ZlxCoElfbdDCjeq9iaQPJcXQa1fY UyBGHxJi7D8x9CZ6gKFydzYo/HKq/utK45UMJXdDbDq+tCxuWoLvrkR2YEviKAgL UpqoB4ttTFVZMBc8YGSUSdqVYw+C/4N7iqGlMw6Rt99iLFHZlaGH0G2TkMiKDCg1 VcunB0cWdMsr4q2NuxZOWFJHUaW9U5NKs+TJAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUOeg3Hx5vhDHFjZWroIpbW/MVYKQwHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL09lZzNIeDV2aERIRmpaV3Jv SXBiV19NVllLUS5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBAU9 QAAwDQYJKoZIhvcNAQELBQADggEBAE06K6/t5sQJhsWmr59DQocfoqR6t1GOikhb 6cApctVekExkeqKz7I4oQOf+iwoAczDdvyHND3GDlzU9IMfeMU5e2IO0/ymSg5tf TIy21sDlPoVqP2TUG+tWlreunCqf7jrK99cYbA000gc5xIk1atbZwN1zm0SM40FK Rv4HsAynUr7Gs03TAEaTA4i2+FrGJKzcjDk/dlBFgfvreS466ZGvJiCw7Zox8Jsf Yp2nHsereOov8tGelSd3SXg1f51nHv3WOH0nwmGWxlOKxnFEQsKTUT/SeDrSx9X8 mTwx3ISm3Ao3erYiObO7RHouSZmvGijFzmV35zoY38esF+iMMik= -----END CERTIFICATE-----Generated at Mon Jun 3 02:57:49 2024 by rpki-client on console-fra.rpki-client.org