$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UBBNET/R_eX6-gUSbmNXlQCZV_6F-V02b4.roa File: R_eX6-gUSbmNXlQCZV_6F-V02b4.roa (raw, json) Hash identifier: bfwO1RDTvn8yXCERMRiDgxG1mqEaYPx562frOCnrNJw= Subject key identifier: 47:F7:97:EB:E8:14:49:B9:8D:5E:54:02:65:5F:FA:17:E5:74:D9:BE Certificate issuer: /CN=08469E113701815993013E13E548A2B340E44E0A Certificate serial: 1D93 Authority key identifier: 08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/R_eX6-gUSbmNXlQCZV_6F-V02b4.roa Signing time: Fri 01 Sep 2023 10:15:01 +0000 ROA not before: Fri 01 Sep 2023 10:15:01 +0000 ROA not after: Sat 31 Aug 2024 03:10:53 +0000 asID: 24164 IP address blocks: 114.198.160.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 23:59:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7571 (0x1d93) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=08469E113701815993013E13E548A2B340E44E0A Validity Not Before: Sep 1 10:15:01 2023 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=47F797EBE81449B98D5E5402655FFA17E574D9BE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:64:4a:61:28:2f:8d:ce:79:4f:bf:8b:97:b8: 76:ab:fa:13:3f:c1:a6:36:05:d2:bb:fe:43:71:74: 4e:2c:d1:5f:1d:84:29:53:1a:2e:b1:20:b8:7e:c2: 92:bc:c3:ed:fe:e8:f4:17:79:88:dd:d4:b5:3c:07: 0e:9a:de:90:96:7c:7f:d4:96:bb:93:bd:5d:1b:2d: 53:96:d7:e1:89:17:4b:d8:a8:b6:71:06:a8:5f:98: d6:24:81:67:84:da:65:b9:de:5d:36:73:81:6a:20: ea:f5:dc:13:18:54:75:76:07:8f:1e:39:58:48:c1: 9a:22:b3:3a:d7:2a:5f:df:9e:6d:bc:59:17:35:19: 4d:46:fc:c2:08:6f:3e:38:1f:1c:71:47:6f:bf:f0: c6:b3:9c:d6:1a:05:25:87:66:1a:98:b2:91:5d:33: f8:40:bf:24:4b:bb:2c:49:cc:96:43:91:e6:a7:d1: ee:48:99:7c:bb:e9:86:f3:e2:28:5f:30:57:b0:a3: 5b:56:55:9c:cf:ed:54:55:ab:8e:ac:a2:95:1e:f5: bc:22:56:e0:ab:20:0e:f3:2a:14:dd:46:b6:6a:05: e0:f2:4e:49:16:ba:90:20:59:e6:26:60:22:88:df: d1:b1:2c:69:17:56:01:25:10:49:30:ba:75:1f:12: e4:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:F7:97:EB:E8:14:49:B9:8D:5E:54:02:65:5F:FA:17:E5:74:D9:BE X509v3 Authority Key Identifier: keyid:08:46:9E:11:37:01:81:59:93:01:3E:13:E5:48:A2:B3:40:E4:4E:0A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/CEaeETcBgVmTAT4T5Uiis0DkTgo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CEaeETcBgVmTAT4T5Uiis0DkTgo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UBBNET/R_eX6-gUSbmNXlQCZV_6F-V02b4.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 114.198.160.0/20 Signature Algorithm: sha256WithRSAEncryption 64:5a:4a:d1:27:6c:ae:e0:35:ea:12:aa:94:6f:66:83:31:78: 8b:ae:53:e0:d1:cd:04:de:54:71:3a:40:74:58:4d:bb:07:d5: ca:02:95:f7:c9:04:a4:c9:96:4b:eb:0a:71:14:c8:34:2d:3c: ea:c2:a9:1e:6e:8a:af:60:b8:71:e7:56:ec:cf:39:c2:07:f0: 46:0c:36:0d:9a:b4:ae:35:0b:b4:45:e4:d2:5d:ad:45:fa:68: 8a:7a:57:07:85:42:03:c7:6c:d2:65:69:8d:b1:8c:42:23:7f: a0:82:af:08:a0:45:07:e9:e2:22:85:43:a1:3c:5c:e2:04:17: 7d:65:8f:29:8c:5d:d1:9a:08:6a:34:93:9e:a0:8d:14:da:3e: 77:3a:70:75:a8:b2:32:98:e3:80:19:cc:31:cd:3d:14:f5:da: c5:69:76:82:1a:51:18:e4:76:c2:63:b9:81:7c:cf:aa:38:7c: 1c:7c:fb:9e:8c:fc:ab:25:28:bf:9b:d4:4c:d9:e5:1c:80:40: dc:a4:12:f3:b5:21:a6:b4:e9:fa:04:f8:ea:66:cb:5c:68:1f: 28:65:f2:5c:bc:30:71:45:94:36:5e:7e:11:01:2c:93:29:f5: b1:e6:62:79:c5:96:7f:c8:ca:22:4d:9c:dd:bd:df:74:fc:3b: 28:b9:cb:88 -----BEGIN CERTIFICATE----- MIIE0jCCA7qgAwIBAgICHZMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDg0 NjlFMTEzNzAxODE1OTkzMDEzRTEzRTU0OEEyQjM0MEU0NEUwQTAeFw0yMzA5MDEx MDE1MDFaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDQ3Rjc5N0VCRTgxNDQ5 Qjk4RDVFNTQwMjY1NUZGQTE3RTU3NEQ5QkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+ZEphKC+NznlPv4uXuHar+hM/waY2BdK7/kNxdE4s0V8dhClT Gi6xILh+wpK8w+3+6PQXeYjd1LU8Bw6a3pCWfH/UlruTvV0bLVOW1+GJF0vYqLZx BqhfmNYkgWeE2mW53l02c4FqIOr13BMYVHV2B48eOVhIwZoiszrXKl/fnm28WRc1 GU1G/MIIbz44HxxxR2+/8MaznNYaBSWHZhqYspFdM/hAvyRLuyxJzJZDkean0e5I mXy76Ybz4ihfMFewo1tWVZzP7VRVq46sopUe9bwiVuCrIA7zKhTdRrZqBeDyTkkW upAgWeYmYCKI39GxLGkXVgElEEkwunUfEuSpAgMBAAGjggHuMIIB6jAdBgNVHQ4E FgQUR/eX6+gUSbmNXlQCZV/6F+V02b4wHwYDVR0jBBgwFoAUCEaeETcBgVmTAT4T 5Uiis0DkTgowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVU L0NFYWVFVGNCZ1ZtVEFUNFQ1VWlpczBEa1Rnby5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ0VhZUVUY0JnVm1UQVQ0VDVVaWlzMERrVGdvLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVUJCTkVUL1JfZVg2LWdVU2JtTlhsUUNa Vl82Ri1WMDJiNC5yb2EwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgABMAYDBARy xqAwDQYJKoZIhvcNAQELBQADggEBAGRaStEnbK7gNeoSqpRvZoMxeIuuU+DRzQTe VHE6QHRYTbsH1coClffJBKTJlkvrCnEUyDQtPOrCqR5uiq9guHHnVuzPOcIH8EYM Ng2atK41C7RF5NJdrUX6aIp6VweFQgPHbNJlaY2xjEIjf6CCrwigRQfp4iKFQ6E8 XOIEF31ljymMXdGaCGo0k56gjRTaPnc6cHWosjKY44AZzDHNPRT12sVpdoIaURjk dsJjuYF8z6o4fBx8+56M/KslKL+b1EzZ5RyAQNykEvO1Iaa06foE+Opmy1xoHyhl 8ly8MHFFlDZefhEBLJMp9bHmYnnFln/IyiJNnN2933T8Oyi5y4g= -----END CERTIFICATE-----Generated at Mon Jun 3 12:44:07 2024 by rpki-client on console-fra.rpki-client.org